Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Updating dotnet class-based sample to .NET 8 and Flex Consumption #291

Merged
merged 4 commits into from
Aug 21, 2024
Merged
Show file tree
Hide file tree
Changes from 3 commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Original file line number Diff line number Diff line change
@@ -1,17 +1,17 @@
<Project Sdk="Microsoft.NET.Sdk">
<PropertyGroup>
<TargetFramework>net6.0</TargetFramework>
<TargetFramework>net8.0</TargetFramework>
<AzureFunctionsVersion>v4</AzureFunctionsVersion>
<OutputType>Exe</OutputType>
<ImplicitUsings>enable</ImplicitUsings>
<Nullable>enable</Nullable>
<RootNamespace>DotnetIsolated_ClassBased</RootNamespace>
</PropertyGroup>
<ItemGroup>
<PackageReference Include="Microsoft.Azure.Functions.Worker" Version="1.21.0" />
<PackageReference Include="Microsoft.Azure.Functions.Worker.Extensions.Http" Version="3.1.0" />
<PackageReference Include="Microsoft.Azure.Functions.Worker.Sdk" Version="1.17.2" />
<PackageReference Include="Microsoft.Azure.Functions.Worker.Extensions.SignalRService" Version="1.13.0" />
<PackageReference Include="Microsoft.Azure.Functions.Worker" Version="1.23.0" />
<PackageReference Include="Microsoft.Azure.Functions.Worker.Extensions.Http" Version="3.2.0" />
<PackageReference Include="Microsoft.Azure.Functions.Worker.Sdk" Version="1.17.4" />
<PackageReference Include="Microsoft.Azure.Functions.Worker.Extensions.SignalRService" Version="1.14.0" />
</ItemGroup>
<ItemGroup>
<None Update="host.json">
Expand Down
5 changes: 4 additions & 1 deletion samples/DotnetIsolated-ClassBased/Functions.cs
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
using System;
using System.Net;
using Microsoft.Azure.Functions.Worker;
using Microsoft.Azure.Functions.Worker.Http;
Expand All @@ -21,7 +22,9 @@ public Functions(IServiceProvider serviceProvider, ILogger<Functions> logger) :
public HttpResponseData GetWebPage([HttpTrigger(AuthorizationLevel.Anonymous)] HttpRequestData req)
{
var response = req.CreateResponse(HttpStatusCode.OK);
response.WriteString(File.ReadAllText("content/index.html"));
string home = Environment.GetEnvironmentVariable("HOME");
string htmlFilePath = Path.Combine(home, "site", "wwwroot", "content", "index.html");
response.WriteString(File.ReadAllText(htmlFilePath));
response.Headers.Add("Content-Type", "text/html");
return response;
}
Expand Down
176 changes: 176 additions & 0 deletions samples/DotnetIsolated-ClassBased/README.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,176 @@
---
description: This is a chatroom sample that demonstrates bidirectional message pushing between Azure SignalR Service and Azure Functions in a serverless scenario using the Flex Consumption hosting plan and .NET.
page_type: sample
products:
- azure-functions
- azure-signalr-service
- azure
urlFragment: bidirectional-chatroom-sample-charp
languages:
- csharp
---
# Azure function bidirectional chatroom sample

This is a chatroom sample that demonstrates bidirectional message pushing between Azure SignalR Service and Azure Functions in a serverless scenario using the Flex Consumption hosting plan. It leverages the [**upstream**](https://docs.microsoft.com/azure/azure-signalr/concept-upstream) provided by Azure SignalR Service that features proxying messages from client to upstream endpoints in serverless scenario. Azure Functions with SignalR trigger binding allows you to write code to receive and push messages in several languages, including JavaScript, Python, C#, etc.
nzthiago marked this conversation as resolved.
Show resolved Hide resolved

- [Prerequisites](#prerequisites)
- [Run sample in Azure](#run-sample-in-azure)
- [Create Azure SignalR Service](#create-azure-signalr-service)
- [Deploy project to Azure Function](#deploy-project-to-azure-function)
- [Use a chat sample website to test end to end](#use-a-chat-sample-website-to-test-end-to-end)
- [Use Key Vault secret reference](#use-key-vault-secret-reference)
- [Enable AAD Token on upstream](#enable-aad-token-on-upstream)

