what is the oauth-token-path used for? #1336
-
|
Hey, so I'm trying to configure blobfuse2 to use a service principal instead of SAS, in order to stay within msfts best practices regarding IAM in storage accounts. The base config gives following parameters for SPN: tenantid: <storage account tenant id for SPN>
clientid: <storage account client id for SPN>
clientsecret: <storage account client secret for SPN>
oauth-token-path: <path to file containing the OAuth token>Why and for what is a file needed for the OAuth token? I got my tenant id, my client id and my client secret. Can anyone provide some guidance on how to setup Blobfuse2 with Service Principals? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 4 replies
-
|
These are all exhaustive configs required for fine tuning. For a regular use-case you dont need to provide everything unless you are in a specialised environment. Just provide the necessary SPN config listed below and it will work just fine: |
Beta Was this translation helpful? Give feedback.
-
|
Thank you, I actually got it working. Could you update the documentation / the baseConfig.yaml adding this information? |
Beta Was this translation helpful? Give feedback.
-
|
What kind of help string you want in baseCofig. Something saying all configs are not mandatory? |
Beta Was this translation helpful? Give feedback.
-
|
yes, maybe an |
Beta Was this translation helpful? Give feedback.
-
|
@vibhansa-msft this would be great. |
Beta Was this translation helpful? Give feedback.
These are all exhaustive configs required for fine tuning. For a regular use-case you dont need to provide everything unless you are in a specialised environment. Just provide the necessary SPN config listed below and it will work just fine:
tenantid:
clientid:
clientsecret: