Merge pull request #38 from AmedeeBulle/session-token

wsanders00 · web-flow · commit 1d1582e08ad6 · 2025-12-15T15:16:11.000-05:00
feat: ✨ manage-dt: support for token auth.
diff --git a/samples/python/manage-dt/manage_dt/cli.py b/samples/python/manage-dt/manage_dt/cli.py
@@ -77,7 +77,9 @@ def validate_digital_twin(
 )
 @click.option(
     "--auth",
-    type=click.Choice(["api_key", "instance_principal", "resource_principal"]),
+    type=click.Choice(
+        ["api_key", "instance_principal", "resource_principal", "security_token"]
+    ),
     help="The type of auth to use for the API request.",
     default=os.getenv("OCI_CLI_AUTH", "api_key"),
     show_default=True,
diff --git a/samples/python/manage-dt/manage_dt/mdt_oci.py b/samples/python/manage-dt/manage_dt/mdt_oci.py
@@ -13,6 +13,7 @@
 from typing import Tuple
 
 from oci import config as oci_config
+from oci import signer as oci_signer
 from oci.auth import signers as oci_auth_signers
 
 
@@ -79,6 +80,20 @@ def get_oci_config(
                 "signer": oci_auth_signers.get_resource_principals_signer(),
             }
             config = {}
+        case "security_token":
+            logger.debug("OCI authentication: Session Token")
+            config = oci_config.from_file(profile_name=profile)
+            if os.getenv("OCI_CLI_TENANCY"):
+                logger.debug("Overriding tenancy OCID")
+                config["tenancy"] = os.getenv("OCI_CLI_TENANCY")
+            token_file = config["security_token_file"]
+            token = None
+            with open(token_file, "r") as f:
+                token = f.read()
+            private_key = oci_signer.load_private_key_from_file(config["key_file"])
+            signer = {
+                "signer": oci_auth_signers.SecurityTokenSigner(token, private_key),
+            }
         case _:
             raise ValueError(f"unsupported auth scheme {auth}")
     return config, signer
diff --git a/samples/python/manage-dt/setup.py b/samples/python/manage-dt/setup.py
@@ -20,7 +20,7 @@
 
 setup(
     name="manage_dt",
-    version="0.0.2",
+    version="0.0.3",
     description="Manage Digital Twins sample script",
     long_description=long_description,
     long_description_content_type="text/markdown",
