public PSADServicePrincipal CreateServicePrincipal(CreatePSServicePrincipalParameters createParameters)
{
ServicePrincipalCreateParameters graphParameters = new ServicePrincipalCreateParameters
{
AppId = createParameters.ApplicationId.ToString(),
AccountEnabled = createParameters.AccountEnabled
};
try
{
return(GraphClient.ServicePrincipal.Create(graphParameters).ServicePrincipal.ToPSADServicePrincipal());
}
catch (CloudException ce)
{
if (ce.Response.StatusCode == HttpStatusCode.Forbidden)
{
GetCurrentUserResult currentUser = GraphClient.Objects.GetCurrentUser();
if (currentUser.AADObject != null && string.Equals(currentUser.AADObject.UserType, "Guest", StringComparison.InvariantCultureIgnoreCase))
{
throw new InvalidOperationException(ProjectResources.CreateServicePrincipalNotAllowedGuestUser);
}
}
throw;
}
}
public PSADApplication CreateApplication(CreatePSApplicationParameters createParameters)
{
IList <PasswordCredential> passwordCredentials = createParameters.PasswordCredentials != null
? createParameters.PasswordCredentials.Select(psCredential => psCredential.ToGraphPasswordCredential()).ToList()
: null;
IList <KeyCredential> keyCredentials = createParameters.KeyCredentials != null
? createParameters.KeyCredentials.Select(psCredential => psCredential.ToGraphKeyCredential()).ToList()
: null;
ApplicationCreateParameters graphParameters = new ApplicationCreateParameters
{
DisplayName = createParameters.DisplayName,
Homepage = createParameters.HomePage,
IdentifierUris = createParameters.IdentifierUris,
PasswordCredentials = passwordCredentials,
KeyCredentials = keyCredentials
};
try
{
return(GraphClient.Application.Create(graphParameters).Application.ToPSADApplication());
}
catch (CloudException ce)
{
if (ce.Response.StatusCode == HttpStatusCode.Forbidden)
{
GetCurrentUserResult currentUser = GraphClient.Objects.GetCurrentUser();
if (currentUser.AADObject != null && string.Equals(currentUser.AADObject.UserType, "Guest", StringComparison.InvariantCultureIgnoreCase))
{
throw new InvalidOperationException(ProjectResources.CreateApplicationNotAllowedGuestUser);
}
}
throw;
}
}
/// <summary>
/// Gets the details for current logged in user
/// </summary>
/// <param name='cancellationToken'>
/// Cancellation token.
/// </param>
/// <returns>
/// Server response for Active Directory objects inquiry API calls
/// </returns>
public async Task <GetCurrentUserResult> GetCurrentUserAsync(CancellationToken cancellationToken)
{
// Validate
// Tracing
bool shouldTrace = TracingAdapter.IsEnabled;
string invocationId = null;
if (shouldTrace)
{
invocationId = TracingAdapter.NextInvocationId.ToString();
Dictionary <string, object> tracingParameters = new Dictionary <string, object>();
TracingAdapter.Enter(invocationId, this, "GetCurrentUserAsync", tracingParameters);
}
// Construct URL
string url = "";
url = url + "/";
url = url + Uri.EscapeDataString(this.Client.TenantID);
url = url + "/me";
List <string> queryParameters = new List <string>();
queryParameters.Add("api-version=1.6-internal");
if (queryParameters.Count > 0)
{
url = url + "?" + string.Join("&", queryParameters);
}
string baseUrl = this.Client.BaseUri.AbsoluteUri;
// Trim '/' character from the end of baseUrl and beginning of url.
