feat(util.py/azure.py): Add OIDC support when running in Azure Kubernetes Service (AKS).

2024-05-27 16:33:37 +00:00 · 2024-05-27 16:33:37 +00:00 · a31fa5fbc8
commit a31fa5fbc8
parent 857df1d6af
2 changed files with 12 additions and 3 deletions
--- a/litellm/utils.py
+++ b/litellm/utils.py
@ -10050,6 +10050,14 @@ def get_secret(
                return oidc_token
            else:
                raise ValueError("Github OIDC provider failed")
+        elif oidc_provider == "azure":
+            # https://azure.github.io/azure-workload-identity/docs/quick-start.html
+            azure_federated_token_file = os.getenv("AZURE_FEDERATED_TOKEN_FILE")
+            if azure_federated_token_file is None:
+                raise ValueError("AZURE_FEDERATED_TOKEN_FILE not found in environment")
+            with open(azure_federated_token_file, "r") as f:
+                oidc_token = f.read()
+                return oidc_token
        else:
            raise ValueError("Unsupported OIDC provider")