Authentication and Authorization for Azure Functions (with OAuth 2.0 and JWT)
const validateJwt = require('azure-functions-auth')({
clientId: '<client id>',
clientSecret: '<client secret or IDP\'s public key / signing certificate>',
domain: '<your IDP>',
algorithms: ['RS256'],
});module.exports = validateJwt(function(context, req) {
if (req.user) {
context.res = {
body: req.user
};
}
else {
context.res = {
status: 400,
body: "The user property is missing"
};
}
context.done();
});In case of an invalid JWT context.res gets populated accordingly and context.done() gets called.
const main = (context, req) => {
context.log('token is valid. (you shouldn\'t log like that in production code)')
return new Promise(resolve => {
resolve('the function will return this exact string as body with a status code of 200')
}).then(asyncResult =>{
return asyncResult
})
}
module.exports = validateJwt(main, true)In case of an invalid JWT a specific error and status code get returned. Make sure to have your function host is configured to use function's return value.
{
"bindings": [
{
"type": "http",
"direction": "out",
"name": "$return"
}
]
}Regarding the http output your function.json should look like the above.
module.exports = {
run: validateJwt(main, true),
main
}In order to do tests, of course you still can export your functions.
Now when you make a call to the Http endpoint you'll need to add an Authorization header, e.g.:
GET https://functionsad5bb49d.azurewebsites.net/api/my-http-function?...
Authorization: Bearer the-access-tokenThis code is based on https://github.com/sandrinodimattia/azure-functions-auth0