Question 1

How to set up fastapi-azure-auth for multi-tenant applications?

Accepted Answer

Use MultiTenantAzureAuthorizationCodeBearer with your app client ID and scopes, and optionally configure validate_iss or iss_callable for tenant validation. The documentation provides a detailed tutorial with code examples.

Question 2

FastAPI Azure Auth vs using MSAL Python directly?

Accepted Answer

FastAPI-Azure-Auth abstracts MSAL and handles OAuth2 flows, dependency injection, and OpenAPI integration for FastAPI apps, saving development time. MSAL Python offers more flexibility but requires manual implementation of auth logic and token management.

Question 3

Does fastapi-azure-auth support refresh tokens?

Accepted Answer

Yes, it uses the authorization code grant with PKCE, which includes refresh token handling as per OAuth2 standards. Tokens are automatically validated and can be refreshed based on Azure's configuration.

Question 4

How to test APIs locally with fastapi-azure-auth?

Accepted Answer

Enable CORS for localhost (e.g., http://localhost:8000) and use the Swagger UI 'Authorize' button after setup. Ensure your Azure app has redirect URIs configured for local development, as mentioned in the README setup steps.

Question 5

Can I use fastapi-azure-auth with Azure AD B2C for social logins?

Accepted Answer

Yes, it supports B2C multi-tenant setups, allowing integration with social providers like Google or Facebook through Azure AD B2C, as indicated in the Key Features and configuration options.

Question 6

What happens if Azure is down? Will my API break?

Accepted Answer

Yes, since token validation depends on Azure's OpenID configuration endpoints, outages can prevent authentication. The library loads config on startup to cache it, but initial setup and token checks require network calls.

FastAPI Azure Auth

What is FastAPI Azure Auth?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions