From 81c3f192d9982c1038d628fe051ea30ac1db9fc5 Mon Sep 17 00:00:00 2001
From: Lee Parrish <30470292+LeeParrishMSFT@users.noreply.github.com>
Date: Wed, 14 Apr 2021 11:52:47 -0500
Subject: [PATCH 1/2] Implement TeamsSSOExchangeMiddleware
---
.../TeamsSSOTokenExchangeMiddleware.java | 247 ++++++++++++++++++
1 file changed, 247 insertions(+)
create mode 100644 libraries/bot-builder/src/main/java/com/microsoft/bot/builder/teams/TeamsSSOTokenExchangeMiddleware.java
diff --git a/libraries/bot-builder/src/main/java/com/microsoft/bot/builder/teams/TeamsSSOTokenExchangeMiddleware.java b/libraries/bot-builder/src/main/java/com/microsoft/bot/builder/teams/TeamsSSOTokenExchangeMiddleware.java
new file mode 100644
index 000000000..ac0977255
--- /dev/null
+++ b/libraries/bot-builder/src/main/java/com/microsoft/bot/builder/teams/TeamsSSOTokenExchangeMiddleware.java
@@ -0,0 +1,247 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MT License.
+
+package com.microsoft.bot.builder.teams;
+
+import java.net.HttpURLConnection;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.concurrent.CompletableFuture;
+
+import com.fasterxml.jackson.databind.JsonNode;
+import com.microsoft.bot.builder.InvokeResponse;
+import com.microsoft.bot.builder.Middleware;
+import com.microsoft.bot.builder.NextDelegate;
+import com.microsoft.bot.builder.Storage;
+import com.microsoft.bot.builder.StoreItem;
+import com.microsoft.bot.builder.TurnContext;
+import com.microsoft.bot.builder.UserTokenProvider;
+import com.microsoft.bot.connector.rest.RestOAuthClient;
+import com.microsoft.bot.schema.Activity;
+import com.microsoft.bot.schema.ActivityTypes;
+import com.microsoft.bot.schema.SignInConstants;
+import com.microsoft.bot.schema.TokenExchangeInvokeRequest;
+import com.microsoft.bot.schema.TokenExchangeInvokeResponse;
+import com.microsoft.bot.schema.TokenExchangeRequest;
+import com.microsoft.bot.schema.TokenResponse;
+
+import org.apache.commons.lang3.StringUtils;
+
+/**
+ * If the activity name is signin/tokenExchange, this middleware will attempt
+ * toexchange the token, and deduplicate the incoming call, ensuring only
+ * oneexchange request is processed.
+ *
+ * If a user is signed into multiple Teams clients, the Bot could receive
+ * a "signin/tokenExchange" from each client. Each token exchange request for
+ * a specific user login will have an identical Activity.getValue().getId(). Only
+ * one of these token exchange requests should be processed by the bot.The
+ * others return PreconditionFailed. For a distributed bot in production,
+ * this requires a distributed storage ensuring only one token exchange is processed.
+ * This middleware supports CosmosDb storage found in Microsoft.getBot().getBuilder().getAzure(),
+ * or MemoryStorage for local development. Storage's ETag implementation for token
+ * exchange activity deduplication.
+ */
+public class TeamsSSOTokenExchangeMiddleware implements Middleware {
+
+ private final Storage storage;
+ private final String oAuthConnectionName;
+
+ /**
+ * Initializes a new instance of the
+ * {@link TeamsSSOTokenExchangeMiddleware} class.
+ *
+ * @param storage The {@link Storage} to use for
+ * deduplication.
+ * @param connectionName The connection name to use for the single
+ * sign on token exchange.
+ */
+ public TeamsSSOTokenExchangeMiddleware(Storage storage, String connectionName) {
+ if (storage == null) {
+ throw new IllegalArgumentException("storage cannot be null.");
+ }
+
+ if (StringUtils.isBlank(connectionName)) {
+ throw new IllegalArgumentException("connectionName cannot be null.");
+ }
+
+ this.oAuthConnectionName = connectionName;
+ this.storage = storage;
+ }
+
+ /**
+ * Processes an incoming activity.
+ *
+ * @param turnContext The context object for this turn.
+ * @param next The delegate to call to continue the bot middleware
+ * pipeline.
+ * @return A task that represents the work queued to execute. Middleware calls
+ * the {@code next} delegate to pass control to the next middleware in
+ * the pipeline. If middleware doesn’t call the next delegate, the
+ * adapter does not call any of the subsequent middleware’s request
+ * handlers or the bot’s receive handler, and the pipeline short
+ * circuits.
+ *
+ * The {@code context} provides information about the incoming activity,
+ * and other data needed to process the activity.
+ *
+ *
+ * {@link TurnContext} {@link com.microsoft.bot.schema.Activity}
+ */
+ public CompletableFuture onTurn(TurnContext turnContext, NextDelegate next) {
+ if (turnContext.getActivity().getName() == SignInConstants.TOKEN_EXCHANGE_OPERATION_NAME) {
+ // If the TokenExchange is NOT successful, the response will have
+ // already been sent by ExchangedTokenAsync
+ if (!this.exchangedToken(turnContext).join()) {
+ return CompletableFuture.completedFuture(null);
+ }
+
+ // Only one token exchange should proceed from here. Deduplication is performed
+ // second because in the case of failure due to consent required, every caller needs to receive the
+ if (!deDuplicatedTokenExchangeId(turnContext).join()) {
+ // If the token is not exchangeable, do not process this activity further.
+ return CompletableFuture.completedFuture(null);
+ }
+ }
+
+ return next.next();
+ }
+
+ private CompletableFuture deDuplicatedTokenExchangeId(TurnContext turnContext) {
+
+ // Create a StoreItem with Etag of the unique 'signin/tokenExchange' request
+ String idValue = null;
+ TokenStoreItem storeItem = new TokenStoreItem();
+ if (turnContext.getActivity().getValue() instanceof JsonNode) {
+ JsonNode value = (JsonNode) turnContext.getActivity().getValue();
+ if (value != null) {
+ JsonNode idNode = value.get("id");
+ idValue = idNode.asText();
+ }
+ }
+
+ storeItem.setETag(idValue);
+
+ Map storeItems = new HashMap();
+ storeItems.put(storeItem.getStorageKey(turnContext), storeItem);
+ try {
+ // Writing the StoreItem with ETag of unique id will succeed only once
+ storage.write(storeItems);
+ } catch (Exception ex) {
+
+ // Memory storage throws a generic exception with a Message of 'Etag conflict. [other error info]'
+ // CosmosDbPartitionedStorage throws: ex.getMessage().Contains("pre-condition is not met")
+ if (ex.getMessage().startsWith("Etag conflict") || ex.getMessage().contains("pre-condition is not met")) {
+ // Do NOT proceed processing this message, some other thread or
+ // machine already has processed it.
+
+ // Send 200 invoke response.
+ return sendInvokeResponse(turnContext, null, HttpURLConnection.HTTP_OK)
+ .thenApply(result -> false);
+ }
+ }
+
+ return CompletableFuture.completedFuture(true);
+ }
+
+ private CompletableFuture sendInvokeResponse(TurnContext turnContext, Object body, int statusCode) {
+ Activity activity = new Activity(ActivityTypes.INVOKE_RESPONSE);
+ InvokeResponse response = new InvokeResponse(statusCode, statusCode);
+ activity.setValue(response);
+ return turnContext.sendActivity(activity).thenApply(result -> null);
+ }
+
+ private CompletableFuture exchangedToken(TurnContext turnContext) {
+ TokenResponse tokenExchangeResponse = null;
+ TokenExchangeInvokeRequest tokenExchangeRequest =
+ (TokenExchangeInvokeRequest) turnContext.getActivity().getValue();
+
+ try {
+ RestOAuthClient userTokenClient = turnContext.getTurnState().get(RestOAuthClient.class);
+ TokenExchangeRequest exchangeRequest = new TokenExchangeRequest();
+ exchangeRequest.setToken(tokenExchangeRequest.getToken());
+ if (userTokenClient != null) {
+ tokenExchangeResponse = userTokenClient.getUserToken().exchangeToken(
+ turnContext.getActivity().getFrom().getId(),
+ oAuthConnectionName,
+ turnContext.getActivity().getChannelId(), exchangeRequest).join();
+ } else if (turnContext.getAdapter() instanceof UserTokenProvider) {
+ UserTokenProvider adapter = (UserTokenProvider) turnContext.getAdapter();
+ tokenExchangeResponse = adapter.exchangeToken(
+ turnContext,
+ oAuthConnectionName,
+ turnContext.getActivity().getFrom().getId(),
+ exchangeRequest).join();
+ } else {
+ throw new RuntimeException("Token Exchange is not supported by the current adapter.");
+ }
+ } catch (Exception ex) {
+ // Ignore Exceptions
+ // If token exchange failed for any reason, tokenExchangeResponse above stays null,
+ // and hence we send back a failure invoke response to the caller.
+ }
+
+ if (tokenExchangeResponse != null && StringUtils.isEmpty(tokenExchangeResponse.getToken())) {
+ // The token could not be exchanged (which could be due to a consent requirement)
+ // Notify the sender that PreconditionFailed so they can respond accordingly.
+
+ TokenExchangeInvokeResponse invokeResponse = new TokenExchangeInvokeResponse();
+ invokeResponse.setId(tokenExchangeRequest.getId());
+ invokeResponse.setConnectionName(oAuthConnectionName);
+ invokeResponse.setFailureDetail("The bot is unable to exchange token. Proceed with regular login.");
+
+ sendInvokeResponse(turnContext, invokeResponse, HttpURLConnection.HTTP_PRECON_FAILED);
+
+ return CompletableFuture.completedFuture(false);
+ }
+
+ return CompletableFuture.completedFuture(true);
+ }
+
+
+ /**
+ * Class to store the etag for token exchange.
+ */
+ private class TokenStoreItem implements StoreItem {
+
+ private String etag;
+
+ @Override
+ public String getETag() {
+ return etag;
+ }
+
+ @Override
+ public void setETag(String withETag) {
+ etag = withETag;
+ }
+
+ public String getStorageKey(TurnContext turnContext) {
+ Activity activity = turnContext.getActivity();
+ if (activity.getChannelId() == null) {
+ throw new RuntimeException("invalid activity-missing channelId");
+ }
+ if (activity.getConversation() == null || activity.getConversation().getId() == null) {
+ throw new RuntimeException("invalid activity-missing Conversation.Id");
+ }
+
+ String channelId = activity.getChannelId();
+ String conversationId = activity.getConversation().getId();
+
+ if (activity.getValue() instanceof JsonNode) {
+ JsonNode value = (JsonNode) activity.getValue();
+ if (value != null) {
+ JsonNode idNode = value.get("id");
+ String idValue = idNode.asText();
+ return String.format("%s/%s/%s", channelId, conversationId, idValue);
+ } else {
+ throw new RuntimeException("Invalid signin/tokenExchange. Missing activity.getValue().getId().");
+ }
+ } else {
+ throw new RuntimeException("Invalid signin/tokenExchange. Missing activity.getValue().getId().");
+ }
+ }
+ }
+
+}
+
From 65208032155ec78d8c4a480e8112f4dfeac3304d Mon Sep 17 00:00:00 2001
From: Lee Parrish <30470292+LeeParrishMSFT@users.noreply.github.com>
Date: Thu, 15 Apr 2021 19:06:30 -0500
Subject: [PATCH 2/2] Fixes for Cosmos, OAuthPrompt, and TokenExchange
---
.../bot/azure/CosmosDbPartitionedStorage.java | 23 ++--
.../TeamsSSOTokenExchangeMiddleware.java | 115 +++++++++---------
.../bot/dialogs/prompts/OAuthPrompt.java | 8 +-
.../bot/dialogs/prompts/OAuthPromptTests.java | 5 +-
4 files changed, 73 insertions(+), 78 deletions(-)
diff --git a/libraries/bot-azure/src/main/java/com/microsoft/bot/azure/CosmosDbPartitionedStorage.java b/libraries/bot-azure/src/main/java/com/microsoft/bot/azure/CosmosDbPartitionedStorage.java
index ba4b96df7..037b6f4e2 100644
--- a/libraries/bot-azure/src/main/java/com/microsoft/bot/azure/CosmosDbPartitionedStorage.java
+++ b/libraries/bot-azure/src/main/java/com/microsoft/bot/azure/CosmosDbPartitionedStorage.java
@@ -22,7 +22,6 @@
import com.microsoft.azure.documentdb.RequestOptions;
import com.microsoft.bot.builder.Storage;
import com.microsoft.bot.builder.StoreItem;
-import com.microsoft.bot.connector.ExecutorFactory;
import org.apache.commons.lang3.StringUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
@@ -135,7 +134,7 @@ public CompletableFuture> read(String[] keys) {
return CompletableFuture.completedFuture(new HashMap<>());
}
- return getCollection().thenApplyAsync(collection -> {
+ return getCollection().thenApply(collection -> {
// Issue all of the reads at once
List> documentFutures = new ArrayList<>();
for (String key : keys) {
@@ -175,7 +174,7 @@ public CompletableFuture> read(String[] keys) {
});
return storeItems;
- }, ExecutorFactory.getExecutor());
+ });
}
/**
@@ -196,7 +195,7 @@ public CompletableFuture write(Map changes) {
return CompletableFuture.completedFuture(null);
}
- return getCollection().thenApplyAsync(collection -> {
+ return getCollection().thenApply(collection -> {
for (Map.Entry change : changes.entrySet()) {
try {
ObjectNode node = objectMapper.valueToTree(change.getValue());
@@ -242,6 +241,9 @@ public CompletableFuture write(Map changes) {
} catch (JsonProcessingException | DocumentClientException e) {
logger.warn("Error upserting document: " + change.getKey(), e);
+ if (e instanceof DocumentClientException) {
+ throw new RuntimeException(e.getMessage());
+ }
}
}
@@ -265,7 +267,7 @@ public CompletableFuture delete(String[] keys) {
return getCollection().thenCompose(collection -> Arrays.stream(keys).map(key -> {
String escapedKey = CosmosDbKeyEscape
.escapeKey(key, cosmosDbStorageOptions.getKeySuffix(), cosmosDbStorageOptions.getCompatibilityMode());
- return getDocumentById(escapedKey).thenApplyAsync(document -> {
+ return getDocumentById(escapedKey).thenApply(document -> {
if (document != null) {
try {
RequestOptions options = new RequestOptions();
@@ -279,7 +281,7 @@ public CompletableFuture delete(String[] keys) {
}
return null;
- }, ExecutorFactory.getExecutor());
+ });
}).collect(CompletableFutures.toFutureList()).thenApply(deleteResponses -> null));
}
@@ -324,7 +326,6 @@ private CompletableFuture getCollection() {
return CompletableFuture.completedFuture(collectionCache);
}
- return CompletableFuture.supplyAsync(() -> {
// Get the collection if it exists.
List collectionList = client.queryCollections(
getDatabase().getSelfLink(),
@@ -359,14 +360,12 @@ private CompletableFuture getCollection() {
throw new RuntimeException("getCollection", e);
}
}
-
- return collectionCache;
- }, ExecutorFactory.getExecutor());
+ return CompletableFuture.completedFuture(collectionCache);
}
}
private CompletableFuture getDocumentById(String id) {
- return getCollection().thenApplyAsync(collection -> {
+ return getCollection().thenApply(collection -> {
// Retrieve the document using the DocumentClient.
