Add MSI Support for Azure plugin.

Signed-off-by: yanggang <[email protected]>

Author: yanggang

changelogs/unreleased/6938-yanggangtony

@@ -0,0 +1 @@
+Add MSI Support for Azure plugin.

pkg/util/azure/credential.go

@@ -129,5 +129,14 @@ func newConfigCredential(creds map[string]string, options configCredentialOption
 		return nil, errors.Errorf("%s is required", CredentialKeyPassword)
 	}
 
+	//msiEndpoint
+	msiEndpoint := creds[CredentialMSIENDPOINT]
+	identityEndpoint := creds[CredentialIDENTITYENDPOINT]
+
+	if msiEndpoint != "" || identityEndpoint != "" {
+		o := &azidentity.ManagedIdentityCredentialOptions{ClientOptions: options.ClientOptions, ID: azidentity.ClientID(clientID)}
+		return azidentity.NewManagedIdentityCredential(o)
+	}
+
 	return nil, errors.New("incomplete credential configuration. Only AZURE_TENANT_ID and AZURE_CLIENT_ID are set")
 }

pkg/util/azure/util.go

@@ -49,6 +49,12 @@ const (
 	CredentialKeyUsername                   = "AZURE_USERNAME"                      // #nosec
 	CredentialKeyPassword                   = "AZURE_PASSWORD"                      // #nosec
 
+	CredentialIMDSENDPOINT             = "IMDS_ENDPOINT"              // #nosec
+	CredentialIDENTITYENDPOINT         = "IDENTITY_ENDPOINT"          // #nosec
+	CredentialIDENTITYHEADER           = "IDENTITY_HEADER"            // #nosec
+	CredentialIDENTITYSERVERTHUMBPRINT = "IDENTITY_SERVER_THUMBPRINT" // #nosec
+	CredentialMSIENDPOINT              = "MSI_ENDPOINT"               // #nosec
+
 	credentialFile = "credentialsFile"
 )