UNPKG

azure-functions-auth

Version:

Authentication and Authorization for Azure Functions (with OAuth 2.0 and JWT)

github.com/idandaccess/azure-functions-auth

idandaccess/azure-functions-auth

86 lines (71 loc) 2.25 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
[![Build Status](https://idandaccess.visualstudio.com/azure-functions-auth/_apis/build/status/idandaccess.azure-functions-auth?branchName=master)](https://idandaccess.visualstudio.com/azure-functions-auth/_build/latest?definitionId=2&branchName=master) # azure-functions-auth Authentication and Authorization for Azure Functions (with OAuth 2.0 and JWT) ## Configuration ```js const validateJwt = require('azure-functions-auth')({ clientId: '<client id>', clientSecret: '<client secret or IDP\'s public key / signing certificate>', domain: '<your IDP>', algorithms: ['RS256'], }); ``` ## Usage ### Callback Style ```js module.exports = validateJwt(function(context, req) { if (req.user) { context.res = { body: req.user }; } else { context.res = { status: 400, body: "The user property is missing" }; } context.done(); }); ``` In case of an invalid JWT `context.res` gets populated accordingly and `context.done()` gets called. ### Async Style ```js const main = (context, req) => { context.log('token is valid. (you shouldn\'t log like that in production code)') return new Promise(resolve => { resolve('the function will return this exact string as body with a status code of 200') }).then(asyncResult =>{ return asyncResult }) } module.exports = validateJwt(main, true) ``` In case of an invalid JWT a specific error and status code get returned. Make sure to have your function host is configured to use function's return value. ```json { "bindings": [ { "type": "http", "direction": "out", "name": "$return" } ] } ``` Regarding the http output your `function.json` should look like the above. ```js module.exports = { run: validateJwt(main, true), main } ``` In order to do tests, of course you still can export your functions. ### Calling your function Now when you make a call to the Http endpoint you'll need to add an Authorization header, e.g.: ```bash GET https://functionsad5bb49d.azurewebsites.net/api/my-http-function?... Authorization: Bearer the-access-token ``` ## Attribution This code is based on [https://github.com/sandrinodimattia/azure-functions-auth0](https://github.com/sandrinodimattia/azure-functions-auth0)