Merge pull request #5277 from nojnhuh/sp-cert

k8s-ci-robot · web-flow · commit eb758ccdfb34 · 2024-11-15T17:30:53.000Z
fix ServicePrincipalCertificate not reading from Secret
diff --git a/azure/scope/identity.go b/azure/scope/identity.go
@@ -212,6 +212,8 @@ func (p *AzureCredentialsProvider) hasClientSecret() bool {
 	switch p.Identity.Spec.Type {
 	case infrav1.ServicePrincipal, infrav1.ManualServicePrincipal:
 		return true
+	case infrav1.ServicePrincipalCertificate:
+		return p.Identity.Spec.CertPath == ""
 	default:
 		return false
 	}
diff --git a/azure/scope/identity_test.go b/azure/scope/identity_test.go
@@ -166,6 +166,16 @@ func TestHasClientSecret(t *testing.T) {
 					Type: infrav1.ServicePrincipalCertificate,
 				},
 			},
+			want: true,
+		},
+		{
+			name: "service principal with certificate path",
+			identity: &infrav1.AzureClusterIdentity{
+				Spec: infrav1.AzureClusterIdentitySpec{
+					Type:     infrav1.ServicePrincipalCertificate,
+					CertPath: "something",
+				},
+			},
 			want: false,
 		},
 		{

Original file line number	Diff line number	Diff line change
`@@ -212,6 +212,8 @@ func (p *AzureCredentialsProvider) hasClientSecret() bool {`
`212`	`212`	`switch p.Identity.Spec.Type {`
`213`	`213`	`case infrav1.ServicePrincipal, infrav1.ManualServicePrincipal:`
`214`	`214`	`return true`
	`215`	`+ case infrav1.ServicePrincipalCertificate:`
	`216`	`+ return p.Identity.Spec.CertPath == ""`
`215`	`217`	`default:`
`216`	`218`	`return false`
`217`	`219`	`}`