User/mstannah/iwa update (#151)

* IWA refactor

* logging changes

* make other test names consistent

* Update changelog

Co-authored-by: Kyle Rader <kyrader@microsoft.com>

Author: melindajohnson

CHANGELOG.md

@@ -7,6 +7,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ## [Unreleased]
 ### Fixed
 - Option `--resource` is not needed if option `--scope` is provided.
+- Refactoring IWA AuthFlow to call GetTokenIWA when we have a MsalUiRequiredException 
 
 ## [0.5.1] - 2022-09-08
 ### Fixed

src/MSALWrapper.Test/AuthFlow/IntegratedWindowsAuthenticationTest.cs

@@ -79,11 +79,10 @@ public void Setup()
         public AuthFlow.IntegratedWindowsAuthentication Subject() => this.serviceProvider.GetService<AuthFlow.IntegratedWindowsAuthentication>();
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_HappyPath()
+        public async Task CachedAuthSuccess()
         {
-            this.SilentAuthResult();
-
             this.MockAccount();
+            this.CachedAuthResult();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -98,29 +97,10 @@ public async Task IntegratedWindowsAuthFlow_HappyPath()
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenSilent_ReturnsNull()
-        {
-            this.SilentAuthReturnsNull();
-
-            this.MockAccount();
-
-            // Act
-            AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
-            var authFlowResult = await iwa.GetTokenAsync();
-
-            // Assert
-            this.pcaWrapperMock.VerifyAll();
-            authFlowResult.TokenResult.Should().Be(null);
-            authFlowResult.Errors.Should().BeEmpty();
-            authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
-        }
-
-        [Test]
-        public async Task IntegratedWindowsAuthFlow_MsalUIException()
+        public async Task GetCachedToken_ReturnsNull()
         {
-            this.SilentAuthUIRequired();
-
             this.MockAccount();
+            this.CachedAuthReturnsNull();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -130,12 +110,11 @@ public async Task IntegratedWindowsAuthFlow_MsalUIException()
             this.pcaWrapperMock.VerifyAll();
             authFlowResult.TokenResult.Should().Be(null);
             authFlowResult.Errors.Should().HaveCount(1);
-            authFlowResult.Errors[0].Should().BeOfType(typeof(MsalUiRequiredException));
             authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
         }
 
         [Test]
-        public void IntegratedWindowsAuthFlow_General_Exceptions_Are_ReThrown()
+        public void General_Exceptions_Are_ReThrown()
         {
             var message = "Something somwhere has gone terribly wrong!";
             this.pcaWrapperMock
@@ -155,11 +134,10 @@ public void IntegratedWindowsAuthFlow_General_Exceptions_Are_ReThrown()
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenSilent_MsalServiceException()
+        public async Task CachedAuth_Throws_ServiceException()
         {
-            this.SilentAuthServiceException();
-
             this.MockAccount();
+            this.CachedAuthServiceException();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -174,11 +152,10 @@ public async Task IntegratedWindowsAuthFlow_GetTokenSilent_MsalServiceException(
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenSilent_OperationCanceledException()
+        public async Task GetTokenSilent_OperationCanceledException()
         {
-            this.SilentAuthTimeout();
-
             this.MockAccount();
+            this.CachedAuthTimeout();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -187,18 +164,18 @@ public async Task IntegratedWindowsAuthFlow_GetTokenSilent_OperationCanceledExce
             // Assert
             this.pcaWrapperMock.VerifyAll();
             authFlowResult.TokenResult.Should().Be(null);
-            authFlowResult.Errors.Should().HaveCount(1);
+            authFlowResult.Errors.Should().HaveCount(2);
             authFlowResult.Errors[0].Should().BeOfType(typeof(AuthenticationTimeoutException));
             authFlowResult.Errors[0].Message.Should().Be("Get Token Silent timed out after 00:00:06");
+            authFlowResult.Errors[1].Should().BeOfType(typeof(NullTokenResultException));
             authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenSilent_MsalClientException()
+        public async Task GetTokenSilent_MsalClientException()
         {
-            this.SilentAuthClientException();
-
             this.MockAccount();
+            this.CachedAuthClientException();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -213,11 +190,10 @@ public async Task IntegratedWindowsAuthFlow_GetTokenSilent_MsalClientException()
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenSilent_NullReferenceException()
+        public async Task GetTokenSilent_NullReferenceException()
         {
-            this.SilentAuthNullReferenceException();
-
             this.MockAccount();
+            this.CachedAuthNullReferenceException();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -232,11 +208,11 @@ public async Task IntegratedWindowsAuthFlow_GetTokenSilent_NullReferenceExceptio
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenIWA()
+        public async Task NoCachedAccounts_IWASuccess()
         {
-            this.IntegratedWindowsAuthenticationResult();
-
             this.MockAccountReturnsNull();
+            this.CachedAuthUIRequiredNoAccount();
+            this.IWAReturnsResult();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -246,16 +222,16 @@ public async Task IntegratedWindowsAuthFlow_GetTokenIWA()
             this.pcaWrapperMock.VerifyAll();
             authFlowResult.TokenResult.Should().Be(this.tokenResult);
             authFlowResult.TokenResult.IsSilent.Should().BeTrue();
-            authFlowResult.Errors.Should().BeEmpty();
+            authFlowResult.Errors.Should().HaveCount(1);
             authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenIWA_ReturnsNull()
+        public async Task GetTokenIWA_ReturnsNull()
         {
-            this.IntegratedWindowsAuthenticationReturnsNull();
-
             this.MockAccountReturnsNull();
+            this.CachedAuthUIRequired();
+            this.IWAReturnsNull();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -264,54 +240,57 @@ public async Task IntegratedWindowsAuthFlow_GetTokenIWA_ReturnsNull()
             // Assert
             this.pcaWrapperMock.VerifyAll();
             authFlowResult.TokenResult.Should().Be(null);
-            authFlowResult.Errors.Should().BeEmpty();
+            authFlowResult.Errors.Should().HaveCount(1);
+            authFlowResult.Errors[0].Should().BeOfType(typeof(MsalUiRequiredException));
             authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenIWA_MsalUIRequired_2FA()
+        public async Task GetTokenIWA_MsalUIRequired_2FA()
         {
-            this.IntegratedWindowsAuthenticationUIRequiredFor2FA();
-
             this.MockAccountReturnsNull();
+            this.CachedAuthUIRequired();
+            this.IWAUIRequiredFor2FA();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
             var authFlowResult = await iwa.GetTokenAsync();
 
