Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[24.x] Authentication failure when Get/Post request is sent to Azure Function multiple times with the same authentication parameters #1826

Merged
merged 1 commit into from
Aug 19, 2024
Merged

[24.x] Authentication failure when Get/Post request is sent to Azure Function multiple times with the same authentication parameters #1826

merged 1 commit into from
Aug 19, 2024

Conversation

AleksanderGladkov
Copy link
Contributor

@AleksanderGladkov AleksanderGladkov commented Aug 16, 2024
edited by github-actions bot
Loading

Actions:
Run the code below:

    local procedure SendRequestToAzureFunction()
    var
        AzureFunctionsAuthentication: Codeunit "Azure Functions Authentication";
        AzureFunctions: Codeunit "Azure Functions";
        AzureFunctionsAuth: Interface "Azure Functions Authentication";
        ClientID, Scope, AuthURL, EndpointText : Text;
        RequestBody: Text;
        Cert: SecretText;
        i: Integer;
    begin
        GetAuthParameters(ClientID, Cert, AuthURL, EndpointText);
        Scope := 'api://abcdefff-1111-2222-3333-123456789fff/.default';
        AzureFunctionsAuth := AzureFunctionsAuthentication.CreateOAuth2WithCert(EndpointText, '', ClientID, Cert, AuthURL, '', Scope);
        RequestBody := GetRequestBody();
        for i := 1 to 200 do
            AzureFunctions.SendPostRequest(AzureFunctionsAuth, RequestBody, 'application/json');
    end;

It sets Authentication parameters once and then sends POST request to Azure Function 200 times.

Expected result:
Request is sent 200 times without errors.

Actual result:
After about 128 executions of AzureFunctions.SendPostRequest() the function fails with the error "Authentication Failed".
The telemetry logs right befoge the authentication failure show the error:
Microsoft.Dynamics.Nav.LicensingService.Model.Exceptions.LicenseServiceTransientException in AcquireApplicationTokenWithCertificate: LicenseServiceTransientException: Exception details : RequestUriTooLong - error returned.

The reason for this error is that every time the SendPostRequest is invoked, the scope is added to the global list of scopes that is used to authenticate in Azure Function. Therefore the list of scopes grows, and it seems that the list is used to build URI for authentication, so after multiple iterations the authentication function fails with RequestUriTooLong.

Fixes AB#544498

@AleksanderGladkov AleksanderGladkov requested a review from a team as a code owner August 16, 2024 08:47
@github-actions github-actions bot added this to the Version 24.5 milestone Aug 16, 2024
@AleksanderGladkov AleksanderGladkov merged commit 2bf5507 into releases/24.x Aug 19, 2024
25 checks passed
@AleksanderGladkov AleksanderGladkov deleted the bugs/544498-24x-Azure-Function-Authentication-Failure branch August 19, 2024 21:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@AndersLarsenMicrosoft AndersLarsenMicrosoft AndersLarsenMicrosoft approved these changes

@WaelAbuSeada WaelAbuSeada WaelAbuSeada approved these changes

@StefanSosic StefanSosic StefanSosic approved these changes

@haoranpb haoranpb Awaiting requested review from haoranpb

Assignees
No one assigned
Labels
AL: System Application
Projects
None yet
Milestone
Version 24.5
Development

Successfully merging this pull request may close these issues.
4 participants
@AleksanderGladkov @AndersLarsenMicrosoft @WaelAbuSeada @StefanSosic