Update to display tenant specific tasks

Shama-K · Shama-K · commit 104652272fc8 · 2020-07-21T17:27:22.000-07:00
diff --git a/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Controllers/ToDoListController.cs b/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Controllers/ToDoListController.cs
@@ -11,18 +11,15 @@
 
 namespace ToDoListClient.Controllers
 {
-    [Authorize]
+    [AuthorizeForScopes(ScopeKeySection = "TodoList:TodoListScope")]
     public class ToDoListController : Controller
     {
         private IToDoListService _todoListService;
-
         public ToDoListController(IToDoListService todoListService)
         {
             _todoListService = todoListService;
-
         }
 
-        [AuthorizeForScopes(ScopeKeySection = "TodoList:TodoListScope")]
         // GET: TodoList
         public async Task<ActionResult> Index()
         {
@@ -43,18 +40,18 @@ public async Task<IActionResult> Create()
                 {
                     Text = u
                 }).ToList();
+                TempData["TenantId"] = HttpContext.User.GetTenantId();
                 return View(todo);
             }
             catch (WebApiMsalUiRequiredException ex)
             {
-                var a = ex.Message;
                 return Redirect(ex.Message);
             }
         }
         // POST: TodoList/Create
         [HttpPost]
         [ValidateAntiForgeryToken]
-        public async Task<ActionResult> Create([Bind("Title,Owner")] ToDoItem todo)
+        public async Task<ActionResult> Create([Bind("Title,Owner,TenantId")] ToDoItem todo)
         {
             await _todoListService.AddAsync(todo);
             return RedirectToAction("Index");
@@ -76,7 +73,7 @@ public async Task<ActionResult> Edit(int id)
         // POST: TodoList/Edit/5
         [HttpPost]
         [ValidateAntiForgeryToken]
-        public async Task<ActionResult> Edit(int id, [Bind("Id,Title,Owner")] ToDoItem todo)
+        public async Task<ActionResult> Edit(int id, [Bind("Id,Title,Owner,TenantId")] ToDoItem todo)
         {
             await _todoListService.EditAsync(todo);
             return RedirectToAction("Index");
diff --git a/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Models/ToDoItem.cs b/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Models/ToDoItem.cs
@@ -12,5 +12,6 @@ public class ToDoItem
         public string Title { get; set; }
 
         public string Owner { get; set; }
+        public string TenantId { get; set; }
     }
 }
diff --git a/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Services/ToDoListService.cs b/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Services/ToDoListService.cs
@@ -18,7 +18,7 @@ namespace ToDoListClient.Services
 {
     public static class TodoListServiceExtensions
     {
-        public static void AddTodoListService(this IServiceCollection services, IConfiguration configuration)
+        public static void AddTodoListService(this IServiceCollection services)
         {
             // https://docs.microsoft.com/en-us/dotnet/standard/microservices-architecture/implement-resilient-applications/use-httpclientfactory-to-implement-resilient-http-requests
             services.AddHttpClient<IToDoListService, ToDoListService>();
@@ -29,7 +29,6 @@ public class ToDoListService : IToDoListService
         private readonly HttpClient _httpClient;
         private readonly string _TodoListScope = string.Empty;
         private readonly string _TodoListBaseAddress = string.Empty;
-        private readonly string _ClientId = string.Empty;
         private readonly string _RedirectUri = string.Empty;
         private readonly string _ApiRedirectUri = string.Empty;
         private readonly ITokenAcquisition _tokenAcquisition;
@@ -40,7 +39,6 @@ public ToDoListService(ITokenAcquisition tokenAcquisition, HttpClient httpClient
             _tokenAcquisition = tokenAcquisition;
             _TodoListScope = configuration["TodoList:TodoListScope"];
             _TodoListBaseAddress = configuration["TodoList:TodoListBaseAddress"];
-            _ClientId = configuration["AzureAd:ClientId"];
             _RedirectUri = configuration["RedirectUri"];
             _ApiRedirectUri = configuration["TodoList:AdminConsentRedirectApi"];
             if (!string.IsNullOrEmpty(_TodoListBaseAddress))
diff --git a/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Startup.cs b/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Startup.cs
@@ -36,7 +36,7 @@ public void ConfigureServices(IServiceCollection services)
             services.AddMicrosoftWebAppAuthentication(Configuration)
                 .AddMicrosoftWebAppCallsWebApi(Configuration, new string[] { Configuration["TodoList:TodoListScope"] })
                .AddInMemoryTokenCaches();
-            services.AddTodoListService(Configuration);
+            services.AddTodoListService();
             services.AddControllersWithViews(options =>
             {
                 var policy = new AuthorizationPolicyBuilder()
diff --git a/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Views/ToDoList/Create.cshtml b/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Views/ToDoList/Create.cshtml
@@ -10,17 +10,15 @@
 <div class="row">
     <div class="col-md-4">
         <form asp-action="Create">
+            <input type="hidden" asp-for="TenantId" value="@((string)TempData["TenantId"])"/>
             <div asp-validation-summary="ModelOnly" class="text-danger"></div>
             <div class="form-group">
                 <label asp-for="Title" class="control-label"></label>
                 <input asp-for="Title" class="form-control" />
                 <span asp-validation-for="Title" class="text-danger"></span>
             </div>
             <div class="form-group">
-                @*<label asp-for="Owner" class="control-label"></label>
-        <input asp-for="Owner" class="form-control"  value="@Html.DisplayTextFor(model => model.Owner)"/>
-        <span asp-validation-for="Owner" class="text-danger"></span>*@
-                <label asp-for="Owner" class="control-label"></label>
+               <label asp-for="Owner" class="control-label"></label>
 
