Make Service Principals Easier To Configure for Headless Scenarios
az acr login enables individual identity when working locally. However, headless scenarios like Continuous Build and Deployment solutions need authentication, that isn't tied to a person. Azure Active Directory provides Service Principals for just this scenario. However, Service Principals are difficult to configure and manage. ACR would make it easier to configure and manage service principals.
Based on all the great feedback, we’re adding token based authentication to the repo-based permissions capability. Customers can configure time based tokens, for access to specific repos, with RBAC.
We don’t have an ETA yet, but we expect to be in preview by this summer.
Also, Service Principal credentials don't work with the Helm Repository apis, is this coming?
Amanda Debler commented
Voting for this one, with an addendum: Service Principals authenticated with certificates in Azure Keyvault.