Update E2E agent identity configuration to new tenant (#3646)

* Initial plan

* Update agent identity configuration to new tenant and credentials

Co-authored-by: jmprieur <[email protected]>

* Fix AgentIdentity to use correct value (ab18ca07-d139-4840-8b3b-4be9610c6ed5)

Co-authored-by: jmprieur <[email protected]>

* Fix User Object ID to complete GUID (a02b9a5b-ea57-40c9-bf00-8aa631b549ad)

Co-authored-by: jmprieur <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: jmprieur <[email protected]>
Co-authored-by: Jean-Marc Prieur <[email protected]>

Author: Copilot

tests/E2E Tests/AgentApplications/AgentUserIdentityTestscs.cs

@@ -19,10 +19,10 @@ namespace AgentApplicationsTests
     public class AgentUserIdentityTests
     {
         string instance = "https://login.microsoftonline.com/";
-        string tenantId = "31a58c3b-ae9c-4448-9e8f-e9e143e800df";         // Replace with your tenant ID
-        string agentApplication = "d05619c9-dbf2-4e60-95fd-cc75dd0db451"; // Replace with the actual agent application client ID
-        string agentIdentity = "edbfbbe7-d240-40dd-aee2-435201dbaa9c";    // Replace with the actual agent identity
-        string userUpn = "agentuser1@msidlabtoint.onmicrosoft.com";       // Replace with the actual user upn.
+        string tenantId = "10c419d4-4a50-45b2-aa4e-919fb84df24f";         // Replace with your tenant ID
+        string agentApplication = "aab5089d-e764-47e3-9f28-cc11c2513821"; // Replace with the actual agent application client ID
+        string agentIdentity = "ab18ca07-d139-4840-8b3b-4be9610c6ed5";    // Replace with the actual agent identity
+        string userUpn = "agentuser1@id4slab1.onmicrosoft.com";       // Replace with the actual user upn.
 
         [Fact]
         public async Task AgentUserIdentityGetsTokenForGraphAsync()
@@ -254,7 +254,7 @@ public async Task AgentUserIdentityGetsTokenForGraphWithCacheAsync()
         [Fact]
         public async Task AgentUserIdentityGetsTokenForGraphByUserIdAsync()
         {
-            string userOid = "03d648e4-2e01-4dfb-b21d-81eb678fbcf4";           // Replace with the actual user OID.
+            string userOid = "a02b9a5b-ea57-40c9-bf00-8aa631b549ad";           // Replace with the actual user OID.
 
             IServiceCollection services = new ServiceCollection();
 

tests/E2E Tests/AgentApplications/AutonomousAgentTests.cs

@@ -15,18 +15,18 @@ namespace AgentApplicationsTests
 {
     public class AutonomousAgentTests
     {
-        const string overriddenTenantId = "31a58c3b-ae9c-4448-9e8f-e9e143e800df";
+        const string overriddenTenantId = "10c419d4-4a50-45b2-aa4e-919fb84df24f";
         [Theory]
         [InlineData("organizations")]
-        [InlineData("31a58c3b-ae9c-4448-9e8f-e9e143e800df")]
+        [InlineData("10c419d4-4a50-45b2-aa4e-919fb84df24f")]
         public async Task AutonomousAgentGetsAppTokenForAgentIdentityToCallGraphAsync(string configuredTenantId)
         {
             IServiceCollection services = new ServiceCollection();
             IConfiguration configuration = new ConfigurationBuilder().AddInMemoryCollection().Build();
 
             configuration["AzureAd:Instance"] = "https://login.microsoftonline.com/";
             configuration["AzureAd:TenantId"] = configuredTenantId; // Set to the GUID or organizations
-            configuration["AzureAd:ClientId"] = "d05619c9-dbf2-4e60-95fd-cc75dd0db451"; // Agent application.
+            configuration["AzureAd:ClientId"] = "aab5089d-e764-47e3-9f28-cc11c2513821"; // Agent application.
             configuration["AzureAd:ClientCredentials:0:SourceType"] = "StoreWithDistinguishedName";
             configuration["AzureAd:ClientCredentials:0:CertificateStorePath"] = "LocalMachine/My";
             configuration["AzureAd:ClientCredentials:0:CertificateDistinguishedName"] = "CN=LabAuth.MSIDLab.com";
@@ -41,7 +41,7 @@ public async Task AutonomousAgentGetsAppTokenForAgentIdentityToCallGraphAsync(st
             services.AddMicrosoftGraph(); // If you want to call Microsoft Graph
             var serviceProvider = services.BuildServiceProvider();
 
-            string agentIdentity = "edbfbbe7-d240-40dd-aee2-435201dbaa9c"; // Replace with the actual agent identity
+            string agentIdentity = "ab18ca07-d139-4840-8b3b-4be9610c6ed5"; // Replace with the actual agent identity
 
