# Azure Identity SDK Tutorial

This notebook demonstrates how to use Azure Identity for authentication in health applications.

## Prerequisites
- Azure subscription with AI services access
- Python environment with required packages
- Basic understanding of Azure AI concepts

## What You'll Learn
- Using DefaultAzureCredential
- Managing authentication
- Securing health applications
- Best practices for identity

In [None]:
# Import required libraries
from azure.identity import DefaultAzureCredential, ClientSecretCredential
import os
import json

# Initialize credentials
try:
    credential = DefaultAzureCredential()
    print("✓ Successfully initialized DefaultAzureCredential")
except Exception as e:
    print(f"× Error initializing credentials: {str(e)}")

## Authentication Methods

Explore different authentication methods:

In [None]:
def demonstrate_auth_methods():
    """Demonstrate different authentication methods."""
    try:
        # Default credential
        default_cred = DefaultAzureCredential()
        print("✓ DefaultAzureCredential initialized")
        
        # Client secret credential
        client_secret_cred = ClientSecretCredential(
            tenant_id=os.getenv("AZURE_TENANT_ID"),
            client_id=os.getenv("AZURE_CLIENT_ID"),
            client_secret=os.getenv("AZURE_CLIENT_SECRET")
        )
        print("✓ ClientSecretCredential initialized")
        
        return {
            "default": default_cred,
            "client_secret": client_secret_cred
        }
    except Exception as e:
        print(f"× Error demonstrating auth methods: {str(e)}")
        return None

# Try different auth methods
credentials = demonstrate_auth_methods()

## Token Management

Manage access tokens for health applications:

In [None]:
async def manage_tokens():
    """Demonstrate token management."""
    try:
        # Get token for Azure services
        scope = "https://management.azure.com/.default"
        token = await credential.get_token(scope)
        
        print("✓ Successfully acquired token")
        print(f"Token expires in: {token.expires_on}")
        
        return token
    except Exception as e:
        print(f"× Error managing tokens: {str(e)}")
        return None

# Get and manage tokens
token = await manage_tokens()

## Best Practices

1. **Authentication**
   - Use DefaultAzureCredential
   - Implement proper error handling
   - Secure credential storage
   - Regular token rotation

2. **Security**
   - Follow least privilege
   - Monitor access patterns
   - Implement logging
   - Regular audits

3. **Health Applications**
   - Secure patient data
   - Implement RBAC
   - Monitor access
   - Regular reviews