Refresh token with client credentials flow and use async for data access. (#43)

* Obtained new token with expiring OAuth2 client credentials flow.

* Made data access async.

* Refactored to simplify parameter lists.

Author: AndyButland

examples/Umbraco.AuthorizedServices.TestSite/Controllers/TestAuthorizedServicesController.cs

@@ -200,15 +200,15 @@ public async Task<IActionResult> GetTwitterProfileUsingOAuth2()
         return Content(response);
     }
 
-    public IActionResult GetApiKey(string serviceAlias)
+    public async Task<IActionResult> GetApiKey(string serviceAlias)
     {
-        Attempt<string?> apiKeyAttempt = AuthorizedServiceCaller.GetApiKey(serviceAlias);
+        Attempt<string?> apiKeyAttempt = await AuthorizedServiceCaller.GetApiKey(serviceAlias);
         return Content(apiKeyAttempt.Result ?? string.Empty);
     }
 
-    public IActionResult GetOAuthToken(string serviceAlias)
+    public async Task<IActionResult> GetOAuthToken(string serviceAlias)
     {
-        Attempt<string?> responseAttempt = AuthorizedServiceCaller.GetOAuth2AccessToken(serviceAlias);
+        Attempt<string?> responseAttempt = await AuthorizedServiceCaller.GetOAuth2AccessToken(serviceAlias);
         if (!responseAttempt.Success || responseAttempt.Result is null)
         {
             return HandleFailedRequest(responseAttempt.Exception, "Could not retrieve access token.");
@@ -218,9 +218,9 @@ public IActionResult GetOAuthToken(string serviceAlias)
         return Content(response);
     }
 
-    public IActionResult GetOAuth1Token(string serviceAlias)
+    public async Task<IActionResult> GetOAuth1Token(string serviceAlias)
     {
-        Attempt<string?> responseAttempt = AuthorizedServiceCaller.GetOAuth1Token(serviceAlias);
+        Attempt<string?> responseAttempt = await AuthorizedServiceCaller.GetOAuth1Token(serviceAlias);
         if (!responseAttempt.Success || responseAttempt.Result is null)
         {
             return Problem("Could not retrieve the OAuth token.");

src/Umbraco.AuthorizedServices/Controllers/AuthorizedServiceController.cs

@@ -63,11 +63,11 @@ public AuthorizedServiceController(
     /// </summary>
     /// <param name="alias">The service alias.</param>
     [HttpGet]
-    public AuthorizedServiceDisplay? GetByAlias(string alias)
+    public async Task<AuthorizedServiceDisplay?> GetByAlias(string alias)
     {
         ServiceDetail serviceDetail = _serviceDetailOptions.Get(alias);
 
-        bool isAuthorized = CheckAuthorizationStatus(serviceDetail);
+        bool isAuthorized = await CheckAuthorizationStatus(serviceDetail);
 
         string? authorizationUrl = null;
         if (serviceDetail.AuthenticationMethod == AuthenticationMethod.OAuth2AuthorizationCode)
@@ -156,23 +156,23 @@ public async Task<IActionResult> SendSampleRequest(string alias)
     /// </summary>
     /// <param name="model">Request model identifying the service.</param>
     [HttpPost]
-    public IActionResult RevokeAccess(RevokeAccess model)
+    public async Task<IActionResult> RevokeAccess(RevokeAccess model)
     {
         ServiceDetail serviceDetail = _serviceDetailOptions.Get(model.Alias);
 
