React app created with create-react-app and set up to use msal.js to authenticate the app with Azure Active directory. Some environment variables have to be set before starting the app:
$ REACT_APP_CDF_PROJECT=... REACT_APP_AZURE_TENANT_ID=... REACT_APP_AZURE_APP_ID=... yarn start
This kind of authentication will redirect you to the login page to enter your credentials and after you be redirected back to the configured page.
Make sure you have read the prerequisite-guide before continuing. You may also need to create a SPA app registration in Azure Active Directory for the necessary environment variables.
Go to this folder in your terminal and run:
npm install
or with yarn:
yarn
REACT_APP_CDF_PROJECT=... REACT_APP_AZURE_TENANT_ID=... REACT_APP_AZURE_APP_ID=... yarn start
- First of all create a new project. Replace "your_project_name" to your project name.
npx create-react-app your_project_name --template=typescript- Add the Cognite SDK to your project with yarn or npm.
yarn add @cognite/[email protected]npm install @cognite/[email protected]- Make an archive inside the src folder called
auth.tsand import all things that you'll need to use.
import { Configuration, PublicClientApplication } from "@azure/msal-browser";- You need to have a clientId, tenantId, cluster, baseUrl and the scopes.
const clientId = process.env.REACT_APP_AZURE_APP_ID!;
const tenantId = process.env.REACT_APP_AZURE_TENANT_ID!;
const cluster = process.env.REACT_APP_CLUSTER || "api";
export const baseUrl = `https://${cluster}.cognitedata.com`;
export const scopes = [
`${baseUrl}/DATA.VIEW`,
`${baseUrl}/DATA.CHANGE`,
`${baseUrl}/IDENTITY`,
];- Start the msal configuration and verification.
const configuration: Configuration = {
auth: {
clientId,
authority: `https://login.microsoftonline.com/${tenantId}`,
},
};
if (!clientId || !tenantId) {
throw new Error(
"specify REACT_APP_AZURE_APP_ID and REACT_APP_AZURE_TENANT_ID in your environment"
);
}- Instantiate a new
PublicClientApplicationclass with the configurations.
export const pca = new PublicClientApplication(configuration);- Create a method that retrieve the access_token.
export const getToken = async () => {
// Verify if account are setted.
const accountId = sessionStorage.getItem("account");
if (!accountId) throw new Error("no user_id found");
// Get account by ID.
const account = pca.getAccountByLocalId(accountId);
if (!account) throw new Error("no user found");
// Get token information.
const token = await pca.acquireTokenSilent({
account,
scopes,
});
return token.accessToken;
};- Inside your
App.tsxfile Import some methods/components from msal library and React.
import React from "react";
import {
MsalProvider,
AuthenticatedTemplate,
UnauthenticatedTemplate,
useMsal,
} from "@azure/msal-react";- Use the method
useMsalto deconstructinstancein a const.
function App() {
...
...
const { instance } = useMsal();
return (
...
...
)
}- Now you are able to use the
MsalProvideraround all your code withAuthenticatedTemplate,UnauthenticatedTemplateand the newPublicClientApplicationthat you already have instantiated all of this inside your default function.
function App() {
...
...
return (
<MsalProvider instance={pca}>
<AuthenticatedTemplate>
...
</AuthenticatedTemplate>
<UnauthenticatedTemplate>
...
</UnauthenticatedTemplate>
</MsalProvider>
);
}- Some methods that you can use.
// For logout
instance.logoutPopup();
// For login
instance
.loginPopup({
prompt: "select_account",
scopes,
})
.then((r) => {
if (r.account?.localAccountId) {
sessionStorage.setItem("account", r.account?.localAccountId);
}
});- Now, you can run your code.
sudo PORT=80 yarn start