Make whitelist optional (#2363)

lauren-mills · web-flow · commit d72fc0d76121 · 2019-09-13T08:58:39.000-07:00
diff --git a/lib/csharp/microsoft.bot.builder.skills/Microsoft.Bot.Builder.Skills/Auth/Authenticator.cs b/lib/csharp/microsoft.bot.builder.skills/Microsoft.Bot.Builder.Skills/Auth/Authenticator.cs
@@ -46,9 +46,9 @@ public async Task<ClaimsIdentity> Authenticate(HttpRequest httpRequest, HttpResp
 
             var appIdClaimName = AuthHelpers.GetAppIdClaimName(claimsIdentity);
             var appId = claimsIdentity.Claims.FirstOrDefault(c => c.Type == appIdClaimName)?.Value;
-            if (_whitelistAuthenticationProvider.AppsWhitelist == null
-                || _whitelistAuthenticationProvider.AppsWhitelist.Count == 0
-                || !_whitelistAuthenticationProvider.AppsWhitelist.Contains(appId))
+            if (_whitelistAuthenticationProvider.AppsWhitelist != null
+                && _whitelistAuthenticationProvider.AppsWhitelist.Count > 0
+                && !_whitelistAuthenticationProvider.AppsWhitelist.Contains(appId))
             {
                 httpResponse.StatusCode = (int)HttpStatusCode.Unauthorized;
                 await httpResponse.WriteAsync("Skill could not allow access from calling bot.").ConfigureAwait(false);
diff --git a/templates/Skill-Template/csharp/Sample/SkillSample/WhiteListAuthProvider.cs b/templates/Skill-Template/csharp/Sample/SkillSample/WhiteListAuthProvider.cs
@@ -20,7 +20,7 @@ public WhiteListAuthProvider(IConfiguration configuration)
             // the parent bot's microsoft app id to the list
             var section = configuration.GetSection($"skillAuthenticationWhitelist");
             var appsList = section.Get<string[]>();
-            AppsWhitelist = new HashSet<string>(appsList);
+            AppsWhitelist = appsList != null ? new HashSet<string>(appsList) : null;
         }
 
         public HashSet<string> AppsWhitelist { get; }
diff --git a/templates/Skill-Template/csharp/Template/Skill/WhiteListAuthProvider.cs b/templates/Skill-Template/csharp/Template/Skill/WhiteListAuthProvider.cs
@@ -20,7 +20,7 @@ public WhiteListAuthProvider(IConfiguration configuration)
             // the parent bot's microsoft app id to the list
             var section = configuration.GetSection($"skillAuthenticationWhitelist");
             var appsList = section.Get<string[]>();
-            AppsWhitelist = new HashSet<string>(appsList);
+            AppsWhitelist = appsList != null ? new HashSet<string>(appsList) : null;
         }
 
         public HashSet<string> AppsWhitelist { get; }

Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,7 @@ public WhiteListAuthProvider(IConfiguration configuration)`
`20`	`20`	`// the parent bot's microsoft app id to the list`
`21`	`21`	`var section = configuration.GetSection($"skillAuthenticationWhitelist");`
`22`	`22`	`var appsList = section.Get<string[]>();`
`23`		`- AppsWhitelist = new HashSet<string>(appsList);`
	`23`	`+ AppsWhitelist = appsList != null ? new HashSet<string>(appsList) : null;`
`24`	`24`	`}`
`25`	`25`
`26`	`26`	`public HashSet<string> AppsWhitelist { get; }`