| page_type | languages | products | description | urlFragment | ||||
|---|---|---|---|---|---|---|---|---|
sample |
|
|
A sample demonstrating how to protect a Node.js web API with Azure AD B2C using the Passport.js library. |
active-directory-b2c-javascript-nodejs-webapi |
This sample demonstrates how to protect a Node.js web API with Azure AD B2C using the Passport.js library. The code here is pre-configured with a registered client ID. If you register your own app, replace the client ID.
To see how to call this web API from a client application, refer to this B2C Single Page Application sample.
| File/folder | Description |
|---|---|
.gitignore |
Defines what to ignore at commit time. |
CHANGELOG.md |
List of changes to the sample. |
CODE_OF_CONDUCT.md |
Code of Conduct information. |
config.js |
Contains configuration parameters for the sample. |
CONTRIBUTING.md |
Guidelines for contributing to the sample. |
index.js |
Main application logic resides here. |
LICENSE |
The license for the sample. |
package.json |
Package manifest for npm. |
process.json |
Contains configuration parameters for logging via Morgan. |
README.md |
This README file. |
SECURITY.md |
Security disclosures. |
- Clone this repository.
git clone https://github.com/Azure-Samples/active-directory-b2c-javascript-nodejs-webapi.git-
Install Node.js if you don't already have it.
-
Install the Node dependencies:
npm install && npm update- Run the Web API. By default, it runs on
http://localhost:5000
npm startTo have a proper understanding of Azure AD B2C as a developer, follow the tutorials in the official Azure AD B2C documentation. In the rest of this guide, we summarize the steps you need to go through.
You first need an Azure AD B2C tenant. If you don't already have one you can use for testing purposes, create your own by following the steps in Tutorial: Create an Azure Active Directory B2C tenant.
This sample uses a unified sign-up/sign-in policy. You can create your own unified sign-up/sign-in policy. You may choose to include as many or as few identity providers as you wish.
If you already have existing policies in your Azure AD B2C tenant, feel free to reuse those policies in this sample.
Follow the steps in Protect and grant access to a Node.js web API to register the web API application in your tenant, define scopes, and grant a web application access to the API. By following the steps in the tutorial, you define the scopes that your single-page application will request access tokens for.
You can now fill in the variables in the config.js file of the Node.js web API sample with the parameters you've obtained from the Azure portal by following the steps above.
Configure the following variables:
const clientID = "<Application (client) ID of your Node.js web API, e.g. 93733604-0000-0000-0000-87084dd55348>"
const b2cDomainHost = "<Domain name of your B2C authority, e.g. fabrikamb2c.b2clogin.com>";
const tenantId = "<Domain name of your B2C tenant, e.g. fabrikamb2c.onmicrosoft.com>";
const policyName = "<Name of your sign in / sign up policy. Example: B2C_1_SUSI>";NOTE
Developers using the Azure China environment MUST use
<your-tenant-name>.b2clogin.cnauthority instead oflogin.chinacloudapi.cn.To use
<your-tenant-name>.b2clogin.*, you need setvalidateIssuer: false. Learn more about using b2clogin.com.
Lastly, to run your Node.js Web API, execute the following commands in your shell or terminal:
npm install && npm update
npm startYour Node.js web API is now running on port 5000.
Please file any questions or problems with the sample as a GitHub issue. You can also post on Stack Overflow with the tag azure-ad-b2c.
If you'd like to contribute to this sample, see CONTRIBUTING.md.
For details, see CODE_OF_CONDUCT.md.