Does the Azure Function coding language matter for B2C Tutorial

Question

Does the Azure Function coding language matter for B2C Tutorial

hampton123 1,175

I have been following a tutorial on B2C, APIM, and a SPA linked here. I tried to follow the tutorial precisely, with the exception of some name changes. However, I made an adjustment to the Azure Function specified in the tutorial. Instead of using C# - which is provided in the tutorial - I used the Azure Function's default code in JavaScript/NodeJs because I one of my requirements is to use JS/NodeJS. When calling the API (after I log in via B2C), I encountered an error message indicating "SyntaxError: Unexpected end of JSON input". Could the issue be because I used NodeJS in place of C# for my Azure Function?

Accepted answer

1 additional answer

Your answer

Answer 1

MikeUrnun 9,777 Moderator

Hello @hampton123 - Thanks for reaching out!

I've just gone over the tutorial that you have referenced. It shouldn't matter whether you use the .NET or NodeJS runtime as long as the response types and content are the same which in this case is a plain text payload, and the default/boilerplate JS code should have worked as-is.

The Javascript equivalent of the C# code is as follows:

module.exports = async function (context, req) {     
	context.log('JavaScript HTTP trigger function processed a request.');      
	context.res = {         
		body: `Hello World, time and date are ${new Date().toString()}`
	}; 
}

Could you try this out and let me know if the same issue persists?

The error message suggests that a JSON input was invalid so it's possible the issue could be elsewhere, i.e. with the SPA code or MSAL flow.

hampton123 1,175 Reputation points

2023-07-31T18:50:07.19+00:00

Hi MikeUrnun, thank you so much for your response! I tried your equivalent code and I'm still getting the same error so I think the error is with the SPA/MSAL.

When I inspect the page and try calling the API (after I log in), I get a GET <api url> 404 (Not Found) error. But when I try to open up the API URL in another tab, a 401 error is returned, saying that the access token is missing or invalid. Would this issue be with the SPA code then?
MikeUrnun 9,777 Reputation points Moderator

2023-07-31T19:04:12.37+00:00

@hampton123 Yes, it sounds like the Function-based API is returning an auth-related error message which may be causing the problem with your SPA. Is it possible that you're calling the API without the "?code=secretkey" portion in the URL?

The doc calls out the following:
Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
hampton123 1,175 Reputation points

2023-07-31T19:44:04.3466667+00:00

Hi MikeUrnun, the function code is just for testing if the Azure Function itself works, right? When I am calling the API from Azure API Management Service, it doesn't need the function code?
MikeUrnun 9,777 Reputation points Moderator

2023-07-31T20:58:51.1033333+00:00

@hampton123 That's right, the function code is a simple "Hello World" text with the current date/time. When calling the API from APIM, the "?code=secretkey" portion should be automatically included by APIM in the request to the Function app. However, if you're calling the Function app directly (as a troubleshooting step) on a browser and inspecting the request, you'll want to include the "?code=secretkey" portion in the URL. Note that you'll also need to revert the steps applied in the "Networking -> Access Restrictions" blade if you already configured them. I suspect that the auth with either the VIP or Azure AD B2C on the Function App side somehow isn't working for you, therefore, causing the response payload to be something other than the "Hello World" text that the SPA is designed to parse hence the invalid JSON syntax error. I'll try to implement the entire solution later today and share my findings with you exactly what may be happening.
hampton123 1,175 Reputation points

2023-07-31T21:15:12.7133333+00:00

Thank you MikeUrnun, your help is really appreciated! The direct call to the function app did work, like you said after I removed all of the Networking and Access Restriction configurations. Just to let you know, when I tried calling the API without the access restrictions configurations, I receive the same error.

I look forward to your response, thanks again for helping me out with my issue.
MikeUrnun 9,777 Reputation points Moderator

2023-08-02T02:34:15.5833333+00:00
Hello, @hampton123 - I followed the steps in the doc and was able to implement the solution without encountering any issues. The only minor discrepancy that I identified in the doc was at step 7 of the Configure the JavaScript SPA for Azure AD B2C section. Although the doc communicates the correct format for the Authority value as https://{b2ctenantname}.b2clogin.com/tfp/{b2ctenantname}.onmicrosoft.com}/{signupandsigninpolicyname}, it provides an incorrect example for the {signupandsigninpolicyname} portion as Frontendapp_signupandsignin but it should really be prefixed with B2C_1_ as follows: B2C_1_Frontendapp_signupandsignin

Oh, another one that I did differently than in the doc was the value for the backend field in the msal config. The sample in the doc has it as follows:

backend: "{APIBASEURL}/hello" // The location that we'll call for the backend api, this should be hosted in API Management, suffixed with the name of the API operation (in the sample this is '/hello').

But in my case, since the API on the Function App maps to APIM as follows, I needed to change it as such:

backend: "https://<apim-instance-name>.azure-api.net/<functionapp-name>/HttpTrigger" // The location that we'll call for the backend api, this should be hosted in API Management, suffixed with the name of the API operation (in the sample this is '/hello').

I will work internally with our content team to address the issue above.

Overall, I think the config steps for both backend and frontend app registrations need to be followed very thoroughly and carefully verified against the doc while you capture/record values and complete them, otherwise, it seemed like they were quite prone to a mistake.

I'm not entirely sure if the discrepancies above were the root cause of the problem you've been hitting but if they don't resolve the issue, I'd be happy to help in a 1:1 setting if need be & review your setup ;)
hampton123 1,175 Reputation points

2023-08-02T14:50:09.0133333+00:00

Hi MikeUrnun thank you for testing it out on my behalf! I've actually done the same exact steps that you have done, except for on the "backend" section I replaced "HttpTrigger" with "hello".

I've been working on it, and now I'm getting an error saying "This page cannot be displayed because an internal server error has occurred." It's a 500 internal server error, and apparently it's with the Azure Function because now when I test the Function alone, this error gets returned. Do you have a theory as to why this is happening?

EDIT: I've also tried removing the authentication like before, and the Azure Function works fine without it. However when I try to call it from the SPA, it returns a 404 error.

Also if I can't figure this out I might take you up on that 1:1 help haha. Thank you in advance.
hampton123 1,175 Reputation points

2023-08-03T11:43:46.7733333+00:00

Hi again MikeUrnun, if it's not too much trouble, do you think you can post the general format for your config for both the SPA and APIM? I know that the tutorials have placeholder values and comments, but like you were saying because the tutorial needs to be followed so precisely I may have an issue with my configuration - I think seeing a fully working sample would help me see if I filled in a value wrong.

Answer 2

hampton123 1,175

Thanks to MikeUrnun I figured out that my configuration issue was the naming of my Azure Function. The request was being sent to an Azure Function that didn't exist - it was trying to call a function called "hello", when my actual function was left as the default name, so "HttpTrigger1". After I created another function named "hello", the system worked as planned.

Just as MikeUrnun also mentioned, each step on the tutorial needs to be followed extremely closely! Any naming conventions need to be followed extremely closely.

MikeUrnun 9,777 Reputation points Moderator

2023-08-07T15:43:15.0533333+00:00

@hampton123 Glad to hear that you're now unblocked and have the solution working!

Share via

Does the Azure Function coding language matter for B2C Tutorial

1 additional answer

Your answer