tmp

azaslonov · azaslonov · commit 8eda55be110a · 2021-12-16T15:36:03.000-08:00
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -62,6 +62,7 @@
         "webpack-merge": "^5.2.0"
     },
     "dependencies": {
+        "@azure/msal-browser": "^2.20.0",
         "@braintree/sanitize-url": "^5.0.2",
         "@monaco-editor/loader": "^1.2.0",
         "@paperbits/azure": "0.1.468",
diff --git a/src/apim.design.module.ts b/src/apim.design.module.ts
@@ -4,7 +4,6 @@ import { MapiObjectStorage, MapiBlobStorage } from "./persistence";
 import { DefaultAuthenticator } from "./authentication/defaultAuthenticator";
 import { IInjector, IInjectorModule } from "@paperbits/common/injection";
 import { ConsoleLogger } from "@paperbits/common/logging";
-import { DefaultSessionManager } from "@paperbits/common/persistence/defaultSessionManager";
 import { ListOfApisModule } from "./components/apis/list-of-apis/ko/listOfApis.module";
 import { ListOfApisEditorModule } from "./components/apis/list-of-apis/ko/listOfApisEditor.module";
 import { DetailsOfApiModule } from "./components/apis/details-of-api/ko/detailsOfApi.module";
@@ -61,11 +60,12 @@ import { HistoryRouteHandler } from "@paperbits/common/routing";
 import { OldContentRouteGuard } from "./routing/oldContentRouteGuard";
 import { ArmAuthenticator } from "./authentication/armAuthenticator";
 import { DefaultSettingsProvider } from "./configuration";
-import { DefaultSessionManager } from "./authentication/defaultSessionManager";
 import { AzureResourceManagementService } from "./services/armService";
 import { ApiProductsModule } from "./components/apis/api-products/ko/apiProducts.module";
 import { ApiProductsEditorModule } from "./components/apis/api-products/ko/apiProductsEditor.module";
 import { RuntimeConfigurator } from "./services/runtimeConfigurator";
+import { AccessTokenRefrsher } from "./authentication/accessTokenRefresher";
+import { DefaultSessionManager } from "@paperbits/common/persistence/defaultSessionManager";
 
 
 export class ApimDesignModule implements IInjectorModule {
@@ -136,10 +136,11 @@ export class ApimDesignModule implements IInjectorModule {
         injector.bindToCollection("autostart", HistoryRouteHandler);
 
 
-        injector.bindToCollection("autostart", AccessTokenRefrsher);
+        // injector.bindToCollection("autostart", AccessTokenRefrsher);
         injector.bindToCollection("autostart", RuntimeConfigurator);
         injector.bindSingleton("sessionManager", DefaultSessionManager);
-        injector.bindInstance("configFileUri", "/config.design.json");
+        // injector.bindInstance("configFileUri", "/config.design.json");
+        injector.bindInstance("configFileUri", "/config.json");
         injector.bindSingleton("settingsProvider", DefaultSettingsProvider);
         injector.bindSingleton("sessionManager", DefaultSessionManager);
         injector.bindSingleton("armService", AzureResourceManagementService);
diff --git a/src/apim.runtime.module.ts b/src/apim.runtime.module.ts
@@ -24,7 +24,6 @@ import { ApiProductsTiles } from "./components/apis/api-products/ko/runtime/api-
 import { ApiDetails } from "./components/apis/details-of-api/ko/runtime/api-details";
 import { ApiHistory } from "./components/apis/history-of-api/ko/runtime/api-history";
 import { ApiList, ApiListDropdown, ApiListTiles } from "./components/apis/list-of-apis/ko/runtime";
-import { DefaultAuthenticator } from "./components/defaultAuthenticator";
 import { FileInput } from "./components/file-input/file-input";
 import { CodeSnippet } from "./components/operations/operation-details/ko/runtime/code-snippet";
 import { Authorization } from "./components/operations/operation-details/ko/runtime/authorization";
@@ -60,7 +59,7 @@ import { AadSignOutRouteGuard } from "./routing/aadSignoutRouteGuard";
 import { RouteHelper } from "./routing/routeHelper";
 import { SignOutRouteGuard } from "./routing/signOutRouteGuard";
 import { StaticUserService } from "./services";
-import { AadService } from "./services/aadService";
+import { AzureActiveDirectoryService } from "./services/aadService";
 import { AnalyticsService } from "./services/analyticsService";
 import { ApiService } from "./services/apiService";
 import { BackendService } from "./services/backendService";
@@ -73,6 +72,11 @@ import { TenantService } from "./services/tenantService";
 import { UsersService } from "./services/usersService";
 import { ApimSettingsProvider } from "./configuration/apimSettingsProvider";
 import { AccessTokenRefrsher } from "./authentication/accessTokenRefresher";
+import { DefaultSettingsProvider, StaticSettingsProvider } from "./configuration";
+import { HistoryRouteHandler, LocationRouteHandler } from "@paperbits/common/routing";
+import { SettingNames } from "./constants";
+import { XmlHttpRequestClient } from "@paperbits/common/http";
+import { DefaultAuthenticator } from "./authentication/defaultAuthenticator";
 
