![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 86%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,448 questions
Hello @Mountain Pond !
Thank you for the info!
This is the Documented procedure for new users by Microsoft
As i can see in your question you are asking whether there is a similar procedure via a Link
The answer is no there is not such a service or procedure
The case here is possible with a Mix of Services
For Example :
Create an Azure Key Vault where you'll store the secrets. Configure access policies so that only your Azure Function can access the secrets.
Create an Azure Function that exposes two endpoints:
a. POST /secrets - This endpoint generates a unique ID, saves the secret to Azure Key Vault with the ID as the name, and returns the ID to the caller.
b. GET /secrets/{id} - This endpoint retrieves the secret from Azure Key Vault using the ID, deletes the secret from Azure Key Vault, and returns the secret to the caller.
- You can configure your Azure Function to require this access token on incoming requests to
POST /secrets. This way, only applications that have a valid client ID and secret can create new secrets. - To set this up, you need to register your service as an app in Azure AD, obtain the client ID and client secret, and configure your service to present these credentials.
Azure AD Client Credentials Flow - This is used to protect the endpoint that creates new secrets (POST /secrets).
With the Client Credentials Flow, an application requests an access token by presenting its own credentials (a client ID and client secret, or a client certificate) to Azure AD. In return, Azure AD issues an access token to the application.
You can configure your Azure Function to require this access token on incoming requests to POST /secrets. This way, only applications that have a valid client ID and secret can create new secrets.
To set this up, you need to register your service as an app in Azure AD, obtain the client ID and client secret, and configure your service to present these credentials.
b. Azure AD Implicit or Authorization Code Flow - This is used to protect the endpoint that retrieves secrets (GET /secrets/{id}).
https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-auth-code-flow
I hope this helps!
Kindly mark the answer as Accepted and Upvote in case it helped!
Regards