Merge pull request #339 from microsoftgraph/feat/add-graph-authetication-providers

baywet · web-flow · commit effdf424ebf3 · 2025-02-03T15:41:32.000-05:00
feat: adds graph allowed hosts
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -70,7 +70,9 @@
     "vitest": "^3.0.1"
   },
   "dependencies": {
+    "@azure/core-auth": "^1.9.0",
     "@microsoft/kiota-abstractions": "^1.0.0-preview.39",
+    "@microsoft/kiota-authentication-azure": "^1.0.0-preview.81",
     "@microsoft/kiota-http-fetchlibrary": "^1.0.0-preview.38",
     "@microsoft/kiota-serialization-form": "^1.0.0-preview.28",
     "@microsoft/kiota-serialization-json": "^1.0.0-preview.39",
diff --git a/src/authentication/AzureIdentityAccessTokenProvider.ts b/src/authentication/AzureIdentityAccessTokenProvider.ts
@@ -0,0 +1,26 @@
+import { GetTokenOptions, TokenCredential } from "@azure/core-auth";
+import { AzureIdentityAccessTokenProvider } from "@microsoft/kiota-authentication-azure";
+import { ObservabilityOptions } from "@microsoft/kiota-authentication-azure/dist/es/src/observabilityOptions";
+
+export class GraphAzureIdentityAccessTokenProvider extends AzureIdentityAccessTokenProvider {
+  public constructor(
+    credentials: TokenCredential,
+    scopes?: string[],
+    options?: GetTokenOptions | undefined,
+    allowedHosts?: Set<string>,
+    observabilityOptions?: ObservabilityOptions,
+    isCaeEnabled?: boolean,
+  ) {
+    if (!allowedHosts || allowedHosts.size === 0) {
+      allowedHosts = new Set([
+        "graph.microsoft.com",
+        "graph.microsoft.us",
+        "dod-graph.microsoft.us",
+        "graph.microsoft.de",
+        "microsoftgraph.chinacloudapi.cn",
+        "canary.graph.microsoft.com",
+      ]);
+    }
+    super(credentials, scopes, options, allowedHosts, observabilityOptions, isCaeEnabled);
+  }
+}
diff --git a/src/authentication/AzureIdentityAuthenticationProvider.ts b/src/authentication/AzureIdentityAuthenticationProvider.ts
@@ -0,0 +1,27 @@
+import { GetTokenOptions, TokenCredential } from "@azure/core-auth";
+import { AzureIdentityAuthenticationProvider } from "@microsoft/kiota-authentication-azure";
+import { ObservabilityOptions } from "@microsoft/kiota-authentication-azure/dist/es/src/observabilityOptions";
+
+export class GraphAzureIdentityAuthenticationProvider extends AzureIdentityAuthenticationProvider {
+  // create a constructor with TokenCredential
+  public constructor(
+    credentials: TokenCredential,
+    scopes?: string[],
+    options?: GetTokenOptions | undefined,
+    allowedHosts?: Set<string>,
+    observabilityOptions?: ObservabilityOptions,
+    isCaeEnabled?: boolean,
+  ) {
+    if (!allowedHosts || allowedHosts.size === 0) {
+      allowedHosts = new Set([
+        "graph.microsoft.com",
+        "graph.microsoft.us",
+        "dod-graph.microsoft.us",
+        "graph.microsoft.de",
+        "microsoftgraph.chinacloudapi.cn",
+        "canary.graph.microsoft.com",
+      ]);
+    }
+    super(credentials, scopes, options, allowedHosts, observabilityOptions, isCaeEnabled);
+  }
+}
diff --git a/src/authentication/index.ts b/src/authentication/index.ts
@@ -0,0 +1,2 @@
+export * from "./AzureIdentityAccessTokenProvider.js";
+export * from "./AzureIdentityAuthenticationProvider.js";
diff --git a/src/index.ts b/src/index.ts
@@ -1,5 +1,6 @@
 export * from "./adapter/index.js";
 export * from "./http/index.js";
 export * from "./middleware/index.js";
+export * from "./authentication/index.js";
