Add error handling for XPC fallback logic

kai · kai · commit dd9e70107c7c · 2025-04-29T16:34:03.000-07:00
diff --git a/IdentityCore/src/controllers/MSIDLocalInteractiveController.m b/IdentityCore/src/controllers/MSIDLocalInteractiveController.m
@@ -242,9 +242,9 @@ - (void)acquireTokenWithRequest:(MSIDInteractiveTokenRequest *)request
     }];
 }
 
-- (BOOL)shouldFallback:(NSError *)error
+- (void)shouldSkipAcquireTokenBasedOn:(NSError *)error
 {
-    return YES;
+    // This method is not used in this class.
 }
 
 @end
diff --git a/IdentityCore/src/controllers/MSIDRequestControlling.h b/IdentityCore/src/controllers/MSIDRequestControlling.h
@@ -31,7 +31,7 @@ NS_ASSUME_NONNULL_BEGIN
 @protocol MSIDRequestControlling <NSObject>
 
 - (void)acquireToken:(nonnull MSIDRequestCompletionBlock)completionBlock;
-- (BOOL)shouldFallback:(nonnull NSError *)error;
+- (void)shouldSkipAcquireTokenBasedOn:(nonnull NSError *)error;
 
 @end
 
diff --git a/IdentityCore/src/controllers/MSIDSilentController.m b/IdentityCore/src/controllers/MSIDSilentController.m
@@ -111,7 +111,7 @@ - (void)acquireTokenWithRequest:(MSIDSilentTokenRequest *)request
         MSID_LOG_WITH_CTX(MSIDLogLevelError, nil, @"Passed nil completionBlock");
         return;
     }
-
+    
     CONDITIONAL_START_EVENT(CONDITIONAL_SHARED_INSTANCE, self.requestParameters.telemetryRequestId, MSID_TELEMETRY_EVENT_API_EVENT);
     self.currentRequest = request;
     [request executeRequestWithCompletion:^(MSIDTokenResult *result, NSError *error)
@@ -143,24 +143,26 @@ - (void)acquireTokenWithRequest:(MSIDSilentTokenRequest *)request
         self.currentRequest = nil;
         MSIDRequestCompletionBlock completionBlockWrapper = ^(MSIDTokenResult *fallResult, NSError *fallError)
         {
-            // We don't have any meaningful information from fallback controller (edge case of SSO error) so we use the local controller result earlier
-            if (!fallResult && (fallError.code == MSIDErrorSSOExtensionUnexpectedError))
+            // Only return fallback when there is a valid result, otherwise, return error from main controller
+            // (!result && !error) is a special case when using local silent controller and to skip local refreh token (broker first flow). In this case, the main controller is the 1st fallback controller, and should return the error
+            if (fallResult || (!result && !error))
             {
-                completionBlock(result, error);
+                completionBlock(fallResult, fallError);
             }
             else
             {
-                completionBlock(fallResult, fallError);
+                completionBlock(result, error);
             }
         };
-        
+            
+        [self.fallbackController shouldSkipAcquireTokenBasedOn:error];
         [self.fallbackController acquireToken:completionBlockWrapper];
     }];
 }
 
-- (BOOL)shouldFallback:(NSError *)error
+- (void)shouldSkipAcquireTokenBasedOn:(NSError *)error
 {
-    return YES;
+    // This method is not used in this class.
 }
 
 @end
diff --git a/IdentityCore/src/controllers/broker/MSIDSSOExtensionInteractiveTokenRequestController.m b/IdentityCore/src/controllers/broker/MSIDSSOExtensionInteractiveTokenRequestController.m
@@ -118,4 +118,5 @@ - (BOOL)shouldFallback:(NSError *)error
 }
 
 @end
+
 #endif
diff --git a/IdentityCore/src/controllers/broker/MSIDSSOExtensionSilentTokenRequestController.m b/IdentityCore/src/controllers/broker/MSIDSSOExtensionSilentTokenRequestController.m
@@ -49,33 +49,5 @@ + (BOOL)canPerformRequest
     return [[ASAuthorizationSingleSignOnProvider msidSharedProvider] canPerformAuthorization];
 }
 
-- (BOOL)shouldFallback:(NSError *)error
-{
-    MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"Looking if we should fallback to fallback controller, error: %ld error domain: %@.", (long)error.code, error.domain);
-    
-    if (!self.fallbackController)
-    {
-        MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"fallback controller is nil, SSO extension controller should fallback: NO");
-        return NO;
-    }
-    
-    // If it is MSIDErrorDomain and Sso Extension returns unexpected error, we should fall back to local controler and unblock user
-    if (![error.domain isEqualToString:ASAuthorizationErrorDomain] && ![error.domain isEqualToString:MSIDErrorDomain]) return NO;
-    
-    BOOL shouldFallback = NO;
-    switch (error.code)
-    {
-        case ASAuthorizationErrorNotHandled:
-        case ASAuthorizationErrorUnknown:
-        case ASAuthorizationErrorFailed:
-        case MSIDErrorSSOExtensionUnexpectedError:
-            shouldFallback = YES;
-    }
-    
-    MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"SSO extension controller should fallback: %@", shouldFallback ? @"YES" : @"NO");
-    
-    return shouldFallback;
-}
-
 @end
 #endif
diff --git a/IdentityCore/src/controllers/broker/ios/MSIDBrokerInteractiveController.m b/IdentityCore/src/controllers/broker/ios/MSIDBrokerInteractiveController.m
@@ -478,6 +478,11 @@ - (BOOL)hasCompletionBlock
     return result;
 }
 
+- (void)shouldSkipAcquireTokenBasedOn:(NSError *)error
+{
+    // This method is not used in this class.
+}
+
 #pragma mark - Fallback
 
 - (void)handleFailedOpenURL:(BOOL)shouldFallbackToLocalController
diff --git a/IdentityCore/src/controllers/broker/mac/MSIDXpcSilentTokenRequestController.m b/IdentityCore/src/controllers/broker/mac/MSIDXpcSilentTokenRequestController.m
@@ -28,20 +28,44 @@
 #import "MSIDLogger+Internal.h"
 #import "MSIDXpcProviderCache.h"
 
+@interface MSIDXpcSilentTokenRequestController ()
+
+// shouldSkipXpcRequest is used when the fallback is not needed for non ASAuthorizationErrorDomain or MSIDErrorSSOExtensionUnexpectedError
+@property (nonatomic) BOOL shouldSkipAcquireToken;
+
+@end
+
 @implementation MSIDXpcSilentTokenRequestController
 
 - (void)acquireToken:(MSIDRequestCompletionBlock)completionBlock
 {
-    MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"Beginning silent broker xpc flow.");
-    MSIDRequestCompletionBlock completionBlockWrapper = ^(MSIDTokenResult *result, NSError *error)
+    MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"Beginning silent broker xpc flow, should use Xpc flow to acquire token: %@", @(!self.shouldSkipAcquireToken));
+    if (!self.shouldSkipAcquireToken)
     {
-        MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"Silent broker xpc flow finished. Result %@, error: %ld error domain: %@, shouldFallBack: %@", _PII_NULLIFY(result), (long)error.code, error.domain, @(self.fallbackController != nil));
-        completionBlock(result, error);
-    };
-    
-    __auto_type request = [self.tokenRequestProvider silentXpcTokenRequestWithParameters:self.requestParameters
-                                                                            forceRefresh:self.forceRefresh];
-    [self acquireTokenWithRequest:request completionBlock:completionBlockWrapper];
+        MSIDRequestCompletionBlock completionBlockWrapper = ^(MSIDTokenResult *result, NSError *error)
+        {
+            MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"Silent broker xpc flow finished. Result %@, error: %ld error domain: %@, shouldFallBack: %@", _PII_NULLIFY(result), (long)error.code, error.domain, @(self.fallbackController != nil));
+            completionBlock(result, error);
+        };
+        
+        __auto_type request = [self.tokenRequestProvider silentXpcTokenRequestWithParameters:self.requestParameters
+                                                                                forceRefresh:self.forceRefresh];
+        [self acquireTokenWithRequest:request completionBlock:completionBlockWrapper];
+    }
+    else
+    {
+        // self.fallbackController cannot be nil here as it has been validated from caller
+        if (self.fallbackController)
+        {
+            [self.fallbackController acquireToken:completionBlock];
+        }
+        else
+        {
+            // Add handler in case
+            NSError *error = MSIDCreateError(MSIDErrorDomain, MSIDErrorInternal, @"Fallback controller is nil", nil, nil, nil, nil, nil, YES);
+            if (completionBlock) completionBlock(nil, error);
+        }
+    }
 }
 