         switch (serviceDetail.AuthenticationMethod)
         {
             case AuthenticationMethod.ApiKey:
-                _keyStorage.DeleteKey(model.Alias);
+                await _keyStorage.DeleteKeyAsync(model.Alias);
                 ClearCachedApiKey(model.Alias);
                 break;
             case AuthenticationMethod.OAuth1:
-                _oauth1TokenStorage.DeleteToken(model.Alias);
+                await _oauth1TokenStorage.DeleteTokenAsync(model.Alias);
                 ClearCachedToken(model.Alias);
                 break;
             case AuthenticationMethod.OAuth2AuthorizationCode:
             case AuthenticationMethod.OAuth2ClientCredentials:
-                _oauth2TokenStorage.DeleteToken(model.Alias);
+                await _oauth2TokenStorage.DeleteTokenAsync(model.Alias);
                 ClearCachedToken(model.Alias);
                 break;
             default:
@@ -200,9 +200,9 @@ private void ClearCachedToken(string serviceAlias)
     /// <param name="model">Request model identifying the service.</param>
     /// <returns></returns>
     [HttpPost]
-    public IActionResult SaveOAuth2Token(AddOAuth2Token model)
+    public async Task<IActionResult> SaveOAuth2Token(AddOAuth2Token model)
     {
-        _oauth2TokenStorage.SaveToken(model.Alias, new OAuth2Token(model.Token));
+        await _oauth2TokenStorage.SaveTokenAsync(model.Alias, new OAuth2Token(model.Token));
         return Ok();
     }
 
@@ -212,9 +212,9 @@ public IActionResult SaveOAuth2Token(AddOAuth2Token model)
     /// <param name="model">Request model identifying the service.</param>
     /// <returns></returns>
     [HttpPost]
-    public IActionResult SaveOAuth1Token(AddOAuth1Token model)
+    public async Task<IActionResult> SaveOAuth1Token(AddOAuth1Token model)
     {
-        _oauth1TokenStorage.SaveToken(model.Alias, new OAuth1Token(model.Token, model.TokenSecret));
+        await _oauth1TokenStorage.SaveTokenAsync(model.Alias, new OAuth1Token(model.Token, model.TokenSecret));
         return Ok();
     }
 
@@ -224,9 +224,9 @@ public IActionResult SaveOAuth1Token(AddOAuth1Token model)
     /// <param name="model">Request model identifying the service.</param>
     /// <returns></returns>
     [HttpPost]
-    public IActionResult SaveApiKey(AddApiKey model)
+    public async Task<IActionResult> SaveApiKey(AddApiKey model)
     {
-        _keyStorage.SaveKey(model.Alias, model.ApiKey);
+        await _keyStorage.SaveKeyAsync(model.Alias, model.ApiKey);
         return Ok();
     }
 
@@ -276,17 +276,17 @@ public async Task<IActionResult> GenerateOAuth1RequestToken(GenerateToken model)
         throw new AuthorizedServiceException("Failed to obtain request token");
     }
 
-    private bool CheckAuthorizationStatus(ServiceDetail serviceDetail) => serviceDetail.AuthenticationMethod switch
+    private async Task<bool> CheckAuthorizationStatus(ServiceDetail serviceDetail) => serviceDetail.AuthenticationMethod switch
     {
-        AuthenticationMethod.OAuth1 => StoredOAuth1TokenExists(serviceDetail),
-        AuthenticationMethod.OAuth2AuthorizationCode => StoredOAuth2TokenExists(serviceDetail),
-        AuthenticationMethod.OAuth2ClientCredentials => StoredOAuth2TokenExists(serviceDetail),
+        AuthenticationMethod.OAuth1 => await StoredOAuth1TokenExists(serviceDetail),
+        AuthenticationMethod.OAuth2AuthorizationCode => await StoredOAuth2TokenExists(serviceDetail),
+        AuthenticationMethod.OAuth2ClientCredentials => await StoredOAuth2TokenExists(serviceDetail),
         AuthenticationMethod.ApiKey => !string.IsNullOrEmpty(serviceDetail.ApiKey)
-                                       || _keyStorage.GetKey(serviceDetail.Alias) is not null,
+                                       || await _keyStorage.GetKeyAsync(serviceDetail.Alias) is not null,
         _ => false
     };
 
