Enable users menu if you have Administrator role

Author: matsujirushi

src/AzureSphereExplorer/MainWindow.xaml

@@ -38,7 +38,7 @@
         <Menu DockPanel.Dock="Top">
             <MenuItem Header="View">
                 <MenuItem Header="Reload" Click="menuitemReload_Click"/>
-                <MenuItem Header="Users..." Click="menuitemUsers_Click"/>
+                <MenuItem x:Name="menuitemUsers" Header="Users..." Click="menuitemUsers_Click" IsEnabled="False"/>
                 <MenuItem Header="Error Reports..." Click="menuitemErrorReports_Click"/>
             </MenuItem>
             <MenuItem Header="Help">

src/AzureSphereExplorer/MainWindow.xaml.cs

@@ -87,8 +87,10 @@ private async void Window_Loaded(object sender, RoutedEventArgs e)
                 Tenant = dialog.SelectedTenant;
             }
 
-            await RefreshAllGrids();
+            var roles = await Api.GetRolesAsync(Tenant, Api.Username, cancellationTokenSource.Token);
+            if (roles.Contains("Administrator")) menuitemUsers.IsEnabled = true;
 
+            await RefreshAllGrids();
         }
 
         private async Task RefreshAllGrids()

src/AzureSpherePublicAPI/AzureSphereAPI.cs

@@ -19,6 +19,7 @@ public class AzureSphereAPI
         private static readonly Uri AzureSphereApiEndpoint = new Uri("https://prod.core.sphere.azure.net/");
 
         private string AccessToken = string.Empty;
+        public string Username { get; private set; } = string.Empty;
 
         public async Task AuthenticationAsync(CancellationToken cancellationToken)
         {
@@ -33,6 +34,7 @@ public async Task AuthenticationAsync(CancellationToken cancellationToken)
                 .ExecuteAsync();
 
             AccessToken = authResult.AccessToken;
+            Username = authResult.Account.Username;
         }
 
         public async Task<List<AzureSphereTenant>> GetTenantsAsync(CancellationToken cancellationToken)
@@ -51,6 +53,26 @@ public async Task<List<AzureSphereTenant>> GetTenantsAsync(CancellationToken can
             return tenants;
         }
 
+        public async Task<List<string>> GetRolesAsync(AzureSphereTenant tenant, string username, CancellationToken cancellationToken)
+        {
+            var jsonString = await GetAsync($"v2/tenants/{tenant.Id}/users/{username}/role", cancellationToken);
+            Console.WriteLine("GetRolesAsync()");
+            Console.WriteLine(jsonString);
+            var json = JToken.Parse(jsonString);
+            var jsonRoles = json.Value<JArray>("Roles");
+            if (jsonRoles.Count != 1) throw new ApplicationException();
+            if (jsonRoles[0].Value<string>("TenantId") != tenant.Id) throw new ApplicationException();
+            var jsonRoleNames = jsonRoles[0]["RoleNames"];
+
+            var roleNames = new List<string>();
+            foreach (var jsonRoleName in jsonRoleNames)
+            {
+                roleNames.Add(jsonRoleName.Value<string>());
+            }
+
+            return roleNames;
+        }
+
         public async Task<List<AzureSphereProduct>> GetProductsAsync(AzureSphereTenant tenant, CancellationToken cancellationToken)
         {
             var jsonString = await GetAsync($"v2/tenants/{tenant.Id}/products", cancellationToken);