             this.pcaWrapperMock.VerifyAll();
             authFlowResult.TokenResult.Should().Be(null);
-            authFlowResult.Errors.Should().HaveCount(1);
+            authFlowResult.Errors.Should().HaveCount(2);
             authFlowResult.Errors[0].Should().BeOfType(typeof(MsalUiRequiredException));
-            authFlowResult.Errors[0].Message.Should().Be("AADSTS50076 MSAL UI Required Exception!");
+            authFlowResult.Errors[1].Should().BeOfType(typeof(MsalUiRequiredException));
+            authFlowResult.Errors[1].Message.Should().Be("AADSTS50076 MSAL UI Required Exception!");
             authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenIWA_MsalUIRequired_AADBrokeIWA()
+        public async Task GetTokenIWA_GenericMsalUIRequired()
         {
-            this.IntegratedWindowsAuthenticationUIRequiredForAADBrokeIWA();
-
             this.MockAccountReturnsNull();
+            this.CachedAuthUIRequired();
+            this.IWAGenericUIRequiredException();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
             var authFlowResult = await iwa.GetTokenAsync();
 
             this.pcaWrapperMock.VerifyAll();
             authFlowResult.TokenResult.Should().Be(null);
-            authFlowResult.Errors.Should().HaveCount(1);
+            authFlowResult.Errors.Should().HaveCount(2);
             authFlowResult.Errors[0].Should().BeOfType(typeof(MsalUiRequiredException));
-            authFlowResult.Errors[0].Message.Should().Be("MSAL UI Required Exception!");
+            authFlowResult.Errors[1].Should().BeOfType(typeof(MsalUiRequiredException));
+            authFlowResult.Errors[1].Message.Should().Be("MSAL UI Required Exception!");
             authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenIWA_MsalServiceException()
+        public async Task GetTokenIWA_MsalServiceException()
         {
-            this.IntegratedWindowsAuthenticationServiceException();
-
             this.MockAccountReturnsNull();
+            this.CachedAuthUIRequired();
+            this.IWAServiceException();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -321,17 +300,18 @@ public async Task IntegratedWindowsAuthFlow_GetTokenIWA_MsalServiceException()
             // our caller can retry auth another way.
             this.pcaWrapperMock.VerifyAll();
             authFlowResult.TokenResult.Should().Be(null);
-            authFlowResult.Errors.Should().HaveCount(1);
-            authFlowResult.Errors[0].Should().BeOfType(typeof(MsalServiceException));
+            authFlowResult.Errors.Should().HaveCount(2);
+            authFlowResult.Errors[0].Should().BeOfType(typeof(MsalUiRequiredException));
+            authFlowResult.Errors[1].Should().BeOfType(typeof(MsalServiceException));
             authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
         }
 
         [Test]
-        public async Task IntegratedWindowsAuthFlow_GetTokenIWA_MsalClientException()
+        public async Task GetTokenIWA_MsalClientException()
         {
-            this.IntegratedWindowsAuthenticationClientException();
-
             this.MockAccountReturnsNull();
+            this.CachedAuthUIRequired();
+            this.IWAClientException();
 
             // Act
             AuthFlow.IntegratedWindowsAuthentication iwa = this.Subject();
@@ -340,96 +320,104 @@ public async Task IntegratedWindowsAuthFlow_GetTokenIWA_MsalClientException()
             // Assert
             this.pcaWrapperMock.VerifyAll();
             authFlowResult.TokenResult.Should().Be(null);
-            authFlowResult.Errors.Should().HaveCount(1);
-            authFlowResult.Errors[0].Should().BeOfType(typeof(MsalClientException));
+            authFlowResult.Errors.Should().HaveCount(2);
+            authFlowResult.Errors[0].Should().BeOfType(typeof(MsalUiRequiredException));
+            authFlowResult.Errors[1].Should().BeOfType(typeof(MsalClientException));
             authFlowResult.AuthFlowName.Should().Be("IntegratedWindowsAuthentication");
         }
 
