{"id":3448,"date":"2018-10-23T06:25:35","date_gmt":"2018-10-23T06:25:35","guid":{"rendered":"http:\/\/himbap.com\/blog\/?p=3448"},"modified":"2018-11-13T19:54:57","modified_gmt":"2018-11-13T19:54:57","slug":"dynamics-365-ce-and-azure-function-part-3","status":"publish","type":"post","link":"https:\/\/himbap.com\/blog\/?p=3448","title":{"rendered":"Dynamics 365 CE and Azure Function Part 3"},"content":{"rendered":"

Introduction<\/strong>
\nThis is our third article in the Dynamics 365 and Azure series, in first article we discussed basic introduction about azure function and set azure function app. In second article we discussed how we can connect to Dynamics 365 organization using hard coded user name and password. Today we are going to discuss how we can get rid of hard coded credentials and use server to server authentication.<\/p>\n

Details<\/strong>
\nTo implement server to server authentication we need three following things
\n\"azureuser4\"<\/a>
\nFirst we need to get tenant id so login to Azure portal and navigate to Azure Active Directory -> Properties and note down Directory ID<\/strong>
\n\"azureuser15\"<\/a>
\nOnce we got our tenant id, now we need to get application id and key details. We need application id to setup application user in Dynamics 365. To get these details we need to register app in Azure Active Directory<\/strong>, so now navigate to Azure Active Directory and click on New application registration<\/strong>
\n\"azureuser1\"<\/a><\/p>\n

Provide your app details and click on Create<\/strong>
\n\"azureuser2\"<\/a><\/p>\n

Once application registration is created and note down Application ID<\/strong>
\n\"azureuser3\"<\/a>
\nGo to Dynamics 365 organization and navigate to Settings->Security-> Users<\/strong> and change view to Application Users<\/strong>. Click on New button to add application user, Make sure Application User form is selected<\/strong>, use application id we copied from the Azure portal, provide email address and create application user. Once user is created add required security role for this user.
\n\"azureuser7\"<\/a>
\nNext we need never expire key for our application. Click on Settings -> Keys<\/strong> and add a nearexpire key
\n\"azureuser6\"<\/a>
\nNow we have all required information ready, we can use these details in our following code in our Azure function trigger.<\/p>\n

\r\n private static OrganizationWebProxyClient GetCRMService() {\r\n\r\n  var aadInstance = "https:\/\/login.microsoftonline.com\/";\r\n  var organizationUrl = "https:\/\/yourDynamicsCRM.crm.dynamics.com"; \r\n\r\n  var tenantId = "aeb....";\r\n\r\n  var applicationId = "c86...";\r\n\r\n  var key = "7jNY.....";\r\n\r\n  var clientcred = new ClientCredential(applicationId, key);\r\n\r\n  var authenticationContext = new AuthenticationContext(aadInstance + tenantId);\r\n\r\n  var authenticationResult = authenticationContext.AcquireTokenAsync(organizationUrl, clientcred);\r\n\r\n  var requestedToken = authenticationResult.Result.AccessToken;\r\n\r\n  var sdkService = new OrganizationWebProxyClient(new Uri(organizationUrl +\r\n\t\t\t@"\/xrmservices\/2011\/organization.svc\/web?SdkClientVersion=8.2"), false);\r\n  sdkService.HeaderToken = requestedToken;\r\n\r\n  return sdkService;\r\n }\r\n<\/pre>\n
Now we can update our code to use OrganizationWebProxyClient method like following.<\/p>\n
\r\nOrganizationWebProxyClient service = GetCRMService();\r\n<\/pre>\n
We also need to add following reference to use OrganizationWebProxyClient in our Azure function trigger.<\/p>\n
\r\nusing Microsoft.Xrm.Sdk.WebServiceClient;\r\n<\/pre>\n
Dynamics 365 CE and Azure Function Part 1<\/a>
\nDynamics 365 CE and Azure Function Part 2<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"
Introduction This is our third article in the Dynamics 365 and Azure series, in first article we discussed basic introduction about azure function and set azure function app. In second article we discussed how we can connect to Dynamics 365 organization using hard coded user name and password. Today we are going to discuss how we can get rid of… Read more »<\/a><\/p>\n","protected":false},"author":1,"featured_media":3407,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[491,21,402],"tags":[654,665,662,670,664],"_links":{"self":[{"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3448"}],"collection":[{"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3448"}],"version-history":[{"count":12,"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3448\/revisions"}],"predecessor-version":[{"id":3471,"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/3448\/revisions\/3471"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=\/wp\/v2\/media\/3407"}],"wp:attachment":[{"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3448"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3448"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/himbap.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3448"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}