Update NMI resource id query key (#1401)

fenzhanG2 · FengZhang940420 · web-flow · commit 9f3411c276af · 2023-03-17T01:10:55.000Z
Co-authored-by: Feng Zhang &lt;fenzhan@microsoft.com&gt;
diff --git a/pkg/nmi/server/server.go b/pkg/nmi/server/server.go
@@ -549,6 +549,9 @@ func parseTokenRequest(r *http.Request) (request TokenRequest) {
 		// These are mutually exclusive values (client_id, msi_resource_id)
 		request.ClientID = vals.Get("client_id")
 		request.ResourceID = vals.Get("msi_res_id")
+		if len(request.ResourceID) == 0 {
+			request.ResourceID = vals.Get("mi_res_id")
+		}
 
 		request.Resource = vals.Get("resource")
 	}
diff --git a/pkg/nmi/server/server_test.go b/pkg/nmi/server/server_test.go
@@ -115,6 +115,20 @@ func TestParseTokenRequest(t *testing.T) {
 		}
 	})
 
+	t.Run("query present with latest resource id", func(t *testing.T) {
+		const resource = "https://vault.azure.net"
+		const resourceID = "/subscriptions/9f2be85c-f8ae-4569-9353-38e5e8b459ef/resourcegroups/test/providers/Microsoft.ManagedIdentity/userAssignedIdentities/test"
+
+		var r http.Request
+		r.URL, _ = url.Parse(fmt.Sprintf("%s?mi_res_id=%s&resource=%s", endpoint, resourceID, resource))
+
+		result := parseTokenRequest(&r)
+
+		if result.ResourceID != resourceID {
+			t.Errorf("invalid ResourceID - expected: %q, actual: %q", resourceID, result.ResourceID)
+		}
+	})
+
 	t.Run("bare endpoint", func(t *testing.T) {
 		var r http.Request
 		r.URL, _ = url.Parse(endpoint)

Original file line number	Diff line number	Diff line change
`@@ -549,6 +549,9 @@ func parseTokenRequest(r *http.Request) (request TokenRequest) {`
`549`	`549`	`// These are mutually exclusive values (client_id, msi_resource_id)`
`550`	`550`	`request.ClientID = vals.Get("client_id")`
`551`	`551`	`request.ResourceID = vals.Get("msi_res_id")`
	`552`	`+ if len(request.ResourceID) == 0 {`
	`553`	`+ request.ResourceID = vals.Get("mi_res_id")`
	`554`	`+ }`
`552`	`555`
`553`	`556`	`request.Resource = vals.Get("resource")`
`554`	`557`	`}`