-        private void SilentAuthResult()
+        private void CachedAuthResult()
         {
             this.pcaWrapperMock
                .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, this.testAccount.Object, It.IsAny<CancellationToken>()))
                .ReturnsAsync(this.tokenResult);
         }
 
-        private void SilentAuthReturnsNull()
+        private void CachedAuthReturnsNull()
         {
             this.pcaWrapperMock
                .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, this.testAccount.Object, It.IsAny<CancellationToken>()))
                .ReturnsAsync((TokenResult)null);
         }
 
-        private void SilentAuthUIRequired()
+        private void CachedAuthUIRequired()
         {
             this.pcaWrapperMock
-                .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, this.testAccount.Object, It.IsAny<CancellationToken>()))
+                .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, null, It.IsAny<CancellationToken>()))
                 .Throws(new MsalUiRequiredException("1", "UI is required"));
         }
 
-        private void SilentAuthServiceException()
+        private void CachedAuthServiceException()
         {
             this.pcaWrapperMock
                 .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, this.testAccount.Object, It.IsAny<CancellationToken>()))
                 .Throws(new MsalServiceException(MsalServiceExceptionErrorCode, MsalServiceExceptionMessage));
         }
 
-        private void SilentAuthTimeout()
+        private void CachedAuthTimeout()
         {
             this.pcaWrapperMock
                 .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, this.testAccount.Object, It.IsAny<CancellationToken>()))
                 .Throws(new OperationCanceledException());
         }
 
-        private void SilentAuthClientException()
+        private void CachedAuthClientException()
         {
             this.pcaWrapperMock
                 .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, this.testAccount.Object, It.IsAny<CancellationToken>()))
                 .Throws(new MsalClientException("1", "Could not find a WAM account for the silent request."));
         }
 
-        private void SilentAuthNullReferenceException()
+        private void CachedAuthNullReferenceException()
         {
             this.pcaWrapperMock
                 .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, this.testAccount.Object, It.IsAny<CancellationToken>()))
                 .Throws(new NullReferenceException("There was a null reference excpetion. This should absolutly never happen and if it does it is a bug."));
         }
 
-        private void IntegratedWindowsAuthenticationResult()
+        private void IWAReturnsResult()
         {
             this.pcaWrapperMock
                .Setup((pca) => pca.GetTokenIntegratedWindowsAuthenticationAsync(this.scopes, It.IsAny<CancellationToken>()))
                .ReturnsAsync(this.tokenResult);
         }
 
-        private void IntegratedWindowsAuthenticationReturnsNull()
+        private void IWAReturnsNull()
         {
             this.pcaWrapperMock
                .Setup((pca) => pca.GetTokenIntegratedWindowsAuthenticationAsync(this.scopes, It.IsAny<CancellationToken>()))
                .ReturnsAsync((TokenResult)null);
         }
 
-        private void IntegratedWindowsAuthenticationUIRequiredFor2FA()
+        private void CachedAuthUIRequiredNoAccount()
+        {
+            this.pcaWrapperMock
+                .Setup((pca) => pca.GetTokenSilentAsync(this.scopes, null, It.IsAny<CancellationToken>()))
+                .Throws(new MsalUiRequiredException("1", "No account hint given!"));
+        }
+
+        private void IWAUIRequiredFor2FA()
         {
             this.pcaWrapperMock
                 .Setup((pca) => pca.GetTokenIntegratedWindowsAuthenticationAsync(this.scopes, It.IsAny<CancellationToken>()))
                 .Throws(new MsalUiRequiredException("1", "AADSTS50076 MSAL UI Required Exception!"));
         }
 
-        private void IntegratedWindowsAuthenticationUIRequiredForAADBrokeIWA()
+        private void IWAGenericUIRequiredException()
         {
             this.pcaWrapperMock
                 .Setup((pca) => pca.GetTokenIntegratedWindowsAuthenticationAsync(this.scopes, It.IsAny<CancellationToken>()))
                 .Throws(new MsalUiRequiredException("2", "MSAL UI Required Exception!"));
         }
 
-        private void IntegratedWindowsAuthenticationServiceException()
+        private void IWAServiceException()
         {
             this.pcaWrapperMock
                 .Setup((pca) => pca.GetTokenIntegratedWindowsAuthenticationAsync(this.scopes, It.IsAny<CancellationToken>()))
                 .Throws(new MsalServiceException(MsalServiceExceptionErrorCode, MsalServiceExceptionMessage));
         }
 
-        private void IntegratedWindowsAuthenticationClientException()
+        private void IWAClientException()
         {
             this.pcaWrapperMock
                 .Setup((pca) => pca.GetTokenIntegratedWindowsAuthenticationAsync(this.scopes, It.IsAny<CancellationToken>()))