List documentList = client
.queryDocuments(collection.getSelfLink(), "SELECT * FROM root r WHERE r.id='" + id + "'", null)
@@ -378,7 +377,7 @@ private CompletableFuture getDocumentById(String id) {
} else {
return null;
}
- }, ExecutorFactory.getExecutor());
+ });
}
/**
diff --git a/libraries/bot-builder/src/main/java/com/microsoft/bot/builder/teams/TeamsSSOTokenExchangeMiddleware.java b/libraries/bot-builder/src/main/java/com/microsoft/bot/builder/teams/TeamsSSOTokenExchangeMiddleware.java
index ac0977255..78f9654a5 100644
--- a/libraries/bot-builder/src/main/java/com/microsoft/bot/builder/teams/TeamsSSOTokenExchangeMiddleware.java
+++ b/libraries/bot-builder/src/main/java/com/microsoft/bot/builder/teams/TeamsSSOTokenExchangeMiddleware.java
@@ -8,7 +8,6 @@
import java.util.Map;
import java.util.concurrent.CompletableFuture;
-import com.fasterxml.jackson.databind.JsonNode;
import com.microsoft.bot.builder.InvokeResponse;
import com.microsoft.bot.builder.Middleware;
import com.microsoft.bot.builder.NextDelegate;
@@ -19,6 +18,7 @@
import com.microsoft.bot.connector.rest.RestOAuthClient;
import com.microsoft.bot.schema.Activity;
import com.microsoft.bot.schema.ActivityTypes;
+import com.microsoft.bot.schema.Serialization;
import com.microsoft.bot.schema.SignInConstants;
import com.microsoft.bot.schema.TokenExchangeInvokeRequest;
import com.microsoft.bot.schema.TokenExchangeInvokeResponse;
@@ -32,15 +32,16 @@
* toexchange the token, and deduplicate the incoming call, ensuring only
* oneexchange request is processed.
*
- * If a user is signed into multiple Teams clients, the Bot could receive
- * a "signin/tokenExchange" from each client. Each token exchange request for
- * a specific user login will have an identical Activity.getValue().getId(). Only
+ * If a user is signed into multiple Teams clients, the Bot could receive a
+ * "signin/tokenExchange" from each client. Each token exchange request for a
+ * specific user login will have an identical Activity.getValue().getId(). Only
* one of these token exchange requests should be processed by the bot.The
- * others return PreconditionFailed. For a distributed bot in production,
- * this requires a distributed storage ensuring only one token exchange is processed.
- * This middleware supports CosmosDb storage found in Microsoft.getBot().getBuilder().getAzure(),
- * or MemoryStorage for local development. Storage's ETag implementation for token
- * exchange activity deduplication.
+ * others return PreconditionFailed. For a distributed bot in production, this
+ * requires a distributed storage ensuring only one token exchange is processed.
+ * This middleware supports CosmosDb storage found in
+ * Microsoft.getBot().getBuilder().getAzure(), or MemoryStorage for local
+ * development. Storage's ETag implementation for token exchange activity
+ * deduplication.
*/
public class TeamsSSOTokenExchangeMiddleware implements Middleware {
@@ -48,21 +49,20 @@ public class TeamsSSOTokenExchangeMiddleware implements Middleware {
private final String oAuthConnectionName;
/**
- * Initializes a new instance of the
- * {@link TeamsSSOTokenExchangeMiddleware} class.
+ * Initializes a new instance of the {@link TeamsSSOTokenExchangeMiddleware}
+ * class.
*
- * @param storage The {@link Storage} to use for
- * deduplication.
- * @param connectionName The connection name to use for the single
- * sign on token exchange.
+ * @param storage The {@link Storage} to use for deduplication.
+ * @param connectionName The connection name to use for the single sign on token
+ * exchange.
*/
public TeamsSSOTokenExchangeMiddleware(Storage storage, String connectionName) {
if (storage == null) {
- throw new IllegalArgumentException("storage cannot be null.");
+ throw new IllegalArgumentException("storage cannot be null.");
}
if (StringUtils.isBlank(connectionName)) {
- throw new IllegalArgumentException("connectionName cannot be null.");
+ throw new IllegalArgumentException("connectionName cannot be null.");
}
this.oAuthConnectionName = connectionName;
@@ -89,7 +89,8 @@ public TeamsSSOTokenExchangeMiddleware(Storage storage, String connectionName) {
* {@link TurnContext} {@link com.microsoft.bot.schema.Activity}
*/
public CompletableFuture onTurn(TurnContext turnContext, NextDelegate next) {
- if (turnContext.getActivity().getName() == SignInConstants.TOKEN_EXCHANGE_OPERATION_NAME) {
+ if (turnContext.getActivity() != null && turnContext.getActivity().getName() != null
+ && turnContext.getActivity().getName().equals(SignInConstants.TOKEN_EXCHANGE_OPERATION_NAME)) {
// If the TokenExchange is NOT successful, the response will have
// already been sent by ExchangedTokenAsync
if (!this.exchangedToken(turnContext).join()) {
@@ -97,7 +98,8 @@ public CompletableFuture onTurn(TurnContext turnContext, NextDelegate next
}
// Only one token exchange should proceed from here. Deduplication is performed
- // second because in the case of failure due to consent required, every caller needs to receive the
+ // second because in the case of failure due to consent required, every caller
+ // needs to receive the
if (!deDuplicatedTokenExchangeId(turnContext).join()) {
// If the token is not exchangeable, do not process this activity further.
return CompletableFuture.completedFuture(null);
@@ -112,12 +114,10 @@ private CompletableFuture deDuplicatedTokenExchangeId(TurnContext turnC
// Create a StoreItem with Etag of the unique 'signin/tokenExchange' request
String idValue = null;
TokenStoreItem storeItem = new TokenStoreItem();
- if (turnContext.getActivity().getValue() instanceof JsonNode) {
- JsonNode value = (JsonNode) turnContext.getActivity().getValue();
- if (value != null) {
- JsonNode idNode = value.get("id");
- idValue = idNode.asText();
- }
+ TokenExchangeInvokeRequest tokenExchangeRequest = Serialization.getAs(turnContext.getActivity().getValue(),
+ TokenExchangeInvokeRequest.class);
+ if (tokenExchangeRequest != null) {
+ idValue = tokenExchangeRequest.getId();
}
storeItem.setETag(idValue);
@@ -126,19 +126,20 @@ private CompletableFuture deDuplicatedTokenExchangeId(TurnContext turnC
storeItems.put(storeItem.getStorageKey(turnContext), storeItem);
try {
// Writing the StoreItem with ETag of unique id will succeed only once
- storage.write(storeItems);
+ storage.write(storeItems).join();
} catch (Exception ex) {
- // Memory storage throws a generic exception with a Message of 'Etag conflict. [other error info]'
- // CosmosDbPartitionedStorage throws: ex.getMessage().Contains("pre-condition is not met")
- if (ex.getMessage().startsWith("Etag conflict") || ex.getMessage().contains("pre-condition is not met")) {
- // Do NOT proceed processing this message, some other thread or
- // machine already has processed it.
+ // Memory storage throws a generic exception with a Message of 'etag conflict.
+ // [other error info]'
+ // CosmosDbPartitionedStorage throws: RuntimeException with a message that contains "precondition is
+ // not met")
+ if (ex.getMessage().contains("eTag conflict") || ex.getMessage().contains("precondition is not met")) {
+ // Do NOT proceed processing this message, some other thread or
+ // machine already has processed it.
- // Send 200 invoke response.
- return sendInvokeResponse(turnContext, null, HttpURLConnection.HTTP_OK)
- .thenApply(result -> false);
- }
+ // Send 200 invoke response.
+ return sendInvokeResponse(turnContext, null, HttpURLConnection.HTTP_OK).thenApply(result -> false);
+ }
}
return CompletableFuture.completedFuture(true);
@@ -146,43 +147,43 @@ private CompletableFuture deDuplicatedTokenExchangeId(TurnContext turnC
private CompletableFuture sendInvokeResponse(TurnContext turnContext, Object body, int statusCode) {
Activity activity = new Activity(ActivityTypes.INVOKE_RESPONSE);
- InvokeResponse response = new InvokeResponse(statusCode, statusCode);
+ InvokeResponse response = new InvokeResponse(statusCode, body);
activity.setValue(response);
return turnContext.sendActivity(activity).thenApply(result -> null);
}
+ @SuppressWarnings("PMD.EmptyCatchBlock")
private CompletableFuture exchangedToken(TurnContext turnContext) {
TokenResponse tokenExchangeResponse = null;
- TokenExchangeInvokeRequest tokenExchangeRequest =
- (TokenExchangeInvokeRequest) turnContext.getActivity().getValue();
+ TokenExchangeInvokeRequest tokenExchangeRequest = Serialization.getAs(turnContext.getActivity().getValue(),
+ TokenExchangeInvokeRequest.class);
try {
RestOAuthClient userTokenClient = turnContext.getTurnState().get(RestOAuthClient.class);
TokenExchangeRequest exchangeRequest = new TokenExchangeRequest();
exchangeRequest.setToken(tokenExchangeRequest.getToken());
if (userTokenClient != null) {
- tokenExchangeResponse = userTokenClient.getUserToken().exchangeToken(
- turnContext.getActivity().getFrom().getId(),
- oAuthConnectionName,
- turnContext.getActivity().getChannelId(), exchangeRequest).join();
+ tokenExchangeResponse = userTokenClient.getUserToken()
+ .exchangeToken(turnContext.getActivity().getFrom().getId(), oAuthConnectionName,
+ turnContext.getActivity().getChannelId(), exchangeRequest)
+ .join();
} else if (turnContext.getAdapter() instanceof UserTokenProvider) {
UserTokenProvider adapter = (UserTokenProvider) turnContext.getAdapter();
- tokenExchangeResponse = adapter.exchangeToken(
- turnContext,
- oAuthConnectionName,
- turnContext.getActivity().getFrom().getId(),
- exchangeRequest).join();
+ tokenExchangeResponse = adapter.exchangeToken(turnContext, oAuthConnectionName,
+ turnContext.getActivity().getFrom().getId(), exchangeRequest).join();
} else {
throw new RuntimeException("Token Exchange is not supported by the current adapter.");
}
} catch (Exception ex) {
// Ignore Exceptions
- // If token exchange failed for any reason, tokenExchangeResponse above stays null,
+ // If token exchange failed for any reason, tokenExchangeResponse above stays
+ // null,
// and hence we send back a failure invoke response to the caller.
}
if (tokenExchangeResponse != null && StringUtils.isEmpty(tokenExchangeResponse.getToken())) {
- // The token could not be exchanged (which could be due to a consent requirement)
+ // The token could not be exchanged (which could be due to a consent
+ // requirement)
// Notify the sender that PreconditionFailed so they can respond accordingly.
TokenExchangeInvokeResponse invokeResponse = new TokenExchangeInvokeResponse();
@@ -198,7 +199,6 @@ private CompletableFuture exchangedToken(TurnContext turnContext) {
return CompletableFuture.completedFuture(true);
}
-
/**
* Class to store the etag for token exchange.
*/
@@ -228,15 +228,11 @@ public String getStorageKey(TurnContext turnContext) {
String channelId = activity.getChannelId();
String conversationId = activity.getConversation().getId();
- if (activity.getValue() instanceof JsonNode) {
- JsonNode value = (JsonNode) activity.getValue();
- if (value != null) {
- JsonNode idNode = value.get("id");
- String idValue = idNode.asText();
- return String.format("%s/%s/%s", channelId, conversationId, idValue);
- } else {
- throw new RuntimeException("Invalid signin/tokenExchange. Missing activity.getValue().getId().");
- }
+ TokenExchangeInvokeRequest tokenExchangeRequest = Serialization.getAs(turnContext.getActivity().getValue(),
+ TokenExchangeInvokeRequest.class);
+
+ if (tokenExchangeRequest != null) {
+ return String.format("%s/%s/%s", channelId, conversationId, tokenExchangeRequest.getId());
} else {
throw new RuntimeException("Invalid signin/tokenExchange. Missing activity.getValue().getId().");
}
@@ -244,4 +240,3 @@ public String getStorageKey(TurnContext turnContext) {
}
}
-
diff --git a/libraries/bot-dialogs/src/main/java/com/microsoft/bot/dialogs/prompts/OAuthPrompt.java b/libraries/bot-dialogs/src/main/java/com/microsoft/bot/dialogs/prompts/OAuthPrompt.java
index e7b8278cc..fc90c5765 100644
--- a/libraries/bot-dialogs/src/main/java/com/microsoft/bot/dialogs/prompts/OAuthPrompt.java
+++ b/libraries/bot-dialogs/src/main/java/com/microsoft/bot/dialogs/prompts/OAuthPrompt.java
@@ -38,6 +38,7 @@
import com.microsoft.bot.schema.CardAction;
import com.microsoft.bot.schema.InputHints;
import com.microsoft.bot.schema.OAuthCard;
+import com.microsoft.bot.schema.Serialization;
import com.microsoft.bot.schema.SignInConstants;
import com.microsoft.bot.schema.SignInResource;
import com.microsoft.bot.schema.SigninCard;
@@ -341,9 +342,8 @@ public static CompletableFuture> recognize
sendInvokeResponse(turnContext, HttpURLConnection.HTTP_INTERNAL_ERROR, null);
}
} else if (isTokenExchangeRequestInvoke(turnContext)) {
- TokenExchangeInvokeRequest tokenExchangeRequest =
- turnContext.getActivity().getValue() instanceof TokenExchangeInvokeRequest
- ? (TokenExchangeInvokeRequest) turnContext.getActivity().getValue() : null;
+ TokenExchangeInvokeRequest tokenExchangeRequest = Serialization.getAs(turnContext.getActivity().getValue(),
+ TokenExchangeInvokeRequest.class);
if (tokenExchangeRequest == null) {
TokenExchangeInvokeResponse response = new TokenExchangeInvokeResponse();
@@ -353,7 +353,7 @@ public static CompletableFuture> recognize
+ "TokenExchangeInvokeRequest value. This is required to be "
+ "sent with the InvokeActivity.");
sendInvokeResponse(turnContext, HttpURLConnection.HTTP_BAD_REQUEST, response).join();
- } else if (tokenExchangeRequest.getConnectionName() != settings.getConnectionName()) {
+ } else if (!tokenExchangeRequest.getConnectionName().equals(settings.getConnectionName())) {
TokenExchangeInvokeResponse response = new TokenExchangeInvokeResponse();
response.setId(tokenExchangeRequest.getId());
response.setConnectionName(settings.getConnectionName());
diff --git a/libraries/bot-dialogs/src/test/java/com/microsoft/bot/dialogs/prompts/OAuthPromptTests.java b/libraries/bot-dialogs/src/test/java/com/microsoft/bot/dialogs/prompts/OAuthPromptTests.java
index e7b8479d1..01aa8e657 100644
--- a/libraries/bot-dialogs/src/test/java/com/microsoft/bot/dialogs/prompts/OAuthPromptTests.java
+++ b/libraries/bot-dialogs/src/test/java/com/microsoft/bot/dialogs/prompts/OAuthPromptTests.java
@@ -31,6 +31,7 @@
import com.microsoft.bot.schema.ConversationAccount;
import com.microsoft.bot.schema.InputHints;
import com.microsoft.bot.schema.OAuthCard;
+import com.microsoft.bot.schema.Serialization;
import com.microsoft.bot.schema.SignInConstants;
import com.microsoft.bot.schema.TokenExchangeInvokeRequest;
import com.microsoft.bot.schema.TokenExchangeInvokeResponse;
@@ -292,7 +293,7 @@ public void OAuthPromptWithTokenExchangeInvoke() {
value.setToken(exchangeToken);
Activity activityToSend = new Activity(ActivityTypes.INVOKE);
activityToSend.setName(SignInConstants.TOKEN_EXCHANGE_OPERATION_NAME);
- activityToSend.setValue(value);
+ activityToSend.setValue(Serialization.objectToTree(value));
new TestFlow(adapter, botCallbackHandler)
.send("hello")
@@ -362,7 +363,7 @@ public void OAuthPromptWithTokenExchangeFail() {
value.setToken(exchangeToken);
Activity activityToSend = new Activity(ActivityTypes.INVOKE);
activityToSend.setName(SignInConstants.TOKEN_EXCHANGE_OPERATION_NAME);
- activityToSend.setValue(value);
+ activityToSend.setValue(Serialization.objectToTree(value));
new TestFlow(adapter, botCallbackHandler)
.send("hello")