github/azure-sdk-for-cpp
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Add well known tenant IDs and TME status (#6438)

Browse Source 
Co-authored-by: Ben Broderick Phillips <bebroder@microsoft.com>
This commit is contained in:
Azure SDK Bot 2025-03-06 11:42:41 -08:00 committed by GitHub
parent 3e56210de8
commit c378e69d0d
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
eng/common/TestResources/New-TestResources.ps1
View File

@ -121,6 +121,8 @@ param (
. $PSScriptRoot/TestResources-Helpers.ps1
. $PSScriptRoot/SubConfig-Helpers.ps1
$wellKnownTMETenants = @('70a036f6-8e4d-4615-bad6-149c02e7720d')
if (!$ServicePrincipalAuth) {
# Clear secrets if not using Service Principal auth. This prevents secrets
# from being passed to pre- and post-scripts.
@ -527,8 +529,11 @@ try {
if ($CI -and $Environment -eq 'AzureCloud' -and $env:PoolSubnet) {
$templateParameters.Add('azsdkPipelineSubnetList', @($env:PoolSubnet))
}
# Some arm/bicep templates may want to change deployment settings (e.g. local auth) in sandboxed TME tenants
$templateParameters.Add('supportsSafeSecretStandard', ($context.Tenant.Name -notlike '*TME*'))
# The TME tenants are our place for local auth testing so we do not support safe secret standard there.
# Some arm/bicep templates may want to change deployment settings like local auth in sandboxed TME tenants.
# The pipeline account context does not have the .Tenant.Name property, so check against subscription via
# naming convention instead.
$templateParameters.Add('supportsSafeSecretStandard', ($wellKnownTMETenants.Contains($TenantId)))
$defaultCloudParameters = LoadCloudConfig $Environment
MergeHashes $defaultCloudParameters $(Get-Variable templateParameters)