Changes to run the tests with managed identity instead of connection strings

Author: v-shahzad

Directory.Packages.props

@@ -4,14 +4,18 @@
     <RuntimePackageVersion>8.0.0</RuntimePackageVersion>
   </PropertyGroup>
   <ItemGroup>
+    <PackageVersion Include="Azure.ResourceManager.ServiceBus" Version="1.1.0" />
+    <PackageVersion Include="Azure.Security.KeyVault.Certificates" Version="4.8.0" />
+    <PackageVersion Include="Azure.Security.KeyVault.Secrets" Version="4.8.0" />
+    <PackageVersion Include="Microsoft.Azure.StackExchangeRedis" Version="3.2.1" />
     <PackageVersion Include="Microsoft.Extensions.Caching.StackExchangeRedis" Version="8.0.0" />
-    <PackageVersion Include="Azure.Core" Version="1.40.0" />
+    <PackageVersion Include="Azure.Core" Version="1.44.1" />
     <PackageVersion Include="Azure.Data.Tables" Version="12.8.0" />
-    <PackageVersion Include="Azure.Identity" Version="1.12.0" />
+    <PackageVersion Include="Azure.Identity" Version="1.13.2" />
     <PackageVersion Include="Azure.Messaging.EventGrid" Version="4.17.0" />
     <PackageVersion Include="Azure.Messaging.EventHubs" Version="5.9.2" />
     <PackageVersion Include="Azure.Messaging.EventHubs.Processor" Version="5.9.2" />
-    <PackageVersion Include="Azure.Messaging.ServiceBus" Version="7.15.0" />
+    <PackageVersion Include="Azure.Messaging.ServiceBus" Version="7.20.1" />
     <PackageVersion Include="Azure.Storage.Files.DataLake" Version="12.14.0" />
     <PackageVersion Include="Azure.Storage.Files.Shares" Version="12.14.0" />
     <PackageVersion Include="Azure.Storage.Queues" Version="12.14.0" />

samples/Quickstart/src/QuickstartSample.csproj

@@ -9,7 +9,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Azure.Identity" Version="1.12.0" />
+    <PackageReference Include="Azure.Identity" Version="1.13.2" />
     <PackageReference Include="Microsoft.ApplicationInsights" Version="2.21.0" />
     <PackageReference Include="Microsoft.ApplicationInsights.AspNetCore" Version="2.21.0" />
     <PackageReference Include="Microsoft.Azure.Functions.Worker.Extensions.Http" Version="3.0.13" />
@@ -29,7 +29,7 @@
   <ItemGroup Condition="'$(SdkVersion)' == 'local'">
     <ProjectReference Include="..\..\..\src\Microsoft.AzureHealth.DataServices.Core\Microsoft.AzureHealth.DataServices.Core.csproj" />
   </ItemGroup>
-  
+
   <!-- If neither of the above, read version from SdkVersion  -->
   <ItemGroup Condition="'$(SdkVersion)' != '' And '$(SdkVersion)' != 'local'">
     <PackageReference Include="Microsoft.AzureHealth.DataServices.Core" Version="$(SdkVersion)" />

samples/UseCaseSamples/ModifyCapabilityStatement/src/UseCaseSample.csproj

@@ -9,7 +9,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Azure.Identity" Version="1.12.0" />
+    <PackageReference Include="Azure.Identity" Version="1.13.2" />
     <PackageReference Include="Microsoft.ApplicationInsights" Version="2.21.0" />
     <PackageReference Include="Microsoft.ApplicationInsights.AspNetCore" Version="2.21.0" />
     <PackageReference Include="Microsoft.Azure.Functions.Worker.Extensions.Http" Version="3.0.13" />
@@ -28,7 +28,7 @@
   <ItemGroup Condition="'$(SdkVersion)' == 'local'">
     <ProjectReference Include="..\..\..\..\src\Microsoft.AzureHealth.DataServices.Core\Microsoft.AzureHealth.DataServices.Core.csproj" />
   </ItemGroup>
-  
+
   <!-- If neither of the above, read version from SdkVersion  -->
   <ItemGroup Condition="'$(SdkVersion)' != '' And '$(SdkVersion)' != 'local'">
     <PackageReference Include="Microsoft.AzureHealth.DataServices.Core" Version="$(SdkVersion)" />

src/Microsoft.AzureHealth.DataServices.Caching/Microsoft.AzureHealth.DataServices.Caching.csproj

