Not immune, no. But the majority of work was figuring out the authentication logic and reading/writing the tokens in a way that is compatible with Azure CLI. The parsing of the REST API response is comparatively easy.
Azure is still changing a lot, but they also have an OK policy with their API changes, IMO. Old API versions are kept alive for some time, so there's always some time to migrate.
>Error from server (Forbidden): configmaps is forbidden: User "system:serviceaccount:pascalgn:pascalgn-user" cannot list resource "configmaps" in API group "" in the namespace "pascalgn"
Is that intended? Because I can get secrets, but not configmaps
Also, currently (?) there is no way to create services, so for now we can create Pods, but they cannot serve any data (or I did something wrong)