Replace Azure Identity code samples for Redis

Author: scottaddie

articles/service-connector/how-to-integrate-redis-cache.md

@@ -5,12 +5,12 @@ author: maud-lv
 ms.author: malev
 ms.service: service-connector
 ms.topic: how-to
-ms.date: 03/14/2025
+ms.date: 07/23/2025
 ---
 
 # Integrate Azure Cache for Redis with Service Connector
 
-This article covers supported authentication methods, clients, and sample code you can use to connect your apps to Azure Cache for Redis using Service Connector.In this article, you'll also find default environment variable names, values, and configuration obtained when creating service connections.
+This article covers supported authentication methods, clients, and sample code you can use to connect your apps to Azure Cache for Redis using Service Connector. In this article, you'll also find default environment variable names, values, and configuration obtained when creating service connections.
 
 ## Supported compute services
 
@@ -28,13 +28,13 @@ The following table shows which combinations of authentication methods and clien
 
 | Client type        | System-assigned managed identity | User-assigned managed identity | Secret / connection string | Service principal |
 |--------------------|----------------------------------|--------------------------------|----------------------------|-------------------|
-| .NET               | Yes                               | Yes                             | Yes                        | Yes                |
-| Go                 | No                               | No                             | Yes                        | No                |
-| Java               | Yes                               | Yes                             | Yes                        | Yes                |
+| .NET               | Yes                              | Yes                            | Yes                        | Yes               |
+| Go                 | Yes                              | Yes                            | Yes                        | Yes               |
+| Java               | Yes                              | Yes                            | Yes                        | Yes               |
 | Java - Spring Boot | No                               | No                             | Yes                        | No                |
-| Node.js            | Yes                               | Yes                             | Yes                        | Yes                |
-| Python             | Yes                               | Yes                             | Yes                        | Yes                |
-| None               | Yes                               | Yes                             | Yes                        | Yes                |
+| Node.js            | Yes                              | Yes                            | Yes                        | Yes               |
+| Python             | Yes                              | Yes                            | Yes                        | Yes               |
+| None               | Yes                              | Yes                            | Yes                        | Yes               |
 
 ## Default environment variable names or application properties and sample code
 

articles/service-connector/includes/code-redis-me-id.md

@@ -3,7 +3,7 @@ author: xfz11
 description: Code example
 ms.service: service-connector
 ms.topic: include
-ms.date: 1/2/2025
+ms.date: 07/23/2025
 ms.author: xiaofanzhou
 ---
 
