How to authenticate REST APIs for Azure Resource Manager

-

 

How to authenticate REST APIs for Azure Resource Manager 

How to authenticate REST APIs for Azure Resource Manager 

 
In this post we will try to understand how to get authenticated for Azure Resource Manager Rest APIs. As we understand that all of the tasks that we do on resources using the Azure Resource Manager (ARM) must be authenticated with Azure Active Directory. 

 

 

Following are the steps one need to follow in order to authenticate against Azure Active Directory: 

  • Add an application to Azure Active Directory tenant 
  • Set permission for the application that we added 
  • Get token for authenticating requests to Azure Resource Manager 

 

Add an application to Azure Active Directory tenant 

  • Sign in to the Azure portal. 
  • Using the subscription that contains your service instance for which we need the authentication token. Navigate to the App registrations tab in Azure Active Directory (AAD) (Azure Active Directory >> Manage/App registrations). 
  • Click on new application registration. 
  • The create window appears on the right. That's where we need to enter the AAD app relevant information. 
  • Enter a name for the application. 
  • For the application type, select Native. 
  • Enter a placeholder URL such as http://resources for the Redirect URI, as it's a required field, but the value isn't used later for the purpose of authentication or so, hence it can be any valid URL structure. Click the check box to save the application. 
  • Click Create. 

Through this step we have added a placeholder for our application/ service to be recognized by Azure Active Directory. Now we need to provide permissions to this application. 

 

 

Set permission for the application that we added 

  • Once the application is created, click API permissions. 
  • Click + Add a permission. 
  • Press Select Microsoft APIs. 
  • Choose Azure Service Management. 
  • Press Select. 

 

 

 

 

  • Click Delegated Permissions beside the newly added application, check the box for Access Azure Service Management (preview). 
  • Press Select. 
  • Click Grant Permissions. 

Now that we have provided the required permission for the newly added application in Azure Active Directory, we can start requesting for the authentication token. 

 

 

Get token for authenticating requests to Azure Resource Manager 

Following is a small code snippet to get an authentication token to call Azure Resource Manager APIs. Once the above-mentioned steps are completed. 

 

  

using Microsoft.IdentityModel.Clients.ActiveDirectory; 

using System; 

 

namespace GetTokenResourceManagerRequests 

{ 

    class Program 

    { 

        static void Main(string[args) 

        { 

            var authenticationContext = new AuthenticationContext("https://login.microsoftonline.com/{tenant id}"); 

            var result = authenticationContext.AcquireTokenAsync("https://management.azure.com/", "{application id}", new Uri("{redirect uri}"), new PlatformParameters(PromptBehavior.Auto)).Result; 

  

            if (result == null) { 

                throw new InvalidOperationException("Failed to obtain the JWT token"); 

            } 

            Console.WriteLine(result.AccessToken); 

             Console.ReadLine(); 

        } 

    } 

} 

 

 

Where we will have to replace the following: 

{tenant id} - Tenant ID of the Azure Active Directory application we created. You can access the ID by clicking App registrations -> Endpoints. 

{application id} - with the value we get by navigating to the Settings page. 

{redirect uri} - value from the Redirect URIs tab of the Azure Active Directory application. 

 

 

 

Hope you liked the post, do provide inputs in the comment, also if you think the article will be helpful for any of your friends and relatives then please do share the article with them. 

 

And don't forget to subscribe for the new post available so that you get notified on your mailbox. 

 

Happy Learning. 📚 

Comments

Post a Comment

Popular posts from this blog

Disaster Recovery of Azure API Management (APIM)

-
Image
Disaster Recovery of Azure API Management (APIM)     In this post, we will try to understand how we can apply a disaster recovery approach for Azure API Management aka. APIM. So, first of all, we will have to understand the importance of it. It's very important for an application using APIM to have a strong disaster recovery approach, as in case of any issue because of disaster reported, the system using the APIs underneath should be accessible for the users/ systems, and since the APIM is used as the fore front of the applications (mostly)  it's  important to restore the APIM service ASAP in case of any disaster reported, so that the application consuming the APIs underneath it  is  not having issue connecting to the APIs.       There are 2 broader options which one can think of:   Have a stand-by service in one or more regions   Service back-up and restore features    Let's  talk about both the approaches (one at a ...
Read more

API Aggregation Using Azure API Management

-
  API Aggregation Using Azure API Management         There are cases where we need to call multiple APIs from the client at the same time in order to proceed further with the processing from the client application. Now as oppose to calling those APIs individually  i.e.,  making separate HTTP requests for all those multiple APIs what if we can make one HTTP request and get all the responses aggregated in one response as opposed to multiple response isn't it going to be super cool.       So,  in this post we will try to understand how we can aggregate/ merge multiple API responses from the backend and provide one single request and response from the Azure API Management (APIM) to the calling client application.       To do this first of all we need to understand our APIs request body which we want to merge using APIM, so let say we want to call 2 APIs and  their   URI  are like this.       ...
Read more

API Response Compression in .Net Core

-
Image
API Response Compression in .Net Core If you are here, I am sure you must have used (consumed/ produced) APIs and indeed its been the case in modern web/ mobile application where APIs are used very frequently.  Data transfer size in case of APIs is a very big concern as the volume of data which can be transferred via APIs are not really meant to have huge data as because of following reasons: Data transfer time over network can be a big constraint if the size of data is huge APIs response time are expected to be fast and quick and if the volume of the data is huge obviously the response time of the API will be impacted as well, and no client application consuming the APIs will expect the response time of an API to be beyond a few seconds (at max). So how do we really solve this problem. Well we all understand that API is not really meant to perform huge data transfers but just in case we still have to do how to do it effectively. And there comes API compression frameworks at our re...
Read more