// methods will get a new token.
public AuthenticationResult GetNewAuthenticationResult(ref string strErrors)
{
// check which type of token to acquire by checking to see if a refresh token is available
// (indicating OAuth Authz code grant flow)
if (this.AadAuthenticationResult.RefreshToken == null)
{
AzureADAuthentication appToken = new AzureADAuthentication();
AuthenticationResult applicationAuthnResult = appToken.GetAuthenticationResult(StringConstants.Tenant,
StringConstants.ClientId, StringConstants.ClientSecret,
StringConstants.Resource, StringConstants.AuthenticationEndpoint, ref strErrors);
return(applicationAuthnResult);
}
else
{
AzureADAuthentication appToken = new AzureADAuthentication();
AuthenticationResult userAuthnResult = appToken.GetAuthenticationResult(StringConstants.Tenant,
StringConstants.ClientId, StringConstants.RedirectUri,
StringConstants.Resource, StringConstants.AuthenticationEndpoint, ref strErrors);
return(userAuthnResult);
}
}
/// <summary>
/// The Index method is the main method called when the front page of the website is launched. This method:
/// 1. authenticates the application
/// 2. performs requested actions in response to form submissions
/// 3. calls the model to retrieve user data
/// 4. calls the view to display user data
/// </summary>
/// <returns>ActionResult (generally a View).</returns>
public ActionResult Index()
{
string strErrors = string.Empty;
// check if we have changed authentication parameters
string strFormAction = this.Request["submitButton"];
if (strFormAction == "applicationUpdate")
{
Org.WhichCred(this.Request["WhichCred"]);
StringConstants.ClientId = this.Request["AppId"];
StringConstants.ClientSecret = this.Request["AppSecret"];
StringConstants.AppObjectId = this.Request["AppObjectId"];
StringConstants.Tenant = this.Request["AppTenant"];
}
// use ADAL library to connect to AAD tenant using authentication parameters
string baseGraphUri = StringConstants.BaseGraphUri + StringConstants.Tenant;
GraphQuery graphCall = new GraphQuery();
graphCall.ApiVersion = StringConstants.ApiVersion;
graphCall.BaseGraphUri = baseGraphUri;
// get token using OAuth Authorization Code
AzureADAuthentication aadAuthentication = new AzureADAuthentication();
AuthenticationResult authenticationResult = aadAuthentication.GetAuthenticationResult(
StringConstants.Tenant,
StringConstants.ClientId,
StringConstants.ClientSecret,
StringConstants.Resource,
StringConstants.AuthenticationEndpoint,
ref strErrors);
if (authenticationResult != null)
{
ViewBag.Message = "Authentication succeeded!";
// initialize view data based on default or query string UPN
NameValueCollection queryValues = Request.QueryString;
string strUpn = queryValues["upn"];
// initialize graph
graphCall.aadAuthentication = aadAuthentication;
graphCall.aadAuthentication.AadAuthenticationResult = authenticationResult;
// configure org and extensions model objects
OrgChart.Models.Org org = new OrgChart.Models.Org(graphCall);
OrgChart.Models.DirectoryExtensions extensions = new OrgChart.Models.DirectoryExtensions(graphCall);
// retrieve template user containing all extensions and add manager UPN
ViewBag.ExtensionRegistryUser = extensions.GetExtensionRegistryUser(ref strErrors);
ViewBag.ExtensionRegistryUser["managerUserPrincipalName"] = org.GetUsersManager(DirectoryExtensions.GetExtensionRegistryUserUpn());
// setup JObject for setuser by enumerating registry user
JObject graphUser = new JObject();
foreach (JProperty property in ViewBag.ExtensionRegistryUser.Properties())
{
if (property.Name.StartsWith(DirectoryExtensions.ExtensionPropertyPrefix) || Org.StandardAttributes().Contains(property.Name))
{
string value = this.Request[property.Name];
graphUser[property.Name] = (value == string.Empty) ? null : value;
}
}
// strFormAction set at top of Index() to process auth parameter actions, process the rest of the actions here
switch (strFormAction)
{
case "userUpdate":
// set display name, manager, job title, trio, skype for given UPN
extensions.SetUser(graphUser, ref strErrors);
// show the user, unless trio is set, then show the manager
strUpn = this.Request["userPrincipalName"];
if ((string)graphUser[DirectoryExtensions.GetExtensionName("trio")] != string.Empty)
{
strUpn = this.Request["managerUserPrincipalName"];
}
break;
case "userCreate":
// create user with given display name, UPN, and manager, show the new user
extensions.CreateUser(graphUser, ref strErrors);
strUpn = (string)graphUser["userPrincipalName"];
break;
case "userDelete":
// delete user with given UPN
org.DeleteUser((string)graphUser["userPrincipalName"], ref strErrors);
break;
case "extensionCreate":
{
// register the passed extension
string strExtension = this.Request["Extension"];
if (extensions.RegisterExtension(strExtension, ref strErrors))
{
// set this extension value to "registered" on the "registry" object
ViewBag.ExtensionRegistryUser[DirectoryExtensions.GetExtensionName(strExtension)] = "reserved";
JObject returnedUser = extensions.SetUser(ViewBag.ExtensionRegistryUser, ref strErrors);
}
}
break;
}
// may have changed attributes, extension values, extension registration, or tenant credentials, re-retrieve extension registry user
ViewBag.ExtensionRegistryUser = extensions.GetExtensionRegistryUser(ref strErrors);
ViewBag.ExtensionRegistryUser["managerUserPrincipalName"] = org.GetUsersManager(DirectoryExtensions.GetExtensionRegistryUserUpn());
// no UPN provided, get the UPN of the first user instead
if (strUpn == null)
{
strUpn = org.GetFirstUpn();
}
// initialize the ViewBag if we have a UPN
if (strUpn != null)
{
string strTrio = queryValues["trio"];
bool bTrio = strTrio != null && string.Equals(strTrio, "true", StringComparison.CurrentCultureIgnoreCase);
ViewBag.AncestorsAndMainPerson = org.GetAncestorsAndMain(strUpn, bTrio, ref strErrors);
ViewBag.DirectsOfDirects = org.GetDirectsOfDirects(strUpn, bTrio, ref strErrors);
ViewBag.strErrors = strErrors;
}
}
else
{
ViewBag.Message = "Authentication Failed!";
}
return this.View();
}
// methods will get a new token.
public AuthenticationResult GetNewAuthenticationResult(ref string strErrors)
{
// check which type of token to acquire by checking to see if a refresh token is available
// (indicating OAuth Authz code grant flow)
if (this.AadAuthenticationResult.RefreshToken == null)
{
AzureADAuthentication appToken = new AzureADAuthentication();
AuthenticationResult applicationAuthnResult = appToken.GetAuthenticationResult(StringConstants.Tenant,
StringConstants.ClientId, StringConstants.ClientSecret,
StringConstants.Resource, StringConstants.AuthenticationEndpoint, ref strErrors);
return applicationAuthnResult;
}
else
{
AzureADAuthentication appToken = new AzureADAuthentication();
AuthenticationResult userAuthnResult = appToken.GetAuthenticationResult(StringConstants.Tenant,
StringConstants.ClientId, StringConstants.RedirectUri,
StringConstants.Resource, StringConstants.AuthenticationEndpoint, ref strErrors);
return userAuthnResult;
}
}
