public VstsHelperTests()
{
var settings = IntegrationTestSettings.GetIntegrationTestSettings();
_accountUrl = settings.AzureDevOps.AccountUrl;
_accessToken = settings.AzureDevOps.PersonalAccessToken;
_repoName = settings.AzureDevOps.RepoName;
_projectName = settings.AzureDevOps.ProjectName;
_branchName = settings.AzureDevOps.BranchName;
_authentication = new BasicAuthentication(_accountUrl, string.Empty, _accessToken);
_vstsHelper = new VstsHelper();
}
// TODO: Initialze only once for all testfixtures
// TODO: Make common property public
public async Task InitializeAsync()
{
// Set up aad app for this test
try
{
// Load config
Configuration = new ConfigurationBuilder()
.SetBasePath(System.IO.Directory.GetCurrentDirectory())
.AddJsonFile("appsettings.IntegrationTests.json")
.AddEnvironmentVariables(prefix: "TEAMS_SIMPLE_AUTH_")
.Build();
IntegrationTestSettings = new IntegrationTestSettings();
Configuration.GetSection("IntegrationTestSettings").Bind(IntegrationTestSettings);
var confidentialClientApplication = ConfidentialClientApplicationBuilder
.Create(IntegrationTestSettings.AdminClientId)
.WithTenantId(IntegrationTestSettings.TenantId)
.WithClientSecret(IntegrationTestSettings.AdminClientSecret)
.Build();
var authProvider = new ClientCredentialProvider(confidentialClientApplication);
_graphClient = new GraphServiceClient(authProvider);
// Create aad apps
TeamsAadInfo = await CreateTeamsAadAppAsync();
// Make token for the aad app expire after 10 minutes
var policyId = await GetOrCreateShortTokenLifetimePolicy();
await ApplyPolicyToAadApp(policyId, TeamsAadInfo.Id);
using (var sha256 = SHA256.Create())
{
var challengeBytes = sha256.ComputeHash(Encoding.UTF8.GetBytes(IntegrationTestSettings.CodeVerifier));
IntegrationTestSettings.CodeChallenge = Base64UrlEncoder.Encode(challengeBytes);
}
Utilities.ConsentAndGetAuthorizationCode(IntegrationTestSettings.AuthorizeUrl, TeamsAadInfo.AppId,
IntegrationTestSettings.RedirectUri, "https://graph.microsoft.com/User.Read", IntegrationTestSettings.CodeChallenge,
IntegrationTestSettings.TestUsername, IntegrationTestSettings.TestPassword); // Just consent the default permission
Utilities.ConsentAndGetAuthorizationCode(IntegrationTestSettings.AuthorizeUrl, TeamsAadInfo.AppId,
IntegrationTestSettings.RedirectUri, "https://graph.microsoft.com/User.Read", IntegrationTestSettings.CodeChallenge,
IntegrationTestSettings.TestUsername2, IntegrationTestSettings.TestPassword2); // Just consent the default permission
// Use User.Read scope instead of .default scope to avoid intermittent error caused by AAD permission list sync issue
}
catch (Exception ex)
{
new Exception("Failed to create aad app for this test.", ex);
}
}
public AuthControllerTests()
{
_aadInstance = AadInstanceSetUp.defaultAadInstance;
_settings = _aadInstance.IntegrationTestSettings;
_configuration = _aadInstance.Configuration;
_teamsAadInfo = _aadInstance.TeamsAadInfo;
_defaultConfigurations = new Dictionary <string, string>()
{
[ConfigurationName.ClientId] = _configuration[ConfigurationName.ClientId],
[ConfigurationName.ClientSecret] = _configuration[ConfigurationName.ClientSecret],
[ConfigurationName.OAuthAuthority] = _configuration[ConfigurationName.OAuthAuthority],
[ConfigurationName.IdentifierUri] = _teamsAadInfo.IdentifierUri,
[ConfigurationName.AadMetadataAddress] = _configuration[ConfigurationName.AadMetadataAddress]
};
replaceTenantId();
_defaultFactory = _aadInstance.ConfigureWebApplicationFactory(_defaultConfigurations);
}
public async Task SetUp()
{
// Load config
_configuration = new ConfigurationBuilder()
.SetBasePath(Directory.GetCurrentDirectory())
.AddJsonFile("appsettings.IntegrationTests.json")
.AddEnvironmentVariables(prefix: "TeamsFx_BINDING_")
.Build();
_integrationTestings = new IntegrationTestSettings();
_configuration.GetSection("IntegrationTestSettings").Bind(_integrationTestings);
try
{
_defaultAccessToken = await Utilities.GetApplicationAccessTokenAsync(_integrationTestings.ClientId, _integrationTestings.ClientSecret, _integrationTestings.AuthorityHost, _integrationTestings.TenantId);
}
catch (Exception ex)
{
throw new Exception("Fail to get default access token: ", ex);
}
}
public static async Task <AadInfo> CreateAad(string name, GraphServiceClient graphClient, IntegrationTestSettings settings)
{
var application = new Application
{
DisplayName = name,
};
var _app = await graphClient.Applications
.Request()
.AddAsync(application);
// generate client secret
var passwordCredential = new PasswordCredential
{
DisplayName = "test client secret"
};
var clientSecret = await graphClient.Applications[_app.Id]
.AddPassword(passwordCredential)
.Request()
.PostAsync();
var identifierUri = GetIdentifierUri(settings.ApiAppIdUri, _app.AppId);
return(new AadInfo()
{
Id = _app.Id, AppId = _app.AppId, ClientSecret = clientSecret.SecretText, IdentifierUri = identifierUri
});
}
public static string GetAuthorizationCode(IntegrationTestSettings settings, IConfiguration configuration)
{
return(ConsentAndGetAuthorizationCode(settings.AuthorizeUrl, configuration[ConfigurationName.ClientId],
settings.RedirectUri, "openid offline_access", settings.CodeChallenge,
settings.TestUsername, settings.TestPassword));
}