steve/databricks-cli
steve
/
databricks-cli
mirror of https://github.com/databricks/cli.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Make `bricks auth` use `all-apis` scope (#304) 

## Changes
Use `all-apis` scope, so that we can use the issued token for SCIM APIs.
The production environment has to be tuned in order to enable `all-apis`
scope for a specific account.

## Tests
Manual
This commit is contained in:
Serge Smertin 2023-04-05 10:18:13 +02:00 committed by GitHub
parent 902813a490
commit 02d9f877b5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
libs/auth/oauth.go
View File

@ -201,18 +201,7 @@ func (a *PersistentAuth) oauth2Config() (*oauth2.Config, error) {
// taxonomy of all scopes ready and implemented.
scopes := []string{
"offline_access",
"unity-catalog",
"accounts",
"clusters",
"mlflow",
"scim",
"sql",
}
if a.AccountID != "" {
scopes = []string{
"offline_access",
"accounts",
}
"all-apis",
}
endpoints, err := a.oidcEndpoints()
if err != nil {