@@ -11,6 +11,7 @@
 
   <ItemGroup>
     <PackageReference Include="Azure.Identity" />
+    <PackageReference Include="Microsoft.Azure.StackExchangeRedis" />
     <PackageReference Include="Microsoft.Extensions.Caching.StackExchangeRedis" />
     <PackageReference Include="Microsoft.Extensions.Hosting" />
     <PackageReference Include="Microsoft.Extensions.Hosting.Abstractions" />

src/Microsoft.AzureHealth.DataServices.Caching/StorageProviders/AzureBlobStorageCacheOptions.cs

@@ -6,6 +6,11 @@
     public class AzureBlobStorageCacheOptions
     {
         /// <summary>
+        /// Gets or sets the Azure Blob Storage Account URI.
+        /// </summary>
+        public Uri AccountUri { get; set; }
+
+         /// <summary>
         /// Gets or sets the Azure Blob Storage connection string.
         /// </summary>
         public string ConnectionString { get; set; }

src/Microsoft.AzureHealth.DataServices.Caching/StorageProviders/AzureJsonBlobStorageProvider.cs

@@ -27,7 +27,7 @@ public AzureJsonBlobStorageProvider(IOptions<AzureBlobStorageCacheOptions> optio
             }
             else
             {
-                storage = new(new Uri(options.Value.BlobServiceEndpoint), new DefaultAzureCredential());
+                storage = new(options.Value.AccountUri, new DefaultAzureCredential());
             }
 
             container = options.Value.Container;

src/Microsoft.AzureHealth.DataServices.Caching/StorageProviders/RedisCacheOptions.cs

@@ -1,4 +1,6 @@
-namespace Microsoft.AzureHealth.DataServices.Caching.StorageProviders
+using Azure.Identity;
+
+namespace Microsoft.AzureHealth.DataServices.Caching.StorageProviders
 {
     /// <summary>
     /// Options for redis cache backing store.
@@ -14,5 +16,10 @@ public class RedisCacheOptions
         /// Optional instance name
         /// </summary>
         public string InstanceName { get; set; }
+
+        /// <summary>
+        /// Optional DefultAzureCredential
+        /// </summary>
+        public DefaultAzureCredential Credential { get; set; }
     }
 }

src/Microsoft.AzureHealth.DataServices.Caching/StorageProviders/RedisJsonStorageProvider.cs

@@ -3,6 +3,7 @@
 using Microsoft.Extensions.Hosting;
 using Microsoft.Extensions.Options;
 using Newtonsoft.Json;
+using StackExchange.Redis;
 
 namespace Microsoft.AzureHealth.DataServices.Caching.StorageProviders
 {
@@ -13,22 +14,46 @@ public class RedisJsonStorageProvider : ICacheBackingStoreProvider
     {
         private readonly IHost host;
         private readonly IDistributedCache redis;
+        private readonly IDatabase redisDb;
 
         /// <summary>
         /// Creates an instance of RedisJsonStorageProvider.
         /// </summary>
         /// <param name="options">Redis cache options.</param>
         public RedisJsonStorageProvider(IOptions<RedisCacheOptions> options)
         {
-            host = Host.CreateDefaultBuilder()
-              .ConfigureServices(services => services.AddStackExchangeRedisCache(op =>
-              {
-                  op.Configuration = options.Value.ConnectionString;
-                  op.InstanceName = options.Value.InstanceName ?? string.Empty;
-              }))
-              .Build();
+            if (!string.IsNullOrWhiteSpace(options.Value.ConnectionString))
+            {
+                // Case 1: Connection string
+                host = Host.CreateDefaultBuilder()
+                    .ConfigureServices(services =>
+                    {
+                        services.AddStackExchangeRedisCache(op =>
+                        {
+                            op.Configuration = options.Value.ConnectionString;
+                            op.InstanceName = options.Value.InstanceName ?? string.Empty;
+                        });
+                    })
+                    .Build();
 
