How to create a custom authentication instead of Azure AD method to Authenticate my web app service published on Azure.

Question

How to create a custom authentication instead of Azure AD method to Authenticate my web app service published on Azure.

Shailja Atkotiya 0

I have published my .NET Core Web API project in Azure APP Service. I initially used Azure AD to authenticate the APP Service. I want to authenticate my application using the users added in the Azure PostgreSQL Database. I can create an Azure Function APP which can have the authentication method. But how can I add the same Azure Function APP in the Authentication Layer of the APP Service. The Options that we have in the Azure App Service and APIM are Azure AD & Azure AD B2C.

Ben Gimblett 4,555 Reputation points Microsoft Employee

2023-08-02T11:07:24.36+00:00

Hi @Shailja Atkotiya I think we'll probably need a little more info to answer this question

Can I check my understanding from what you wrote so far

You have a (dotnet) web API in App Service - and this depends on a Az Postgre SQL database (I assume PaaS?)

Where do the users in your postgre come from, are these through the AAD integration?

What's the overall use case here - is this a private internal app, an app for a trusted partner organisation, or for the public?
Shailja Atkotiya 0 Reputation points

2023-08-02T12:45:42.4666667+00:00

Thanks for the response @Ben Gimblett
Currently I haven't added users in the AAD integration.

It is a basic web api application, where we want to use the username password from Azure PostgreSQL db instead of Azure AD B2C.

Also using Azure AD, if I use authorize endpoint, I am redirected to Microsoft login page.
Is there any way in Azure AD where I can be redirected to my login page from where I add the username & password and use it for the authentication.
Marilee Turscak-MSFT 37,181 Reputation points Microsoft Employee

2023-08-07T23:04:43.1133333+00:00

Hi @Rakesh Kumar ,

Just checking to see if you were able to see the latest response from @Ben Gimblett and get the information you needed? If the answer helped you, please remember to accept it so that others in the community researching similar questions can more easily find a solution. Otherwise let us know if you have further questions.

1 answer

Your answer

Ben Gimblett 4,555 Reputation points Microsoft Employee

2023-08-02T11:07:24.36+00:00

Hi @Shailja Atkotiya I think we'll probably need a little more info to answer this question

Can I check my understanding from what you wrote so far

You have a (dotnet) web API in App Service - and this depends on a Az Postgre SQL database (I assume PaaS?)

Where do the users in your postgre come from, are these through the AAD integration?

What's the overall use case here - is this a private internal app, an app for a trusted partner organisation, or for the public?
Shailja Atkotiya 0 Reputation points

2023-08-02T12:45:42.4666667+00:00

Thanks for the response @Ben Gimblett
Currently I haven't added users in the AAD integration.

It is a basic web api application, where we want to use the username password from Azure PostgreSQL db instead of Azure AD B2C.

Also using Azure AD, if I use authorize endpoint, I am redirected to Microsoft login page.
Is there any way in Azure AD where I can be redirected to my login page from where I add the username & password and use it for the authentication.
Marilee Turscak-MSFT 37,181 Reputation points Microsoft Employee

2023-08-07T23:04:43.1133333+00:00

Hi @Rakesh Kumar ,

Just checking to see if you were able to see the latest response from @Ben Gimblett and get the information you needed? If the answer helped you, please remember to accept it so that others in the community researching similar questions can more easily find a solution. Otherwise let us know if you have further questions.

Answer 1

Hey @Shailja Atkotiya - for the scenario in dotnet web app where you want to manage and store your own identity (without deferring to SaaS identity provider) you can use the Identity framework , see here: https://learn.microsoft.com/en-us/aspnet/core/security/authentication/identity?view=aspnetcore-7.0&tabs=visual-studio
This allows for local storage (what you are asking for) or deferring to an external login provider.

Note:
It is generally better practice to consider using an external provider - when you manage your own you are responsible for storing and securing credentials. An external provider takes care of all of that for you.

Share via

How to create a custom authentication instead of Azure AD method to Authenticate my web app service published on Azure.

1 answer

Your answer