End-user authentication with Azure Data Lake Storage Gen1 using Java

In this article, you learn about how to use the Java SDK to do end-user authentication with Azure Data Lake Storage Gen1. For service-to-service authentication with Data Lake Storage Gen1 using Java SDK, see Service-to-service authentication with Data Lake Storage Gen1 using Java.

Prerequisites

• An Azure subscription. See Get Azure free trial.

• Create a Microsoft Entra ID "Native" Application. You must have completed the steps in End-user authentication with Data Lake Storage Gen1 using Microsoft Entra ID.

• Maven. This tutorial uses Maven for build and project dependencies. Although it is possible to build without using a build system like Maven or Gradle, these systems make is much easier to manage dependencies.

• (Optional) And IDE like IntelliJ IDEA or Eclipse or similar.

End-user authentication

1. Create a Maven project using mvn archetype from the command line or using an IDE. For instructions on how to create a Java project using IntelliJ, see here. For instructions on how to create a project using Eclipse, see here.

2. Add the following dependencies to your Maven pom.xml file. Add the following snippet before the </project> tag:

   <dependencies>
     <dependency>
       <groupId>com.microsoft.azure</groupId>
       <artifactId>azure-data-lake-store-sdk</artifactId>
       <version>2.2.3</version>
     </dependency>
     <dependency>
       <groupId>org.slf4j</groupId>
       <artifactId>slf4j-nop</artifactId>
       <version>1.7.21</version>
     </dependency>
   </dependencies>
   

   The first dependency is to use the Data Lake Storage Gen1 SDK (azure-data-lake-store-sdk) from the maven repository. The second dependency is to specify the logging framework (slf4j-nop) to use for this application. The Data Lake Storage Gen1 SDK uses SLF4J logging façade, which lets you choose from a number of popular logging frameworks, like Log4j, Java logging, Logback, etc., or no logging. For this example, we disable logging, hence we use the slf4j-nop binding. To use other logging options in your app, see here.

3. Add the following import statements to your application.

   import com.microsoft.azure.datalake.store.ADLException;
   import com.microsoft.azure.datalake.store.ADLStoreClient;
   import com.microsoft.azure.datalake.store.DirectoryEntry;
   import com.microsoft.azure.datalake.store.IfExists;
   import com.microsoft.azure.datalake.store.oauth2.AccessTokenProvider;
   import com.microsoft.azure.datalake.store.oauth2.DeviceCodeTokenProvider;
   

4. Use the following snippet in your Java application to obtain token for the Active Directory native application you created earlier using the DeviceCodeTokenProvider. Replace FILL-IN-HERE with the actual values for the Microsoft Entra native application.

   private static String nativeAppId = "FILL-IN-HERE";
   
   AccessTokenProvider provider = new DeviceCodeTokenProvider(nativeAppId);   
   

The Data Lake Storage Gen1 SDK provides convenient methods that let you manage the security tokens needed to talk to the Data Lake Storage Gen1 account. However, the SDK does not mandate that only these methods be used. You can use any other means of obtaining token as well, like using the Azure AD SDK, or your own custom code.

Next steps

In this article, you learned how to use end-user authentication to authenticate with Azure Data Lake Storage Gen1 using Java SDK. You can now look at the following articles that talk about how to use the Java SDK to work with Azure Data Lake Storage Gen1.

• Data operations on Data Lake Storage Gen1 using Java SDK