From 98d66d4544f436e4690688345fbd637f73566436 Mon Sep 17 00:00:00 2001 From: nicoklaus15 <32845761+nicoklaus15@users.noreply.github.com> Date: Thu, 28 Nov 2024 06:25:35 +0000 Subject: [PATCH 1/2] doc: add more context about DefaultAzureCredential Class --- README.md | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/README.md b/README.md index 2079d86..cfcb620 100644 --- a/README.md +++ b/README.md @@ -96,9 +96,7 @@ The single-file downloads do not require .NET to be installed on the system at a Azure. * `--azure-key-vault-managed-identity` [short: `-kvm`, required: possibly]: Use the ambiant Managed Identity to authenticate to Azure. This - can be used instead of the `--azure-key-vault-accesstoken`, `--azure-key-vault-client-id` and `--azure-key-vault-client-secret` options. This is useful - if AzureSignTool is being used on a VM/service/CLI that is configured for managed identities to - Azure. Important to mention is that this option leverages the [DefaultAzureCredential](https://learn.microsoft.com/dotnet/api/azure.identity.defaultazurecredential?view=azure-dotnet) class which is trying to get a token via multiple options including Visual Studio Credentials and Interactive Browser Authentication. + can be used instead of the `--azure-key-vault-accesstoken`, `--azure-key-vault-client-id` and `--azure-key-vault-client-secret` options. Important to mention that this option uses a combination of authentication mechanisms listed under [DefaultAzureCredential Class](https://learn.microsoft.com/en-us/dotnet/api/azure.identity.defaultazurecredential?view=azure-dotnet#definition). Beside Managed Identity, this also allows you to use existing sessions in the Azure CLI or PowerShell. It also supports Visual Studio Credentials, Interactive Browser Authentication and more. * `--description` [short: `-d`, required: no]: A description of the signed content. This parameter serves the same purpose as the `/d` option in the Windows SDK `signtool`. If this parameter is not supplied, the signature will not contain a From 3e8b980ee2bfc4c82884c50d33eba2de014ca585 Mon Sep 17 00:00:00 2001 From: Nicolas <32845761+nicoklaus@users.noreply.github.com> Date: Tue, 3 Dec 2024 08:11:37 +0100 Subject: [PATCH 2/2] doc: improve wording Co-authored-by: Kevin Jones --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index cfcb620..1e935e8 100644 --- a/README.md +++ b/README.md @@ -96,7 +96,7 @@ The single-file downloads do not require .NET to be installed on the system at a Azure. * `--azure-key-vault-managed-identity` [short: `-kvm`, required: possibly]: Use the ambiant Managed Identity to authenticate to Azure. This - can be used instead of the `--azure-key-vault-accesstoken`, `--azure-key-vault-client-id` and `--azure-key-vault-client-secret` options. Important to mention that this option uses a combination of authentication mechanisms listed under [DefaultAzureCredential Class](https://learn.microsoft.com/en-us/dotnet/api/azure.identity.defaultazurecredential?view=azure-dotnet#definition). Beside Managed Identity, this also allows you to use existing sessions in the Azure CLI or PowerShell. It also supports Visual Studio Credentials, Interactive Browser Authentication and more. + can be used instead of the `--azure-key-vault-accesstoken`, `--azure-key-vault-client-id` and `--azure-key-vault-client-secret` options. This option uses a combination of authentication mechanisms listed under [DefaultAzureCredential Class](https://learn.microsoft.com/dotnet/api/azure.identity.defaultazurecredential?view=azure-dotnet#definition). Beside Managed Identity, this also allows you to use existing sessions in the Azure CLI or PowerShell. It also supports Visual Studio Credentials, Interactive Browser Authentication and others. * `--description` [short: `-d`, required: no]: A description of the signed content. This parameter serves the same purpose as the `/d` option in the Windows SDK `signtool`. If this parameter is not supplied, the signature will not contain a