public async Task <AuthenticationResultEx> AcquireTokenUsingBroker(IDictionary <string, string> brokerPayload)
{
if (brokerPayload.ContainsKey("silent_broker_flow"))
{
throw new AdalSilentTokenAcquisitionException();
}
brokerResponse = null;
brokerResponseReady = new SemaphoreSlim(0);
//call broker
string base64EncodedString = Base64UrlEncoder.Encode(BrokerKeyHelper.GetRawBrokerKey());
brokerPayload["broker_key"] = base64EncodedString;
brokerPayload["max_protocol_ver"] = "2";
if (brokerPayload.ContainsKey("claims"))
{
brokerPayload.Add("skip_cache", "YES");
string claims = EncodingHelper.UrlEncode(brokerPayload["claims"]);
brokerPayload["claims"] = claims;
}
if (brokerPayload.ContainsKey("broker_install_url"))
{
string url = brokerPayload["broker_install_url"];
Uri uri = new Uri(url);
string query = uri.Query;
if (query.StartsWith("?", StringComparison.OrdinalIgnoreCase))
{
query = query.Substring(1);
}
Dictionary <string, string> keyPair = EncodingHelper.ParseKeyValueList(query, '&', true, false, null);
DispatchQueue.MainQueue.DispatchAsync(() => UIApplication.SharedApplication.OpenUrl(new NSUrl(keyPair["app_link"])));
throw new AdalException(AdalErrorIOSEx.BrokerApplicationRequired, AdalErrorMessageIOSEx.BrokerApplicationRequired);
}
else
{
NSUrl url = new NSUrl("msauth://broker?" + brokerPayload.ToQueryParameter());
DispatchQueue.MainQueue.DispatchAsync(() => UIApplication.SharedApplication.OpenUrl(url));
}
await brokerResponseReady.WaitAsync().ConfigureAwait(false);
PlatformParameters = null;
return(ProcessBrokerResponse());
}
private AuthenticationResultEx ResultFromBrokerResponse(IDictionary <string, string> responseDictionary)
{
TokenResponse response = new TokenResponse();
if (responseDictionary.ContainsKey("error") || responseDictionary.ContainsKey("error_description"))
{
response = TokenResponse.CreateFromBrokerResponse(responseDictionary);
}
else
{
string expectedHash = responseDictionary["hash"];
string encryptedResponse = responseDictionary["response"];
string decryptedResponse = BrokerKeyHelper.DecryptBrokerResponse(encryptedResponse);
string responseActualHash = PlatformPlugin.CryptographyHelper.CreateSha256Hash(decryptedResponse);
byte[] rawHash = Convert.FromBase64String(responseActualHash);
string hash = BitConverter.ToString(rawHash);
if (expectedHash.Equals(hash.Replace("-", "")))
{
responseDictionary = EncodingHelper.ParseKeyValueList(decryptedResponse, '&', false, null);
response = TokenResponse.CreateFromBrokerResponse(responseDictionary);
}
else
{
response = new TokenResponse
{
Error = AdalError.BrokerReponseHashMismatch,
ErrorDescription = AdalErrorMessage.BrokerReponseHashMismatch
};
}
}
var dateTimeOffset = new DateTimeOffset(new DateTime(1970, 1, 1, 0, 0, 0, 0, DateTimeKind.Utc));
dateTimeOffset = dateTimeOffset.AddSeconds(response.ExpiresOn);
return(response.GetResult(dateTimeOffset, dateTimeOffset));
}
