Create List and Delete TodoItem

Tiago Brenck · Tiago Brenck · commit e065eea7c415 · 2019-11-06T17:55:39.000-08:00
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/BLL/ITodoItemService.cs b/1-WebApp-OIDC/1-2-AnyOrg/BLL/ITodoItemService.cs
@@ -0,0 +1,17 @@
+﻿using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using WebApp_OpenIDConnect_DotNet.Models;
+
+namespace WebApp_OpenIDConnect_DotNet.BLL
+{
+    public interface ITodoItemService
+    {
+        Task<TodoItem> Create(string text, ClaimsPrincipal loggedUser);
+        Task<IEnumerable<TodoItem>> List(bool showAll, ClaimsPrincipal loggedUser);
+        Task<TodoItem> Get(int id, ClaimsPrincipal loggedUser);
+        Task Delete(int id, ClaimsPrincipal loggedUser);
+    }
+}
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/BLL/TodoItemService.cs b/1-WebApp-OIDC/1-2-AnyOrg/BLL/TodoItemService.cs
@@ -0,0 +1,71 @@
+﻿using Microsoft.EntityFrameworkCore;
+using Microsoft.Identity.Web;
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using WebApp_OpenIDConnect_DotNet.DAL;
+using WebApp_OpenIDConnect_DotNet.Models;
+
+namespace WebApp_OpenIDConnect_DotNet.BLL
+{
+    public class TodoItemService : ITodoItemService
+    {
+        private readonly SampleDbContext sampleDbContext;
+        public TodoItemService(SampleDbContext sampleDbContext)
+        {
+            this.sampleDbContext = sampleDbContext;
+        }
+
+        public async Task<TodoItem> Create(string text, ClaimsPrincipal loggedUser)
+        {
+            TodoItem todoItem = new TodoItem
+            { 
+                Text = text,
+                UserName = loggedUser.Identity.Name,
+                AssignedTo = loggedUser.GetObjectId(),
+                TenantId = loggedUser.GetTenantId()
+            };
+
+            sampleDbContext.TodoItems.Add(todoItem);
+            await sampleDbContext.SaveChangesAsync();
+
+            return todoItem;
+        }
+
+        public async Task Delete(int id, ClaimsPrincipal loggedUser)
+        {
+            var todoItem = await Get(id, loggedUser);
+            if (todoItem != null)
+            {
+                sampleDbContext.TodoItems.Remove(todoItem);
+                await sampleDbContext.SaveChangesAsync();
+            }
+        }
+
+        public async Task<TodoItem> Get(int id, ClaimsPrincipal loggedUser)
+        {
+            var tenantId = loggedUser.GetTenantId();
+            var userIdentifier = loggedUser.GetObjectId();
+
+            return await sampleDbContext.TodoItems.SingleOrDefaultAsync(x => 
+                x.Id == id 
+                && x.TenantId == tenantId 
+                && x.AssignedTo == userIdentifier);
+        }
+
+        public async Task<IEnumerable<TodoItem>> List(bool showAll, ClaimsPrincipal loggedUser)
+        {
+            var tenantId = loggedUser.GetTenantId();
+            var userIdentifier = loggedUser.GetObjectId();
+
+            var filteredResult = sampleDbContext.TodoItems.Where(x => x.TenantId == tenantId);
+
+            if (showAll)
+                return await filteredResult.ToListAsync();
+            else
+                return await filteredResult.Where(x => x.AssignedTo == userIdentifier).ToListAsync();
+        }
+    }
+}
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Controllers/HomeController.cs b/1-WebApp-OIDC/1-2-AnyOrg/Controllers/HomeController.cs
@@ -1,5 +1,6 @@
 ﻿using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
+using Microsoft.Identity.Web;
 using System.Diagnostics;
 using System.Linq;
 using WebApp_OpenIDConnect_DotNet.DAL;
@@ -29,7 +30,12 @@ public IActionResult DeleteTenant(string id)
             dbContext.RemoveRange(tenants);
             dbContext.SaveChanges();
 
-            return RedirectToAction("Index");
+            var signedUserTenant = User.GetTenantId();
+
+            if (id == signedUserTenant)
+                return RedirectToAction("SignOut", "Account", new { area = "AzureAD" });
+            else
+                return RedirectToAction("Index");
         }
 
         [AllowAnonymous]
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Controllers/OnboardingController.cs b/1-WebApp-OIDC/1-2-AnyOrg/Controllers/OnboardingController.cs
@@ -25,14 +25,14 @@ public OnboardingController(SampleDbContext dbContext, IOptions<AzureADOptions>
         }
 
