How to gain Azure AppOnly persistent access
Microsoft suggests Client credentials provider for my needs.
But I need to update the app secret by hand in the Azure dev web portal because max expiration time I can set is 2 years. How can I gain an infinite token or way to renew it programmatically?
(like in discord apps, why it is so complicated in Microsoft)
I expect I run my programs without additional interference.
How can I gain an infinite token or way to renew it programmatically?
AFAIK, there is no way to gain an infinite or way to renew the Application client secret.
As you said, In the portal the maximum expiration time of a client's secret can be set is 2 years only.
As a workaround, you can make use of the below javascript code to create a client secret with more lifetime.
For the sample I created a secret with 12 years expiry.
Code:
const { DefaultAzureCredential } = require("@azure/identity");
const { Client } = require("@microsoft/microsoft-graph-client");
const { TokenCredentialAuthenticationProvider } = require("@microsoft/microsoft-graph-client/authProviders/azureTokenCredentials");
const credential = new DefaultAzureCredential();
const authProvider = new TokenCredentialAuthenticationProvider(credential, {
scopes: ['https://graph.microsoft.com/.default'],
});
const client = Client.initWithMiddleware({
debugLogging: true,
authProvider,
});
const startDate = new Date();
const endDate = new Date(startDate);
endDate.setFullYear(endDate.getFullYear() + 12);
const passwordCredential = {
passwordCredential: {
displayName: 'test',
startDateTime: startDate,
endDateTime: endDate,
}
};
async function updatePasswordCredentials() {
const result = await client.api('/applications/<Your-Application-object-id>/addPassword')
.post(passwordCredential);
console.log(result);
}
updatePasswordCredentials();
Output:
https://graph.microsoft.com/v1.0/applications/xxxx/addPassword
(node:21972) ExperimentalWarning: The Fetch API is an experimental feature. This feature could change at any time
(Use `node --trace-warnings ...` to show where the warning was created)
{
'@odata.context': 'https://graph.microsoft.com/v1.0/$metadata#microsoft.graph.passwordCredential',
customKeyIdentifier: null,
displayName: 'test',
endDateTime: '2036-01-02T09:40:39.584Z',
hint: 'uXf',
keyId: '3624xxxx00',
secretText: 'uXf8Q~NDCpJuZkxxxxx',
startDateTime: '2024-01-02T09:40:39.584Z'
}
Portal:
Reference:
- I want to install the "n" package and I get an error
- n <version> command does not activate specified version
- Change n install location
- How to install a specific version of Node on Ubuntu/Debian?
- Different node version for different projects, is there a way of telling node which version to use?
- Install Node.js to install n to install Node.js?
- How to select the latest node.js v6 version using n?
- n-install: ERROR: GNU Make not found, which is required for operation
- How to downgrade Node version with n
- how switch to previous version in n (Node version manager)?
- Automatically use the right version of Node for a package
- internal/modules/cjs/loader.js:905 -> throw err;
- Why doesn't "n" downgrade my node version on a Mac?
- Node version manager
- n failed to install/switch node in Linux?
- vue command not found on Mac
- How to uninstall n and all node versions installed by n
- Angular CLI on HTTPS - can't install CI as root
- n (node version manager): cannot create directory
- npm module n emits errors
- How to update npm permanently?
- Cannot change nodejs version using n
- upgrade nodejs to stable version
- How should I install and use multiple versions of Node on the same production machine?