Merge pull request #17 from Azure-Samples/oldalton/update_to_latest_msal

Updated B2C sample to latest MSAL and updated readme.md

Author: oldalton

Cartfile

@@ -1 +1 @@
-github "AzureAD/microsoft-authentication-library-for-objc" "0.4.2"
+github "AzureAD/microsoft-authentication-library-for-objc" "master"

Cartfile.resolved

@@ -0,0 +1 @@
+github "AzureAD/microsoft-authentication-library-for-objc" "c0aaed2a1763907a9b1fca6fc8aa5c2995a07bd3"

MSALiOSB2C/Base.lproj/Main.storyboard

@@ -1,11 +1,9 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<document type="com.apple.InterfaceBuilder3.CocoaTouch.Storyboard.XIB" version="3.0" toolsVersion="12120" systemVersion="16E195" targetRuntime="iOS.CocoaTouch" propertyAccessControl="none" useAutolayout="YES" useTraitCollections="YES" colorMatched="YES" initialViewController="BYZ-38-t0r">
-    <device id="retina4_7" orientation="portrait">
-        <adaptation id="fullscreen"/>
-    </device>
+<document type="com.apple.InterfaceBuilder3.CocoaTouch.Storyboard.XIB" version="3.0" toolsVersion="14865.1" targetRuntime="iOS.CocoaTouch" propertyAccessControl="none" useAutolayout="YES" useTraitCollections="YES" colorMatched="YES" initialViewController="BYZ-38-t0r">
+    <device id="retina4_7" orientation="portrait" appearance="light"/>
     <dependencies>
         <deployment identifier="iOS"/>
-        <plugIn identifier="com.apple.InterfaceBuilder.IBCocoaTouchPlugin" version="12088"/>
+        <plugIn identifier="com.apple.InterfaceBuilder.IBCocoaTouchPlugin" version="14819.2"/>
         <capability name="documents saved in the Xcode 8 format" minToolsVersion="8.0"/>
     </dependencies>
     <scenes>
@@ -70,7 +68,7 @@
                                 <autoresizingMask key="autoresizingMask" flexibleMaxX="YES" flexibleMaxY="YES"/>
                                 <state key="normal" title="Call API"/>
                                 <connections>
-                                    <action selector="callApi:" destination="BYZ-38-t0r" eventType="touchUpInside" id="4VR-5A-u4F"/>
+                                    <action selector="callApi:" destination="BYZ-38-t0r" eventType="touchUpInside" id="cE2-ql-o7T"/>
                                 </connections>
                             </button>
                             <button opaque="NO" contentMode="scaleToFill" fixedFrame="YES" contentHorizontalAlignment="center" contentVerticalAlignment="center" buttonType="roundedRect" lineBreakMode="middleTruncation" translatesAutoresizingMaskIntoConstraints="NO" id="GAR-kV-sCk">

MSALiOSB2C/ViewController.swift

@@ -66,7 +66,11 @@ class ViewController: UIViewController, UITextFieldDelegate, URLSessionDelegate
              The scheme part, i.e. "msal<your-client-id-here>", needs to be registered in the info.plist of the project
              */
 
-            let pcaConfig = MSALPublicClientApplicationConfig(clientId: kClientID)
+            let authority = try self.getAuthority(forPolicy: self.kSignupOrSigninPolicy)
+            
+            // Provide configuration for MSALPublicClientApplication
+            // MSAL will use default redirect uri when you provide nil
+            let pcaConfig = MSALPublicClientApplicationConfig(clientId: kClientID, redirectUri: nil, authority: authority)
             self.application = try MSALPublicClientApplication(configuration: pcaConfig)
         } catch {
             self.updateLoggingText(text: "Unable to create application \(error)")
@@ -104,19 +108,23 @@ class ViewController: UIViewController, UITextFieldDelegate, URLSessionDelegate
              flow completes, or encounters an error.
              */
 
-            let parameters = MSALInteractiveTokenParameters(scopes: kScopes)
+            let webViewParameters = MSALWebviewParameters(parentViewController: self)
+            let parameters = MSALInteractiveTokenParameters(scopes: kScopes, webviewParameters: webViewParameters)
+            parameters.promptType = .selectAccount
             parameters.authority = authority
             application.acquireToken(with: parameters) { (result, error) in
-                if let result = result {
-                    self.accessToken = result.accessToken
-                    self.updateLoggingText(text: "Access token is \(self.accessToken ?? "Empty")")
-                    self.signoutButton.isEnabled = true
-                    self.callGraphApiButton.isEnabled = true
-                    self.editProfileButton.isEnabled = true
-                    self.refreshTokenButton.isEnabled = true
-                } else {
+                
+                guard let result = result else {
                     self.updateLoggingText(text: "Could not acquire token: \(error ?? "No error informarion" as! Error)")
+                    return
                 }
+                
+                self.accessToken = result.accessToken
+                self.updateLoggingText(text: "Access token is \(self.accessToken ?? "Empty")")
+                self.signoutButton.isEnabled = true
+                self.callGraphApiButton.isEnabled = true
+                self.editProfileButton.isEnabled = true
+                self.refreshTokenButton.isEnabled = true
             }
         } catch {
             self.updateLoggingText(text: "Unable to create authority \(error)")
@@ -150,7 +158,8 @@ class ViewController: UIViewController, UITextFieldDelegate, URLSessionDelegate
              */
 