         [HttpGet]
-        public ActionResult SignUp()
+        public IActionResult SignUp()
         {
             return View();
         }
 
         [HttpPost]
         [ValidateAntiForgeryToken]
-        public ActionResult Onboard()
+        public IActionResult Onboard()
         {
             // Generate a random value to identify the request
             string stateMarker = Guid.NewGuid().ToString();
@@ -60,11 +60,11 @@ public ActionResult Onboard()
                 Uri.EscapeDataString(stateMarker));
 
 
-            return new RedirectResult(authorizationRequest);
+            return Redirect(authorizationRequest);
         }
 
         // This is the redirect Uri for the admin consent authorization
-        public async Task<ActionResult> ProcessCode(string tenant, string error, string error_description, string resource, string state)
+        public async Task<IActionResult> ProcessCode(string tenant, string error, string error_description, string resource, string state)
         {
             if (error != null)
             {
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Controllers/TodoListController.cs b/1-WebApp-OIDC/1-2-AnyOrg/Controllers/TodoListController.cs
@@ -0,0 +1,57 @@
+﻿using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.Identity.Web;
+using WebApp_OpenIDConnect_DotNet.BLL;
+using WebApp_OpenIDConnect_DotNet.Models;
+
+namespace WebApp_OpenIDConnect_DotNet.Controllers
+{
+    [Authorize]
+    public class TodoListController : Controller
+    {
+        private readonly ITodoItemService _todoItemService;
+        public TodoListController(ITodoItemService todoItemService)
+        {
+            _todoItemService = todoItemService;
+        }
+
+        public async Task<IActionResult> Index(bool showAllFilter)
+        {
+            @TempData["ShowAllFilter"] = showAllFilter;
+
+            var items = await _todoItemService.List(showAllFilter, User);
+            return View(items);
+        }
+
+        [HttpGet]
+        public IActionResult Create()
+        {
+            var model = new TodoItem()
+            {
+                AssignedTo = User.GetObjectId(),
+                TenantId = User.GetTenantId(),
+                UserName = User.Identity.Name
+            };
+
+            return View(model);
+        }
+
+        [HttpPost]
+        public async Task<IActionResult> Create(TodoItem model)
+        {
+            await _todoItemService.Create(model.Text, User);
+            return RedirectToAction("Index");
+        }
+
+        [HttpGet]
+        public async Task<IActionResult> Delete(int id)
+        {
+            await _todoItemService.Delete(id, User);
+            return RedirectToAction("Index");
+        }
+    }
+}
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/DAL/SampleDbContext.cs b/1-WebApp-OIDC/1-2-AnyOrg/DAL/SampleDbContext.cs
@@ -12,5 +12,6 @@ public class SampleDbContext : DbContext
         public SampleDbContext(DbContextOptions<SampleDbContext> options) : base(options) { }
 
         public DbSet<AuthorizedTenant> AuthorizedTenants { get; set; }
+        public DbSet<TodoItem> TodoItems { get; set; }
     }
 }
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Models/TodoItem.cs b/1-WebApp-OIDC/1-2-AnyOrg/Models/TodoItem.cs
@@ -0,0 +1,20 @@
+﻿using System;
+using System.Collections.Generic;
+using System.ComponentModel.DataAnnotations;
+using System.ComponentModel.DataAnnotations.Schema;
+using System.Linq;
+using System.Threading.Tasks;
+
+namespace WebApp_OpenIDConnect_DotNet.Models
+{
+    public class TodoItem
+    {
+        [Key]
+        [DatabaseGenerated(DatabaseGeneratedOption.Identity)]
+        public int Id { get; set; }
+        public string Text { get; set; }
+        public string UserName { get; set; }
+        public string AssignedTo { get; set; }
+        public string TenantId { get; set; }
+    }
+}
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Startup.cs b/1-WebApp-OIDC/1-2-AnyOrg/Startup.cs
@@ -17,6 +17,7 @@
 using System.Collections.Generic;
 using System.Linq;
 using System.Threading.Tasks;
+using WebApp_OpenIDConnect_DotNet.BLL;
 using WebApp_OpenIDConnect_DotNet.DAL;
 using WebApp_OpenIDConnect_DotNet.Utils;
 
@@ -43,14 +44,16 @@ public void ConfigureServices(IServiceCollection services)
 
             services.AddOptions();
 