 export class ApimRuntimeModule implements IInjectorModule {
     public register(injector: IInjector): void {
@@ -155,6 +159,6 @@ export class ApimRuntimeModule implements IInjectorModule {
             injector.bindInstance("configFileUri", "/config.runtime.json");
             injector.bindSingleton("settingsProvider", DefaultSettingsProvider);
         }
-        injector.bindToCollection("autostart", AccessTokenRefrsher)
+        // injector.bindToCollection("autostart", AccessTokenRefrsher);
     }
 }
diff --git a/src/authentication/accessToken.ts b/src/authentication/accessToken.ts
@@ -95,6 +95,7 @@ export class AccessToken {
     }
 
     public isExpired(): boolean {
+        return false;
         const now = new Date();
         return now > this.expires;
     }
diff --git a/src/authentication/armAuthenticator.ts b/src/authentication/armAuthenticator.ts
@@ -1,23 +1,23 @@
 import * as Msal from "@azure/msal-browser";
-import { Utils } from "../utils";
 import { IAuthenticator, AccessToken } from ".";
 
 
 const aadClientId = "a962e1ed-5694-4abe-9e9b-d08d35877efc"; // test app
-const scopes = ["https://management.azure.com/user_impersonation"];
-const loginRequest = { scopes: ["openid", "profile", "https://management.azure.com/user_impersonation"] };
-
+const loginRequest = { scopes: ["openid", "profile", "https://management.azure.com/user_impersonation"], account: null };
+const authority = "https://login.microsoftonline.com/common";
+const redirectUri = "https://apimanagement-cors-proxy-df.azure-api.net/portal/signin-aad";
 
 export class ArmAuthenticator implements IAuthenticator {
     private accessToken: AccessToken;
     private msalInstance: Msal.PublicClientApplication;
+    private authPromise: Promise<AccessToken>;
 
     constructor() {
         const msalConfig: Msal.Configuration = {
             auth: {
                 clientId: aadClientId,
-                authority: "https://login.microsoftonline.com/common",
-                redirectUri: "https://apimanagement-cors-proxy-df.azure-api.net/portal/signin-aad",
+                authority: authority,
+                redirectUri: redirectUri
             },
             cache: {
                 cacheLocation: "sessionStorage", // This configures where your cache will be stored
@@ -26,55 +26,18 @@ export class ArmAuthenticator implements IAuthenticator {
         };
 
         this.msalInstance = new Msal.PublicClientApplication(msalConfig);
-        this.checkCallbacks();
     }
 
-    public async checkCallbacks(): Promise<void> {
+    public async checkCallbacks(): Promise<Msal.AuthenticationResult> {
         try {
-            const response = await this.msalInstance.handleRedirectPromise();
-
-            debugger;
 
