{"id":27816949,"url":"https://github.com/azure/azure-workload-identity","last_synced_at":"2025-05-01T14:26:00.129Z","repository":{"id":37278535,"uuid":"361767999","full_name":"Azure/azure-workload-identity","owner":"Azure","description":"Azure AD Workload Identity uses Kubernetes primitives to associate managed identities for Azure resources and identities in Azure Active Directory (AAD) with pods.","archived":false,"fork":false,"pushed_at":"2025-04-28T21:22:39.000Z","size":8027,"stargazers_count":309,"open_issues_count":75,"forks_count":101,"subscribers_count":26,"default_branch":"main","last_synced_at":"2025-04-28T21:24:29.716Z","etag":null,"topics":["aad","azure","federated-identity","kubernetes","oidc","workload-identity"],"latest_commit_sha":null,"homepage":"https://azure.github.io/azure-workload-identity","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Azure.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2021-04-26T13:51:51.000Z","updated_at":"2025-04-28T20:00:20.000Z","dependencies_parsed_at":"2023-10-14T17:02:49.535Z","dependency_job_id":"ae9c4d0b-6c6d-49dc-8736-a14f523b67c7","html_url":"https://github.com/Azure/azure-workload-identity","commit_stats":{"total_commits":688,"total_committers":35,"mean_commits":19.65714285714286,"dds":0.5755813953488372,"last_synced_commit":"fcb1e3f7a54da5d6c7db265c52fbe975efd7a643"},"previous_names":[],"tags_count":27,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Fazure-workload-identity","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Fazure-workload-identity/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Fazure-workload-identity/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2Fazure-workload-identity/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Azure","download_url":"https://codeload.github.com/Azure/azure-workload-identity/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":251888905,"owners_count":21660249,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aad","azure","federated-identity","kubernetes","oidc","workload-identity"],"created_at":"2025-05-01T14:25:57.589Z","updated_at":"2025-05-01T14:26:00.124Z","avatar_url":"https://github.com/Azure.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Azure AD Workload Identity\n\n[![Build Status][14]][13]\n[![OpenSSF Scorecard][23]][24]\n\nAzure AD Workload Identity is the next iteration of [Azure AD Pod Identity][1] that enables Kubernetes applications to access Azure cloud resources securely with [Azure Active Directory][2] based on annotated [service accounts][3].\n\n| Kubernetes Version | Supported |\n| ------------------ | --------- |\n| 1.32               | ✅        |\n| 1.31               | ✅        |\n| 1.30               | ✅        |\n\n## Installation\n\nCheck out the [installation guide][12] on how to deploy the Azure AD Workload Identity webhook.\n\n## Quick Start\n\nCheck out the Azure AD Workload Identity [Quick Start][4] on how to securely access Azure cloud resources from your Kubernetes workload using the Microsoft Authentication Library (MSAL).\n\n## Code of Conduct\n\nThis project has adopted the [Microsoft Open Source Code of Conduct][17]. For more information, see the [Code of Conduct FAQ][18] or contact [opencode@microsoft.com][19] with any additional questions or comments.\n\n## Release\n\nCurrently, Azure Workload Identity releases on a monthly basis, targeting the last week of the month.\n\n## Support\n\nAzure AD Workload Identity is an open source project that is [**not** covered by the Microsoft Azure support policy][20]. [Please search open issues here][21], and if your issue isn't already represented please [open a new one][22]. The project maintainers will respond to the best of their abilities.\n\n\u003c!-- - Ensure backward compatibility when upgrading from [AAD Pod Identity](https://github.com/Azure/aad-pod-identity). --\u003e\n\n[1]: https://github.com/Azure/aad-pod-identity\n\u003c!-- markdown-link-check-disable-next-line --\u003e\n[2]: https://azure.microsoft.com/products/active-directory/\n[3]: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/\n[4]: https://azure.github.io/azure-workload-identity/docs/quick-start.html\n[5]: https://azure.github.io/azure-workload-identity/docs/installation/mutating-admission-webhook.html\n[8]: https://azure.github.io/aad-pod-identity/docs/getting-started/role-assignment/\n[9]: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/instance-metadata-service?tabs=windows\n[10]: https://kubernetes.io/docs/concepts/extend-kubernetes/api-extension/custom-resources/#customresourcedefinitions\n[11]: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection\n[12]: https://azure.github.io/azure-workload-identity/docs/installation.html\n[13]: https://dev.azure.com/AzureContainerUpstream/Azure%20Workload%20Identity/_build/latest?definitionId=365\u0026branchName=main\n[14]: https://dev.azure.com/AzureContainerUpstream/Azure%20Workload%20Identity/_apis/build/status/Azure%20Workload%20Identity%20Nightly?branchName=main\n[15]: https://azure.github.io/azure-workload-identity/docs/known-issues.html#permission-denied-when-reading-the-projected-service-account-token-file\n[17]: https://opensource.microsoft.com/codeofconduct/\n[18]: https://opensource.microsoft.com/codeofconduct/faq\n[19]: mailto:opencode@microsoft.com\n[20]: https://support.microsoft.com/en-us/help/2941892/support-for-linux-and-open-source-technology-in-azure\n[21]: https://github.com/Azure/azure-workload-identity/issues\n[22]: https://github.com/Azure/azure-workload-identity/issues/new/choose\n[23]: https://api.securityscorecards.dev/projects/github.com/Azure/azure-workload-identity/badge\n[24]: https://api.securityscorecards.dev/projects/github.com/Azure/azure-workload-identity\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fazure%2Fazure-workload-identity","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fazure%2Fazure-workload-identity","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fazure%2Fazure-workload-identity/lists"}