<a name="prerequisites"></a>

## Prerequisites

The following are required to build this tutorial.
* [.NET SDK](https://dotnet.microsoft.com/download) (Version 8.0, required for Functions extensions)
* [Azure Functions Core Tools](https://docs.microsoft.com/azure/azure-functions/functions-run-local?tabs=windows%2Ccsharp%2Cbash#install-the-azure-functions-core-tools) (Version 4.0.5907 or newer)
* [Azure CLI](https://docs.microsoft.com/cli/azure/install-azure-cli?view=azure-cli-latest) (Version 2.63.0 or newer)

<a name="run-sample-in-azure"></a>

## Run sample in Azure

You will create an Azure SignalR Service and an Azure Function app to host the sample. And you will launch chatroom locally but connecting to Azure SignalR Service and Azure Function.

### Create Azure SignalR Service

1. Create Azure SignalR Service using `az cli`

```bash
resourceGroup=myResourceGroup
signalrName=mySignalRName
region=eastus

# Create a resource group.
az group create --name $resourceGroup --location $region

az signalr create -n $signalrName -g $resourceGroup --service-mode Serverless --sku Standard_S1
# Get connection string for later use.
connectionString=$(az signalr key list -n $signalrName -g $resourceGroup --query primaryConnectionString -o tsv)
```

For more details about creating Azure SignalR Service, see the [tutorial](https://docs.microsoft.com/en-us/azure/azure-signalr/signalr-quickstart-azure-functions-javascript#create-an-azure-signalr-service-instance).

### Deploy and configure project to Azure Function

1. Deploy with Azure Functions Core Tools
1. [Install Azure Functions Core Tools](https://docs.microsoft.com/en-us/azure/azure-functions/functions-run-local?tabs=windows%2Ccsharp%2Cbash#install-the-azure-functions-core-tools)
2. [Create a Flex Consumption Azure Function App](https://learn.microsoft.com/en-us/azure/azure-functions/flex-consumption-how-to?tabs=azure-cli%2Cvs-code-publish&pivots=programming-language-csharp) (code snippet shown below)

```bash
#!/bin/bash

# Function app and storage account names must be unique.
storageName=mystorageaccount
functionAppName=myserverlessfunc

# Create an Azure storage account in the resource group.
az storage account create \
--name $storageName \
--location $region \
--resource-group $resourceGroup \
--sku Standard_LRS

# Create a serverless function app in the resource group.
az functionapp create \
--name $functionAppName \
--storage-account $storageName \
--flexconsumption-location $region \
--resource-group $resourceGroup \
--runtime dotnet-isolated
```
3. Update application settings

```bash
az functionapp config appsettings set --resource-group $resourceGroup --name $functionAppName --setting AzureSignalRConnectionString=$connectionString
```

4. Publish the sample to the Azure Function you created before.

```bash
cd <root>/samples/DotnetIsolated-ClassBased
// If prompted function app version, use --force
func azure functionapp publish $functionAppName --dotnet-isolated
```

2. Update Azure SignalR Service Upstream settings

Open the Azure Portal and nevigate to the Function App created before. Find `signalr_extension` key in the **App keys** blade.

![Overview with auth](imgs/getkeys.png)

Copy the `signalr_extensions` value and use Azure Portal to set the upstream setting.
- In the *Upstream URL Pattern*, fill in the `<function-url>/runtime/webhooks/signalr?code=<signalr_extension-key>`
> [!NOTE]
> The `signalr_extensions` code is required by Azure Function but the trigger does not only use this code but also Azure SignalR Service connection string to validate requests. If you're very serious about the code, use KeyVault secret reference feature to save the code. See [Use Key Vault secret reference](#use-keyvault-secret-reference).