-            services.AddDbContext<SampleDbContext>(options => options.UseInMemoryDatabase(databaseName: "MultiTenantOnboarding"));
+            //services.AddDbContext<SampleDbContext>(options => options.UseInMemoryDatabase(databaseName: "MultiTenantOnboarding"));
+            services.AddDbContext<SampleDbContext>(options => options.UseSqlServer(Configuration.GetConnectionString("SampleDbConnStr")));
+            
+            services.AddScoped<ITodoItemService, TodoItemService>();
 
             // Sign-in users with the Microsoft identity platform
             services.AddMicrosoftIdentityPlatformAuthentication(Configuration);
-            
+
             services.Configure<OpenIdConnectOptions>(AzureADDefaults.OpenIdScheme, options =>
             {
-                //options.TokenValidationParameters = BuildTokenValidationParameters(options);
                 options.Events.OnTokenValidated = async context => 
                 {
                     string tenantId = context.SecurityToken.Claims.FirstOrDefault(x => x.Type == "tid" || x.Type == "http://schemas.microsoft.com/identity/claims/tenantid")?.Value;
@@ -91,6 +94,13 @@ public void ConfigureServices(IServiceCollection services)
         // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
         public void Configure(IApplicationBuilder app, IHostingEnvironment env)
         {
+            using (var serviceScope = app.ApplicationServices.GetService<IServiceScopeFactory>().CreateScope())
+            {
+                var context = serviceScope.ServiceProvider.GetRequiredService<SampleDbContext>();
+                //context.Database.EnsureDeleted();
+                context.Database.EnsureCreated();
+            }
+
             if (env.IsDevelopment())
             {
                 app.UseDeveloperExceptionPage();
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Views/Home/Index.cshtml b/1-WebApp-OIDC/1-2-AnyOrg/Views/Home/Index.cshtml
@@ -1,4 +1,6 @@
-﻿@model IEnumerable<AuthorizedTenant>
+﻿@using System.Security.Principal
+@using Microsoft.Identity.Web
+@model IEnumerable<AuthorizedTenant>
 @{
     ViewData["Title"] = "Home Page";
 }
@@ -9,12 +11,15 @@
 <p>
     This sample shows how to build a .NET Core MVC Web app that uses OpenID Connect to sign in users. Users can use work and school accounts from any company or organization that has integrated with Azure Active Directory. It leverages the ASP.NET Core OpenID Connect middleware.
 </p>
-<img src="https://github.com/Azure-Samples/active-directory-aspnetcore-webapp-openidconnect-v2/raw/master/1-WebApp-OIDC/1-2-AnyOrg/ReadmeFiles/sign-in.png"/>
+<img src="https://github.com/Azure-Samples/active-directory-aspnetcore-webapp-openidconnect-v2/raw/master/1-WebApp-OIDC/1-2-AnyOrg/ReadmeFiles/sign-in.png" />
 <hr />
 
 <h2>Authorized Tenants</h2>
 <p>
-    These are the authorized tenants. If you want to repeat the onboarding process, deleted the desired tenants and <b>sign-out.</b>
+    These are the authorized tenants on the database. If you want to repeat the onboarding process, offboard the desired tenant from this list.
+</p>
+<p>
+    Offboarding the signed user's tenant, will trigger a <b>sign-out.</b>
 </p>
 