-            if (response !== null) {
-                // sessionStorage[tokenKey] = response.idToken;
-                // this.onLogin.next(true);
-
-                // this.checkToken();
-            }
+            return await this.msalInstance.handleRedirectPromise();
         }
         catch (error) {
             console.error(error);
         }
     }
 
-
-
-    private async getTokenRedirect(request): Promise<Msal.AuthenticationResult> {
-        const account = this.getAccount();
-
-        if (!account) {
-            await this.msalInstance.acquireTokenRedirect(request);
-            return;
-        }
-
-        request.account = account;
-
-        try {
-            return await this.msalInstance.acquireTokenSilent(request);
-        }
-        catch (error) {
-            console.warn("silent token acquisition fails. acquiring token using redirect");
-
-            if (error instanceof Msal.InteractionRequiredAuthError) {
-                // fallback to interaction when silent call fails
-                await this.msalInstance.acquireTokenRedirect(request);
-            }
-            else {
-                console.warn(error);
-            }
-        }
-    }
-
     private getAccount(): Msal.AccountInfo {
         const accounts = this.msalInstance.getAllAccounts();
 
@@ -85,75 +48,59 @@ export class ArmAuthenticator implements IAuthenticator {
         return accounts[0];
     }
 
-    private async tryAcquireToken(request: any): Promise<any> {
+    private async tryAcquireToken(): Promise<AccessToken> {
         const account = this.getAccount();
 
         if (!account) {
-            await this.msalInstance.acquireTokenRedirect(request);
+            const callbackResult = await this.checkCallbacks();
+
+            if (callbackResult) {
+                const parsedToken = AccessToken.parse(`${callbackResult.tokenType} ${callbackResult.accessToken}`);
+                return parsedToken;
+            }
+
+            await this.msalInstance.acquireTokenRedirect(loginRequest);
             return;
         }
 
-        request.account = account;
+        loginRequest.account = account;
 
         try {
-            const result = await this.msalInstance.acquireTokenSilent(request);
-            debugger;
+            const result = await this.msalInstance.acquireTokenSilent(loginRequest);
+            const token = AccessToken.parse(`${result.tokenType} ${result.accessToken}`);
+
+            return token;
         }
         catch (error) {
-            console.warn("silent token acquisition fails. acquiring token using redirect");
-
             if (error instanceof Msal.InteractionRequiredAuthError) {
                 // fallback to interaction when silent call fails
-                await this.msalInstance.acquireTokenRedirect(request);
+                await this.msalInstance.acquireTokenRedirect(loginRequest);
             }
             else {
                 console.warn(error);
             }
         }
 
-
-        console.log("2");
-        // await Utils.delay(1);
-
-        // if (!response.accessToken) {
-        //     throw new Error(`Unable to acquire ARM token.`);
-        // }
-
-        // const accessToken = AccessToken.parse(`Bearer ${response.accessToken}`);
-        // this.setAccessToken(accessToken);
-
-
-
-        // setTimeout(this.tryAcquireToken.bind(this), 30 * 60 * 1000);  // scheduling token refresh in 30 min
-
-        // return accessToken;
-
-
         return null;
     }
 
-    public async getAccessToken(): Promise<AccessToken> {
-        if (this.accessToken && !this.accessToken.isExpired()) {
-            return this.accessToken;
-        }
-
-        const storedAccessToken = sessionStorage.getItem("armAccessToken");
-
-        if (storedAccessToken) {
-            const parsedToken = AccessToken.parse(storedAccessToken);
+    private async startGettingToken(): Promise<AccessToken> {
+        const accessToken = await this.tryAcquireToken();
+        return accessToken;
+    }
 
-            if (!parsedToken.isExpired()) {
-                return parsedToken;
-            }
+    public getAccessToken(): Promise<AccessToken> {
+        if (this.authPromise) {
+            return this.authPromise;
         }
 
