feat: support DefaultAzureCredential authentication#9468
Merged
Conversation
dosubot
bot
added
the
size:M
cnpg-bot
added
backport-requested ◀️
Contributor
|
❗ By default, the pull request is configured to backport to all release branches.
|
Member
Author
|
/test |
dosubot
bot
added
documentation 📖
Contributor
|
@armru, here's the link to the E2E on CNPG workflow run: https://github.com/cloudnative-pg/cloudnative-pg/actions/runs/20276236763 |
GabriFedi97
reviewed
Dec 22, 2025
armru
force-pushed
the
dev/default-azure-cred
branch
from
9a54ce3 to
726bddc
Compare
mnencia
pushed a commit
that referenced
this pull request
Dec 29, 2025
Make explicit in the docs that the inheritFromAzureAD option enables the usage of the Azure Managed Identity authentication mechanism. Signed-off-by: Gabriele Fedi <[email protected]>
mnencia
pushed a commit
that referenced
this pull request
Dec 29, 2025
Make explicit in the docs that the inheritFromAzureAD option enables the usage of the Azure Managed Identity authentication mechanism. Signed-off-by: Gabriele Fedi <[email protected]>
mnencia
force-pushed
the
dev/default-azure-cred
branch
from
7eaba8e to
56c142e
Compare
dosubot
bot
added
size:L
mnencia
pushed a commit
that referenced
this pull request
Dec 30, 2025
Make explicit in the docs that the inheritFromAzureAD option enables the usage of the Azure Managed Identity authentication mechanism. Signed-off-by: Gabriele Fedi <[email protected]>
mnencia
force-pushed
the
dev/default-azure-cred
branch
2 times, most recently
from
de89e00 to
44f65a1
Compare
Member
|
/test |
Contributor
|
@mnencia, here's the link to the E2E on CNPG workflow run: https://github.com/cloudnative-pg/cloudnative-pg/actions/runs/20607724625 |
mnencia
approved these changes
Dec 30, 2025
mnencia
added a commit
that referenced
this pull request
Jan 8, 2026
…ting This disclaimer clarifies that CloudNativePG doesn't independently test all possible barman-cloud authentication methods. CloudNativePG's responsibility is limited to passing provided credentials to barman-cloud, which then handles authentication according to its own implementation. Related to #9468 Signed-off-by: Marco Nenciarini <[email protected]>
fcanovai
pushed a commit
that referenced
this pull request
Jan 8, 2026
Make explicit in the docs that the inheritFromAzureAD option enables the usage of the Azure Managed Identity authentication mechanism. Signed-off-by: Gabriele Fedi <[email protected]>
fcanovai
force-pushed
the
dev/default-azure-cred
branch
from
44f65a1 to
21e8f8c
Compare
dosubot
bot
added
size:M
Add support for the DefaultAzureCredential authentication mechanism Changes: - Updated AzureCredentials API type documentation to reflect the new UseDefaultAzureCredentials option - Enhanced Azure Blob Storage documentation with examples of using DefaultAzureCredential - The validation of this new option is handled by the barman-cloud library's existing validation logic Signed-off-by: Armando Ruocco <[email protected]>
Make explicit in the docs that the inheritFromAzureAD option enables the usage of the Azure Managed Identity authentication mechanism. Signed-off-by: Gabriele Fedi <[email protected]>
Signed-off-by: Marco Nenciarini <[email protected]>
fcanovai
force-pushed
the
dev/default-azure-cred
branch
from
21e8f8c to
f8cb0d1
Compare
Contributor
|
/test |
Contributor
|
@fcanovai, here's the link to the E2E on CNPG workflow run: https://github.com/cloudnative-pg/cloudnative-pg/actions/runs/20815360336 |
fcanovai
approved these changes
Jan 8, 2026
cnpg-bot
pushed a commit
that referenced
this pull request
Jan 8, 2026
Adds support for the DefaultAzureCredential authentication mechanism Signed-off-by: Armando Ruocco <[email protected]> Signed-off-by: Gabriele Fedi <[email protected]> Signed-off-by: Marco Nenciarini <[email protected]> Co-authored-by: Gabriele Fedi <[email protected]> Co-authored-by: Marco Nenciarini <[email protected]> (cherry picked from commit 4ee0528)
cnpg-bot
pushed a commit
that referenced
this pull request
Jan 8, 2026
Adds support for the DefaultAzureCredential authentication mechanism Signed-off-by: Armando Ruocco <[email protected]> Signed-off-by: Gabriele Fedi <[email protected]> Signed-off-by: Marco Nenciarini <[email protected]> Co-authored-by: Gabriele Fedi <[email protected]> Co-authored-by: Marco Nenciarini <[email protected]> (cherry picked from commit 4ee0528)
cnpg-bot
pushed a commit
that referenced