                 <select class="form-control" asp-for="Owner" asp-items="@((List<SelectListItem>)TempData["UsersDropDown"])"></select>
 
diff --git a/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Views/ToDoList/Edit.cshtml b/4-WebApp-your-API/4-3-AnyOrg/ToDoListClient/Views/ToDoList/Edit.cshtml
@@ -9,6 +9,7 @@
     <form asp-action="Edit">
         <div asp-validation-summary="ModelOnly" class="text-danger"></div>
         <input type="hidden" asp-for="Id" />
+        <input type="hidden" asp-for="TenantId"/>
         <div class="form-group">
             <label asp-for="Title" class="control-label"></label>
             <input asp-for="Title" class="form-control" />
diff --git a/4-WebApp-your-API/4-3-AnyOrg/TodoListService/Controllers/TodoListController.cs b/4-WebApp-your-API/4-3-AnyOrg/TodoListService/Controllers/TodoListController.cs
@@ -39,16 +39,17 @@ public TodoListController(TodoContext context,ITokenAcquisition tokenAcquisition
         public async Task<ActionResult<IEnumerable<TodoItem>>> GetTodoItems()
         {
             HttpContext.VerifyUserHasAnyAcceptedScope(scopeRequiredByApi);
+            string userTenantId = HttpContext.User.GetTenantId();
             try
             {
                 Microsoft.Graph.User user = new User();
                 await _context.TodoItems.ToListAsync();
             }
-            catch(Exception ex)
+            catch(Exception)
             {
-                var a = ex.Message;
+                throw;
             }
-            return await _context.TodoItems.ToListAsync();
+            return await _context.TodoItems.Where(x => x.TenantId == userTenantId).ToListAsync();
         }
 
         // GET: api/TodoItems/5
diff --git a/4-WebApp-your-API/4-3-AnyOrg/TodoListService/Models/TodoItem.cs b/4-WebApp-your-API/4-3-AnyOrg/TodoListService/Models/TodoItem.cs
@@ -12,10 +12,6 @@ public class TodoItem
         public string Title { get; set; }
 
         public string Owner { get; set; }
+        public string TenantId { get; set; }
     }
-    //public class Users
-    //{
-    //    public int UserId { get; set; }
-    //    public string UserName { get; set; }
-    //}
 }