-    private bool StoredOAuth2TokenExists(ServiceDetail serviceDetail) => _oauth2TokenStorage.GetToken(serviceDetail.Alias) != null;
+    private async Task<bool> StoredOAuth2TokenExists(ServiceDetail serviceDetail) => await _oauth2TokenStorage.GetTokenAsync(serviceDetail.Alias) != null;
 
-    private bool StoredOAuth1TokenExists(ServiceDetail serviceDetail) => _oauth1TokenStorage.GetToken(serviceDetail.Alias) != null;
+    private async Task<bool> StoredOAuth1TokenExists(ServiceDetail serviceDetail) => await _oauth1TokenStorage.GetTokenAsync(serviceDetail.Alias) != null;
 }

src/Umbraco.AuthorizedServices/Manifests/AuthorizedServicesManifestFilter.cs

@@ -24,8 +24,8 @@ public void Filter(List<PackageManifest> manifests)
         };
 
         // The PackageId property was added in Umbraco 12, so we have to use reflection here to set it if available
-        // as the package depdendency is on Umbraco 10.
-        // If and when we release a version with a depdendency on 12+, this should be removed and replaced with
+        // as the package dependency is on Umbraco 10.
+        // If and when we release a version with a dependency on 12+, this should be removed and replaced with
         // a standard property setter.
         ReflectionHelper.SetOptionalPropertyValue(manifest, "PackageId", Constants.PackageId);
 

src/Umbraco.AuthorizedServices/Services/IAuthorizedServiceCaller.cs

@@ -64,19 +64,19 @@ public interface IAuthorizedServiceCaller
     /// </summary>
     /// <param name="serviceAlias">The service alias.</param>
     /// <returns>The access token if found, otherwise null.</returns>
-    Attempt<string?> GetOAuth2AccessToken(string serviceAlias);
+    Task<Attempt<string?>> GetOAuth2AccessToken(string serviceAlias);
 
     /// <summary>
     /// Sends a request to an authorized service to receive the unencrypted OAuth token.
     /// </summary>
     /// <param name="serviceAlias">The service alias.</param>
     /// <returns>The OAuth token if found, otherwise null.</returns>
-    Attempt<string?> GetOAuth1Token(string serviceAlias);
+    Task<Attempt<string?>> GetOAuth1Token(string serviceAlias);
 
     /// <summary>
     /// Retrieve's the configured API key for a service.
     /// </summary>
     /// <param name="serviceAlias"></param>
     /// <returns></returns>
-    Attempt<string?> GetApiKey(string serviceAlias);
+    Task<Attempt<string?>> GetApiKey(string serviceAlias);
 }

src/Umbraco.AuthorizedServices/Services/IKeyStorage.cs

@@ -10,18 +10,18 @@ public interface IKeyStorage
     /// </summary>
     /// <param name="serviceAlias">The service alias.</param>
     /// <returns>The key value (or null, if not found).</returns>
-    string? GetKey(string serviceAlias);
+    Task<string?> GetKeyAsync(string serviceAlias);
 
     /// <summary>
     /// Stores an API key for aa service.
     /// </summary>
     /// <param name="serviceAlias">The service alias.</param>
     /// <param name="key">The API key.</param>
-    void SaveKey(string serviceAlias, string key);
+    Task SaveKeyAsync(string serviceAlias, string key);
 
     /// <summary>
     /// Deletes a stored API key.
     /// </summary>
     /// <param name="serviceAlias">The service alias.</param>
-    void DeleteKey(string serviceAlias);
+    Task DeleteKeyAsync(string serviceAlias);
 }

src/Umbraco.AuthorizedServices/Services/ITokenStorage.cs

@@ -13,18 +13,18 @@ public interface ITokenStorage<T>
     /// </summary>
     /// <param name="serviceAlias">The service alias.</param>
     /// <returns>The <see cref="OAuth2Token"/> or <see cref="OAuth1Token"/> instance (or null, if not found).</returns>
-    T? GetToken(string serviceAlias);
+    Task<T?> GetTokenAsync(string serviceAlias);
 