if (baseUrl[baseUrl.Length - 1] == '/')
{
baseUrl = baseUrl.Substring(0, baseUrl.Length - 1);
}
if (url[0] == '/')
{
url = url.Substring(1);
}
url = baseUrl + "/" + url;
url = url.Replace(" ", "%20");
// Create HTTP transport objects
HttpRequestMessage httpRequest = null;
try
{
httpRequest = new HttpRequestMessage();
httpRequest.Method = HttpMethod.Get;
httpRequest.RequestUri = new Uri(url);
// Set Headers
// Set Credentials
cancellationToken.ThrowIfCancellationRequested();
await this.Client.Credentials.ProcessHttpRequestAsync(httpRequest, cancellationToken).ConfigureAwait(false);
// Send Request
HttpResponseMessage httpResponse = null;
try
{
if (shouldTrace)
{
TracingAdapter.SendRequest(invocationId, httpRequest);
}
cancellationToken.ThrowIfCancellationRequested();
httpResponse = await this.Client.HttpClient.SendAsync(httpRequest, cancellationToken).ConfigureAwait(false);
if (shouldTrace)
{
TracingAdapter.ReceiveResponse(invocationId, httpResponse);
}
HttpStatusCode statusCode = httpResponse.StatusCode;
if (statusCode != HttpStatusCode.OK)
{
cancellationToken.ThrowIfCancellationRequested();
CloudException ex = CloudException.Create(httpRequest, null, httpResponse, await httpResponse.Content.ReadAsStringAsync().ConfigureAwait(false));
if (shouldTrace)
{
TracingAdapter.Error(invocationId, ex);
}
throw ex;
}
// Create Result
GetCurrentUserResult result = null;
// Deserialize Response
if (statusCode == HttpStatusCode.OK)
{
cancellationToken.ThrowIfCancellationRequested();
string responseContent = await httpResponse.Content.ReadAsStringAsync().ConfigureAwait(false);
result = new GetCurrentUserResult();
JToken responseDoc = null;
if (string.IsNullOrEmpty(responseContent) == false)
{
responseDoc = JToken.Parse(responseContent);
}
if (responseDoc != null && responseDoc.Type != JTokenType.Null)
{
AADObject aADObjectInstance = new AADObject();
result.AADObject = aADObjectInstance;
JToken objectIdValue = responseDoc["objectId"];
if (objectIdValue != null && objectIdValue.Type != JTokenType.Null)
{
string objectIdInstance = ((string)objectIdValue);
aADObjectInstance.ObjectId = objectIdInstance;
}
JToken objectTypeValue = responseDoc["objectType"];
if (objectTypeValue != null && objectTypeValue.Type != JTokenType.Null)
{
string objectTypeInstance = ((string)objectTypeValue);
aADObjectInstance.ObjectType = objectTypeInstance;
}
JToken displayNameValue = responseDoc["displayName"];
if (displayNameValue != null && displayNameValue.Type != JTokenType.Null)
{
string displayNameInstance = ((string)displayNameValue);
aADObjectInstance.DisplayName = displayNameInstance;
}
JToken userPrincipalNameValue = responseDoc["userPrincipalName"];
if (userPrincipalNameValue != null && userPrincipalNameValue.Type != JTokenType.Null)
{
string userPrincipalNameInstance = ((string)userPrincipalNameValue);
aADObjectInstance.UserPrincipalName = userPrincipalNameInstance;
}
JToken mailValue = responseDoc["mail"];
if (mailValue != null && mailValue.Type != JTokenType.Null)
{
string mailInstance = ((string)mailValue);
aADObjectInstance.Mail = mailInstance;
}
JToken mailEnabledValue = responseDoc["mailEnabled"];
if (mailEnabledValue != null && mailEnabledValue.Type != JTokenType.Null)
{
bool mailEnabledInstance = ((bool)mailEnabledValue);
aADObjectInstance.MailEnabled = mailEnabledInstance;
}
JToken securityEnabledValue = responseDoc["securityEnabled"];
if (securityEnabledValue != null && securityEnabledValue.Type != JTokenType.Null)
{
bool securityEnabledInstance = ((bool)securityEnabledValue);
aADObjectInstance.SecurityEnabled = securityEnabledInstance;
}
JToken signInNameValue = responseDoc["signInName"];
if (signInNameValue != null && signInNameValue.Type != JTokenType.Null)
{
string signInNameInstance = ((string)signInNameValue);
aADObjectInstance.SignInName = signInNameInstance;
}
JToken servicePrincipalNamesArray = responseDoc["servicePrincipalNames"];
if (servicePrincipalNamesArray != null && servicePrincipalNamesArray.Type != JTokenType.Null)
{
foreach (JToken servicePrincipalNamesValue in ((JArray)servicePrincipalNamesArray))
{
aADObjectInstance.ServicePrincipalNames.Add(((string)servicePrincipalNamesValue));
}
}
JToken userTypeValue = responseDoc["userType"];
if (userTypeValue != null && userTypeValue.Type != JTokenType.Null)
{
string userTypeInstance = ((string)userTypeValue);
aADObjectInstance.UserType = userTypeInstance;
}
}
}
result.StatusCode = statusCode;
if (httpResponse.Headers.Contains("request-id"))
{
result.RequestId = httpResponse.Headers.GetValues("request-id").FirstOrDefault();
}
if (shouldTrace)
{
TracingAdapter.Exit(invocationId, result);
}
return(result);
}
finally
{
if (httpResponse != null)
{
httpResponse.Dispose();
}
}
}
finally
{
if (httpRequest != null)
{
httpRequest.Dispose();
}
}
}