Original file line number	Diff line number	Diff line change
`@@ -11,18 +11,15 @@`
`11`	`11`
`12`	`12`	`namespace ToDoListClient.Controllers`
`13`	`13`	`{`
`14`		`- [Authorize]`
	`14`	`+ [AuthorizeForScopes(ScopeKeySection = "TodoList:TodoListScope")]`
`15`	`15`	`public class ToDoListController : Controller`
`16`	`16`	`{`
`17`	`17`	`private IToDoListService _todoListService;`
`18`		`-`
`19`	`18`	`public ToDoListController(IToDoListService todoListService)`
`20`	`19`	`{`
`21`	`20`	`_todoListService = todoListService;`
`22`		`-`
`23`	`21`	`}`
`24`	`22`
`25`		`- [AuthorizeForScopes(ScopeKeySection = "TodoList:TodoListScope")]`
`26`	`23`	`// GET: TodoList`
`27`	`24`	`public async Task<ActionResult> Index()`
`28`	`25`	`{`
`@@ -43,18 +40,18 @@ public async Task<IActionResult> Create()`
`43`	`40`	`{`
`44`	`41`	`Text = u`
`45`	`42`	`}).ToList();`
	`43`	`+ TempData["TenantId"] = HttpContext.User.GetTenantId();`
`46`	`44`	`return View(todo);`
`47`	`45`	`}`
`48`	`46`	`catch (WebApiMsalUiRequiredException ex)`
`49`	`47`	`{`
`50`		`- var a = ex.Message;`
`51`	`48`	`return Redirect(ex.Message);`
`52`	`49`	`}`
`53`	`50`	`}`
`54`	`51`	`// POST: TodoList/Create`
`55`	`52`	`[HttpPost]`
`56`	`53`	`[ValidateAntiForgeryToken]`
`57`		`- public async Task<ActionResult> Create([Bind("Title,Owner")] ToDoItem todo)`
	`54`	`+ public async Task<ActionResult> Create([Bind("Title,Owner,TenantId")] ToDoItem todo)`
`58`	`55`	`{`
`59`	`56`	`await _todoListService.AddAsync(todo);`
`60`	`57`	`return RedirectToAction("Index");`
`@@ -76,7 +73,7 @@ public async Task<ActionResult> Edit(int id)`
`76`	`73`	`// POST: TodoList/Edit/5`
`77`	`74`	`[HttpPost]`
`78`	`75`	`[ValidateAntiForgeryToken]`
`79`		`- public async Task<ActionResult> Edit(int id, [Bind("Id,Title,Owner")] ToDoItem todo)`
	`76`	`+ public async Task<ActionResult> Edit(int id, [Bind("Id,Title,Owner,TenantId")] ToDoItem todo)`
`80`	`77`	`{`
`81`	`78`	`await _todoListService.EditAsync(todo);`
`82`	`79`	`return RedirectToAction("Index");`
Original file line number	Diff line number	Diff line change
`@@ -12,5 +12,6 @@ public class ToDoItem`
`12`	`12`	`public string Title { get; set; }`
`13`	`13`
`14`	`14`	`public string Owner { get; set; }`
	`15`	`+ public string TenantId { get; set; }`
`15`	`16`	`}`
`16`	`17`	`}`
Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,7 @@ public void ConfigureServices(IServiceCollection services)`
`36`	`36`	`services.AddMicrosoftWebAppAuthentication(Configuration)`
`37`	`37`	`.AddMicrosoftWebAppCallsWebApi(Configuration, new string[] { Configuration["TodoList:TodoListScope"] })`
`38`	`38`	`.AddInMemoryTokenCaches();`
`39`		`- services.AddTodoListService(Configuration);`
	`39`	`+ services.AddTodoListService();`
`40`	`40`	`services.AddControllersWithViews(options =>`
`41`	`41`	`{`
`42`	`42`	`var policy = new AuthorizationPolicyBuilder()`
Original file line number	Diff line number	Diff line change
`@@ -39,16 +39,17 @@ public TodoListController(TodoContext context,ITokenAcquisition tokenAcquisition`
`39`	`39`	`public async Task<ActionResult<IEnumerable<TodoItem>>> GetTodoItems()`
`40`	`40`	`{`
`41`	`41`	`HttpContext.VerifyUserHasAnyAcceptedScope(scopeRequiredByApi);`
	`42`	`+ string userTenantId = HttpContext.User.GetTenantId();`
`42`	`43`	`try`
`43`	`44`	`{`
`44`	`45`	`Microsoft.Graph.User user = new User();`
`45`	`46`	`await _context.TodoItems.ToListAsync();`
`46`	`47`	`}`
`47`		`- catch(Exception ex)`
	`48`	`+ catch(Exception)`
`48`	`49`	`{`
`49`		`- var a = ex.Message;`
	`50`	`+ throw;`
`50`	`51`	`}`
`51`		`- return await _context.TodoItems.ToListAsync();`
	`52`	`+ return await _context.TodoItems.Where(x => x.TenantId == userTenantId).ToListAsync();`
`52`	`53`	`}`
`53`	`54`
`54`	`55`	`// GET: api/TodoItems/5`
Original file line number	Diff line number	Diff line change
`@@ -12,10 +12,6 @@ public class TodoItem`
`12`	`12`	`public string Title { get; set; }`
`13`	`13`
`14`	`14`	`public string Owner { get; set; }`
	`15`	`+ public string TenantId { get; set; }`
`15`	`16`	`}`
`16`		`- //public class Users`
`17`		`- //{`
`18`		`- // public int UserId { get; set; }`
`19`		`- // public string UserName { get; set; }`
`20`		`- //}`
`21`	`17`	`}`