teamsapp auth login azure to enable token based authentication #13200
Comments
|
👋 Hi @xmichelleyang, Thank you for reporting this issue! We want to let you know that: ⏱️ Our team will personally review your issue ✨ This is an AI-generated initial response It appears that you are looking for an update to the Teams Toolkit CLI to support token-based authentication methods, such as managed identities, to align with Microsoft’s recent security standards. Currently, the Teams Toolkit CLI supports certificate-based and password-based authentication methods, as outlined in the documentation you linked: Set up CI/CD pipelines with Teams Toolkit CLI. Proposed SolutionTo address your request, it would be ideal for the Teams Toolkit CLI to support token-based authentication, particularly through managed identities, which are highly secure and streamline the authentication process. An example command could be: teamsapp auth login azure --managed-identity true --interactive false -verboseCurrent WorkaroundUntil this feature is implemented, you can continue using the certificate-based authentication method. Here's a brief overview of how to set up certificate-based authentication for your CI/CD pipeline:
Recommendation for Feature RequestTo formally request this feature, you can create an issue on the Teams Toolkit GitHub repository. This will bring your request to the attention of the development team. Here is how you can do it:
Additional ResourcesBy following these steps and providing detailed feedback to the development team, you can help advocate for the inclusion of token-based authentication in the Teams Toolkit CLI.
|
microsoft-github-policy-service
bot
added
the
needs attention
adashen
added
feature-request
|
Thank you for your suggestion! To better achieve your requirements, we recommend submitting this feature request through the Teams Feedback Portal. This is the best way to ensure your idea is considered for future updates. We appreciate your input and encourage you to share any additional thoughts! |
summzhan
removed
the
needs attention
|
@xmichelleyang , Thank you very much for suggestions! Teams Toolkit team has well received your feedback, and has created feature ideas in our backlog. We will have more internal discussions on the right priorities for implementing this. I will keep you posted once we have more detailed plan! |
Problem/Feature- Request Summary
Microsoft is transitioning away from certificate-based authentication to enhance security and simplify management. The new security standard focuses on moving towards token-based authentication methods, such as managed identities and phishing-resistant multifactor authentication (PR-MFA). Currently as shown in the documentation for authenticating in the CI/CD pipeline, there is only Certificate and Password based authentication: https://learn.microsoft.com/en-us/microsoftteams/platform/toolkit/use-cicd-template?tabs=certificate#set-up-cicd-pipelines-with-teams-toolkit-cli
Solution I'd Like
Teamsapp auth login should enable token-based authentication to comply with recent Microsoft security standards.
Example of new authentication command
teamsapp auth login azure --managed-identity true --interactive false -verboseAlternatives I've Considered
I've unblocked my CI/CD pipeline project by authenticating via certificate-based authentication as suggested in the above linked documentation.
The text was updated successfully, but these errors were encountered: