Azure Identity library samples for JavaScript

These sample programs show how to use the JavaScript client libraries for Azure Identity in some common scenarios.

File Name Description
defaultAzureCredential.js Tries several authentications. The simplest way to use @azure/identity
clientSecretCredential.js Authenticates with a client and a client's secret.
environmentCredential.js Authenticates with a client and a client's secret sent through environment variables.


The samples are compatible with Node.js >= 8.0.0.

You need an Azure subscription and an Azure Key Vault to run these sample programs.

To create an AAD application:

  • Follow Documentation to register a new application in the Azure Active Directory (in the Azure portal).
  • Note down the CLIENT_ID and TENANT_ID.
  • In the "Certificates & Secrets" tab, create a secret and note that down.

To allow your registered application to access your Key Vault

  • In the Azure portal, go to your Azure Key Vault.
  • In the left-side-navbar of your Azure Key Vault in the Azure portal, go to the Access Policies section, then click the + Add Access Policy button.
  • In the Add access policy page, select all the permissions for Keys, Secrets and Certificates.
  • For the Select principal field, click on the None selected. A panel will appear at the right of the window. Search for your Azure Active Directory application, click the application on the search results, then click "Select" at the bottom.
  • Once your application is selected, click the "Add" button.
  • Click the Save button at the top of the Access Policies section of your Key Vault.
  • For more information on securing your Key Vault: Learn more

Adapting the samples to run in the browser may require some additional consideration. For details, please see the package README.


To run the samples using the published version of the package:

  1. Install the dependencies using npm:
npm install
  1. Edit the file sample.env, adding the correct credentials to access the Azure service and run the samples. Then rename the file from sample.env to just .env. The sample programs will read this file automatically.

  2. Run whichever samples you like (note that some samples may require additional setup, see the table above):

node helloWorld.js

Alternatively, run a single sample with the correct environment variables set (step 2 is not required if you do this), for example (cross-platform):

npx cross-env KEYVAULT_NAME="<key vault name>" AZURE_TENANT_ID="<AAD tenant id>" AZURE_CLIENT_ID="<AAD client id>" AZURE_CLIENT_SECRET="<AAD client secret>" node environmentCredential.js

Next Steps

Take a look at our API Documentation for more information about the APIs that are available in the clients.