Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Private Preview AAD: Adds AAD support to the SDK #1798

Merged
merged 35 commits into from
Sep 24, 2020
Merged

Private Preview AAD: Adds AAD support to the SDK #1798

merged 35 commits into from
Sep 24, 2020

Conversation

j82w
Copy link
Contributor

@j82w j82w commented Aug 21, 2020
edited
Loading

Pull Request Template

Description

Adds a constructor to take a TokenCredential

Adds a new TokenCredentialCache which store the AAD token while it is valid, and has a background task to refresh the token roughly 25% of the token lifespan.

AuthorizationTokenProvider is created as a base contract for all the authorization interfaces. Each authorization type now has it's own implementation. This avoids runtime exceptions and all the if else logic that is copy pasted everywhere.

Type of change

Please delete options that are not relevant.

  • [] Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • [] Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • [] This change requires a documentation update

Closing issues

To automatically close an issue: closes #IssueNumber

junyguo and others added 7 commits August 5, 2020 18:34
@junyguo
Merged PR 356078: Send AAD Token In Authorization Header
5a6bdec 
Send AAD token in authorization header. Add a constructor of CosmosClient that takes TokenCredential as an input. Token will be obtained from TokenCredential, cached, and efficiently refreshed in CosmosClient.

Update versions of some DLLs (e.g. System.Threading.Tasks.Extensions) as required by [Azure.Core](https://www.nuget.org/packages/Azure.Core/) dependencies.

Tests of this change are in !337606 (See /Product/SDK/.net/Microsoft.Azure.Cosmos.Friends/tests/TokenCredentialCacheTests.cs and /Product/Tests/CosmosFabricTest/TestClass/AzureActiveDirectoryTests/AadLegacyGatewayTests.cs)

## Type of change
- [ ] New feature (non-breaking change which adds functionality)

## Assignee
junyguo
1. Fixed all the merge conflicts from cherry pick
071d368 
2. Switched from a token refresh that only occurred when it was expiring to a background task that continuously updates the token. This increases availability because the last 5 minutes there might a service outage and the token won't get refreshed in time.
merge to latest
e7a989b
InitTest
8401f05
Adding test
55bd92b
Make constructor public for flag
f744db5
Adds emulator flag
20df14d
@j82w j82w self-assigned this Aug 21, 2020
github-actions[bot]
github-actions bot previously requested changes Aug 21, 2020
View reviewed changes
Copy link

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please follow the required format: "[Internal] Category: (Adds|Fixes|Refactors) Description"

Examples:
Diagnostics: Adds GetElapsedClientLatency to CosmosDiagnostics
PartitionKey: Fixes null reference when using default(PartitionKey)
[v4] Client Encryption: Refactors code to external project
[Internal] Query: Adds code generator for CosmosNumbers for easy additions in the future.

@j82w j82w changed the title Draft [Internal] Private preview AAD: This adds AAD support to the SDK [Internal] Private preview AAD: Adds AAD support to the SDK Sep 17, 2020
@github-actions github-actions bot dismissed their stale review September 17, 2020 21:11

All good!

@j82w j82w changed the title [Internal] Preview AAD: Adds AAD support to the SDK Private Preview AAD: Adds AAD support to the SDK Sep 22, 2020
ealsur
ealsur previously approved these changes Sep 23, 2020
View reviewed changes
Microsoft.Azure.Cosmos/src/Authorization/TokenCredentialCache.cs Outdated Show resolved Hide resolved
ealsur
ealsur previously approved these changes Sep 23, 2020
View reviewed changes
Copy link
Member

@ealsur ealsur left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

FabianMeiswinkel
FabianMeiswinkel previously approved these changes Sep 23, 2020
View reviewed changes
Copy link
Member

@FabianMeiswinkel FabianMeiswinkel left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@j82w j82w dismissed stale reviews from FabianMeiswinkel and ealsur via c2ca390 September 24, 2020 14:18
@j82w j82w merged commit 3513e90 into master Sep 24, 2020
@j82w j82w deleted the users/jawilley/aad/AddAAD branch September 24, 2020 19:45
@ghost
Copy link

ghost commented Dec 15, 2021

Closing due to in-activity, pease feel free to re-open.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@abhijitpai abhijitpai abhijitpai left review comments

@visridha visridha visridha left review comments

@bchong95 bchong95 bchong95 left review comments

@kirankumarkolli kirankumarkolli kirankumarkolli approved these changes

@github-actions github-actions[bot] github-actions[bot] left review comments

@FabianMeiswinkel FabianMeiswinkel FabianMeiswinkel left review comments

@ealsur ealsur ealsur left review comments

@khdang khdang Awaiting requested review from khdang khdang is a code owner

@kirillg kirillg Awaiting requested review from kirillg kirillg is a code owner

@sboshra sboshra Awaiting requested review from sboshra sboshra is a code owner

Assignees

@j82w j82w

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
8 participants
@j82w @ealsur @bchong95 @kirankumarkolli @visridha @abhijitpai @FabianMeiswinkel @junyguo