model view controller - mvc azure ad token expiration -

-

i'm building mvc5 app hosted on azure in term used throught wpf app.

as need check user group membership implemented graph api following guidance in article : https://azure.microsoft.com/fr-fr/documentation/samples/active-directory-dotnet-graphapi-web/

it works quite fine time after user logged in access following controller raise access denied error :

public async task<actionresult> index()     {          string uid = claimsprincipal.current.findfirst("http://schemas.microsoft.com/identity/claims/objectidentifier").value;         activedirectoryclient client = authenticationhelper.getactivedirectoryclient();         iuser aduser = client.users.where(u => u.objectid == uid).executeasync().result.currentpage.singleordefault();          ilist<group> groupmembership = new list<group>();          var userfetcher = (iuserfetcher)aduser;          ipagedcollection<idirectoryobject> pagedcollection = await userfetcher.memberof.executeasync();                 {             list<idirectoryobject> directoryobjects = pagedcollection.currentpage.tolist();             foreach (idirectoryobject directoryobject in directoryobjects)             {                 if (directoryobject group)                 {                     var group = directoryobject group;                     groupmembership.add(group);                 }             }             pagedcollection = await pagedcollection.getnextpageasync();         } while (pagedcollection != null);          viewbag.user = aduser.userprincipalname;         viewbag.userdn = aduser.displayname;         viewbag.usergn = aduser.givenname;         viewbag.usermail = aduser.mail;         viewbag.usersn = aduser.surname;          return view(groupmembership);     }

the exception raised on getactivedirectoryclient(), code of method strict copy/paste article in link , looks :

internal class authenticationhelper {     public static string token;      /// <summary>     ///     async task acquire token application.     /// </summary>     /// <returns>async token application.</returns>     public static async task<string> acquiretokenasync()     {         if (token == null || token.isempty())         {             throw new exception("authorization required. ");         }         return token;     }      /// <summary>     ///     active directory client application.     /// </summary>     /// <returns>activedirectoryclient application.</returns>     public static activedirectoryclient getactivedirectoryclient()     {         uri baseserviceuri = new uri(constants.resourceurl);         activedirectoryclient activedirectoryclient =             new activedirectoryclient(new uri(baseserviceuri, constants.tenantid), async () => await acquiretokenasync());         return activedirectoryclient;      } }

this code works right after user has logged in after times token become null , exception raised.

i'm guessing related expiration time, there's way set auto refresh on token ?

thanks !

thanks answering, don't have yet set [authorize] tag azure ad group membership grant access controllers , haven't yet figured out how achieve :)

it seems appliying mofifications authenticationhelper solved issue :

public static activedirectoryclient getactivedirectoryclient()     {         uri baseserviceuri = new uri(constants.resourceurl);         string userobjectid = claimsprincipal.current.findfirst("http://schemas.microsoft.com/identity/claims/objectidentifier").value;         authenticationcontext authcontext = new authenticationcontext(authority, new naivesessioncache(userobjectid));         clientcredential credential = new clientcredential(clientid, appkey);          activedirectoryclient activedirectoryclient = new activedirectoryclient(new uri(baseserviceuri, constants.tenantid), async () =>         {             var result = await authcontext.acquiretokensilentasync(graphurl, credential, new useridentifier(userobjectid, useridentifiertype.uniqueid));              return result.accesstoken;         });          return activedirectoryclient;      }

i don't know if that's clean way thing @ least works.


Comments

Post a Comment

Popular posts from this blog

java - Run spring boot application error: Cannot instantiate interface org.springframework.context.ApplicationListener -

-
i have spring project , try make use spring boot , run @ embadded tomcat following : https://spring.io/guides/gs/rest-service/ this application //@configuration //@enableaspectjautoproxy @springbootapplication @componentscan(basepackages = "gux.prome") public class application { public static void main(string[] args) { springapplication.run(application.class, args); } } if use maven command: mvn spring-boot:run , project starts fine, need debug , run main method @ intelij, exception occurs: exception in thread "main" java.lang.illegalargumentexception: cannot instantiate interface org.springframework.context.applicationlistener : org.springframework.boot.logging.classpathloggingapplicationlistener @ org.springframework.boot.springapplication.createspringfactoriesinstances(springapplication.java:414) @ org.springframework.boot.springapplication.getspringfactoriesinstances(springapplication.java:394) @ org.springframework.bo...
Read more

reactjs - React router and this.props.children - how to pass state to this.props.children -

-
i'm using react-router first time , don't know how think in yet. here's how i'm loading components in nested routes. entry point .js reactdom.render( <router history={hashhistory} > <route path="/" component={app}> <route path="models" component={content}> </route> </router>, document.getelementbyid('app') ); app.js render: function() { return ( <div> <header /> {this.props.children} </div> ); } so child of app content component sent in. i'm using flux , app.js has state , listens changes, don't know how pass state down this.props.children. before using react-router app.js defines children explicitly, passing state natural don't see how now. using couple of react helper methods can add state, props , whatever else this.props.children render: function() { var children = react.ch...
Read more

Excel VBA "Microsoft Windows Common Controls 6.0 (SP6)" Location Changes -

-
i have excel workbook used generate quotations customers. there main page user inputs data, , there buttons generate various pdfs , send them customer. however, 1 user consistently getting error preventing generating , sending pdfs. i beleive "microsoft windows common controls 6.0 (sp6)". it's installed on users' computers. on mine, location "c:\windows\syswow64\mscomctl.ocx" on others "c:\windows\system32\mscomctl.ocx" the user experiencing issues on 32-bit machine, "mscomctl.ocx" file should in system32. have manually put in there, , pointed common controls reference in vba it. issue seems keep reverting looking in syswow64. since folder doesn't exist, can't find it, , can't produce pdfs. i thought perhaps issue user running older version of office (2007) there users on 2013 , 2016. thought perhaps mixture of 64-bit , 32-bit users. user gets sent workbook other users (as quotation process goes further, gets passed ...
Read more