[英]triggering python azure function getting secrets from key vault
我尝试运行由 blob 触发的 python azure 函数,它将获取保存在密钥保管库中的个人访问令牌并运行 DevOps 管道。 我在本地测试了代码,它工作正常,当我将代码包含在init .py 文件中时,它不会触发管道。 由于提供的信息不多,甚至无法调试代码。
下面是在部署之前写在init .py 文件中的代码,我在 requirements.txt 文件中提供了所需的库
import logging
from azure.devops.connection import Connection
from msrest.authentication import BasicAuthentication
import azure.functions as func
from azure.identity import ManagedIdentityCredential
from azure.keyvault.secrets import SecretClient
credentials = ManagedIdentityCredential()
secret_client = SecretClient(vault_url="https://myKeyvault.vault.azure.net", credential=credentials)
Personal_Access_Token = secret_client.get_secret("devops-token")
print(Personal_Access_Token.value)
Organization_URL = 'https://dev.azure.com/org/'
Project_Name = 'ProjectName'
def create_pipeline_client():
credentials = BasicAuthentication('',Personal_Access_Token.value)
connection = Connection(base_url=Organization_URL,creds=credentials)
pipeline_client = connection.clients_v6_0.get_pipelines_client()
return pipeline_client
def build_pipeline(pipeline_id,run_params,pipeline_version=None):
pipeline_client = create_pipeline_client()
print("Running Pipeline with ID : "+ str(pipeline_id))
try:
pipeline_client.run_pipeline(run_parameters=run_params,project=Project_Name,pipeline_id=pipeline_id,pipeline_version=pipeline_version)
print("Pipeline Run sucessfully activated")
except Exception as ex:
print("Pipeline Failed with Exception : " + str(ex))
def get_pipeline(pipeline_id,pipeline_version=None):
pipeline_client = create_pipeline_client()
pipeline = pipeline_client.get_pipeline(project=Project_Name,pipeline_id=pipeline_id,pipeline_version=pipeline_version)
print(pipeline)
def list_pipelines():
pipeline_client = create_pipeline_client()
pipeline_list = pipeline_client.list_pipelines(Project_Name)
for item in pipeline_list:
print(item)
def main(myblob: func.InputStream):
logging.info(f"Python blob trigger function processed blob \n"
f"Name: {myblob.name}\n"
f"Blob Size: {myblob.length} bytes")
run_params = {'branch/tag':'master'}
build_pipeline(1,run_params,None)
请指导我
在 azure 功能下创建系统分配/用户分配的访问对象 ID (SP)。
在密钥保管库中创建具有对上述 SP 的必要访问权限的访问策略
Python Azure Function - 使用密钥库的 MSI 身份验证
[英]Python Azure Function - MSI Authentication with Key Vault
使用 Azure Key Vault 和 Active Directory 检索机密
[英]Using Azure Key Vault and Active Directory to Retrieve Secrets
使用 Python 中 Azure-key-vault 中的密钥加密 azure blob
[英]Encrypt azure blob using Key in Azure-key-vault in Python
从 Key Vault 将密钥加载到 Python Paramiko 时获取“不是有效的 RSA 私钥文件”
[英]Getting "not a valid RSA private key file" when loading key to Python Paramiko from Key Vault
Python3:Azure Key Vault Keys,创建 RAS 密钥:TypeError
[英]Python3 : Azure Key Vault Keys, creating RAS key : TypeError
Python Azure SDK:从应用程序配置服务获取 Key Vault 引用值
[英]Python Azure SDK: get Key Vault referenced value from App Configuration service
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.