azure-web-app-serviceazure-api-management
Issue in inbound policy for custom authentication
I have issue in when condition of this custom authentication in inbound policy, I tried various method to find out, I couldn't able to identify, API inside the send-request and send-request code itself working fine.
<send-request mode="new" response-variable-name="authResponse" timeout="60" ignore-error="false">
<set-url>@("my_url")</set-url>
<set-method>GET</set-method>
<set-header name="Authorization" exists-action="override">
<value>@("Bearer " + context.Request.Headers.GetValueOrDefault("Authorization", ""))</value>
</set-header>
</send-request>
<choose>
<when condition="@((int)((Newtonsoft.Json.Linq.JObject)context.Variables["authResponse"]).Property("StatusCode").Value == 200)">
<!-- Continue with the API call -->
</when>
<otherwise>
<return-response>
<set-status code="401" reason="Unauthorized" />
<set-header name="Content-Type" exists-action="override">
<value>application/json</value>
</set-header>
<set-body>
{
"errorMessage": "Authentication failed"
}
</set-body>
</return-response>
</otherwise>
</choose>
I tried this as well, but this not working
<when condition="@((int)context.Variables["authResponse.StatusCode"] == 200)">
<!-- Continue with the API call -->
</when>
Response I recieve is this, the API as no issue
{
"statusCode": 500,
"message": "Internal server error",
"activityId": "91c498c2-a213-4f38-bb38-494c331bc46e"
}
Solution
You can use the below policy to set the when condition for status code.
<inbound >
<base />
<send-request mode="new" response-variable-name="authResponse" timeout="60" ignore-error="false">
<set-url>@("my_url")</set-url>
<set-method>GET</set-method>
<set-header name="Authorization" exists-action="override">
<value>@("Bearer " + context.Request.Headers.GetValueOrDefault("Authorization", ""))</value>
</set-header>
</send-request>
<choose>
<when condition="@(((IResponse)context.Variables["authResponse"]).StatusCode==200)>
<!-- Added response for Testing -->
<return-response>
<set-body>Successfully Authenticated...</set-body>
</return-response>
</when>
<otherwise>
<return-response>
<set-status code="401" reason="Unauthorized" />
<set-header name="Content-Type" exists-action="override">
<value>application/json</value>
</set-header>
<set-body>Authentication Failed...</set-body>
</return-response>
</otherwise>
</choose>
</inbound>
By using <when condition="@(((IResponse)context.Variables["authResponse"]).StatusCode==200)>, I am able to get the expected response as shown below.
Trace-
- AKV10032: Invalid issuer error when connecting to Azure Key Vault from App Service
- Azure Service Plan - Convert Consumption App to Premium App
- Azure App Service Autoscale Fails to Scale In
- Azure Scale Out on Memory keeps flapping (not scaling in)
- Setting a server minimum for Azure Web App when using automatic scaling, from Bicep
- Azure App Service Custom Backup to Firewall Enabled Storage Account not working as expected
- Failed to deploy path that does not exist
- what URL should Kestrel listen to in a docker container on Azure App Service
- Native Node.js Metrics in Application Insights
- is it posible to access Azure App Configuration via URL or conected some how as enviroment setting of App Service?
- How can I install packages using the startup command in Azure App Service?
- Override an array in azure app service application settings
- .Net API Azure App Service hangs on startup when under load
- How to get associated AppServicePlan associated with AppService (WebJob) using PowerShell
- Application Error when deploying python EchoBot to the Azure App Service via VS Code. Module not found
- How do I change from Bring Your Own Certificate to Azure Managed for an App Service?
- Attempting to use the Azure Web App 'Identity provider' feature with a web app that uses the Python Azure SDK (azure.identity)
- Disable TipMix and x-ms-routing-name cookie from website
- Issue with webapp or Azure?: This region has quota of 0 PremiumV2 cores for your subscription. Try selecting different region or SKU
- Deploy an ASP.net MVC website to a subfolder of an Azure website?
- Trouble configuring Azure app service from publish in Visual Studio, can't access endpoints
- Azure web app not updating after successful deployment
- Cancellation behavior of .NET 6 API endpoint differs between local and Azure App Service Linux hosting
- Linux azure web app can't find assets files, React app
- App Service Status Running with failed startup
- Azure App Service Plan Consumes 70% of Memory Without Deploying Any Code
- Trying to use WEBSITE_RUN_FROM_PACKAGE = 1 but ZipDeploy failed with [IOException]: The user name or password is incorrect
- Deployment start up file to App Service doesn't work
- Azure Monitoring Diagnostic Settings AppServiceConsoleLogs not showing all console.log lines
- Streaming response in ASP.NET Core 6 Web API working locally but not on Azure web app hosted on windows