public async Task <ActionResult> Authorize() { ConfidentialClientApplicationBuilder clientBuilder = ConfidentialClientApplicationBuilder.Create(_azureAdOptions.ClientId); clientBuilder.WithClientSecret(_azureAdOptions.ClientSecret); clientBuilder.WithRedirectUri(LoginRedirectUri.ToString()); clientBuilder.WithAuthority(_azureAdOptions.Authority); ConfidentialClientApplication clientApp = (ConfidentialClientApplication)clientBuilder.Build(); string[] sassScopes = $"{_azureAdOptions.SaaSScopes}".Split(new[] { ' ' }); var authResultBuilder = clientApp.AcquireTokenByAuthorizationCode( sassScopes, HttpContext.Request.Query["code"].ToString() ); try { var authResult = await authResultBuilder.ExecuteAsync(); var offer = Offers.ContosoAppOffer; var activation = await _assignedUserService.Activate($"{_azureAdOptions.SaaSAPI}/{offer.OfferID}", authResult.AccessToken); ViewBag.Message = JsonConvert.SerializeObject( new { status = "success", activation = activation, accountName = authResult.Account.Username }); } catch (Exception e) { ViewBag.Message = JsonConvert.SerializeObject(new { status = "failure", error = e.Message }); } return(View()); }
/// <summary> /// Gets IdToken from implicit flow and sends it to main add-in window. /// </summary> /// <returns>The default view.</returns> public async Task <ActionResult> Authorize() { ConfidentialClientApplicationBuilder clientBuilder = ConfidentialClientApplicationBuilder.Create(Settings.AzureADClientId); clientBuilder.WithClientSecret(Settings.AzureADClientSecret); clientBuilder.WithRedirectUri(loginRedirectUri.ToString()); clientBuilder.WithAuthority(Settings.AzureADAuthority); ConfidentialClientApplication clientApp = (ConfidentialClientApplication)clientBuilder.Build(); string[] graphScopes = { "Files.Read.All", "User.Read" }; // Get and save the token. var authResultBuilder = clientApp.AcquireTokenByAuthorizationCode( graphScopes, Request.Params["code"] // The auth 'code' parameter from the Azure redirect. ); try { var authResult = await authResultBuilder.ExecuteAsync(); ViewBag.AccessToken = authResult.AccessToken; } catch (Exception e) { ViewBag.Error = e.Message; } return(View()); }
public async Task <ActionResult> Authorize() { ConfidentialClientApplicationBuilder clientBuilder = ConfidentialClientApplicationBuilder.Create(AzureADClientId); clientBuilder.WithClientSecret(AzureADClientSecret); clientBuilder.WithRedirectUri(loginRedirectUri.ToString()); clientBuilder.WithAuthority(AzureADAuthority); ConfidentialClientApplication clientApp = (ConfidentialClientApplication)clientBuilder.Build(); string[] sassScopes = $"{SaaSScopes}".Split(new[] { ' ' }); try { // Get and save the token. var authResultBuilder = clientApp.AcquireTokenByAuthorizationCode( sassScopes, Request.Params["code"] ); var authResult = await authResultBuilder.ExecuteAsync(); var activation = await _assignedUserService.Activate($"{SaaSAPI}/{OfferID}", authResult.AccessToken); ViewBag.accountName = authResult.Account.Username; return(View(activation)); } catch (Exception ex) { System.Diagnostics.Trace.WriteLine(ex.ToString()); } return(View()); }
private static async Task RunAuthCode_Async(MockHttpManager httpManager, ConfidentialClientApplication app) { httpManager.AddSuccessTokenResponseMockHandlerForPost(); var result = await app .AcquireTokenByAuthorizationCode(TestConstants.s_scope, "some-code") .ExecuteAsync(CancellationToken.None) .ConfigureAwait(false); Assert.AreEqual(TokenSource.IdentityProvider, result.AuthenticationResultMetadata.TokenSource); var acc = await app.GetAccountAsync(result.Account.HomeAccountId.Identifier).ConfigureAwait(false); result = await app.AcquireTokenSilent(TestConstants.s_scope, acc).ExecuteAsync().ConfigureAwait(false); Assert.AreEqual(TokenSource.Cache, result.AuthenticationResultMetadata.TokenSource); }
/// <summary> /// Authorizes the web application (not the user) to access Microsoft Graph resources by using /// the Authorization Code flow of OAuth. /// </summary> /// <returns>The default view.</returns> public async Task <ActionResult> Authorize() { ConfidentialClientApplicationBuilder clientBuilder = ConfidentialClientApplicationBuilder.Create(Settings.AzureADClientId); clientBuilder.WithClientSecret(Settings.AzureADClientSecret); clientBuilder.WithRedirectUri(loginRedirectUri.ToString()); clientBuilder.WithAuthority(Settings.AzureADAuthority); ConfidentialClientApplication clientApp = (ConfidentialClientApplication)clientBuilder.Build(); string[] graphScopes = { "Files.Read.All", "User.Read" }; var authStateString = Request.QueryString["state"]; var authState = JsonConvert.DeserializeObject <AuthState>(authStateString); try { // Get and save the token. var authResultBuilder = clientApp.AcquireTokenByAuthorizationCode( graphScopes, Request.Params["code"] // The auth 'code' parameter from the Azure redirect. ); var authResult = await authResultBuilder.ExecuteAsync(); await SaveAuthToken(authState, authResult); authState.authStatus = "success"; } catch (Exception ex) { System.Diagnostics.Trace.WriteLine(ex.ToString()); authState.authStatus = "failure"; } // Instead of doing a server-side redirect, we have to do a client-side redirect to get around // some issues with the display dialog API not getting properly wired up after a server-side redirect var redirectUrl = Url.Action(nameof(AuthorizeComplete), new { authState = JsonConvert.SerializeObject(authState) }); ViewBag.redirectUrl = redirectUrl; return(View()); }