Welcome to the May release of the Azure SDK. We have updated the following libraries:

• Event Hubs
• Storage (Python only)

These are ready to use in your production applications. You can find details of all released libraries on our releases page.

New preview releases:

• Form Recognizer
• Cognitive Search
• Service Bus

In addition, there is a new preview release for Azure Identity, which features improvements to the DefaultAzureCredential to better support common developer workflows. See below for more details.

We believe these are ready for you to use and experiment with, but not yet ready for production. Between now and the GA release, these libraries may undergo API changes. We’d love your feedback! If you use these libraries and like what you see, or you want to see changes, let us know in GitHub issues.

Getting Started

Use the links below to get started with your language of choice. You will notice that all the preview libraries are tagged with “preview”.

• .NET release notes
• Java release notes
• Python release notes
• JavaScript release notes

If you want to dive deep into the content, the release notes linked above and the change logs they point to give more details on what has changed.

In depth: Azure Identity

In the Azure SDK, DefaultAzureCredential is the recommended way to handle authentication across your local workstation and your deployment environment. It attempts to figure out what environment you are running in, and uses the most appropriate credential for the purpose. Its use and features are explained in our previous blog post. The latest release of the Azure Identity library contains numerous improvements to improve the developer experience around authentication, including integration with more tools and better diagnostics.

New credential types

DefaultAzureCredential looks through four specific locations to find suitable information for authenticating to the service: environment variables, managed identity, the MSAL shared token cache (supporting tools like Visual Studio) and the Azure CLI. In .NET and Python, you can also enable an interactive browser, which asks you to log into Azure. In this release, we are adding more credentials that can work seamlessly in your favorite IDEs. Most of these credentials are stored in encrypted locations, eliminating the need to set up credentials in a file or environment variables, thus lowering your risk of exposing your personal identification information on your workstation.

In this release, we will support authentication via standard tooling: Visual Studio (for .NET), Visual Studio Code, IntelliJ (for Java), and the Azure CLI. They are slotted onto the end of the default credential chain provided in DefaultAzureCredential. The new list of credentials DefaultAzureCredential supports and attempts to authenticate with are listed below, in order:

1. EnvironmentCredential
2. ManagedIdentityCredential
3. SharedTokenCacheCredential (Windows only, with MacOS & Linux supporting coming soon)
4. VisualStudioCredential (.NET only)
5. IntelliJCredential (Java only)
6. VisualStudioCodeCredential
7. AzureCliCredential
8. InteractiveBrowserCredential (.NET & Python only, disabled by default)

I’ll now walk you through the steps to configure and set up these credentials.

VisualStudioCodeCredential

The Visual Studio Code authentication is handled by an integration with the Azure Account extension. To use, install the Azure Account extension, then use View->Command Palette to execute the “Azure: Sign In” command:

This will open a browser that allows you to sign in to Azure. Once you have completed the login process, you can close the browser as directed. Running your application (either in the debugger or anywhere on the development machine) will use the credential from your sign-in.

Once you are logged in, in your application, your DefaultAzureCredential will be able to pick up the user account logged in:

// .NET
var client = new SecretClient(new Uri(keyVaultUrl), new DefaultAzureCredential(true));

// Java
DefaultAzureCredential credential = new DefaultAzureCredentialBuilder().build();

SecretClient secretClient = new SecretClientBuilder()
    .vaultUrl("https://mysecretkeyvault.vault.azure.net")
    .credential(credential)
    .buildClient();

// JavaScript
const client = new SecretClient(keyVaultUrl, new DefaultAzureCredential());

# Python
client = SecretClient(vault_url, DefaultAzureCredential())

VisualStudioCredential

For .NET developers using Visual Studio 2017 or above, we are adding another credential VisualStudioCredential. Applications using this credential will be able to use the same account logged in Visual Studio.

In your Visual Studio window, On the right top corner there should show your name or a “Sign in” link. Sign in or click on your name -> Account settings. Make sure your account is listed in the “All Accounts” section.

Once you are logged in, in your application, your VisualStudioCredential will be able to pick up the user account logged in:

// .NET
var client = new SecretClient(new Uri(keyVaultUrl), new DefaultAzureCredential(true));

IntelliJCredential

For Java developers using IntelliJ IDEA, we are adding another credential IntelliJCredential. Applications using this credential will be able to use the same account logged in Azure Toolkit for IntelliJ. You will need IntelliJ IDEA 2019.1 or above and the latest Azure Toolkit for IntelliJ plugin.

In your IntelliJ window, open File -> Settings -> Plugins. Search “Azure Toolkit for IntelliJ” in the marketplace. Install and restart IDE.

Now you should be able to find a new menu item Tools -> Azure -> Azure Sign In…

Device Login will help you login as a user account. Follow the instructions to login on the login.microsoftonline.com website with the device code. IntelliJ will prompt you to select your subscriptions. You are free to choose any you want – it doesn’t matter for our use case.

#azure sdk #releases #azure #dev #code