Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support dynamic OpenApiHttpTriggerAuthorization #435

Merged
merged 4 commits into from
Aug 22, 2022
Merged

Support dynamic OpenApiHttpTriggerAuthorization #435

Show file tree
Hide file tree
Changes from 3 commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
5164481
Support dynamic `OpenApiHttpTriggerAuthorization`
jackbatzner May 12, 2022
3a04971
trigger actions re run
jackbatzner May 12, 2022
208f5a6
Updates
jackbatzner Aug 8, 2022
303d238
Code review updates
jackbatzner Aug 18, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 0 additions & 1 deletion docs/openapi-core.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -261,7 +261,6 @@ Suppose you want to customise the look and feels of the Swagger UI page. In this
}
```


### Use CSS and JavaScript Files from CDN ###

Alternatively, you can use both CSS and JavaScript files from CDN, which is from the Internet.
Expand Down
82 changes: 52 additions & 30 deletions docs/openapi-in-proc.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -45,37 +45,59 @@ namespace MyFunctionApp
{
public override void Configure(IFunctionsHostBuilder builder)
{
/* ⬇️⬇️⬇️ Add this ⬇️⬇️⬇️ */
builder.Services.AddSingleton<IOpenApiConfigurationOptions>(_ =>
{
var options = new OpenApiConfigurationOptions()
{
Info = new OpenApiInfo()
{
Version = "1.0.0",
Title = "Swagger Petstore",
Description = "This is a sample server Petstore API designed by [http://swagger.io](http://swagger.io).",
TermsOfService = new Uri("https://github.com/Azure/azure-functions-openapi-extension"),
Contact = new OpenApiContact()
{
Name = "Enquiry",
Email = "[email protected]",
Url = new Uri("https://github.com/Azure/azure-functions-openapi-extension/issues"),
},
License = new OpenApiLicense()
{
Name = "MIT",
Url = new Uri("http://opensource.org/licenses/MIT"),
}
},
Servers = DefaultOpenApiConfigurationOptions.GetHostNames(),
OpenApiVersion = OpenApiVersionType.V2,
IncludeRequestingHostName = true,
ForceHttps = false,
ForceHttp = false,
};

return options;
});
{
var options = new OpenApiConfigurationOptions()
{
Info = new OpenApiInfo()
{
Version = "1.0.0",
Title = "Swagger Petstore",
Description = "This is a sample server Petstore API designed by [http://swagger.io](http://swagger.io).",
TermsOfService = new Uri("https://github.com/Azure/azure-functions-openapi-extension"),
Contact = new OpenApiContact()
{
Name = "Enquiry",
Email = "[email protected]",
Url = new Uri("https://github.com/Azure/azure-functions-openapi-extension/issues"),
},
License = new OpenApiLicense()
{
Name = "MIT",
Url = new Uri("http://opensource.org/licenses/MIT"),
}
},
Servers = DefaultOpenApiConfigurationOptions.GetHostNames(),
OpenApiVersion = OpenApiVersionType.V2,
IncludeRequestingHostName = true,
ForceHttps = false,
ForceHttp = false,
};

return options;
});
/* ⬆️⬆️⬆️ Add this ⬆️⬆️⬆️ */
}
}
}
```

### Injecting `OpenApiHttpTriggerAuthorization` during Startup ###

You may want to inject the `OpenApiHttpTriggerAuthorization` instance during startup, through the `Startup.cs` class. Here's the example:

```csharp
[assembly: FunctionsStartup(typeof(MyFunctionApp.Startup))]
namespace MyFunctionApp
{
public class Startup : FunctionsStartup
{
public override void Configure(IFunctionsHostBuilder builder)
{
/* ⬇️⬇️⬇️ Add this ⬇️⬇️⬇️ */
builder.Services.AddSingleton<IOpenApiHttpTriggerAuthorization, MyOpenApiHttpTriggerAuthorization>();
/* ⬆️⬆️⬆️ Add this ⬆️⬆️⬆️ */
}
}
}
Expand Down
30 changes: 30 additions & 0 deletions docs/openapi-out-of-proc.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -84,3 +84,33 @@ namespace MyFunctionApp
}
}
```

### Injecting `OpenApiHttpTriggerAuthorization` during Startup ###

You may want to inject the `OpenApiHttpTriggerAuthorization` instance during startup, through the `Program.cs` class. Here's the example:

```csharp
namespace MyFunctionApp
{
public class Program
{
public static void Main()
{
var host = new HostBuilder()
.ConfigureFunctionsWorkerDefaults(worker => worker.UseNewtonsoftJson())
.ConfigureOpenApi()
/* ⬇️⬇️⬇️ Add this ⬇️⬇️⬇️ */
.ConfigureServices(services =>
{
services.AddSingleton<IOpenApiHttpTriggerAuthorization, MyOpenApiHttpTriggerAuthorization>();
})
/* ⬆️⬆️⬆️ Add this ⬆️⬆️⬆️ */
.Build();

host.Run();
}
}
}
```