             let thisAccount = try self.getAccountByPolicy(withAccounts: application.allAccounts(), policy: kEditProfilePolicy)
-            let parameters = MSALInteractiveTokenParameters(scopes: kScopes)
+            let webViewParameters = MSALWebviewParameters(parentViewController: self)
+            let parameters = MSALInteractiveTokenParameters(scopes: kScopes, webviewParameters: webViewParameters)
             parameters.authority = authority
             parameters.account = thisAccount
 
@@ -167,6 +176,7 @@ class ViewController: UIViewController, UITextFieldDelegate, URLSessionDelegate
     }
 
     @IBAction func refreshToken(_ sender: UIButton) {
+        
         do {
             /**
 
@@ -217,17 +227,19 @@ class ViewController: UIViewController, UITextFieldDelegate, URLSessionDelegate
                             // Notice we supply the account here. This ensures we acquire token for the same account
                             // as we originally authenticated.
 
-                            let parameters = MSALInteractiveTokenParameters(scopes: self.kScopes)
+                            let webviewParameters = MSALWebviewParameters(parentViewController: self)
+                            let parameters = MSALInteractiveTokenParameters(scopes: self.kScopes, webviewParameters: webviewParameters)
                             parameters.account = thisAccount
 
                             self.application.acquireToken(with: parameters) { (result, error) in
-                                if let result = result {
-                                    self.accessToken = result.accessToken
-                                    self.updateLoggingText(text: "Access token is \(self.accessToken ?? "empty")")
-                                    
-                                } else  {
+                                
+                                guard let result = result else {
                                     self.updateLoggingText(text: "Could not acquire new token: \(error ?? "No error informarion" as! Error)")
+                                    return
                                 }
+                                
+                                self.accessToken = result.accessToken
+                                self.updateLoggingText(text: "Access token is \(self.accessToken ?? "empty")")
                             }
                             return
                         }
@@ -259,11 +271,14 @@ class ViewController: UIViewController, UITextFieldDelegate, URLSessionDelegate
         }
 
         let sessionConfig = URLSessionConfiguration.default
+        sessionConfig.timeoutIntervalForRequest = 30
         let url = URL(string: self.kGraphURI)
         var request = URLRequest(url: url!)
         request.setValue("Bearer \(accessToken)", forHTTPHeaderField: "Authorization")
         let urlSession = URLSession(configuration: sessionConfig, delegate: self, delegateQueue: OperationQueue.main)
 
+        self.updateLoggingText(text: "Calling the API....")
+        
         urlSession.dataTask(with: request) { data, response, error in
             guard let validData = data else {
                 self.updateLoggingText(text: "Could not call API: \(error ?? "No error informarion" as! Error)")
@@ -302,6 +317,8 @@ class ViewController: UIViewController, UITextFieldDelegate, URLSessionDelegate
             self.editProfileButton.isEnabled = false
             self.refreshTokenButton.isEnabled = false
 
+            self.updateLoggingText(text: "Signed out")
+            
         } catch  {
             self.updateLoggingText(text: "Received error signing out: \(error)")
         }

README.md

@@ -14,7 +14,7 @@ urlFragment: microsoft-authentication-library-b2c-ios
 | [Getting Started](https://docs.microsoft.com/azure/active-directory-b2c/active-directory-b2c-get-started)| [Library](https://github.com/AzureAD/microsoft-authentication-library-for-objc) | [Docs](https://aka.ms/aadb2c) | [Support](README.md#community-help-and-support)
 | --- | --- | --- | --- |
 
-The MSAL preview library for iOS and macOS gives your app the ability to begin using the [Microsoft Cloud](https://cloud.microsoft.com) by supporting [Azure B2C](https://azure.microsoft.com/en-us/services/active-directory-b2c/) using industry standard OAuth2 and OpenID Connect. This sample demonstrates all the normal lifecycles your application should experience, including:
+The MSAL library for iOS and macOS gives your app the ability to begin using the [Microsoft identity platform](https://aka.ms/aaddev) by supporting [Azure B2C](https://azure.microsoft.com/en-us/services/active-directory-b2c/) using industry standard OAuth2 and OpenID Connect. This sample demonstrates all the normal lifecycles your application should experience, including:
 