-            redis = host.Services.GetRequiredService<IDistributedCache>();
+                redis = host.Services.GetRequiredService<IDistributedCache>();
+            }
+            else if (options.Value.Credential != null)
+            {
+                var cacheHostName = options.Value.InstanceName;
+                var configurationOptions = ConfigurationOptions.Parse($"{cacheHostName}:6380");
+                configurationOptions.Ssl = true;
+                configurationOptions.AbortOnConnectFail = true;
+                configurationOptions = configurationOptions.ConfigureForAzureWithTokenCredentialAsync(options.Value.Credential).GetAwaiter().GetResult();
+                var connectionMultiplexer = ConnectionMultiplexer.ConnectAsync(configurationOptions).GetAwaiter().GetResult();
+                redisDb = connectionMultiplexer.GetDatabase();
+            }
+            else
+            {
+                // No valid Redis configuration
+                throw new InvalidOperationException(
+                    "No Redis connection string or DefaultAzureCredential provided for Redis cache.");
+            }
         }
 
         /// <summary>
@@ -41,7 +66,14 @@ public RedisJsonStorageProvider(IOptions<RedisCacheOptions> options)
         public async Task AddAsync<T>(string key, T value)
         {
             string json = JsonConvert.SerializeObject(value);
-            await redis.SetStringAsync(key, json);
+            if (redis != null)
+            {
+                await redis.SetStringAsync(key, json);
+            }
+            else if (redisDb != null)
+            {
+                await redisDb.StringSetAsync(key, json);
+            }
         }
 
         /// <summary>
@@ -53,7 +85,14 @@ public async Task AddAsync<T>(string key, T value)
         public async Task AddAsync(string key, object value)
         {
             string json = JsonConvert.SerializeObject(value);
-            await redis.SetStringAsync(key, json);
+            if (redis != null)
+            {
+                await redis.SetStringAsync(key, json);
+            }
+            else if (redisDb != null)
+            {
+                await redisDb.StringSetAsync(key, json);
+            }
         }
 
         /// <summary>
@@ -64,15 +103,18 @@ public async Task AddAsync(string key, object value)
         /// <returns>Object from cache.</returns>
         public async Task<T> GetAsync<T>(string key)
         {
-            string json = await redis.GetStringAsync(key);
-            if (json == null)
+            string json = null;
+
+            if (redis != null)
             {
-                return default;
+                json = await redis.GetStringAsync(key);
             }
-            else
+            else if (redisDb != null)
             {
-                return JsonConvert.DeserializeObject<T>(json);
+                json = await redisDb.StringGetAsync(key);
             }
+
+            return json == null ? default : JsonConvert.DeserializeObject<T>(json);
         }
 
         /// <summary>
@@ -82,7 +124,16 @@ public async Task<T> GetAsync<T>(string key)
         /// <returns>Item from cache as a JSON string.</returns>
         public async Task<string> GetAsync(string key)
         {
-            return await redis.GetStringAsync(key);
+            if (redis != null)
+            {
+                return await redis.GetStringAsync(key);
+            }
+            else if (redisDb != null)
+            {
+                return await redisDb.StringGetAsync(key);
+            }
+
+            return null;
         }
 
         /// <summary>
@@ -92,7 +143,15 @@ public async Task<string> GetAsync(string key)
         /// <returns>True if object removed otherwise false.</returns>
         public async Task<bool> RemoveAsync(string key)
         {
-            await redis.RemoveAsync(key);
+            if (redis != null)
+            {
+                await redis.RemoveAsync(key);
+            }
+            else if (redisDb != null)
+            {
+                await redisDb.KeyDeleteAsync(key);
+            }
+
             return true;
         }
     }