19 changes: 19 additions & 0 deletions ...ensions.OpenApi.FunctionApp.OutOfProc/Configurations/MyOpenApiHttpTriggerAuthorization.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,19 @@
using System.Threading.Tasks;

using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Abstractions;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Configurations;

namespace Microsoft.Azure.Functions.Worker.Extensions.OpenApi.FunctionApp.OutOfProc.Configurations
{
public class MyOpenApiHttpTriggerAuthorization : DefaultOpenApiHttpTriggerAuthorization
{
public override async Task<OpenApiAuthorizationResult> AuthorizeAsync(IHttpRequestDataObject req)
{
var result = default(OpenApiAuthorizationResult);

// Put your custom logic here!

return await Task.FromResult(result).ConfigureAwait(false);
}
}
}
3 changes: 2 additions & 1 deletion samples/Microsoft.Azure.Functions.Worker.Extensions.OpenApi.FunctionApp.OutOfProc/Program.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
using AutoFixture;

using Microsoft.Azure.Functions.Worker.Extensions.OpenApi.Extensions;
using Microsoft.Azure.Functions.Worker.Extensions.OpenApi.FunctionApp.OutOfProc.Configurations;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Abstractions;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Configurations;
using Microsoft.Extensions.DependencyInjection;
Expand Down Expand Up @@ -52,7 +53,7 @@ public static void Main()

return options;
})
;
.AddSingleton<IOpenApiHttpTriggerAuthorization, MyOpenApiHttpTriggerAuthorization>();
})
.Build();

Expand Down
19 changes: 19 additions & 0 deletions ...Extensions.OpenApi.FunctionApp.InProc/Configurations/MyOpenApiHttpTriggerAuthorization.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,19 @@
using System.Threading.Tasks;

using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Abstractions;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Configurations;

namespace Microsoft.Azure.WebJobs.Extensions.OpenApi.FunctionApp.InProc.Configurations
{
public class MyOpenApiHttpTriggerAuthorization : DefaultOpenApiHttpTriggerAuthorization
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

And remove this?

{
public override async Task<OpenApiAuthorizationResult> AuthorizeAsync(IHttpRequestDataObject req)
{
var result = default(OpenApiAuthorizationResult);

// Put your custom logic here!

return await Task.FromResult(result).ConfigureAwait(false);
}
}
}
116 changes: 58 additions & 58 deletions ...s.Extensions.OpenApi.FunctionApp.InProc/Configurations/OpenApiHttpTriggerAuthorization.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,58 +1,58 @@
// using System.Globalization;
// using System.Linq;
// using System.Net;
// using System.Threading.Tasks;

// using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Abstractions;
// using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Configurations;
// using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Extensions;

// namespace Microsoft.Azure.WebJobs.Extensions.OpenApi.FunctionApp.InProc.Configurations
// {
// public class OpenApiHttpTriggerAuthorization : DefaultOpenApiHttpTriggerAuthorization
// {
// public override async Task<OpenApiAuthorizationResult> AuthorizeAsync(IHttpRequestDataObject req)
// {
// var result = default(OpenApiAuthorizationResult);
// var authtoken = (string) req.Headers["Authorization"];
// if (authtoken.IsNullOrWhiteSpace())
// {
// result = new OpenApiAuthorizationResult()
// {
// StatusCode = HttpStatusCode.Unauthorized,
// ContentType = "text/plain",
// Payload = "Unauthorized",
// };

// return await Task.FromResult(result).ConfigureAwait(false);
// }

// if (authtoken.StartsWith("Bearer", ignoreCase: true, CultureInfo.InvariantCulture) == false)
// {
// result = new OpenApiAuthorizationResult()
// {
// StatusCode = HttpStatusCode.Unauthorized,
// ContentType = "text/plain",
// Payload = "Invalid auth format",
// };

// return await Task.FromResult(result).ConfigureAwait(false);
// }

// var token = authtoken.Split(' ').Last();
// if (token != "secret")
// {
// result = new OpenApiAuthorizationResult()
// {
// StatusCode = HttpStatusCode.Forbidden,
// ContentType = "text/plain",
// Payload = "Invalid auth token",
// };

// return await Task.FromResult(result).ConfigureAwait(false);
// }

// return await Task.FromResult(result).ConfigureAwait(false);
// }
// }
// }
using System.Globalization;
using System.Linq;
using System.Net;
using System.Threading.Tasks;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Abstractions;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Configurations;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Extensions;
namespace Microsoft.Azure.WebJobs.Extensions.OpenApi.FunctionApp.InProc.Configurations
{
public class OpenApiHttpTriggerAuthorization : DefaultOpenApiHttpTriggerAuthorization
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we use this as MyOpenApiHttpTriggerAuthorization ?

