functions-authorize/sample/SampleIsolatedFunctionsFSharp.V4/Program.fs at master · dark-loop/functions-authorize · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
module Program

open Common.Tests
open DarkLoop.Azure.Functions.Authorization
open Microsoft.Azure.Functions.Worker
open Microsoft.Extensions.DependencyInjection
open Microsoft.Extensions.Hosting
open Microsoft.IdentityModel.Tokens

// IMPORTANT: because local.settings.json is not included in the repository, you must create it manually
// If you don't create it. the isolated function will not run. Ensure that the file has the following content:
//
// {
//   "IsEncrypted": false,
//   "Values": {
//     "AzureWebJobsStorage": "UseDevelopmentStorage=true",
//     "FUNCTIONS_WORKER_RUNTIME": "dotnet-isolated"
//   }
// }

let host =
    HostBuilder()
        .ConfigureFunctionsWebApplication(fun builder ->
            //This is needed to make F# variants of startup work nicely
            FunctionsAuthorizationExtensionStartup().Configure(builder)
            builder.UseFunctionsAuthorization() |> ignore )
        .ConfigureServices(fun services ->
            services
                .AddFunctionsAuthentication(JwtFunctionsBearerDefaults.AuthenticationScheme)
                .AddJwtFunctionsBearer(fun options ->
                    // this line is here to bypass the token validation
                    // and test the functionality of this library.
                    // you can create a dummy token by executing the GetTestToken function in HelperFunctions.cs
                    // THE FOLLOWING LINE SHOULD BE REMOVED IN A REAL-WORLD SCENARIO
                    options.SecurityTokenValidators.Add(TestTokenValidator())

                    // this is what you should look for in a real-world scenario
                    // comment the lines if you cloned this repository and want to test the library
                    options.Authority <- "https://login.microsoftonline.com/<your-tenant>"
                    options.Audience <- "<your-audience>"
                    options.TokenValidationParameters <- TokenValidationParameters
                        (
                            ValidateIssuer = true,
                            ValidateAudience = true,
                            ValidateLifetime = true,
                            ValidateIssuerSigningKey = true
                        )
                    ()
                ) |> ignore

            services
                .AddFunctionsAuthorization(fun options ->
                    // Add your policies here
                    ()
                ) |> ignore
        )
        .Build()

host.Run()