sheyenrath/RestEase.Authentication.Azurev0.3.3

RestEase.Authentication.Azure

An extension to RestEase which adds Microsoft Entra ID (Azure AD) Authentication.

Supported modes are:

• Username + Pasword
• Client with ClientSecret
• Managed Identity

Configuration when using a ClientId + ClientSecret

appsettings.json

{ "DocumentApiClientOptions": { "TenantId": "t", "ClientId": "c", "ClientSecret": "s", "Resource": "r", "BaseAddress": "https://localhost:44318", "AcceptAnyServerCertificate": true, "TimeoutInSeconds": 99 } }

Configuration when using a Managed Identity with a ClientId

appsettings.json

{ "DocumentApiClientOptions": { "ClientId": "c", "Resource": "r", "BaseAddress": "https://localhost:44318", "AcceptAnyServerCertificate": true, "TimeoutInSeconds": 99 } }

Configuration when using a Managed Identity without a ClientId (it will fall back to DefaultAzureCredential)

appsettings.json

{ "DocumentApiClientOptions": { "Resource": "r", "BaseAddress": "https://localhost:44318", "AcceptAnyServerCertificate": true, "TimeoutInSeconds": 99 } }

:bulb: If the scopes-array is not defined, the default the scope {Resource}/.default is used.

Usage

:one: Create a RestEase interface

[BasePath("/api")] public interface IDocumentApi { [Get("GetDocumentById/{id}")] Task<Response<Document>> GetDocumentAsync([Path] int id, CancellationToken cancellationToken = default); }

:two: Configure Dependency Injection

services.UseWithAzureAuthenticatedRestEaseClient<IDocumentApi>(configuration.GetSection("DocumentApiClientOptions"));

:three: Use it in your code

IDocumentApi documentApi = ...; // Injected var document = await documentApi.GetDocumentAsync(1, cancellationToken);

🌐 Links

• See also: RestEase.Authentication

Sponsors

Entity Framework Extensions and Dapper Plus are major sponsors and proud to contribute to the development of RestEase.Authentication.Azure.