1d06bd5d54
When using a service principal with certificate authentication, every time the certificate is renewed, the new certificate needs to be uploaded to the service principal's AAD app registration in order for authentication to continue to work. However, a technology called "X5C" has made this unnecessary by allowing _any_ certificate, with a _specific_ subject, issued by a known, trusted, predetermined CA, to be used. For this to work, the AAD app registration's manifest needs to be updated to reflect the subject name, and during authentication, the request for "X5C" authentication needs to be sent along with the certificate's signature. This change enables that to take place. |
||
|---|---|---|
| .. | ||
| img | ||
| README.md | ||
| architecture.md | ||
| autodetect.md | ||
| azrepos-misp.md | ||
| azrepos-users-and-tokens.md | ||
| bitbucket-authentication.md | ||
| bitbucket-development.md | ||
| configuration.md | ||
| credstores.md | ||
| development.md | ||
| enterprise-config.md | ||
| environment.md | ||
| faq.md | ||
| generic-oauth.md | ||
| github-apideprecation.md | ||
| gitlab.md | ||
| hostprovider.md | ||
| install.md | ||
| linux-fromsrc-uninstall.md | ||
| linux-validate-gpg.md | ||
| migration.md | ||
| multiple-users.md | ||
| netconfig.md | ||
| rename.md | ||
| usage.md | ||
| windows-broker.md | ||
| wsl.md | ||
README.md
User documentation
The following are links to GCM user support documentation:
- Frequently asked questions
- Command-line usage
- Configuration options
- Environment variables
- Enterprise configuration
- Network and HTTP configuration
- Credential stores
- Host provider specification
- Azure Repos OAuth tokens
- Azure Managed Identities and Service Principals
- GitLab support
- Generic OAuth support