 + (BOOL)canPerformRequest
@@ -55,4 +79,24 @@ + (BOOL)canPerformRequest
     }
 }
 
+- (void)shouldSkipAcquireTokenBasedOn:(NSError *)error
+{
+    self.shouldSkipAcquireToken = YES;
+    MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"Looking if we should fallback to Xpc controller, error: %ld error domain: %@.", (long)error.code, error.domain);
+    // If it is MSIDErrorDomain and Sso Extension returns unexpected error, we should fall back to local controler and unblock user
+    if (![error.domain isEqualToString:ASAuthorizationErrorDomain] && ![error.domain isEqualToString:MSIDErrorDomain]) {
+    }
+    
+    switch (error.code)
+    {
+        case ASAuthorizationErrorNotHandled:
+        case ASAuthorizationErrorUnknown:
+        case ASAuthorizationErrorFailed:
+        case MSIDErrorSSOExtensionUnexpectedError:
+            self.shouldSkipAcquireToken = NO;
+    }
+    
+    MSID_LOG_WITH_CTX(MSIDLogLevelInfo, self.requestParameters, @"Xpc controller should do fallback: %@", !self.shouldSkipAcquireToken ? @"YES" : @"NO");
+}
+
 @end
diff --git a/IdentityCore/tests/integration/MSIDSilentControllerIntegrationTests.m b/IdentityCore/tests/integration/MSIDSilentControllerIntegrationTests.m

Original file line number	Diff line number	Diff line change
`@@ -242,9 +242,9 @@ - (void)acquireTokenWithRequest:(MSIDInteractiveTokenRequest *)request`
`242`	`242`	`}];`
`243`	`243`	`}`
`244`	`244`
`245`		`-- (BOOL)shouldFallback:(NSError *)error`
	`245`	`+- (void)shouldSkipAcquireTokenBasedOn:(NSError *)error`
`246`	`246`	`{`
`247`		`- return YES;`
	`247`	`+ // This method is not used in this class.`
`248`	`248`	`}`
`249`	`249`
`250`	`250`	`@end`
Original file line number	Diff line number	Diff line change
`@@ -111,7 +111,7 @@ - (void)acquireTokenWithRequest:(MSIDSilentTokenRequest *)request`
`111`	`111`	`MSID_LOG_WITH_CTX(MSIDLogLevelError, nil, @"Passed nil completionBlock");`
`112`	`112`	`return;`
`113`	`113`	`}`
`114`		`-`
	`114`	`+`
`115`	`115`	`CONDITIONAL_START_EVENT(CONDITIONAL_SHARED_INSTANCE, self.requestParameters.telemetryRequestId, MSID_TELEMETRY_EVENT_API_EVENT);`
`116`	`116`	`self.currentRequest = request;`
`117`	`117`	`[request executeRequestWithCompletion:^(MSIDTokenResult result, NSError error)`
`@@ -143,24 +143,26 @@ - (void)acquireTokenWithRequest:(MSIDSilentTokenRequest *)request`
`143`	`143`	`self.currentRequest = nil;`
`144`	`144`	`MSIDRequestCompletionBlock completionBlockWrapper = ^(MSIDTokenResult fallResult, NSError fallError)`
`145`	`145`	`{`
`146`		`- // We don't have any meaningful information from fallback controller (edge case of SSO error) so we use the local controller result earlier`
`147`		`- if (!fallResult && (fallError.code == MSIDErrorSSOExtensionUnexpectedError))`
	`146`	`+ // Only return fallback when there is a valid result, otherwise, return error from main controller`
	`147`	`+ // (!result && !error) is a special case when using local silent controller and to skip local refreh token (broker first flow). In this case, the main controller is the 1st fallback controller, and should return the error`
	`148`	`+ if (fallResult \|\| (!result && !error))`
`148`	`149`	`{`
`149`		`- completionBlock(result, error);`
	`150`	`+ completionBlock(fallResult, fallError);`
`150`	`151`	`}`
`151`	`152`	`else`
`152`	`153`	`{`
`153`		`- completionBlock(fallResult, fallError);`
	`154`	`+ completionBlock(result, error);`
`154`	`155`	`}`
`155`	`156`	`};`
`156`		`-`
	`157`	`+`
	`158`	`+ [self.fallbackController shouldSkipAcquireTokenBasedOn:error];`
`157`	`159`	`[self.fallbackController acquireToken:completionBlockWrapper];`
`158`	`160`	`}];`
`159`	`161`	`}`
`160`	`162`
`161`		`-- (BOOL)shouldFallback:(NSError *)error`
	`163`	`+- (void)shouldSkipAcquireTokenBasedOn:(NSError *)error`
`162`	`164`	`{`
`163`		`- return YES;`
	`165`	`+ // This method is not used in this class.`
`164`	`166`	`}`
`165`	`167`
`166`	`168`	`@end`
Original file line number	Diff line number	Diff line change
`@@ -118,4 +118,5 @@ - (BOOL)shouldFallback:(NSError *)error`
`118`	`118`	`}`
`119`	`119`
`120`	`120`	`@end`
	`121`	`+`
`121`	`122`	`#endif`