-        const accessToken = await this.tryAcquireToken(loginRequest);
-        return accessToken;
+        this.authPromise = this.startGettingToken();
+        return this.authPromise;
     }
 
     public async getAccessTokenAsString(): Promise<string> {
         const accessToken = await this.getAccessToken();
-        return accessToken.toString();
+        return accessToken?.toString();
     }
 
     public async setAccessToken(accessToken: AccessToken): Promise<void> {
diff --git a/src/components/app/app.ts b/src/components/app/app.ts
@@ -9,6 +9,8 @@ import { IAuthenticator } from "../../authentication";
 import { Utils } from "../../utils";
 import { Bag } from "@paperbits/common";
 import { SettingNames } from "../../constants";
+import { AzureResourceManagementService } from "../../services/armService";
+import { SessionManager } from "@paperbits/common/persistence/sessionManager";
 
 const startupError = `Unable to start the portal`;
 
@@ -21,7 +23,7 @@ export class App {
         private readonly settingsProvider: ISettingsProvider,
         private readonly authenticator: IAuthenticator,
         private readonly viewManager: ViewManager,
-        private readonly eventManager: EventManager
+        private readonly eventManager: EventManager,
         private readonly siteService: ISiteService,
         private readonly armService: AzureResourceManagementService,
         private readonly sessionManager: SessionManager
diff --git a/src/components/users/signin-social/ko/runtime/signin-aad-b2c.ts b/src/components/users/signin-social/ko/runtime/signin-aad-b2c.ts
@@ -6,7 +6,7 @@ import { Component, OnMounted, Param, RuntimeComponent } from "@paperbits/common
 import { SettingNames } from "../../../../../constants";
 import { AadB2CClientConfig } from "../../../../../contracts/aadB2CClientConfig";
 import { ValidationReport } from "../../../../../contracts/validationReport";
-import { AadService } from "../../../../../services";
+import { AzureActiveDirectoryService } from "../../../../../services";
 
 
 const aadb2cResetPasswordErrorCode = "AADB2C90118";
@@ -20,7 +20,7 @@ const aadb2cResetPasswordErrorCode = "AADB2C90118";
 })
 export class SignInAadB2C {
     constructor(
-        private readonly aadService: AadService,
+        private readonly aadService: AzureActiveDirectoryService,
         private readonly eventManager: EventManager,
         private readonly settingsProvider: ISettingsProvider
     ) {
diff --git a/src/components/users/signin-social/ko/runtime/signin-aad.ts b/src/components/users/signin-social/ko/runtime/signin-aad.ts
@@ -4,7 +4,7 @@ import { ISettingsProvider } from "@paperbits/common/configuration";
 import { EventManager } from "@paperbits/common/events";
 import { Component, Param, RuntimeComponent } from "@paperbits/common/ko/decorators";
 import { ValidationReport } from "../../../../../contracts/validationReport";
-import { AadService } from "../../../../../services";
+import { AzureActiveDirectoryService } from "../../../../../services";
 import { SettingNames, defaultAadTenantName } from "./../../../../../constants";
 import { AadClientConfig } from "./../../../../../contracts/aadClientConfig";
 
@@ -19,7 +19,7 @@ import { AadClientConfig } from "./../../../../../contracts/aadClientConfig";
 })
 export class SignInAad {
     constructor(
-        private readonly aadService: AadService,
+        private readonly aadService: AzureActiveDirectoryService,
         private readonly eventManager: EventManager,
         private readonly settingsProvider: ISettingsProvider
     ) {
diff --git a/src/persistence/mapiBlobStorage.ts b/src/persistence/mapiBlobStorage.ts

Original file line number	Diff line number	Diff line change
`@@ -95,6 +95,7 @@ export class AccessToken {`
`95`	`95`	`}`
`96`	`96`
`97`	`97`	`public isExpired(): boolean {`
	`98`	`+ return false;`
`98`	`99`	`const now = new Date();`
`99`	`100`	`return now > this.expires;`
`100`	`101`	`}`