internal async Task <WsTrustResponse> GetWsTrustResponseAsync(
UserAuthType userAuthType,
string cloudAudienceUrn,
WsTrustEndpoint endpoint,
string username,
SecureString securePassword)
{
string wsTrustRequestMessage = userAuthType == UserAuthType.IntegratedAuth
? endpoint.BuildTokenRequestMessageWindowsIntegratedAuth(cloudAudienceUrn)
: endpoint.BuildTokenRequestMessageUsernamePassword(
cloudAudienceUrn,
username,
new string(securePassword.PasswordToCharArray()));
try
{
WsTrustResponse wsTrustResponse = await _serviceBundle.WsTrustWebRequestManager.GetWsTrustResponseAsync(
endpoint, wsTrustRequestMessage, _requestContext).ConfigureAwait(false);
_requestContext.Logger.Info($"Token of type '{wsTrustResponse.TokenType}' acquired from WS-Trust endpoint. ");
return(wsTrustResponse);
}
catch (Exception ex)
{
throw new MsalClientException(
MsalError.ParsingWsTrustResponseFailed,
"There was an error parsing WS-Trust response from the endpoint. This may occur if there is an issue with your ADFS configuration."
+ " See https://aka.ms/msal-net-iwa-troubleshooting for more details. Error Message: " + ex.Message,
ex);
}
}
internal async Task <WsTrustResponse> GetWsTrustResponseAsync(
UserAuthType userAuthType,
string cloudAudienceUrn,
WsTrustEndpoint endpoint,
string username,
SecureString securePassword)
{
string wsTrustRequestMessage = userAuthType == UserAuthType.IntegratedAuth
? endpoint.BuildTokenRequestMessageWindowsIntegratedAuth(cloudAudienceUrn)
: endpoint.BuildTokenRequestMessageUsernamePassword(
cloudAudienceUrn,
username,
new string(securePassword.PasswordToCharArray()));
try
{
WsTrustResponse wsTrustResponse = await _serviceBundle.WsTrustWebRequestManager.GetWsTrustResponseAsync(
endpoint, wsTrustRequestMessage, _requestContext).ConfigureAwait(false);
_requestContext.Logger.Info($"Token of type '{wsTrustResponse.TokenType}' acquired from WS-Trust endpoint. ");
return(wsTrustResponse);
}
catch (Exception ex)
{
throw new MsalClientException(
MsalError.ParsingWsTrustResponseFailed,
ex.Message,
ex);
}
}
internal async Task <WsTrustResponse> GetWsTrustResponseAsync(
UserAuthType userAuthType,
string cloudAudienceUrn,
WsTrustEndpoint endpoint,
IUsernameInput usernameInput)
{
// TODO: need to clean up the casting to UsernamePasswordInput as well as removing the PasswordToCharArray
// since we're putting the strings onto the managed heap anyway.
string wsTrustRequestMessage = userAuthType == UserAuthType.IntegratedAuth
? endpoint.BuildTokenRequestMessageWindowsIntegratedAuth(cloudAudienceUrn)
: endpoint.BuildTokenRequestMessageUsernamePassword(
cloudAudienceUrn,
usernameInput.UserName,
new string(((UsernamePasswordInput)usernameInput).PasswordToCharArray()));
try
{
WsTrustResponse wsTrustResponse = await _serviceBundle.WsTrustWebRequestManager.GetWsTrustResponseAsync(
endpoint, wsTrustRequestMessage, _requestContext).ConfigureAwait(false);
_requestContext.Logger.Info($"Token of type '{wsTrustResponse.TokenType}' acquired from WS-Trust endpoint");
return(wsTrustResponse);
}
catch (Exception ex)
{
throw MsalExceptionFactory.GetClientException(
CoreErrorCodes.ParsingWsTrustResponseFailed,
ex.Message,
ex);
}
}
