How to use DefaultAzureCredentialOptions with ServiceBus triggers?
Is there a way to connect programmatically when using ServiceBus triggers, or are you confined to using the connections string? Or is there a way to specify in the connection string how you want to connect?
We use Managed Identity when deployed, and generally either VS or VS Code creds when running locally. The issue I have is twofold. One is that performance the connection is just not great, and then it produces a lot of noise as it goes through a series of authentication methods until it finds the one that works producing useless logs like this:
I know how to disable the output of these errors, but then I wouldn't get a message if there was actually an error on the credential I need to connect with. If there was just a way to silence these but still get a final error if nothing connects that would be little bit of an improvement.
Even better would be if there was a way I could specify exactly which way I want to connect. If I were making the connection manually I think I could do this with DefaultAzureCredentialOptions but I don't see how to take advantage of this with a trigger that just uses a connection string from configuration which I don't believe allows for specifying any method I would want to use.
The Azure clients and associated credentials are injected into Function apps via dependency injection. You would need to write a Function startup class to participate in the DI configuration. (see: Use dependency injection in .NET Azure Functions)
Once there, you would use the Azure extensions to override the default credential used with one configured as you'd like. For example, configuring the options for DefaultAzureCredential would look something like:
using Azure.Identity;
using Microsoft.Extensions.Azure;
using Microsoft.Azure.Functions.Extensions.DependencyInjection;
using Microsoft.Extensions.DependencyInjection;
[assembly: FunctionsStartup(typeof(MyNamespace.Startup))]
namespace MyNamespace;
public class Startup : FunctionsStartup
{
public override void Configure(IFunctionsHostBuilder builder)
{
builder.Services.AddAzureClients(azureBuilder =>
{
var options = new DefaultAzureCredentialOptions
{
ExcludeManagedIdentityCredential = true
};
// Configure a new credential to be used by default
// for all clients that require TokenCredential.
azureBuilder.UseCredential(new DefaultAzureCredential(options));
});
}
}
This would also allow you to create a different credential type, such as a chained credential that includes only VS and VSCode for local development scenarios.
More information and examples for configuring Azure clients in DI can be found in: Dependency injection with the Azure SDK for .NET.
- Minimal API or AccountController for Login with ASP.NET Core Identity?
- Invalid Login Credentials in Oracle APEX After Resetting the Password from the Administration Panel in ADB-S
- Problem with PgBouncer auth method not same type
- AppwriteException: User (role: guest) missing scope (account), not able to get account after creating a session
- Woocommerce authentication with phone number OR normal login
- NestJS JWT Strategy requires a secret or key
- How to change mongodb password in docker compose
- 404.17 error - requested content appears to be script
- who creates the passkey (and how many will be created?)
- Enter Key with Two Login Controls
- JWT generate token with algorithm ES256
- Why can't Google Drive be mounted anymore and shows a browser popup instead of a link for authorization?
- Enable interactive render mode on Blazor templates accounts pages
- how do i link login form to html website on computer
- How to update database of parent class and [Owned] attribute class type in Entity Framework Core 8.0.8
- How to debug Bearer error="invalid_token"
- How to allow multiple accounts on the same browser in flask?
- Kubernetes Authentication no re-create token
- Handshake error in ASP.NET Core 6 application using Negotiate authentication
- What should we store in the session when using session-based authentication?
- Use React Authentication with .NET backend?
- How to authenticate large numbers of amazon S3 get requests
- Can a client-side login be safe?
- .NET Core Multi Tenancy authentication
- I'm trying to connect with my Heroku app and when I enter my email and password, it's asking me "Enter the code generated by your authenticator app."
- How to generate COMMON KEY RING to Share cookies across subdomains?
- django after submit login info, does not lead to intended detail view page
- Getting OAuth code challenge on loopback server
- Login with Windows challenge goes in loop in ASP .Net app
- Unable to login to GitHub account even with correct credentials