@backstage/integration 1.5.0-next.0 → 1.5.1-next.0

package/CHANGELOG.md

@@ -1,5 +1,33 @@
 # @backstage/integration
 
+## 1.5.1-next.0
+
+### Patch Changes
+
+- Updated dependencies
+  - @backstage/errors@1.2.1-next.0
+  - @backstage/config@1.0.8
+
+## 1.5.0
+
+### Minor Changes
+
+- a316d226c780: Add credential provider for GitLab.
+- c7f848bcea3c: Support authentication with a service principal or managed identity for Azure DevOps
+
+  Azure DevOps recently released support, in public preview, for authenticating with a service principal or managed identity instead of a personal access token (PAT): https://devblogs.microsoft.com/devops/introducing-service-principal-and-managed-identity-support-on-azure-devops/. With this change the Azure integration now supports service principals and managed identities for Azure AD backed Azure DevOps organizations. Service principal and managed identity authentication is not supported on Azure DevOps Server (on-premises) organizations.
+
+### Patch Changes
+
+- 3c83550fdb62: Renamed ClientSecret to AzureClientSecretCredential and ManagedIdentity to AzureManagedIdentityCredential
+- df8411779da1: Add support for Repository Variables and Secrets to the `publish:github` and `github:repo:create` scaffolder actions. You will need to add `read/write` permissions to your GITHUB_TOKEN and/or Github Backstage App for Repository `Secrets` and `Variables`
+
+  Upgrade octokit introduces some breaking changes.
+
+- Updated dependencies
+  - @backstage/errors@1.2.0
+  - @backstage/config@1.0.8
+
 ## 1.5.0-next.0
 
 ### Minor Changes

package/dist/index.cjs.js

@@ -344,11 +344,11 @@ _ref = new WeakMap();
 _baseUrl = new WeakMap();
 
 const AZURE_HOST = "dev.azure.com";
-const isServicePrincipal = (credential) => {
+const isAzureClientSecretCredential = (credential) => {
   const clientSecretCredential = credential;
   return Object.keys(credential).length === 3 && clientSecretCredential.clientId !== void 0 && clientSecretCredential.clientSecret !== void 0 && clientSecretCredential.tenantId !== void 0;
 };
-const isManagedIdentity = (credential) => {
+const isAzureManagedIdentityCredential = (credential) => {
   return Object.keys(credential).length === 1 && credential.clientId !== void 0;
 };
 function readAzureIntegrationConfig(config) {
@@ -365,7 +365,7 @@ function readAzureIntegrationConfig(config) {
       `Invalid Azure integration config, '${host}' is not a valid host`
     );
   }
-  if (credential && !isServicePrincipal(credential) && !isManagedIdentity(credential)) {
+  if (credential && !isAzureClientSecretCredential(credential) && !isAzureManagedIdentityCredential(credential)) {
     throw new Error(
       `Invalid Azure integration config, credential is not valid`
     );
@@ -461,7 +461,7 @@ async function getAzureRequestOptions(config, additionalHeaders) {
   const headers = additionalHeaders ? { ...additionalHeaders } : {};
   const { token, credential } = config;
   if (credential) {
-    if (isServicePrincipal(credential)) {
+    if (isAzureClientSecretCredential(credential)) {
       const servicePrincipal = new identity.ClientSecretCredential(
         credential.tenantId,
         credential.clientId,
@@ -469,7 +469,7 @@ async function getAzureRequestOptions(config, additionalHeaders) {
       );
       const accessToken = await servicePrincipal.getToken(azureDevOpsScope);
       headers.Authorization = `Bearer ${accessToken.token}`;
-    } else if (isManagedIdentity(credential)) {
+    } else if (isAzureManagedIdentityCredential(credential)) {
       const managedIdentity = new identity.ManagedIdentityCredential(
         credential.clientId
       );