@@ -42,250 +42,23 @@ ms.author: xiaofanzhou
 
 #### [Java](#tab/java)
 
-1. Add the following dependency in your `pom.xml` file:
+Follow the instructions at [Connect to Azure Managed Redis](https://redis.io/docs/latest/develop/clients/jedis/amr/) for using the `redis-authx-entraid` package.
 
-    ```xml
-    <dependency>
-        <groupId>com.azure</groupId>
-        <artifactId>azure-identity</artifactId>
-        <version>1.11.2</version> <!-- {x-version-update;com.azure:azure-identity;dependency} -->
-    </dependency>
-
-    <dependency>
-        <groupId>redis.clients</groupId>
-        <artifactId>jedis</artifactId>
-        <version>5.1.0</version>  <!-- {x-version-update;redis.clients:jedis;external_dependency} -->
-    </dependency>
-    ```
-
-1. Add the authentication logic with environment variables set by Service Connector. For more information, see [Azure-AAD-Authentication-With-Jedis](https://aka.ms/redis/aad/sample-code/java-jedis).
-
-    ```java
-    import redis.clients.jedis.DefaultJedisClientConfig;
-    import redis.clients.jedis.Jedis;
-    import redis.clients.jedis.JedisShardInfo;
-    import java.net.URI;
-    
-    // Uncomment the following lines corresponding to the authentication type you want to use.
-    // For system-assigned identity.
-    // DefaultAzureCredential defaultAzureCredential = new DefaultAzureCredentialBuilder().build();
-
-    // For user-assigned identity.
-    // String clientId = System.getenv("AZURE_REDIS_CLIENTID");
-    // DefaultAzureCredential defaultAzureCredential = new DefaultAzureCredentialBuilder().managedIdentityClientId(clientId).build();
-
-    // For AKS workload identity.
-    // String clientId = System.getenv("AZURE_REDIS_CLIENTID");
-    // DefaultAzureCredential defaultAzureCredential = new DefaultAzureCredentialBuilder().workloadIdentityClientId(clientId).build();
-
-    // For service principal.
-    // String clientId = System.getenv("AZURE_REDIS_CLIENTID");
-    // String secret = System.getenv("AZURE_REDIS_CLIENTSECRET");
-    // String tenant = System.getenv("AZURE_REDIS_TENANTID");
-    // ClientSecretCredential defaultAzureCredential = new ClientSecretCredentialBuilder().tenantId(tenant).clientId(clientId).clientSecret(secret).build();
-
-    String token = defaultAzureCredential
-    .getToken(new TokenRequestContext()
-        .addScopes("https://redis.azure.com/.default")).block().getToken();
-
-    // SSL connection is required.
-    boolean useSsl = true;
-    // TODO: Replace Host Name with Azure Cache for Redis Host Name.
-    String username = extractUsernameFromToken(token);
-    String cacheHostname = System.getenv("AZURE_REDIS_HOST");
-
-    // Create Jedis client and connect to Azure Cache for Redis over the TLS/SSL port using the access token as password.
-    // Note, Redis Cache host name and port are required below.
-    Jedis jedis = new Jedis(cacheHostname, 6380, DefaultJedisClientConfig.builder()
-        .password(token) // Microsoft Entra access token as password is required.
-        .user(username) // Username is Required
-        .ssl(useSsl) // SSL Connection is Required
-        .build());
-
-    // Set a value against your key in the Redis cache.
-    jedis.set("Az:key", "testValue");
-    System.out.println(jedis.get("Az:key"));
-
-    // Close the Jedis Client
-    jedis.close();
-    ```
 #### [Spring Boot](#tab/springBoot)
+
 Not supported yet.
 
 #### [Python](#tab/python)
 
-1. Install dependencies.
-
-    ```bash
-    pip install redis azure-identity
-    ```
-
-1. Add the authentication logic with environment variables set by Service Connector. For more information, see [azure-aad-auth-with-redis-py](https://aka.ms/redis/aad/sample-code/python).
-
-    ```python
-    import os
-    import time
-    import logging
-    import redis
-    import base64
-    import json
-    from azure.identity import DefaultAzureCredential
-    
-    host = os.getenv('AZURE_REDIS_HOST')
-    scope = "https://redis.azure.com/.default"
-    port = 6380  # Required
-
-    def extract_username_from_token(token):
-        parts = token.split('.')
-        base64_str = parts[1]
-
-        if len(base64_str) % 4 == 2:
-            base64_str += "=="
-        elif len(base64_str) % 4 == 3:
-            base64_str += "="
-
-        json_bytes = base64.b64decode(base64_str)
-        json_str = json_bytes.decode('utf-8')
-        jwt = json.loads(json_str)
-
-        return jwt['oid']
-
-    def re_authentication():
-        _LOGGER = logging.getLogger(__name__)
-        # Uncomment the following lines corresponding to the authentication type you want to use.
-        # For system-assigned identity.
-        # cred = DefaultAzureCredential()
-
-        # For user-assigned identity.
-        # client_id = os.getenv('AZURE_REDIS_CLIENTID')
-        # cred = DefaultAzureCredential(managed_identity_client_id=client_id)
-
-        # For user-assigned identity.
-        # client_id = os.getenv('AZURE_REDIS_CLIENTID')
-        # cred = DefaultAzureCredential(managed_identity_client_id=client_id)
-        
-        # For service principal.
-        # tenant_id = os.getenv("AZURE_TENANT_ID")
-        # client_id = os.getenv("AZURE_CLIENT_ID")
-        # client_secret = os.getenv("AZURE_CLIENT_SECRET")
-        # cred = ServicePrincipalCredentials(tenant=tenant_id, client_id=client_id, secret=client_secret)
-
-        token = cred.get_token(scope)
-        user_name = extract_username_from_token(token.token)
-        r = redis.Redis(host=host,
-                        port=port,
-                        ssl=True,   # ssl connection is required.
-                        username=user_name,
-                        password=token.token,
-                        decode_responses=True)
-        max_retry = 3
-        for index in range(max_retry):
-            try:
-                if _need_refreshing(token):
-                    _LOGGER.info("Refreshing token...")
-                    tmp_token = cred.get_token(scope)
-                    if tmp_token:
-                        token = tmp_token
-                    r.execute_command("AUTH", user_name, token.token)
-                r.set("Az:key1", "value1")
-                t = r.get("Az:key1")
-                print(t)
-                break
-            except redis.ConnectionError:
-                _LOGGER.info("Connection lost. Reconnecting.")
-                token = cred.get_token(scope)
-                r = redis.Redis(host=host,
-                                port=port,
-                                ssl=True,   # ssl connection is required.
-                                username=user_name,
-                                password=token.token,
-                                decode_responses=True)
-            except Exception:
-                _LOGGER.info("Unknown failures.")
-                break
-
-
-    def _need_refreshing(token, refresh_offset=300):
-        return not token or token.expires_on - time.time() < refresh_offset
-
-    if __name__ == '__main__':
-        re_authentication()
-    ```
+Follow the instructions at [Connect to Azure Managed Redis](https://redis.io/docs/latest/develop/clients/redis-py/amr/) for using the `redis-entra-id` package.
 