     /// <summary>
     /// Stores a token for a service.
     /// </summary>
     /// <param name="serviceAlias">The service alias.</param>
     /// <param name="token">The <see cref="OAuth2Token"/> or <see cref="OAuth1Token"/>.</param>
-    void SaveToken(string serviceAlias, T token);
+    Task SaveTokenAsync(string serviceAlias, T token);
 
     /// <summary>
     /// Deletes a stored token.
     /// </summary>
     /// <param name="serviceAlias">The service alias.</param>
-    void DeleteToken(string serviceAlias);
+    Task DeleteTokenAsync(string serviceAlias);
 }

src/Umbraco.AuthorizedServices/Services/Implement/AuthorizedServiceAuthorizer.cs

@@ -53,7 +53,7 @@ public async Task<AuthorizationResult> ExchangeOAuth2AccessTokenAsync(string ser
     {
         ServiceDetail serviceDetail = GetServiceDetail(serviceAlias);
 
-        OAuth2Token? token = GetStoredToken(serviceAlias) ?? throw new AuthorizedServiceException($"Could not find the access token for {serviceAlias}");
+        OAuth2Token? token = await GetStoredToken(serviceAlias) ?? throw new AuthorizedServiceException($"Could not find the access token for {serviceAlias}");
 
         Dictionary<string, string> parameters = _exchangeTokenParametersBuilder.BuildParameters(serviceDetail, token.AccessToken);
 
@@ -102,12 +102,12 @@ private async Task<AuthorizationResult> SendRequest(ServiceDetail serviceDetail,
             if (serviceDetail.AuthenticationMethod == AuthenticationMethod.OAuth1)
             {
                 OAuth1Token token = await CreateOAuth1TokenFromResponse(response);
-                StoreOAuth1Token(serviceDetail.Alias, token);
+                await StoreOAuth1Token(serviceDetail.Alias, token);
             }
             else
             {
                 OAuth2Token token = await CreateOAuth2TokenFromResponse(serviceDetail, response);
-                StoreOAuth2Token(serviceDetail.Alias, token);
+                await StoreOAuth2Token(serviceDetail.Alias, token);
             }
 
             return AuthorizationResult.AsSuccess();

src/Umbraco.AuthorizedServices/Services/Implement/AuthorizedServiceBase.cs

@@ -59,21 +59,21 @@ protected async Task<OAuth1Token> CreateOAuth1TokenFromResponse(HttpResponseMess
         return _tokenFactory.CreateFromOAuth1ResponseContent(responseContent);
     }
 
-    protected OAuth2Token? GetStoredToken(string serviceAlias) => OAuth2TokenStorage.GetToken(serviceAlias);
+    protected async Task<OAuth2Token?> GetStoredToken(string serviceAlias) => await OAuth2TokenStorage.GetTokenAsync(serviceAlias);
 
-    protected void StoreOAuth2Token(string serviceAlias, OAuth2Token token)
+    protected async Task StoreOAuth2Token(string serviceAlias, OAuth2Token token)
     {
         // Add the access token details to the cache.
         var cacheKey = CacheHelper.GetTokenCacheKey(serviceAlias);
         AppCaches.RuntimeCache.InsertCacheItem(cacheKey, () => token);
 
         // Save the refresh token into the storage.
-        OAuth2TokenStorage.SaveToken(serviceAlias, token);
+        await OAuth2TokenStorage.SaveTokenAsync(serviceAlias, token);
     }
 
-    protected void StoreOAuth1Token(string serviceAlias, OAuth1Token token)
+    protected async Task StoreOAuth1Token(string serviceAlias, OAuth1Token token)
     {
         // Save the token information into the storage.
-        OAuth1TokenStorage.SaveToken(serviceAlias, token);
+        await OAuth1TokenStorage.SaveTokenAsync(serviceAlias, token);
     }
 }