Skip to content

[APIView] Remove ApiKey usage #13235

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
AlitzelMendez merged 9 commits into from
Dec 11, 2025
Merged

[APIView] Remove ApiKey usage #13235

AlitzelMendez merged 9 commits into from
Dec 11, 2025

Conversation

@AlitzelMendez
Copy link
Member

@AlitzelMendez AlitzelMendez commented Dec 6, 2025
edited
Loading

second part of: #12484

@azure-sdk
Copy link
Collaborator

azure-sdk commented Dec 6, 2025

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

@azure-sdk
Copy link
Collaborator

azure-sdk commented Dec 8, 2025

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

@azure-sdk
Copy link
Collaborator

azure-sdk commented Dec 8, 2025

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

@azure-sdk
Copy link
Collaborator

azure-sdk commented Dec 9, 2025

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

@AlitzelMendez AlitzelMendez changed the title [DNM][WIP][APIView] Remove ApiKey usage [APIView] Remove ApiKey usage Dec 9, 2025
@AlitzelMendez AlitzelMendez marked this pull request as ready for review December 9, 2025 00:12
@AlitzelMendez AlitzelMendez requested a review from a team as a code owner December 9, 2025 00:12
Copilot AI review requested due to automatic review settings December 9, 2025 00:12
Copilot AI reviewed Dec 9, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR removes API Key-based authentication from APIView in favor of Azure AD Bearer token authentication. The changes migrate from using a static API key to dynamically acquiring Azure AD tokens via the Azure CLI.

Key Changes:

  • Replaced API Key authentication with Azure AD Bearer token authentication using az account get-access-token
  • Updated API endpoints to use new lowercase paths (/autoreview/upload and /autoreview/create)
  • Changed HTTP method from GET to POST for the create endpoint to follow RESTful conventions

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 4 comments.

File Description
eng/common/scripts/Create-APIReview.ps1 Removed $APIKey parameter, added Get-ApiViewBearerToken() function for Azure AD authentication, updated API endpoints and authentication headers in both upload functions
eng/common/pipelines/templates/steps/create-apireview.yml Changed from Powershell@2 to AzureCLI@2 task to enable Azure authentication context, added AzureServiceConnection parameter, removed API key argument

@azure-sdk
Copy link
Collaborator

azure-sdk commented Dec 9, 2025

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

weshaggard
weshaggard reviewed Dec 9, 2025
View reviewed changes
@azure-sdk
Copy link
Collaborator

azure-sdk commented Dec 9, 2025

The following pipelines have been queued for testing:
java - template
java - template - tests
js - template
net - template
net - template - tests
python - template
python - template - tests
You can sign off on the approval gate to test the release stage of each pipeline.
See eng/common workflow

weshaggard
weshaggard approved these changes Dec 9, 2025
View reviewed changes
Copy link
Member

@weshaggard weshaggard left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please be sure to follow the eng/common sync workflow to ensure this syncs to all the language repos.

praveenkuttappan
praveenkuttappan reviewed Dec 9, 2025
View reviewed changes
This was referenced Dec 11, 2025
Merged
Merged
Merged
Merged
This was referenced Dec 11, 2025
Merged
Merged
Merged
Merged
Merged
Merged
Merged
Merged
@AlitzelMendez
Copy link
Member Author

AlitzelMendez commented Dec 11, 2025

/check-enforcer evaluate

@weshaggard
Copy link
Member

weshaggard commented Dec 11, 2025

/check-enforcer evaluate

@AlitzelMendez you need to follow the next set of steps https://github.com/Azure/azure-sdk-tools/blob/main/eng/common/README.md#workflow let's not override check-enforcer as it shouldn't be needed.

azure-sdk added a commit to Azure/azure-sdk-for-js that referenced this pull request Dec 11, 2025
@azure-sdk @AlitzelMendez
Sync eng/common directory with azure-sdk-tools for PR 13235 (#36861)
8991618 
Sync eng/common directory with azure-sdk-tools for PR
Azure/azure-sdk-tools#13235 See [eng/common
workflow](https://github.com/Azure/azure-sdk-tools/blob/main/eng/common/README.md#workflow)

---------

Co-authored-by: Alitzel Mendez <[email protected]>
azure-sdk added a commit to Azure/azure-sdk-for-rust that referenced this pull request Dec 11, 2025
@azure-sdk @AlitzelMendez
Sync eng/common directory with azure-sdk-tools for PR 13235 (#3429)
cc5db3a 
Sync eng/common directory with azure-sdk-tools for PR
Azure/azure-sdk-tools#13235 See [eng/common
workflow](https://github.com/Azure/azure-sdk-tools/blob/main/eng/common/README.md#workflow)

---------

Co-authored-by: Alitzel Mendez <[email protected]>
@AlitzelMendez AlitzelMendez merged commit b8303b3 into main Dec 11, 2025
10 checks passed
@AlitzelMendez AlitzelMendez deleted the stop-using-apikey branch December 11, 2025 20:03
JiaqiZhang-Dev pushed a commit that referenced this pull request Dec 22, 2025
@AlitzelMendez
[APIView] Remove ApiKey usage (#13235)
958bf16 
* [DNM][WIP][API View] Remove ApiKey usage

* Add -TestAuth flag to verify Bearer token authentication

* TEMP: Enable TestAuthOnly for pipeline testing

* [APIView] Remove testing logs

* Additional clean up

* Keep apikey fallback while migrating

* [APIView] Keep migration to new endpoint

* [APIView] Keep migration to new endpoint

* Feedback
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@weshaggard weshaggard weshaggard approved these changes

@praveenkuttappan praveenkuttappan praveenkuttappan approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@AlitzelMendez @azure-sdk @weshaggard @praveenkuttappan