 #### [Go](#tab/go)
-Not supported yet.
 
-#### [Node.js](#tab/nodejs)
-
-1. Install dependencies.
+Follow the instructions at [Connect to Azure Managed Redis](https://redis.io/docs/latest/develop/clients/go/amr/) for using the `go-redis-entraid` package.
 
-    ```bash
-    npm install redis @azure/identity
-    ```
-
-1. Add the authentication logic with environment variables set by Service Connector. For more information, see [Azure Cache for Redis: Microsoft Entra ID with node-redis client library](https://aka.ms/redis/aad/sample-code/js-noderedis).
-
-    ```javascript
-    import { createClient } from "redis";
-    import { DefaultAzureCredential } from "@azure/identity";
-
-    function extractUsernameFromToken(accessToken: AccessToken): string{
-        const base64Metadata = accessToken.token.split(".")[1];
-        const { oid } = JSON.parse(
-            Buffer.from(base64Metadata, "base64").toString("utf8"),
-        );
-        return oid;
-    }
-
-    async function main() {
-        // Uncomment the following lines corresponding to the authentication type you want to use.  
-        // For system-assigned identity.
-        // const credential = new DefaultAzureCredential();
-
-        // For user-assigned identity.
-        // const clientId = process.env.AZURE_REDIS_CLIENTID;
-        // const credential = new DefaultAzureCredential({
-        //     managedIdentityClientId: clientId
-        // });
-        
-        // For service principal.
-        // const tenantId = process.env.AZURE_REDIS_TENANTID;
-        // const clientId = process.env.AZURE_REDIS_CLIENTID;
-        // const clientSecret = process.env.AZURE_REDIS_CLIENTSECRET;
-        // const credential = new ClientSecretCredential(tenantId, clientId, clientSecret);
-
-        // Fetch a Microsoft Entra token to be used for authentication. This token will be used as the password.
-        const redisScope = "https://redis.azure.com/.default";
-        let accessToken = await credential.getToken(redisScope);
-        console.log("access Token", accessToken);
-        const host = process.env.AZURE_REDIS_HOST;
-
-        // Create redis client and connect to Azure Cache for Redis over the TLS port using the access token as password.
-        const client = createClient({
-            username: extractUsernameFromToken(accessToken),
-            password: accessToken.token,
-            url: `redis://${host}:6380`,
-            pingInterval: 100000,
-            socket: { 
-            tls: true,
-            keepAlive: 0 
-            },
-        });
-
-        client.on("error", (err) => console.log("Redis Client Error", err));
-        await client.connect();
-        // Set a value against your key in Azure Redis Cache.
-        await client.set("Az:key", "value1312");
-        // Get value of your key in Azure Redis Cache.
-        console.log("value-", await client.get("Az:key"));
-    }
+#### [Node.js](#tab/nodejs)
 
-    main().catch((err) => {
-        console.log("error code: ", err.code);
-        console.log("error message: ", err.message);
-        console.log("error stack: ", err.stack);
-    });
-    ```
+Follow the instructions at [Connect to Azure Managed Redis](https://redis.io/docs/latest/develop/clients/nodejs/amr/) for using the `@redis/entraid` package.
 
 ### [Other](#tab/other)