It looks like you are having an issue with bearer token authentication when accessing your secrets in Azure Key Vault.
The error message indicates that the bearer token authentication method is prohibited for non-TLS-protected URLs, meaning your Key Vault URL may not use HTTPS.
To fix this issue, you will need to make sure that the URL for your Key Vault starts with
"https://"
instead of
"http://"
This will enable TLS encryption and allow you to use bearer token authentication.
Additionally, it's important to note that using the "exclude_shared_token_cache_credential=True" parameter in your DefaultAzureCredential object may cause issues with your authentication.
This parameter excludes any previously cached credentials but may not be necessary in all cases. I would recommend removing this parameter to see if it resolves your issue.
Here's an updated version of your code that includes these changes:
scss
Copy code
def get_auth_creds(KVUri, keyVaultName, username, password): print(" loading credentials for local system ") credential = DefaultAzureCredential(connection_verify=False) client = SecretClient(vault_url=KVUri, credential=credential) print("Retrieving your secret from {}.".format(keyVaultName)) user = client.get_secret(username).value pwd = client.get_secret(password).value return user, pwd
I hope this helps! Let me know if you have any other questions.