private void DeleteAdApp(KeyVaultManagementController controllerAdmin, MicrosoftGraphApplication app)
{
if (app != null)
{
controllerAdmin.GraphClient.Applications.DeleteApplication(app.Id);
}
}
public void TestSetRemoveAccessPolicyBySPN()
{
MicrosoftGraphApplication app = null;
MicrosoftGraphServicePrincipal principal = null;
KeyVaultManagementController controller = KeyVaultManagementController.NewInstance;
controller.RunPsTestWorkflow(
_logger,
//script builder
() =>
{
app = CreateNewAdApp(controller);
principal = CreateNewAdServicePrincipal(controller, app.AppId);
return(new[] { string.Format("{0} {1} {2} {3}", "Test-SetRemoveAccessPolicyBySPN",
_data.PreCreatedVault,
_data.ResourceGroupName,
principal.ServicePrincipalNames.Where(s => s.StartsWith("http")).FirstOrDefault()) });
},
// cleanup
() =>
{
DeleteAdServicePrincipal(controller, principal);
DeleteAdApp(controller, app);
},
MethodBase.GetCurrentMethod().ReflectedType?.ToString(),
MethodBase.GetCurrentMethod().Name
);
}
private MicrosoftGraphApplication CreateNewAdApp(KeyVaultManagementController controllerAdmin)
{
var appName = TestUtilities.GenerateName("adApplication");
var url = string.Format("http://{0}/home", appName);
var app = new MicrosoftGraphApplication()
{
DisplayName = appName,
IdentifierUris = new[] { url }
};
return(controllerAdmin.GraphClient.Applications.CreateApplication(app));
}
private AcsServicePrincipal BuildServicePrincipal(string name, string clientSecret)
{
var keyCredentials = new List <MicrosoftGraphKeyCredential> {
new MicrosoftGraphKeyCredential {
EndDateTime = DateTime.UtcNow.AddYears(2),
StartDateTime = DateTime.UtcNow,
Key = clientSecret,
Type = "Symmetric",
Usage = "Verify"
}
};
var appCreateParameters = new MicrosoftGraphApplication
{
DisplayName = name,
KeyCredentials = keyCredentials
};
var app = GraphClient.Applications.CreateApplication(appCreateParameters);
MicrosoftGraphServicePrincipal sp = null;
var success = RetryAction(() =>
{
var servicePrincipalCreateParams = new MicrosoftGraphServicePrincipal
{
AppId = app.AppId,
AccountEnabled = true,
KeyCredentials = keyCredentials
};
sp = GraphClient.ServicePrincipals.CreateServicePrincipal(servicePrincipalCreateParams);
}, Resources.ServicePrincipalCreate);
if (!success)
{
throw new AzPSInvalidOperationException(
Resources.CouldNotCreateAServicePrincipalWithTheRightPermissionsAreYouAnOwner,
desensitizedMessage: Resources.CouldNotCreateAServicePrincipalWithTheRightPermissionsAreYouAnOwner);
}
AddSubscriptionRoleAssignment("Contributor", sp.Id);
return(new AcsServicePrincipal {
SpId = app.AppId, ClientSecret = clientSecret, ObjectId = sp.Id
});
}
/// <summary>
/// Update entity in applications
/// </summary>
/// <remarks>
/// Represents an Azure Active Directory object. The directoryObject type is
/// the base type for many other directory entity types.
/// </remarks>
/// <param name='operations'>
/// The operations group for this extension method.
/// </param>
/// <param name='applicationId'>
/// key: id of application
/// </param>
/// <param name='body'>
/// New property values
/// </param>
/// <param name='cancellationToken'>
/// The cancellation token.
/// </param>
public static async Task UpdateApplicationAsync(this IApplicationsOperations operations, string applicationId, MicrosoftGraphApplication body, CancellationToken cancellationToken = default(CancellationToken))
{
(await operations.UpdateApplicationWithHttpMessagesAsync(applicationId, body, null, cancellationToken).ConfigureAwait(false)).Dispose();
}
/// <summary>
/// Update entity in applications
/// </summary>
/// <remarks>
/// Represents an Azure Active Directory object. The directoryObject type is
/// the base type for many other directory entity types.
/// </remarks>
/// <param name='operations'>
/// The operations group for this extension method.
/// </param>
/// <param name='applicationId'>
/// key: id of application
/// </param>
/// <param name='body'>
/// New property values
/// </param>
public static void UpdateApplication(this IApplicationsOperations operations, string applicationId, MicrosoftGraphApplication body)
{
operations.UpdateApplicationAsync(applicationId, body).GetAwaiter().GetResult();
}
/// <summary>
/// Add new entity to applications
/// </summary>
/// <param name='operations'>
/// The operations group for this extension method.
/// </param>
/// <param name='body'>
/// New entity
/// </param>
/// <param name='cancellationToken'>
/// The cancellation token.
/// </param>
public static async Task <MicrosoftGraphApplication> CreateApplicationAsync(this IApplicationsOperations operations, MicrosoftGraphApplication body, CancellationToken cancellationToken = default(CancellationToken))
{
using (var _result = await operations.CreateApplicationWithHttpMessagesAsync(body, null, cancellationToken).ConfigureAwait(false))
{
return(_result.Body);
}
}
/// <summary>
/// Add new entity to applications
/// </summary>
/// <param name='operations'>
/// The operations group for this extension method.
/// </param>
/// <param name='body'>
/// New entity
/// </param>
public static MicrosoftGraphApplication CreateApplication(this IApplicationsOperations operations, MicrosoftGraphApplication body)
{
return(operations.CreateApplicationAsync(body).GetAwaiter().GetResult());
}
/// <summary>
/// Update entity in applications
/// </summary>
/// <remarks>
/// Represents an Azure Active Directory object. The directoryObject type is
/// the base type for many other directory entity types.
