Skip to content

Fabric Entra Id Auth Integration #45890

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 57 commits into from
Jul 31, 2025
Merged

Fabric Entra Id Auth Integration #45890

merged 57 commits into from
Jul 31, 2025

Conversation

tvaron3
Copy link
Member

@tvaron3 tvaron3 commented Jul 1, 2025
edited
Loading

Description

Implemented account data resolver to authenticate signed in users in fabric using Microsoft Entra Id. Configurations for the fabric implementation of account data resolver below.

Config Property Name Default Description
spark.cosmos.auth.aad.audience https://cosmos.azure.com/.default The audience used to obtain the Entra Id token.

Other Changes

  • If you implemented an account data resolver, the tenant id, subscription id, and resource group were required. Because these don't exist for fabric native CosmosDB accounts I removed this requirement if the FabricAccountDataResolver is being used.
  • Changed Spark connector useragent due to bug with Fabric Native CosmosDB accounts to be azsdk-java-cosmos/4.73.0-snapshot.1 Linux/5.15.182.1-1.cm2 JRE/11.0.27 SparkConnector|azure-cosmos-spark_3-5_2-12|4.38.0-beta.1|SYN|25dynamicdatacloudworkspace|1b54e861-53bc-4da6-67e5-fdcaec21|5072 vm-46f01401
    instead of azsdk-java-cosmos/4.73.0-snapshot.1 Linux/5.15.182.1-1.cm2 JRE/11.0.27 SparkConnector/azure-cosmos-spark_3-5_2-12/4.38.0-beta.1|SYN|25dynamicdatacloudworkspace|1b54e861-53bc-4da6-67e5-fdcaec21|5072@vm-46f01401

Testing

  • In fabric notebooks, bulk and changefeed were verified to work in the spark 3.5 runtimes using this account data resolver implementation using a Fabric Native CosmosDB account and normal CosmosDB account.
  • Follow up: Add live tests for fabric [FEATURE REQ] Add Fabric Live Tests #46146

@github-actions github-actions bot added the Cosmos label Jul 1, 2025
@tvaron3 tvaron3 changed the title [Don't Merge] Fabric Entra Id Aad Auth Integration [Don't Merge] Fabric Entra Id Auth Integration Jul 2, 2025
@tvaron3 tvaron3 changed the title [Don't Merge] Fabric Entra Id Auth Integration Fabric Entra Id Auth Integration Jul 2, 2025
@tvaron3 tvaron3 marked this pull request as ready for review July 2, 2025 23:29
@Copilot Copilot AI review requested due to automatic review settings July 2, 2025 23:29
@tvaron3
Copy link
Member Author

tvaron3 commented Jul 30, 2025

/azp run java - cosmos - spark

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jul 30, 2025
edited
Loading

API Change Check

APIView identified API level changes in this PR and created the following API reviews

com.azure:azure-cosmos

@tvaron3
Copy link
Member Author

tvaron3 commented Jul 30, 2025

/azp run java - cosmos - spark

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

xinlian12
xinlian12 approved these changes Jul 30, 2025
View reviewed changes
Copy link
Member

@xinlian12 xinlian12 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks

@xinlian12
Copy link
Member

LGTM, thanks

@tvaron3 tvaron3 enabled auto-merge (squash) July 30, 2025 23:54
@tvaron3 tvaron3 merged commit c4bfada into Azure:main Jul 31, 2025
36 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@JonathanGiles JonathanGiles JonathanGiles approved these changes

@kushagraThapar kushagraThapar kushagraThapar approved these changes

@FabianMeiswinkel FabianMeiswinkel FabianMeiswinkel approved these changes

@raych1 raych1 raych1 approved these changes

@xinlian12 xinlian12 xinlian12 approved these changes

@alzimmermsft alzimmermsft Awaiting requested review from alzimmermsft alzimmermsft is a code owner

@samvaity samvaity Awaiting requested review from samvaity samvaity is a code owner

@g2vinay g2vinay Awaiting requested review from g2vinay g2vinay is a code owner

@rujche rujche Awaiting requested review from rujche rujche is a code owner

@Netyyyy Netyyyy Awaiting requested review from Netyyyy Netyyyy is a code owner

@saragluna saragluna Awaiting requested review from saragluna saragluna is a code owner

@moarychan moarychan Awaiting requested review from moarychan moarychan is a code owner

@weshaggard weshaggard Awaiting requested review from weshaggard weshaggard is a code owner

@benbp benbp Awaiting requested review from benbp benbp is a code owner

@srnagar srnagar Awaiting requested review from srnagar srnagar is a code owner

@conniey conniey Awaiting requested review from conniey conniey is a code owner

@kirankumarkolli kirankumarkolli Awaiting requested review from kirankumarkolli kirankumarkolli is a code owner

Assignees
No one assigned
Labels
Cosmos
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@tvaron3 @xinlian12 @JonathanGiles @kushagraThapar @FabianMeiswinkel @raych1