Authentication concepts in Azure Data Manager for Energy
Authentication confirms the identity of users. The access flows can be user triggered, system triggered, or system API communication. In this article, you learn about service principals and authorization tokens.
Service principals
In an Azure Data Manager for Energy instance:
- No service principals are created.
- The app ID is used for API access. The same app ID is used to provision an Azure Data Manager for Energy instance.
- The app ID doesn't have access to infrastructure resources.
- The app ID also gets added as OWNER to all OSDU groups by default.
- For service-to-service communication, Azure Data Manager for Energy uses Managed Service Identity.
In an OSDU instance:
- Terraform scripts create two service principals:
- The first service principal is used for API access. It can also manage infrastructure resources.
- The second service principal is used for service-to-service communications.
Generate an authorization token
To generate the authorization token, follow the steps in Generate auth token.
Зворотний зв’язок
https://aka.ms/ContentUserFeedback.
Очікується незабаром: протягом 2024 року ми будемо припиняти використання механізму реєстрації проблем у GitHub для зворотного зв’язку щодо вмісту й замінювати його новою системою зворотного зв’язку. Докладніше:Надіслати й переглянути відгук про