public async Task <ActionResult> Authorize()
{
ConfidentialClientApplicationBuilder clientBuilder = ConfidentialClientApplicationBuilder.Create(_azureAdOptions.ClientId);
clientBuilder.WithClientSecret(_azureAdOptions.ClientSecret);
clientBuilder.WithRedirectUri(LoginRedirectUri.ToString());
clientBuilder.WithAuthority(_azureAdOptions.Authority);
ConfidentialClientApplication clientApp = (ConfidentialClientApplication)clientBuilder.Build();
string[] sassScopes = $"{_azureAdOptions.SaaSScopes}".Split(new[] { ' ' });
var authResultBuilder = clientApp.AcquireTokenByAuthorizationCode(
sassScopes,
HttpContext.Request.Query["code"].ToString()
);
try
{
var authResult = await authResultBuilder.ExecuteAsync();
var offer = Offers.ContosoAppOffer;
var activation = await _assignedUserService.Activate($"{_azureAdOptions.SaaSAPI}/{offer.OfferID}", authResult.AccessToken);
ViewBag.Message = JsonConvert.SerializeObject(
new { status = "success", activation = activation, accountName = authResult.Account.Username });
}
catch (Exception e)
{
ViewBag.Message = JsonConvert.SerializeObject(new { status = "failure", error = e.Message });
}
return(View());
}
/// <summary>
/// Gets IdToken from implicit flow and sends it to main add-in window.
/// </summary>
/// <returns>The default view.</returns>
public async Task <ActionResult> Authorize()
{
ConfidentialClientApplicationBuilder clientBuilder = ConfidentialClientApplicationBuilder.Create(Settings.AzureADClientId);
clientBuilder.WithClientSecret(Settings.AzureADClientSecret);
clientBuilder.WithRedirectUri(loginRedirectUri.ToString());
clientBuilder.WithAuthority(Settings.AzureADAuthority);
ConfidentialClientApplication clientApp = (ConfidentialClientApplication)clientBuilder.Build();
string[] graphScopes = { "Files.Read.All", "User.Read" };
// Get and save the token.
var authResultBuilder = clientApp.AcquireTokenByAuthorizationCode(
graphScopes,
Request.Params["code"] // The auth 'code' parameter from the Azure redirect.
);
try
{
var authResult = await authResultBuilder.ExecuteAsync();
ViewBag.AccessToken = authResult.AccessToken;
}
catch (Exception e)
{
ViewBag.Error = e.Message;
}
return(View());
}
public async Task <ActionResult> Authorize()
{
ConfidentialClientApplicationBuilder clientBuilder = ConfidentialClientApplicationBuilder.Create(AzureADClientId);
clientBuilder.WithClientSecret(AzureADClientSecret);
clientBuilder.WithRedirectUri(loginRedirectUri.ToString());
clientBuilder.WithAuthority(AzureADAuthority);
ConfidentialClientApplication clientApp = (ConfidentialClientApplication)clientBuilder.Build();
string[] sassScopes = $"{SaaSScopes}".Split(new[] { ' ' });
try
{
// Get and save the token.
var authResultBuilder = clientApp.AcquireTokenByAuthorizationCode(
sassScopes,
Request.Params["code"]
);
var authResult = await authResultBuilder.ExecuteAsync();
var activation = await _assignedUserService.Activate($"{SaaSAPI}/{OfferID}", authResult.AccessToken);
ViewBag.accountName = authResult.Account.Username;
return(View(activation));
}
catch (Exception ex)
{
System.Diagnostics.Trace.WriteLine(ex.ToString());
}
return(View());
}
private static async Task RunAuthCode_Async(MockHttpManager httpManager, ConfidentialClientApplication app)
{
httpManager.AddSuccessTokenResponseMockHandlerForPost();
var result = await app
.AcquireTokenByAuthorizationCode(TestConstants.s_scope, "some-code")
.ExecuteAsync(CancellationToken.None)
.ConfigureAwait(false);
Assert.AreEqual(TokenSource.IdentityProvider, result.AuthenticationResultMetadata.TokenSource);
var acc = await app.GetAccountAsync(result.Account.HomeAccountId.Identifier).ConfigureAwait(false);
result = await app.AcquireTokenSilent(TestConstants.s_scope, acc).ExecuteAsync().ConfigureAwait(false);
Assert.AreEqual(TokenSource.Cache, result.AuthenticationResultMetadata.TokenSource);
}
/// <summary>
/// Authorizes the web application (not the user) to access Microsoft Graph resources by using
/// the Authorization Code flow of OAuth.
/// </summary>
/// <returns>The default view.</returns>
public async Task <ActionResult> Authorize()
{
ConfidentialClientApplicationBuilder clientBuilder = ConfidentialClientApplicationBuilder.Create(Settings.AzureADClientId);
clientBuilder.WithClientSecret(Settings.AzureADClientSecret);
clientBuilder.WithRedirectUri(loginRedirectUri.ToString());
clientBuilder.WithAuthority(Settings.AzureADAuthority);
ConfidentialClientApplication clientApp = (ConfidentialClientApplication)clientBuilder.Build();
string[] graphScopes = { "Files.Read.All", "User.Read" };
var authStateString = Request.QueryString["state"];
var authState = JsonConvert.DeserializeObject <AuthState>(authStateString);
try
{
// Get and save the token.
var authResultBuilder = clientApp.AcquireTokenByAuthorizationCode(
graphScopes,
Request.Params["code"] // The auth 'code' parameter from the Azure redirect.
);
var authResult = await authResultBuilder.ExecuteAsync();
await SaveAuthToken(authState, authResult);
authState.authStatus = "success";
}
catch (Exception ex)
{
System.Diagnostics.Trace.WriteLine(ex.ToString());
authState.authStatus = "failure";
}
// Instead of doing a server-side redirect, we have to do a client-side redirect to get around
// some issues with the display dialog API not getting properly wired up after a server-side redirect
var redirectUrl = Url.Action(nameof(AuthorizeComplete), new { authState = JsonConvert.SerializeObject(authState) });
ViewBag.redirectUrl = redirectUrl;
return(View());
}
