admin管理员组文章数量:1291217
I have a react based web application which will use azure maps for store locations. Now anybody can access this anonymously. users need not be signed in. I know subscription key is the best way for anonymous access but I dont want to expose the key through dev tools. So I am exploring other methods of auth provided by azure maps.
From what I understand, Microsoft Entra ID method requires a microsoft account, does this mean its not suitable for a public application where anyone can anonymously use the azure map to see the store locations ?
Azure Active Directory Token for Azure Map
I saw this related link but doesnt seem like microsoft Entra ID is necessary. Can anyone help me understand if this method of authentication is feasible for a public application where users can access azure maps without signing in ?
I have a react based web application which will use azure maps for store locations. Now anybody can access this anonymously. users need not be signed in. I know subscription key is the best way for anonymous access but I dont want to expose the key through dev tools. So I am exploring other methods of auth provided by azure maps. https://learn.microsoft/en-us/azure/azure-maps/azure-maps-authentication
From what I understand, Microsoft Entra ID method requires a microsoft account, does this mean its not suitable for a public application where anyone can anonymously use the azure map to see the store locations ?
Azure Active Directory Token for Azure Map
I saw this related link but doesnt seem like microsoft Entra ID is necessary. Can anyone help me understand if this method of authentication is feasible for a public application where users can access azure maps without signing in ?
Share Improve this question asked Feb 13 at 16:27 NandhiniNandhini 92 bronze badges1 Answer
Reset to default 0There are several ways in with Azure AD/Entra ID can be used for different scenarios, including public facing apps: https://learn.microsoft/en-us/azure/azure-maps/how-to-manage-authentication#choose-an-authentication-and-authorization-scenario
I suspect you are looking for an option where the user doesn't have to sign in. Here are two methods for doing that:
- https://learn.microsoft/en-us/azure/azure-maps/how-to-secure-spa-app
- https://learn.microsoft/en-us/azure/azure-maps/how-to-secure-sas-app
Also be sure to check the best practices document: https://learn.microsoft/en-us/azure/azure-maps/authentication-best-practices
In addition to the above approaches, a couple other approaches are:
- Redirect all requests to Azure Maps to a proxy service you control where you can add your own security and use Entra ID on the server side.
- When it comes to geocoding/routing and similar requests, these are usually part of a bigger use case scenario. For example, geocode users input and find all locations within 5 miles. In this case you could pass this to the server side, do the geocoding their and filter your data, then return the results to the map. This would make it so that the end user can't see the request to Azure Maps.
本文标签:
版权声明:本文标题:Can I use azure AD Authentication ( Microsoft Entra ID) for Azure maps in a public application? - Stack Overflow 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1741517416a2382977.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。
发表评论