Skip to content

Commit

Permalink
Multi-tenant tests added as recorded tests (#38992)
Browse files Browse the repository at this point in the history
  • Loading branch information
christothes authored Sep 29, 2023
1 parent 7745af5 commit 0fa6301
Show file tree
Hide file tree
Showing 4 changed files with 138 additions and 1 deletion.
2 changes: 1 addition & 1 deletion sdk/identity/Azure.Identity/assets.json
Original file line number Diff line number Diff line change
Expand Up @@ -2,5 +2,5 @@
"AssetsRepo": "Azure/azure-sdk-assets",
"AssetsRepoPrefixPath": "net",
"TagPrefix": "net/identity/Azure.Identity",
"Tag": "net/identity/Azure.Identity_f0e02fe424"
"Tag": "net/identity/Azure.Identity_0224d294dd"
}
Original file line number Diff line number Diff line change
Expand Up @@ -22,5 +22,6 @@
<ProjectReference Include="..\integration\Integration.Identity.Container\Integration.Identity.Container.csproj" />
<None Update="Data\*" CopyToOutputDirectory="PreserveNewest" />
<ContentWithTargetPath Update="Data\*" CopyToOutputDirectory="PreserveNewest" TargetPath="certs\*" />
<Compile Include="$(AzureCoreSharedSources)ForwardsClientCallsAttribute.cs" LinkBase="Shared" />
</ItemGroup>
</Project>
5 changes: 5 additions & 0 deletions sdk/identity/Azure.Identity/tests/IdentityTestEnvironment.cs
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,11 @@ namespace Azure.Identity.Tests
public class IdentityTestEnvironment : TestEnvironment
{
public string IdentityTenantId => GetRecordedVariable("AZURE_IDENTITY_TEST_TENANTID");
public string MultiTenantAppTenantId => GetRecordedVariable("AZURE_IDENTITY_MULTI_TENANT_TENANT_ID");
public string MultiTenantAppClientId => GetRecordedVariable("AZURE_IDENTITY_MULTI_TENANT_CLIENT_ID");
public string MultiTenantAppClientSecret => GetRecordedVariable("AZURE_IDENTITY_MULTI_TENANT_CLIENT_SECRET", options => options.IsSecret());
public string MultiTenantUserName => GetRecordedVariable("AZURE_IDENTITY_MULTI_TENANT_USERNAME");
public string MultiTenantPassword => GetRecordedVariable("AZURE_IDENTITY_MULTI_TENANT_PASSWORD", options => options.IsSecret());
public string Username => GetRecordedVariable("AZURE_IDENTITY_TEST_USERNAME");
public string Password => GetVariable("AZURE_IDENTITY_TEST_PASSWORD");
public string IdentityClientId => GetVariable("AZURE_IDENTITY_TEST_CLIENT_ID");
Expand Down
131 changes: 131 additions & 0 deletions sdk/identity/Azure.Identity/tests/MultiTenantLiveTests.cs
Original file line number Diff line number Diff line change
@@ -0,0 +1,131 @@
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT License.

using System;
using System.Threading.Tasks;
using Azure.Core;
using Azure.Core.TestFramework;
using Azure.Core.Pipeline;
using NUnit.Framework;
using System.Net;

namespace Azure.Identity.Tests
{
public class MultiTenantLiveTests : IdentityRecordedTestBase
{
public MultiTenantLiveTests(bool isAsync) : base(isAsync)
{ }

private IdentityTestClient _client;

[RecordedTest]
public async Task CallGraphWithClientSecret()
{
var tenantId = TestEnvironment.MultiTenantAppTenantId;
var clientId = TestEnvironment.MultiTenantAppClientId;
var secret = TestEnvironment.MultiTenantAppClientSecret;

var options = InstrumentClientOptions(new TokenCredentialOptions());
var credential = InstrumentClient(new ClientSecretCredential(tenantId, clientId, secret, options));
_client = InstrumentClient(new IdentityTestClient(
credential,
new Uri("https://graph.microsoft.com/v1.0/applications/$count"),
options));

var response = await _client.CallGraphAsync("https://graph.microsoft.com/.default");

Assert.AreEqual((int)HttpStatusCode.OK, response.GetRawResponse().Status);
Assert.Greater(response.Value, 0);
}

[RecordedTest]
public async Task GraphWithUsernamePassword()
{
var tenantId = TestEnvironment.MultiTenantAppTenantId;
var clientId = TestEnvironment.MultiTenantAppClientId;
var username = TestEnvironment.MultiTenantUserName;
var password = TestEnvironment.MultiTenantPassword;

var options = InstrumentClientOptions(new TokenCredentialOptions());
var credential = InstrumentClient(new UsernamePasswordCredential(username, password, tenantId, clientId, options));

_client = InstrumentClient(new IdentityTestClient(
credential,
new Uri("https://graph.microsoft.com/v1.0/applications/$count"),
options));

var response = await _client.CallGraphAsync("User.Read");

Assert.AreEqual((int)HttpStatusCode.OK, response.GetRawResponse().Status);
Assert.Greater(response.Value, 0);
}

public class IdentityTestClient
{
public IdentityTestClient(TokenCredential credential, Uri uri, TokenCredentialOptions options)
{
this.credential = credential;
Uri = uri;
_pipeline = HttpPipelineBuilder.Build(options);
}

protected IdentityTestClient() { }

private TokenCredential credential { get; }
private Uri Uri { get; }
private HttpPipeline _pipeline { get; }

[ForwardsClientCalls(true)]
public virtual Response<int> CallGraph(string scope)
{
var tokenRequestContext = new TokenRequestContext(new[] { scope });
AccessToken token = credential.GetTokenAsync(tokenRequestContext, default).GetAwaiter().GetResult();
Request request = _pipeline.CreateRequest();
request.Method = RequestMethod.Get;
request.Uri.Reset(new Uri("https://graph.microsoft.com/v1.0/applications/$count"));
request.Headers.Add("Authorization", $"Bearer {token.Token}");
request.Headers.Add("ConsistencyLevel", "eventual");

Response response = _pipeline.SendRequest(request, default);
if (response.IsError)
{
throw new Exception(response.ReasonPhrase);
}
if (int.TryParse(response.Content.ToString(), out int result))
{
return Response.FromValue(result, response);
}
else
{
throw new Exception("Could not parse response:\n" + response.Content.ToString());
}
}

[ForwardsClientCalls(true)]
public virtual async Task<Response<int>> CallGraphAsync(string scope)
{
var tokenRequestContext = new TokenRequestContext(new[] { scope });
AccessToken token = await credential.GetTokenAsync(tokenRequestContext, default);
Request request = _pipeline.CreateRequest();
request.Method = RequestMethod.Get;
request.Uri.Reset(new Uri("https://graph.microsoft.com/v1.0/applications/$count"));
request.Headers.Add("Authorization", $"Bearer {token.Token}");
request.Headers.Add("ConsistencyLevel", "eventual");

Response response = await _pipeline.SendRequestAsync(request, default);
if (response.IsError)
{
throw new Exception(response.ReasonPhrase);
}
if (int.TryParse(response.Content.ToString(), out int result))
{
return Response.FromValue(result, response);
}
else
{
throw new Exception("Could not parse response:\n" + response.Content.ToString());
}
}
}
}
}

0 comments on commit 0fa6301

Please sign in to comment.