this pull request
Jan 8, 2026
Adds support for the DefaultAzureCredential authentication mechanism Signed-off-by: Armando Ruocco <[email protected]> Signed-off-by: Gabriele Fedi <[email protected]> Signed-off-by: Marco Nenciarini <[email protected]> Co-authored-by: Gabriele Fedi <[email protected]> Co-authored-by: Marco Nenciarini <[email protected]> (cherry picked from commit 4ee0528)
mnencia
added a commit
that referenced
this pull request
Jan 9, 2026
…ting This disclaimer clarifies that CloudNativePG doesn't independently test all possible barman-cloud authentication methods. CloudNativePG's responsibility is limited to passing provided credentials to barman-cloud, which then handles authentication according to its own implementation. Related to #9468 Signed-off-by: Marco Nenciarini <[email protected]>
mnencia
added a commit
that referenced
this pull request
Jan 9, 2026
…ting (#9644) This PR adds a disclaimer to the object stores documentation clarifying that CloudNativePG does not independently test all authentication methods supported by barman-cloud. CloudNativePG's responsibility is limited to passing the provided credentials to barman-cloud, which then handles authentication according to its own implementation. This documentation change was decided by the maintainers as part of the discussion around Azure Default Credentials support (#9468). Signed-off-by: Marco Nenciarini <[email protected]>
cnpg-bot
pushed a commit
that referenced
this pull request
Jan 9, 2026
…ting (#9644) This PR adds a disclaimer to the object stores documentation clarifying that CloudNativePG does not independently test all authentication methods supported by barman-cloud. CloudNativePG's responsibility is limited to passing the provided credentials to barman-cloud, which then handles authentication according to its own implementation. This documentation change was decided by the maintainers as part of the discussion around Azure Default Credentials support (#9468). Signed-off-by: Marco Nenciarini <[email protected]> (cherry picked from commit 564dc9c)
cnpg-bot
pushed a commit
that referenced
this pull request
Jan 9, 2026
…ting (#9644) This PR adds a disclaimer to the object stores documentation clarifying that CloudNativePG does not independently test all authentication methods supported by barman-cloud. CloudNativePG's responsibility is limited to passing the provided credentials to barman-cloud, which then handles authentication according to its own implementation. This documentation change was decided by the maintainers as part of the discussion around Azure Default Credentials support (#9468). Signed-off-by: Marco Nenciarini <[email protected]> (cherry picked from commit 564dc9c)
cnpg-bot
pushed a commit
that referenced
this pull request
Jan 9, 2026
…ting (#9644) This PR adds a disclaimer to the object stores documentation clarifying that CloudNativePG does not independently test all authentication methods supported by barman-cloud. CloudNativePG's responsibility is limited to passing the provided credentials to barman-cloud, which then handles authentication according to its own implementation. This documentation change was decided by the maintainers as part of the discussion around Azure Default Credentials support (#9468). Signed-off-by: Marco Nenciarini <[email protected]> (cherry picked from commit 564dc9c)
mnencia
added a commit
that referenced
this pull request
Jan 20, 2026
…ting (#9644) This PR adds a disclaimer to the object stores documentation clarifying that CloudNativePG does not independently test all authentication methods supported by barman-cloud. CloudNativePG's responsibility is limited to passing the provided credentials to barman-cloud, which then handles authentication according to its own implementation. This documentation change was decided by the maintainers as part of the discussion around Azure Default Credentials support (#9468). Signed-off-by: Marco Nenciarini <[email protected]> (cherry picked from commit 564dc9c)
mnencia
added a commit
that referenced
this pull request
Feb 4, 2026
Add two missing enhancements that were backported to release-1.28: - PR #9468: Azure DefaultAzureCredential authentication support - PR #9386: PostgreSQL extension names with underscores support Signed-off-by: Marco Nenciarini <[email protected]>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adds support for the DefaultAzureCredential authentication mechanism