             //// Get an authorization header and handle the call to the downstream API yoursel
             IAuthorizationHeaderProvider authorizationHeaderProvider = serviceProvider.GetService<IAuthorizationHeaderProvider>()!;

tests/E2E Tests/AgentApplications/GetFicAsyncTests.cs

@@ -17,9 +17,9 @@ public class GetFicAsyncTests
         public async Task GetFicTokensTestsAsync()
         {
             string instance = "https://login.microsoftonline.com/";
-            string tenantId = "31a58c3b-ae9c-4448-9e8f-e9e143e800df";         // Replace with your tenant ID
-            string agentApplication = "d05619c9-dbf2-4e60-95fd-cc75dd0db451"; // Replace with the actual agent application client ID
-            string agentIdentity = "edbfbbe7-d240-40dd-aee2-435201dbaa9c";    // Replace with the actual agent identity
+            string tenantId = "10c419d4-4a50-45b2-aa4e-919fb84df24f";         // Replace with your tenant ID
+            string agentApplication = "aab5089d-e764-47e3-9f28-cc11c2513821"; // Replace with the actual agent application client ID
+            string agentIdentity = "ab18ca07-d139-4840-8b3b-4be9610c6ed5";    // Replace with the actual agent identity
 
             IServiceCollection services = new ServiceCollection();
 

tests/E2E Tests/Sidecar.Tests/SidecarApiFactory.cs

@@ -24,9 +24,9 @@ internal SidecarApiFactory(Action<IConfigurationBuilder>? configureOptions)
             builder.AddInMemoryCollection(new Dictionary<string, string?>
             {
                 { "AzureAd:Instance", "https://login.microsoftonline.com/" },
-                { "AzureAd:TenantId", "31a58c3b-ae9c-4448-9e8f-e9e143e800df" },
-                { "AzureAd:ClientId", "d05619c9-dbf2-4e60-95fd-cc75dd0db451" },
-                { "AzureAd:Audience", "d05619c9-dbf2-4e60-95fd-cc75dd0db451" },
+                { "AzureAd:TenantId", "10c419d4-4a50-45b2-aa4e-919fb84df24f" },
+                { "AzureAd:ClientId", "aab5089d-e764-47e3-9f28-cc11c2513821" },
+                { "AzureAd:Audience", "aab5089d-e764-47e3-9f28-cc11c2513821" },
                 { "AzureAd:AllowWebApiToBeAuthorizedByACL", "true" },
                 { "AzureAd:ClientCredentials:0:SourceType", "StoreWithDistinguishedName" },
                 { "AzureAd:ClientCredentials:0:CertificateStorePath", "LocalMachine/My" },

tests/E2E Tests/Sidecar.Tests/SidecarEndpointsE2ETests.cs

@@ -22,11 +22,11 @@ public class SidecarEndpointsE2ETests : IClassFixture<SidecarApiFactory>
 
     public SidecarEndpointsE2ETests(SidecarApiFactory factory) => _factory = factory;
 
-    const string TenantId = "31a58c3b-ae9c-4448-9e8f-e9e143e800df";         // Replace with your tenant ID
-    const string AgentApplication = "d05619c9-dbf2-4e60-95fd-cc75dd0db451"; // Replace with the actual agent application client ID
-    const string AgentIdentity = "edbfbbe7-d240-40dd-aee2-435201dbaa9c";    // Replace with the actual agent identity
-    const string UserUpn = "agentuser1@msidlabtoint.onmicrosoft.com";       // Replace with the actual user upn.
-    string UserOid = "03d648e4-2e01-4dfb-b21d-81eb678fbcf4";           // Replace with the actual user OID.
+    const string TenantId = "10c419d4-4a50-45b2-aa4e-919fb84df24f";         // Replace with your tenant ID
+    const string AgentApplication = "aab5089d-e764-47e3-9f28-cc11c2513821"; // Replace with the actual agent application client ID
+    const string AgentIdentity = "ab18ca07-d139-4840-8b3b-4be9610c6ed5";    // Replace with the actual agent identity
+    const string UserUpn = "agentuser1@id4slab1.onmicrosoft.com";       // Replace with the actual user upn.
+    string UserOid = "a02b9a5b-ea57-40c9-bf00-8aa631b549ad";           // Replace with the actual user OID.
 
     [Fact]
     public async Task Validate_WhenBadTokenAsync()
@@ -175,7 +175,7 @@ private static async Task<string> GetAuthorizationHeaderToCallTheSideCarAsync()
         IConfiguration configuration = new ConfigurationBuilder().AddInMemoryCollection().Build();
         services.AddSingleton<IConfiguration>(configuration);
         configuration["Instance"] = "https://login.microsoftonline.com/";
-        configuration["TenantId"] = "31a58c3b-ae9c-4448-9e8f-e9e143e800df";
+        configuration["TenantId"] = "10c419d4-4a50-45b2-aa4e-919fb84df24f";
         configuration["ClientId"] = "5cbcd9ff-c994-49ac-87e7-08a93a9c0794";
         configuration["SendX5C"] = "true";
         configuration["ClientCredentials:0:SourceType"] = "StoreWithDistinguishedName";
@@ -187,7 +187,7 @@ private static async Task<string> GetAuthorizationHeaderToCallTheSideCarAsync()
         IServiceProvider serviceProvider = services.BuildServiceProvider();
 
         IAuthorizationHeaderProvider authorizationHeaderProvider = serviceProvider.GetRequiredService<IAuthorizationHeaderProvider>();
-        string authorizationHeader = await authorizationHeaderProvider.CreateAuthorizationHeaderForAppAsync("api://d05619c9-dbf2-4e60-95fd-cc75dd0db451/.default",
+        string authorizationHeader = await authorizationHeaderProvider.CreateAuthorizationHeaderForAppAsync("api://aab5089d-e764-47e3-9f28-cc11c2513821/.default",
             new AuthorizationHeaderProviderOptions()
             {
                 AcquireTokenOptions = new AcquireTokenOptions()