From 1fc392d15f4e08fd2b9aee60b1c8f113aafb2347 Mon Sep 17 00:00:00 2001
From: Jean Poizat <jean.poizat@edifixio.com>
Date: Fri, 11 Nov 2022 13:54:32 +0100
Subject: [PATCH] Update azure_keyvault_secret.py

add user specified managed identity (using environment)
---
 lookup_plugins/azure_keyvault_secret.py | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/lookup_plugins/azure_keyvault_secret.py b/lookup_plugins/azure_keyvault_secret.py
index f37d3fcc..a7c4eaf1 100644
--- a/lookup_plugins/azure_keyvault_secret.py
+++ b/lookup_plugins/azure_keyvault_secret.py
@@ -94,6 +94,12 @@
     'api-version': '2018-02-01',
     'resource': 'https://vault.azure.net'
 }
+
+# use AZURE_CLIENT_ID as user managed instance if existing
+client_id = os.getenv("AZURE_CLIENT_ID")
+if client_id != None:
+    token_params["client_id"] = client_id
+
 token_headers = {
     'Metadata': 'true'
 }