ClaimsPrincipal gRPC parsing:

* Updated subtree from https://github.com/azure/azure-functions-language-worker-protobug. Branch: dev. Commit: f786ef5.
* Updated generate_protos.* build scripts.
* Added parsing for ClaimsPrincipal to gRPC, plus tests.

Author: kashimiz

src/WebJobs.Script.Grpc/WebJobs.Script.Grpc.csproj

@@ -35,16 +35,16 @@
     <PackageReference Include="System.ComponentModel.Annotations" Version="4.5.0" />
   </ItemGroup>
 
-  <ItemGroup>
-    <Folder Include="Messages\DotNet\" />
-  </ItemGroup>
-  
   <ItemGroup>
     <Reference Include="Newtonsoft.Json">
       <HintPath>C:\Program Files\dotnet\sdk\NuGetFallbackFolder\newtonsoft.json\11.0.2\lib\netstandard2.0\Newtonsoft.Json.dll</HintPath>
     </Reference>
   </ItemGroup>
 
+  <ItemGroup>
+    <Folder Include="Messages\" />
+  </ItemGroup>
+  
   <Target Name="GenerateProtoFiles" BeforeTargets="BeforeBuild" Inputs="azure-functions-language-worker-protobuf/src/proto/FunctionRpc.proto" Outputs="Messages/DotNet/FunctionRpc.cs;Messages/DotNet/FunctionRpcGrpc.cs">
     <Exec Command="./generate_protos.$(Ext)" />
     <ItemGroup>

src/WebJobs.Script.Grpc/azure-functions-language-worker-protobuf/src/proto/FunctionRpc.proto

@@ -10,6 +10,7 @@ option go_package ="github.com/Azure/azure-functions-go-worker/internal/rpc";
 package AzureFunctionsRpcMessages;
 
 import "google/protobuf/duration.proto";
+import "identity/ClaimsIdentityRpc.proto";
 
 // Interface exported by the server.
 service FunctionRpc {
@@ -379,4 +380,5 @@ message RpcHttp {
   map<string,string> query = 15;
   bool enable_content_negotiation= 16;
   TypedData rawBody = 17;
+  repeated RpcClaimsIdentity identities = 18;
 }

src/WebJobs.Script.Grpc/azure-functions-language-worker-protobuf/src/proto/identity/ClaimsIdentityRpc.proto

@@ -0,0 +1,22 @@
+syntax = "proto3";
+// protobuf vscode extension: https://marketplace.visualstudio.com/items?itemName=zxh404.vscode-proto3
+
+// Light-weight representation of a .NET System.Security.Claims.ClaimsIdentity object.
+// This is the same serialization as found in EasyAuth, and needs to be kept in sync with
+// its ClaimsIdentitySlim definition, as seen in the WebJobs extension:
+// https://github.com/Azure/azure-webjobs-sdk-extensions/blob/dev/src/WebJobs.Extensions.Http/ClaimsIdentitySlim.cs
+message RpcClaimsIdentity {
+  string authentication_type = 1;
+  string name_claim_type = 2;
+  string role_claim_type = 3;
+  repeated RpcClaim claims = 4;
+}
+
+// Light-weight representation of a .NET System.Security.Claims.Claim object.
+// This is the same serialization as found in EasyAuth, and needs to be kept in sync with
+// its ClaimSlim definition, as seen in the WebJobs extension:
+// https://github.com/Azure/azure-webjobs-sdk-extensions/blob/dev/src/WebJobs.Extensions.Http/ClaimSlim.cs
+message RpcClaim {
+  string value = 1;
+  string type = 2;
+}

src/WebJobs.Script.Grpc/generate_protos.bat

@@ -46,6 +46,9 @@ mkdir %MSGDIR%
 
 set OUTDIR=%MSGDIR%\DotNet
 mkdir %OUTDIR%
+
+for /D %%D in (%PROTO_PATH%\*) do for %%F in (%%D\*.proto) do %GRPC_TOOLS_PATH%\protoc.exe %%F --csharp_out %OUTDIR% --grpc_out=%OUTDIR% --plugin=protoc-gen-grpc=%GRPC_TOOLS_PATH%\grpc_csharp_plugin.exe --proto_path=%%D --proto_path=%PROTOBUF_TOOLS%
+
 %GRPC_TOOLS_PATH%\protoc.exe %PROTO% --csharp_out %OUTDIR% --grpc_out=%OUTDIR% --plugin=protoc-gen-grpc=%GRPC_TOOLS_PATH%\grpc_csharp_plugin.exe --proto_path=%PROTO_PATH% --proto_path=%PROTOBUF_TOOLS% 
 