 <table class="table">
@@ -25,12 +30,18 @@
         </tr>
     </thead>
     <tbody>
-    @foreach (var tenant in Model)
-    {
-        <tr>
-            <td>@tenant.TenantId</td>
-            <td><a asp-controller="Home" asp-action="DeleteTenant" asp-route-id=@tenant.TenantId class="btn btn-danger">Delete</a></td>
-        </tr>
-    }
+        @foreach (var tenant in Model)
+        {
+            <tr>
+                <td>
+                    <span>@tenant.TenantId</span>
+                    @if (tenant.TenantId == User.GetTenantId())
+                    {
+                        <span class="label label-primary">your tenant</span>
+                    }
+                </td>
+                <td><a asp-controller="Home" asp-action="DeleteTenant" asp-route-id=@tenant.TenantId class="btn btn-danger">Offboard</a></td>
+            </tr>
+        }
     </tbody>
 </table>
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Views/Shared/_Layout.cshtml b/1-WebApp-OIDC/1-2-AnyOrg/Views/Shared/_Layout.cshtml
@@ -31,6 +31,7 @@
             <div class="navbar-collapse collapse">
                 <ul class="nav navbar-nav">
                     <li><a asp-area="" asp-controller="Home" asp-action="Index">Home</a></li>
+                    <li><a asp-area="" asp-controller="TodoList" asp-action="Index">Todo List</a></li>
                 </ul>
                 <partial name="_LoginPartial" />
             </div>
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Views/Shared/_LoginPartial.cshtml b/1-WebApp-OIDC/1-2-AnyOrg/Views/Shared/_LoginPartial.cshtml
@@ -1,8 +1,9 @@
 @using System.Security.Principal
+@using Microsoft.Identity.Web
 @if (User.Identity.IsAuthenticated)
 {
     <ul class="nav navbar-nav navbar-right">
-        <li class="navbar-text">Hello @User.Identity.Name!</li>
+        <li class="navbar-text">Hello @User.Identity.Name! </li>
         <li><a asp-area="AzureAD" asp-controller="Account" asp-action="SignOut">Sign out</a></li>
     </ul>
 }
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Views/TodoList/Create.cshtml b/1-WebApp-OIDC/1-2-AnyOrg/Views/TodoList/Create.cshtml
@@ -0,0 +1,42 @@
+﻿@model WebApp_OpenIDConnect_DotNet.Models.TodoItem
+
+@{
+    ViewData["Title"] = "Create";
+}
+
+<h2>Create</h2>
+
+<h4>TodoItem</h4>
+<hr />
+<div class="row">
+    <div class="col-md-4">
+        <form asp-action="Create">
+            <div asp-validation-summary="ModelOnly" class="text-danger"></div>
+            <div class="form-group">
+                <label asp-for="Text" class="control-label"></label>
+                <input asp-for="Text" class="form-control" />
+                <span asp-validation-for="Text" class="text-danger"></span>
+            </div>
+            <div class="form-group">
+                <label asp-for="UserName" class="control-label"></label>
+                <input asp-for="UserName" class="form-control" readonly="readonly" />
+            </div>
+            <div class="form-group">
+                <label asp-for="AssignedTo" class="control-label"></label>
+                <input asp-for="AssignedTo" class="form-control" readonly="readonly" />
+            </div>
+            <div class="form-group">
+                <label asp-for="TenantId" class="control-label"></label>
+                <input asp-for="TenantId" class="form-control" readonly="readonly" />
+            </div>
+            <div class="form-group">
+                <input type="submit" value="Create" class="btn btn-default" />
+            </div>
+        </form>
+    </div>
+</div>
+
+<div>
+    <a asp-action="Index">Back to List</a>
+</div>
+
diff --git a/1-WebApp-OIDC/1-2-AnyOrg/Views/TodoList/Index.cshtml b/1-WebApp-OIDC/1-2-AnyOrg/Views/TodoList/Index.cshtml

Original file line number	Diff line number	Diff line change
`@@ -25,14 +25,14 @@ public OnboardingController(SampleDbContext dbContext, IOptions<AzureADOptions>`
`25`	`25`	`}`
`26`	`26`
`27`	`27`	`[HttpGet]`
`28`		`- public ActionResult SignUp()`
	`28`	`+ public IActionResult SignUp()`
`29`	`29`	`{`
`30`	`30`	`return View();`
`31`	`31`	`}`
`32`	`32`
`33`	`33`	`[HttpPost]`
`34`	`34`	`[ValidateAntiForgeryToken]`
`35`		`- public ActionResult Onboard()`
	`35`	`+ public IActionResult Onboard()`
`36`	`36`	`{`
`37`	`37`	`// Generate a random value to identify the request`
`38`	`38`	`string stateMarker = Guid.NewGuid().ToString();`
`@@ -60,11 +60,11 @@ public ActionResult Onboard()`
`60`	`60`	`Uri.EscapeDataString(stateMarker));`
`61`	`61`
`62`	`62`
`63`		`- return new RedirectResult(authorizationRequest);`
	`63`	`+ return Redirect(authorizationRequest);`
`64`	`64`	`}`
`65`	`65`
`66`	`66`	`// This is the redirect Uri for the admin consent authorization`
`67`		`- public async Task<ActionResult> ProcessCode(string tenant, string error, string error_description, string resource, string state)`
	`67`	`+ public async Task<IActionResult> ProcessCode(string tenant, string error, string error_description, string resource, string state)`
`68`	`68`	`{`
`69`	`69`	`if (error != null)`
`70`	`70`	`{`
Original file line number	Diff line number	Diff line change
`@@ -12,5 +12,6 @@ public class SampleDbContext : DbContext`
`12`	`12`	`public SampleDbContext(DbContextOptions<SampleDbContext> options) : base(options) { }`
`13`	`13`
`14`	`14`	`public DbSet<AuthorizedTenant> AuthorizedTenants { get; set; }`
	`15`	`+ public DbSet<TodoItem> TodoItems { get; set; }`
`15`	`16`	`}`
`16`	`17`	`}`