 * How to get a token
 * How to refresh a token
@@ -25,26 +25,31 @@ The MSAL preview library for iOS and macOS gives your app the ability to begin u
 
 ```swift
 do {
-    // Create an instance of MSALPublicClientApplication with proper config
-    let authority = try MSALB2CAuthority(url: URL(string:kAuthority)!)
-    let pcaConfig = MSALPublicClientApplicationConfig(clientId: <your-client-id-here>, redirectUri: nil, authority: authority)
-    let application = try MSALPublicClientApplication(configuration: pcaConfig)
-    
-    application.acquireToken(forScopes: kScopes) { (result, error) in
-    DispatchQueue.main.async {
-    if result != nil {
-    // Set up your application for the user
-        } else {
-            print(error)
-        }
-      }
-    }
+	// Create an instance of MSALPublicClientApplication with proper config
+	let authority = try MSALB2CAuthority(url: URL(string: "<your-authority-here>")!)
+	let pcaConfig = MSALPublicClientApplicationConfig(clientId: "<your-client-id-here>", redirectUri: nil, authority: authority)
+	let application = try MSALPublicClientApplication(configuration: pcaConfig)
+            
+	let viewController = self /*replace with your main presentation controller here */
+	let webViewParameters = MSALWebviewParameters(parentViewController: viewController)
+	let interactiveParameters = MSALInteractiveTokenParameters(scopes: ["<enter-your-scope-here>"], webviewParameters: webViewParameters)
+            
+	application.acquireToken(with: interactiveParameters) { (result, error) in
+                
+		guard let result = result else {
+			print(error!) /* MSAL token acquisition failed, check error information */
+			return
+                }
+                
+                let accessToken = result.accessToken
+                let account = result.account
+                /* MSAL token acquisition succeeded, use access token or check account */
+                
+	}
+}
+catch {
+	print(error) /* MSALPublicClientApplication creation failed, check error information */
 }
-
-        catch {
-            print(error)
-        }
-    }
 ```
 
 ## App Registration
@@ -60,7 +65,7 @@ We use [Carthage](https://github.com/Carthage/Carthage) for package management d
 
 1. Install Carthage on your Mac using a download from their website or if using Homebrew `brew install carthage`.
 1. We have already created a `Cartfile` that lists the MSAL library for this project on Github. We use the `/dev` branch.
-1. Run `carthage bootstrap`. This will fetch dependencies into a `Carthage/Checkouts` folder, then build the MSAL library.
+1. Run `carthage bootstrap --platform iOS`. This will fetch dependencies into a `Carthage/Checkouts` folder, then build the MSAL library.
 1. On your application targets’ “General” settings tab, in the “Linked Frameworks and Libraries” section, drag and drop the `MSAL.framework` from the `Carthage/Build` folder on disk.
 1. On your application targets’ “Build Phases” settings tab, click the “+” icon and choose “New Run Script Phase”. Create a Run Script in which you specify your shell (ex: `/bin/sh`), add the following contents to the script area below the shell:
 
@@ -124,9 +129,16 @@ To provide a recommendation, visit our [User Voice page](https://feedback.azure.
 
 ## Contribute
 
-We enthusiastically welcome contributions and feedback. You can clone the repo and start contributing now. Read our [Contribution Guide](Contributing.md) for more information.
+We enthusiastically welcome contributions and feedback. You can clone the repo and start contributing now. 
 
 This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/). For more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or contact [[email protected]](mailto:[email protected]) with any additional questions or comments.
 
+## Security Library
+
+This library controls how users sign-in and access services. We recommend you always take the latest version of our library in your app when possible. We use [semantic versioning](http://semver.org) so you can control the risk associated with updating your app. As an example, always downloading the latest minor version number (e.g. x.*y*.x) ensures you get the latest security and feature enhanements but our API surface remains the same. You can always see the latest version and release notes under the Releases tab of GitHub.
+
+## Security Reporting
+
+If you find a security issue with our libraries or services please report it to [[email protected]](mailto:[email protected]) with as much detail as possible. Your submission may be eligible for a bounty through the [Microsoft Bounty](http://aka.ms/bugbounty) program. Please do not post security issues to GitHub Issues or any other public site. We will contact you shortly upon receiving the information. We encourage you to get notifications of when security incidents occur by visiting [this page](https://technet.microsoft.com/en-us/security/dd252948) and subscribing to Security Advisory Alerts.
 
 Copyright (c) Microsoft Corporation.  All rights reserved. Licensed under the MIT License (the "License");