Provide documentation on authentication

[tomkerkhove]

We currently use Durable Functions Monitor in read-only mode but would like to integrate authentication.

However, it's not 100% how it works and how to configure it. What are the options?

[scale-tone]

Info on how to protect your standalone DfMon endpoint is documented here. See the section on how to deploy it as a separate Function App instance. Additionally please see this Config Setting Reference.

Programmatic config options that are available to your code in 'injected' mode are described here. These options mostly map the app config settings, so normally you go either one way or another.

In short, in 'injected' mode DfMon endpoint inherits authentication settings of your app, whatever those settings are. You can then adjust DfMon's authZ behavior with DfMon-specific settings like DFM_ALLOWED_USER_NAMES, but there's no way for you to override main application's authN settings.

Does it explain that enough, or you still fell like something is missing in the above-mentioned docs?

[tomkerkhove]

Thank you for the information!

The info is a bit hidden in the folder but that is probably so that it is included on the NuGet package?

[scale-tone]

Yes, the intention was to keep all info specific to 'injected' mode close to the NuGet package (with all the proper references from the main GitHub page, of course).
Whatever is not specific to 'injected' mode - that is documented here, on GitHub.