![Upstream](imgs/upstream-portal.png)

### Use a chat sample website to test end to end

1. Use browser to visit `<function-app-url>/api/index` for the web page of the demo.

2. Try send messages by entering them into the main chat box.
![Chatroom](imgs/chatroom-noauth.png)

## Use Key Vault secret reference

The url of upstream is not encrypted at rest. If you have any sensitive information, you can use Key Vault to save this sensitive information. Basically, you can enable managed identity of Azure SignalR Service and then grant a read permission on a Key Vault instance and use Key Vault reference instead of plaintext in `Upstream URL Pattern`.

The following steps demonstrate how to use Key Vault secret reference to save `signalr_extensions`.

1. Enable managed identity.

1. Enable managed identity with system assigned identity.

Open portal and navigate to **Identity**, and switch to **System assigned** page. Switch **Status** to **On**.

![SystemAssignedIdentity](imgs/system-assigned-identity.png)

2. Create a Key Vault instance.

```bash
az keyvault create --name "<your-unique-keyvault-name>" --resource-group "myResourceGroup" --location "EastUS"
```

3. Save `signalr_extensions` to secret.

```bash
az keyvault secret set --name "signalrkey" --vault-name "<your-unique-keyvault-name>" --value "<signalr_extension_code_copied_from_azure_function>"
```

4. Grant **Secret Read** permission to the Key Vault.

```bash
az keyvault set-policy --name "<your-unique-keyvault-name>" --object-id "<object-id-shown-in-system-assigned-identity>" --secret-permissions get
```

5. Get the secret identity of the secret.

```bash
az keyvault secret show --name "signalrkey" --vault-name "<your-unique-keyvault-name>" --query id -o tsv
```

6. Update **Upstream URL Pattern** with Key Vault reference. You need to follow the syntax `{@Microsoft.KeyVault(SecretUri=<secret-identity>)}`. As shown below:

![KeyVaultReference](imgs/key-vault-reference.png)

## Enable AAD Token on upstream
Y-Sindo marked this conversation as resolved.
Show resolved Hide resolved

You can set **ManagedIdentity** as the **Auth** setting in upstream. After that, SignalR Service will set an AAD Token into the `Authorization` for each upstream request.

1. Make sure you have enabled managed identity.

2. Click the asterisk in *Hub Rules* and a new page pops out as shown below.
![Upstream details](imgs/upstream-details-portal.png)

3. Select *Use Managed Identity* under *Upstream Authentication* and choose the system identity created earlier for the SignalR service.

4. Use browser to visit `<function-app-url>/api/index` for the web page of the demo

5. Try send messages by entering them into the main chat box. You can verify the `Authorization` has set from the `with Authorization: true`
![Chatroom](imgs/chatroom.png)
8 changes: 6 additions & 2 deletions samples/DotnetIsolated-ClassBased/content/index.html
Original file line number Diff line number Diff line change
Expand Up @@ -99,7 +99,7 @@ <h3>Serverless chat</h3>
</div>

<script src="https://cdn.jsdelivr.net/npm/vue@2.5.17/dist/vue.min.js"></script>
<script src="https://cdn.jsdelivr.net/npm/@aspnet/signalr@1.0.3/dist/browser/signalr.js"></script>
<script src="https://cdn.jsdelivr.net/npm/@aspnet/signalr@1.0.27/dist/browser/signalr.js"></script>
<script src="https://cdn.jsdelivr.net/npm/axios@0.18.0/dist/axios.min.js"></script>
<script src="https://cdn.jsdelivr.net/npm/crypto-js@3.1.9-1/crypto-js.js"></script>
<script src="https://cdn.jsdelivr.net/npm/crypto-js@3.1.9-1/enc-base64.js"></script>
Expand Down Expand Up @@ -203,9 +203,13 @@ <h3>Serverless chat</h3>
};
function onNewConnection(message) {
data.myConnectionId = message.ConnectionId;
authEnabled = false;
if (message.Authentication) {
authEnabled = true;
}
newConnectionMessage = {
id: counter++,
text: `${message.ConnectionId} has connected.`
text: `${message.ConnectionId} has connected, with Authorization: ${authEnabled.toString()}`
};
data.messages.unshift(newConnectionMessage);
}
Expand Down
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added samples/DotnetIsolated-ClassBased/imgs/cors.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.