Reputation:
Azure AD B2C + App Service + Functions : How to flow the auth?
I have a Web App (VueJS + ASP .NET Core backend) hosted on Azure App Service and I use Azure AD B2C for authentication. I also have a Functions App that I want to call from the client code but I’m not sure what’s the best way to flow the auth to the Functions.
- I can register the Functions App in B2C and set Easy Auth but how do I flow the already authenticated user from the client to the Function?
- I can create a custom JWT token and be done with it but is it possible to flow a B2C token to the Function? If so, how do I validate the token?
Upvotes: 0
Views: 1097
Answers (2)
Reputation: 21
You can handle Azure B2C validation the same way I did here Github
There are several problems to handle: 1. Load token from valid b2c policy 2. Validate it depending on rules set. 3. Setup Validation on Startup/Attribute in order not to create boilerplate code. 4. Currently AF 2.0 does not support invocation short circuits, so you need to properly handle your 401 codes.
Upvotes: 1
Reputation: 5038
If Easy Auth didn't work for you, there is a workaround and yes it is a manual task.
- Send B2C token in header while calling Azure Function
- Read the token at the function level and validate the JWT token.
- You can easily validate JWT token by decoding/ writing simple code
- Check Validate JWT SO post
This manual validation also secure and safe to use.
Upvotes: 1
Related Questions
- azure functions and AD B2C integration
- Azure Function Authentication using AD B2C for Daemon Applications
- Azure Function AAD Authentication - Client Credentials Flow
- Secure Azure Functions App in another tenant
- connect azure function to b2c
- Azure AD B2C - MFA on a function rather than a user / per user
- Azure Function connectivity with app service which has windows authentication
- Authenticating as a Service with Azure AD B2C
- adding azure ad b2c authentication to azure function spa
- AppAuth with Azure AD B2C