src/Microsoft.AzureHealth.DataServices.Channels/EventGridChannel.cs

@@ -2,6 +2,7 @@
 using System.Text;
 using System.Threading.Tasks;
 using Azure;
+using Azure.Identity;
 using Azure.Messaging.EventGrid;
 using Microsoft.AzureHealth.DataServices.Pipelines;
 using Microsoft.AzureHealth.DataServices.Storage;
@@ -17,6 +18,7 @@ namespace Microsoft.AzureHealth.DataServices.Channels
     public class EventGridChannel : IInputChannel, IOutputChannel
     {
         private readonly string _fallbackStorageConnectionString;
+        private readonly string _fallbackStorageAccountName;
         private readonly string _container;
         private readonly string _topic;
         private readonly string _accessKey;
@@ -25,6 +27,7 @@ public class EventGridChannel : IInputChannel, IOutputChannel
         private readonly string _dataVersion;
         private readonly ILogger _logger;
         private readonly StatusType _statusType;
+        private readonly DefaultAzureCredential _credential;
         private EventGridPublisherClient _client;
         private StorageBlob _storage;
         private bool _disposed;
@@ -38,13 +41,15 @@ public class EventGridChannel : IInputChannel, IOutputChannel
         public EventGridChannel(IOptions<EventGridChannelOptions> options, ILogger<EventGridChannel> logger = null)
         {
             _fallbackStorageConnectionString = options.Value.FallbackStorageConnectionString;
+            _fallbackStorageAccountName = options.Value.FallbackStorageAccountName;
             _container = options.Value.FallbackStorageContainer;
             _topic = options.Value.TopicUriString;
             _accessKey = options.Value.AccessKey;
             _subject = options.Value.Subject;
             _eventType = options.Value.EventType;
             _dataVersion = options.Value.DataVersion;
             _statusType = options.Value.ExecutionStatusType;
+            _credential = options.Value.Credential;
             _logger = logger;
         }
 
@@ -152,11 +157,25 @@ public async Task CloseAsync()
         /// <returns>Task</returns>
         public async Task OpenAsync()
         {
-            _client = new EventGridPublisherClient(
-                        new Uri(_topic),
-                        new AzureKeyCredential(_accessKey));
+            // Create Event Grid client
+            if (!string.IsNullOrWhiteSpace(_accessKey))
+            {
+                _client = new EventGridPublisherClient(new Uri(_topic), new AzureKeyCredential(_accessKey));
+            }
+            else
+            {
+                // Use Managed Identity / Azure AD authentication
+                _client = new EventGridPublisherClient(new Uri(_topic), _credential);
+            }
 
-            _storage = new StorageBlob(_fallbackStorageConnectionString, null, null, null, _logger);
+            if (!string.IsNullOrEmpty(_fallbackStorageConnectionString))
+            {
+                _storage = new StorageBlob(_fallbackStorageConnectionString, null, null, null, _logger);
+            }
+            else
+            {
+                _storage = new StorageBlob(new Uri($"https://{_fallbackStorageAccountName}.blob.core.windows.net"), _credential, null, null, null, null, _logger);
+            }
 
             State = ChannelState.Open;
             OnOpen?.Invoke(this, new ChannelOpenEventArgs(Id, Name, null));

src/Microsoft.AzureHealth.DataServices.Channels/EventGridChannelOptions.cs

@@ -1,4 +1,5 @@
-using Microsoft.AzureHealth.DataServices.Pipelines;
+using Azure.Identity;
+using Microsoft.AzureHealth.DataServices.Pipelines;
 
 namespace Microsoft.AzureHealth.DataServices.Channels
 {
@@ -46,5 +47,15 @@ public class EventGridChannelOptions
         /// Gets or sets an Azure Blob Storage container used to store data when data exceeds the allowable Azure Event Grid size.
         /// </summary>
         public string FallbackStorageContainer { get; set; }
+
+        /// <summary>
+        /// Gets or sets an Azure Blob Storage account used to store data when data exceeds the allowable Azure Event Grid size.
+        /// </summary>
+        public string FallbackStorageAccountName { get; set; }
+
+        /// <summary>
+        /// Gets or sets an Azure Blob Storage account used to store data when data exceeds the allowable Azure Event Grid size.
+        /// </summary>
+        public DefaultAzureCredential Credential { get; set; }
     }
 }