{
public override async Task<OpenApiAuthorizationResult> AuthorizeAsync(IHttpRequestDataObject req)
{
var result = default(OpenApiAuthorizationResult);
var authtoken = (string)req.Headers["Authorization"];
if (authtoken.IsNullOrWhiteSpace())
{
result = new OpenApiAuthorizationResult()
{
StatusCode = HttpStatusCode.Unauthorized,
ContentType = "text/plain",
Payload = "Unauthorized",
};
return await Task.FromResult(result).ConfigureAwait(false);
}
if (authtoken.StartsWith("Bearer", ignoreCase: true, CultureInfo.InvariantCulture) == false)
{
result = new OpenApiAuthorizationResult()
{
StatusCode = HttpStatusCode.Unauthorized,
ContentType = "text/plain",
Payload = "Invalid auth format",
};
return await Task.FromResult(result).ConfigureAwait(false);
}
var token = authtoken.Split(' ').Last();
if (token != "secret")
{
result = new OpenApiAuthorizationResult()
{
StatusCode = HttpStatusCode.Forbidden,
ContentType = "text/plain",
Payload = "Invalid auth token",
};
return await Task.FromResult(result).ConfigureAwait(false);
}
return await Task.FromResult(result).ConfigureAwait(false);
}
}
}
4 changes: 3 additions & 1 deletion samples/Microsoft.Azure.WebJobs.Extensions.OpenApi.FunctionApp.InProc/Startup.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@
using Microsoft.Azure.Functions.Extensions.DependencyInjection;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Abstractions;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.Core.Configurations;
using Microsoft.Azure.WebJobs.Extensions.OpenApi.FunctionApp.InProc.Configurations;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.OpenApi.Models;

Expand Down Expand Up @@ -48,7 +49,8 @@ public override void Configure(IFunctionsHostBuilder builder)

return options;
})
;
.AddSingleton<IOpenApiHttpTriggerAuthorization, MyOpenApiHttpTriggerAuthorization>();

}
}
}
2 changes: 1 addition & 1 deletion ...soft.Azure.Functions.Worker.Extensions.OpenApi/Extensions/OpenApiHostBuilderExtensions.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ public static IHostBuilder ConfigureOpenApi(this IHostBuilder hostBuilder)
hostBuilder.ConfigureServices(services =>
{
services.AddSingleton<IOpenApiHttpTriggerContext, OpenApiHttpTriggerContext>();
services.AddSingleton<IOpenApiTriggerFunction, OpenApiTriggerFunction>();
services.AddSingleton<IOpenApiTriggerFunction, OpenApiTriggerFunction>();
// services.AddSingleton<DefaultOpenApiHttpTrigger, DefaultOpenApiHttpTrigger>();
});

Expand Down
34 changes: 20 additions & 14 deletions src/Microsoft.Azure.Functions.Worker.Extensions.OpenApi/OpenApiHttpTriggerContext.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -36,14 +36,18 @@ public class OpenApiHttpTriggerContext : IOpenApiHttpTriggerContext
private Assembly _appAssembly;
private IOpenApiConfigurationOptions _configOptions;
private IOpenApiCustomUIOptions _uiOptions;
private IOpenApiHttpTriggerAuthorization _httpTriggerAuthorization;

/// <summary>
/// Initializes a new instance of the <see cref="OpenApiHttpTriggerContext"/> class.
/// </summary>
/// <param name="configOptions"><see cref="IOpenApiConfigurationOptions"/> instance.</param>
public OpenApiHttpTriggerContext(IOpenApiConfigurationOptions configOptions = null)
/// <param name="httpTriggerAuthorization"><see cref="IOpenApiHttpTriggerAuthorization"/> instance.</param>
public OpenApiHttpTriggerContext(IOpenApiConfigurationOptions configOptions = null, IOpenApiHttpTriggerAuthorization httpTriggerAuthorization = null)
{
this._configOptions = configOptions;
this._httpTriggerAuthorization = httpTriggerAuthorization;

this.PackageAssembly = this.GetAssembly<ISwaggerUI>();

var host = HostJsonResolver.Resolve();
Expand Down Expand Up @@ -102,6 +106,20 @@ public virtual IOpenApiCustomUIOptions OpenApiCustomUIOptions
}
}

/// <inheritdoc />
public virtual IOpenApiHttpTriggerAuthorization OpenApiHttpTriggerAuthorization
{
get
{
if (this._httpTriggerAuthorization.IsNullOrDefault())
{
this._httpTriggerAuthorization = OpenApiHttpTriggerAuthorizationResolver.Resolve(this.ApplicationAssembly);
}

return this._httpTriggerAuthorization;
}
}

/// <inheritdoc />
public virtual HttpSettings HttpSettings { get; }

Expand Down Expand Up @@ -146,19 +164,7 @@ public virtual async Task<IOpenApiHttpTriggerContext> SetApplicationAssemblyAsyn
/// <inheritdoc />
public virtual async Task<OpenApiAuthorizationResult> AuthorizeAsync(IHttpRequestDataObject req)
{
var result = default(OpenApiAuthorizationResult);
var type = this.ApplicationAssembly
.GetLoadableTypes()
.SingleOrDefault(p => p.HasInterface<IOpenApiHttpTriggerAuthorization>());
if (type.IsNullOrDefault())
{
return result;
}

var auth = Activator.CreateInstance(type) as IOpenApiHttpTriggerAuthorization;
result = await auth.AuthorizeAsync(req).ConfigureAwait(false);

return result;
return await this.OpenApiHttpTriggerAuthorization.AuthorizeAsync(req).ConfigureAwait(false);
}

/// <inheritdoc />
Expand Down
Loading