/// </remarks>
/// <param name='applicationId'>
/// key: id of application
/// </param>
/// <param name='body'>
/// New property values
/// </param>
/// <param name='customHeaders'>
/// Headers that will be added to request.
/// </param>
/// <param name='cancellationToken'>
/// The cancellation token.
/// </param>
/// <exception cref="OdataErrorException">
/// Thrown when the operation returned an invalid status code
/// </exception>
/// <exception cref="ValidationException">
/// Thrown when a required parameter is null
/// </exception>
/// <exception cref="System.ArgumentNullException">
/// Thrown when a required parameter is null
/// </exception>
/// <return>
/// A response object containing the response body and response headers.
/// </return>
public async Task <HttpOperationResponse> UpdateApplicationWithHttpMessagesAsync(string applicationId, MicrosoftGraphApplication body, Dictionary <string, List <string> > customHeaders = null, CancellationToken cancellationToken = default(CancellationToken))
{
if (applicationId == null)
{
throw new ValidationException(ValidationRules.CannotBeNull, "applicationId");
}
if (body == null)
{
throw new ValidationException(ValidationRules.CannotBeNull, "body");
}
// Tracing
bool _shouldTrace = ServiceClientTracing.IsEnabled;
string _invocationId = null;
if (_shouldTrace)
{
_invocationId = ServiceClientTracing.NextInvocationId.ToString();
Dictionary <string, object> tracingParameters = new Dictionary <string, object>();
tracingParameters.Add("applicationId", applicationId);
tracingParameters.Add("body", body);
tracingParameters.Add("cancellationToken", cancellationToken);
ServiceClientTracing.Enter(_invocationId, this, "UpdateApplication", tracingParameters);
}
// Construct URL
var _baseUrl = Client.BaseUri.AbsoluteUri;
var _url = new System.Uri(new System.Uri(_baseUrl + (_baseUrl.EndsWith("/") ? "" : "/") + Client.ApiVersion + "/"), "applications/{application-id}").ToString();
_url = _url.Replace("{application-id}", System.Uri.EscapeDataString(applicationId));
// Create HTTP transport objects
var _httpRequest = new HttpRequestMessage();
HttpResponseMessage _httpResponse = null;
_httpRequest.Method = new HttpMethod("PATCH");
_httpRequest.RequestUri = new System.Uri(_url);
// Set Headers
if (Client.GenerateClientRequestId != null && Client.GenerateClientRequestId.Value)
{
_httpRequest.Headers.TryAddWithoutValidation("x-ms-client-request-id", System.Guid.NewGuid().ToString());
}
if (Client.AcceptLanguage != null)
{
if (_httpRequest.Headers.Contains("accept-language"))
{
_httpRequest.Headers.Remove("accept-language");
}
_httpRequest.Headers.TryAddWithoutValidation("accept-language", Client.AcceptLanguage);
}
if (customHeaders != null)
{
foreach (var _header in customHeaders)
{
if (_httpRequest.Headers.Contains(_header.Key))
{
_httpRequest.Headers.Remove(_header.Key);
}
_httpRequest.Headers.TryAddWithoutValidation(_header.Key, _header.Value);
}
}
// Set Credentials
if (Client.Credentials != null)
{
cancellationToken.ThrowIfCancellationRequested();
await Client.Credentials.ProcessHttpRequestAsync(_httpRequest, cancellationToken).ConfigureAwait(false);
}
// Serialize Request
string _requestContent = null;
if (body != null)
{
_requestContent = Rest.Serialization.SafeJsonConvert.SerializeObject(body, Client.SerializationSettings);
_httpRequest.Content = new StringContent(_requestContent, System.Text.Encoding.UTF8);
_httpRequest.Content.Headers.ContentType = System.Net.Http.Headers.MediaTypeHeaderValue.Parse("application/json; charset=utf-8");
}
// Send Request
if (_shouldTrace)
{
ServiceClientTracing.SendRequest(_invocationId, _httpRequest);
}
cancellationToken.ThrowIfCancellationRequested();
_httpResponse = await Client.HttpClient.SendAsync(_httpRequest, cancellationToken).ConfigureAwait(false);
if (_shouldTrace)
{
ServiceClientTracing.ReceiveResponse(_invocationId, _httpResponse);
}
HttpStatusCode _statusCode = _httpResponse.StatusCode;
cancellationToken.ThrowIfCancellationRequested();
string _responseContent = null;
if ((int)_statusCode != 204)
{
var ex = new OdataErrorException(string.Format("Operation returned an invalid status code '{0}'", _statusCode));
try
{
_responseContent = await _httpResponse.Content.ReadAsStringAsync().ConfigureAwait(false);
OdataError _errorBody = Rest.Serialization.SafeJsonConvert.DeserializeObject <OdataError>(_responseContent, Client.DeserializationSettings);
if (_errorBody != null)
{
ex.Body = _errorBody;
}
}
catch (JsonException)
{
// Ignore the exception
}
ex.Request = new HttpRequestMessageWrapper(_httpRequest, _requestContent);
ex.Response = new HttpResponseMessageWrapper(_httpResponse, _responseContent);
if (_shouldTrace)
{
ServiceClientTracing.Error(_invocationId, ex);
}
_httpRequest.Dispose();
if (_httpResponse != null)
{
_httpResponse.Dispose();
}
throw ex;
}
// Create Result
var _result = new HttpOperationResponse();
_result.Request = _httpRequest;
_result.Response = _httpResponse;
if (_shouldTrace)
{
ServiceClientTracing.Exit(_invocationId, _result);
}
return(_result);
}