 @rem add pragma warning disable labels to generated files

src/WebJobs.Script.Grpc/generate_protos.sh

@@ -65,6 +65,11 @@ mkdir $MSGDIR
 
 OUTDIR=$MSGDIR/DotNet
 mkdir $OUTDIR
+
+for d in $PROTO_PATH/*/*.proto; do
+	$GRPC_TOOLS_PATH/protoc $f --csharp_out $OUTDIR --grpc_out=$OUTDIR --plugin=protoc-gen-grpc=$GRPC_TOOLS_PATH/grpc_csharp_plugin --proto_path=$PROTO_PATH --proto_path=$PROTOBUF_TOOLS
+done
+
 $GRPC_TOOLS_PATH/protoc $PROTO --csharp_out $OUTDIR --grpc_out=$OUTDIR --plugin=protoc-gen-grpc=$GRPC_TOOLS_PATH/grpc_csharp_plugin --proto_path=$PROTO_PATH --proto_path=$PROTOBUF_TOOLS
 
 # add #pragma warning disable labels

src/WebJobs.Script/Rpc/MessageExtensions/RpcMessageConversionExtensions.cs

@@ -102,6 +102,29 @@ public static TypedData ToRpc(this object value)
                     }
                 }
 
+                // parse ClaimsPrincipal if exists
+                if (request.HttpContext?.User?.Identities != null)
+                {
+                    foreach (var id in request.HttpContext.User.Identities)
+                    {
+                        // asdf
+                        var rpcId = new RpcClaimsIdentity();
+                        if (id.AuthenticationType != null)
+                        {
+                            rpcId.AuthenticationType = id.AuthenticationType;
+                        }
+                        rpcId.NameClaimType = id.NameClaimType;
+                        rpcId.RoleClaimType = id.RoleClaimType;
+
+                        foreach (var claim in id.Claims)
+                        {
+                            rpcId.Claims.Add(new RpcClaim { Value = claim.Value, Type = claim.Type });
+                        }
+
+                        http.Identities.Add(rpcId);
+                    }
+                }
+
                 // parse request body as content-type
                 if (request.Body != null && request.ContentLength > 0)
                 {

test/WebJobs.Script.Tests/Rpc/RpcMessageConversionExtensionsTests.cs

@@ -2,6 +2,8 @@
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
 using System.Collections.Generic;
+using System.Linq;
+using System.Security.Claims;
 using Microsoft.AspNetCore.Http;
 using Microsoft.Azure.WebJobs.Script.Description;
 using Microsoft.Azure.WebJobs.Script.Grpc.Messages;
@@ -85,5 +87,49 @@ public void ToBindingInfo_Defaults_EmptyDataType()
             Assert.Equal(bindingInfo.Type, bindingMetadata.Type);
             Assert.Equal(bindingInfo.DataType, BindingInfo.Types.DataType.Undefined);
         }
+
+        [Fact]
+        public void HttpObjects_ClaimsPrincipal()
+        {
+            HttpRequest request = HttpTestHelpers.CreateHttpRequest("GET", $"http://localhost/apihttptrigger-scenarios");
+
+            MockEasyAuth(request, "facebook", "Connor McMahon", "10241897674253170");
+
+            var rpcRequestObject = request.ToRpc();
+            var identity = request.HttpContext.User.Identities.ToList().ElementAtOrDefault(0);
+            var rpcIdentity = rpcRequestObject.Http.Identities.ElementAtOrDefault(0);
+            Assert.NotNull(identity);
+            Assert.NotNull(rpcIdentity);
+
+            Assert.Equal(rpcIdentity.AuthenticationType, "facebook");
+            Assert.Equal(rpcIdentity.NameClaimType, "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name");
+            Assert.Equal(rpcIdentity.RoleClaimType, "http://schemas.microsoft.com/ws/2008/06/identity/claims/role");
+
+            var claims = identity.Claims.ToList();
+            for (int j = 0; j < claims.Count; j++)
+            {
+                Assert.True(rpcIdentity.Claims.ElementAtOrDefault(j) != null);
+                Assert.Equal(rpcIdentity.Claims[j].Type, claims[j].Type);
+                Assert.Equal(rpcIdentity.Claims[j].Value, claims[j].Value);
+            }
+        }
+
+        internal static void MockEasyAuth(HttpRequest request, string provider, string name, string id)
+        {
+            var claims = new List<Claim>
+            {
+                new Claim("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name", name),
+                new Claim("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn", name),
+                new Claim("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier", id)
+            };
+
+            var identity = new ClaimsIdentity(
+                claims,
+                provider,
+                "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name",
+                "http://schemas.microsoft.com/ws/2008/06/identity/claims/role");
+
+            request.HttpContext.User = new ClaimsPrincipal(new List<ClaimsIdentity> { identity });
+        }
     }
 }