UNPKG

@equinor/fusion-framework-module-msal-node

Version:

Fusion Framework module for secure Azure AD authentication in Node.js using MSAL. Supports interactive, silent, and token-only authentication modes with encrypted token storage.

github.com/equinor/fusion-framework

equinor/fusion-framework

112 lines (80 loc) 4.19 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
# @equinor/fusion-framework-module-msal-node ## 0.1.2 ### Patch Changes - [`391c618`](https://github.com/equinor/fusion-framework/commit/391c618a8ff4e808d904941b0425961a79def7e7) Thanks [@odinr](https://github.com/odinr)! - bump @azure/msal-node from 3.6.1 to 3.7.0 ## 0.1.1 ### Patch Changes - [#3091](https://github.com/equinor/fusion-framework/pull/3091) [`a7127fd`](https://github.com/equinor/fusion-framework/commit/a7127fdc54d9f884dca09a8a85a16d0e3a69053e) Thanks [@dependabot](https://github.com/apps/dependabot)! - chore: bump @azure/msal-node from 3.5.3 to 3.6.0 ## 0.1.0 ### Minor Changes - [#3056](https://github.com/equinor/fusion-framework/pull/3056) [`378bade`](https://github.com/equinor/fusion-framework/commit/378bade86c38e1057afe125fffc0bb06d6927deb) Thanks [@odinr](https://github.com/odinr)! - Easily add secure Azure AD authentication to your Node.js Fusion Framework apps with the new `@equinor/fusion-framework-module-msal-node` package. This module is designed for developers who need to authenticate services, CLI tools, or background jobs against Microsoft Azure using familiar, robust MSAL flows—without the hassle of manual token management or insecure storage. **Why use this module?** - **Simple integration:** Plug into the Fusion Framework with minimal setup. - **Multiple auth flows:** Choose the right authentication mode for your use case—CI/CD, background jobs, or interactive CLI tools. - **Secure by default:** Tokens are encrypted and stored safely using `@azure/msal-node-extensions`. - **Consistent API:** Acquire tokens the same way across all your Node.js Fusion projects. **How to use:** 1. Install the package in your Fusion Framework Node.js project. 2. Enable the module and pick your authentication mode (`token_only`, `silent`, or `interactive`). 3. Use the provided API to acquire tokens for Azure resources—no need to handle refresh logic or storage yourself. - Supports token_only, silent, and interactive authentication modes - Provides secure, encrypted token storage using `@azure/msal-node-extensions` - Integrates with Fusion Framework for seamless authentication - Includes comprehensive documentation and usage examples ## Example Setups ### `token_only` Mode ```ts import { enableAuthModule, type MsalNodeModule, } from "@equinor/fusion-framework-msal-node"; import { ModulesConfigurator } from "@equinor/fusion-framework-module"; const configurator = new ModulesConfigurator<[MsalNodeModule]>(); enableAuthModule(configurator, (builder) => { builder.setMode("token_only"); builder.setAccessToken("your-access-token"); // Provide your token }); const instance = await initialize(); console.log( await instance.auth.acquireAccessToken({ scopes: ["user.read"] }) ); ``` ### `silent` Mode ```ts import { enableAuthModule, type MsalNodeModule, } from "@equinor/fusion-framework-msal-node"; import { ModulesConfigurator } from "@equinor/fusion-framework-module"; const configurator = new ModulesConfigurator<[MsalNodeModule]>(); enableAuthModule(configurator, (builder) => { builder.setMode("silent"); builder.setClientId("your-client-id"); builder.setTenantId("your-tenant-id"); }); const instance = await initialize(); console.log( await instance.auth.acquireAccessToken({ scopes: ["user.read"] }) ); ``` ### `interactive` Mode ```ts import { enableAuthModule, type MsalNodeModule, } from "@equinor/fusion-framework-msal-node"; import { ModulesConfigurator } from "@equinor/fusion-framework-module"; const configurator = new ModulesConfigurator<[MsalNodeModule]>(); enableAuthModule(configurator, (builder) => { builder.setMode("interactive"); builder.setClientId("your-client-id"); builder.setTenantId("your-tenant-id"); builder.setServerPort(3000); // Local server port for auth callback builder.setServerOnOpen((url) => { console.log(`Please navigate to: ${url}`); }); }); const instance = await initialize(); console.log(await instance.auth.login({ scopes: ["user.read"] })); ``` See README.md for details.