 export * from "./utils/Constants.js";
 export * from "./utils/Version.js";
diff --git a/test/authentication/AzureIdentityAccessTokenProvider.ts b/test/authentication/AzureIdentityAccessTokenProvider.ts
@@ -0,0 +1,30 @@
+import { assert, describe, it } from "vitest";
+import { GraphAzureIdentityAccessTokenProvider } from "../../src/authentication/AzureIdentityAccessTokenProvider";
+import { GraphTelemetryOption } from "../../src/middleware/GraphTelemetryOption";
+import { AzureIdentityAccessTokenProvider } from "@microsoft/kiota-authentication-azure";
+import { TokenCredential } from "@azure/core-auth";
+
+const options: GraphTelemetryOption = {
+  graphServiceTargetVersion: "v1",
+  graphProductPrefix: "graph-typescript-test",
+  graphServiceLibraryClientVersion: "0.0.0",
+};
+
+describe("GraphAzureIdentityAccessTokenProvider tests", () => {
+  it("should implement AzureIdentityAccessTokenProvider", () => {
+    const credential = {} as TokenCredential; // Replace with actual TokenCredential implementation
+    const provider = new GraphAzureIdentityAccessTokenProvider(credential);
+    assert.instanceOf(
+      provider,
+      AzureIdentityAccessTokenProvider,
+      "Provider does not implement AzureIdentityAccessTokenProvider",
+    );
+  });
+
+  it("should add default hosts", async () => {
+    const credential = {} as TokenCredential; // Replace with actual TokenCredential implementation
+    const provider = new GraphAzureIdentityAccessTokenProvider(credential);
+    const allowedHosts = provider.getAllowedHostsValidator().getAllowedHosts();
+    assert.equal(allowedHosts.length, 6, "Unexpected number of allowed hosts");
+  });
+});
diff --git a/test/authentication/AzureIdentityAutheticationProvider.ts b/test/authentication/AzureIdentityAutheticationProvider.ts
@@ -0,0 +1,30 @@
+import { assert, describe, it } from "vitest";
+import { GraphAzureIdentityAuthenticationProvider } from "../../src/authentication/AzureIdentityAuthenticationProvider";
+import { GraphTelemetryOption } from "../../src/middleware/GraphTelemetryOption";
+import { AzureIdentityAuthenticationProvider } from "@microsoft/kiota-authentication-azure";
+import { TokenCredential } from "@azure/core-auth";
+
+const options: GraphTelemetryOption = {
+  graphServiceTargetVersion: "v1",
+  graphProductPrefix: "graph-typescript-test",
+  graphServiceLibraryClientVersion: "0.0.0",
+};
+
+describe("GraphAzureIdentityAuthenticationProvider tests", () => {
+  it("should implement AzureIdentityAccessTokenProvider", () => {
+    const credential = {} as TokenCredential; // Replace with actual TokenCredential implementation
+    const provider = new GraphAzureIdentityAuthenticationProvider(credential);
+    assert.instanceOf(
+      provider,
+      AzureIdentityAuthenticationProvider,
+      "Provider does not implement AzureIdentityAccessTokenProvider",
+    );
+  });
+
+  it("should add default hosts", async () => {
+    const credential = {} as TokenCredential; // Replace with actual TokenCredential implementation
+    const provider = new GraphAzureIdentityAuthenticationProvider(credential);
+    const allowedHosts = provider.accessTokenProvider.getAllowedHostsValidator().getAllowedHosts();
+    assert.equal(allowedHosts.length, 6, "Unexpected number of allowed hosts");
+  });
+});

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+export * from "./AzureIdentityAccessTokenProvider.js";`
	`2`	`+export * from "./AzureIdentityAuthenticationProvider.js";`