Skip to content

Use instance discovery for trusted hosts and combine authority classes #1582

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
tnorling merged 31 commits into from
Jun 15, 2020
Merged

Use instance discovery for trusted hosts and combine authority classes #1582

tnorling merged 31 commits into from
Jun 15, 2020

Conversation

@tnorling
Copy link
Collaborator

@tnorling tnorling commented May 1, 2020
edited
Loading

This PR does several things in regards to Authorities:

  • Removes the hardcoded trusted host list for AAD hosts and replaces it with a network call to discover hosts known to MS. This is done the first time resolveEndpointsAsync is called.
  • Combines B2C and AAD authority classes into a single generic class

Developers can opt out of the network call in one of 3 ways:

  1. Set validateAuthority: false
  2. Provide all trusted authorities they intend to use in knownAuthorities config option
  3. Provide instance metadata via authorityMetadata config option

Note: This does not include preferred_cache or preferred_network fields and does not include a scheduled refresh. These can be added in separate PRs if needed for core.

@tnorling tnorling added [email protected] work-in-progress Issue or PR is not finished. labels May 1, 2020
@tnorling tnorling mentioned this pull request May 15, 2020
Merged
@coveralls
Copy link

coveralls commented May 20, 2020
edited
Loading

Coverage Status

Coverage decreased (-0.2%) to 76.627% when pulling 84dd6a2 on cloud-discovery into 8c86372 on dev.

@tnorling tnorling changed the title [WIP][msal-core] Use instance discovery for trusted hosts and combine authority classes [msal-core] Use instance discovery for trusted hosts and combine authority classes May 22, 2020
@tnorling tnorling marked this pull request as ready for review May 26, 2020 23:05
@tnorling tnorling added ready-for-review and removed work-in-progress Issue or PR is not finished. labels May 26, 2020
@tnorling tnorling removed angularjs msal-node Related to msal-node package labels Jun 3, 2020
@github-actions github-actions bot added angularjs msal-node Related to msal-node package labels Jun 3, 2020
@tnorling
Copy link
Collaborator Author

tnorling commented Jun 3, 2020

Per discussion: First invocation of resolveEndpointsAsync will call Discovery Endpoint if TrustedHostList is not already set.

@tnorling tnorling added ready-for-review and removed work-in-progress Issue or PR is not finished. angularjs msal-node Related to msal-node package labels Jun 3, 2020
hectormmg
hectormmg approved these changes Jun 4, 2020
View reviewed changes
@tnorling tnorling mentioned this pull request Jun 5, 2020
Closed
2 tasks
@tnorling tnorling added this to the [email protected] - Release milestone Jun 5, 2020
jmckennon
jmckennon reviewed Jun 12, 2020
View reviewed changes
Copy link
Contributor

@jmckennon jmckennon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As a general thought, do we want to include logging in PRs going forward? Probably most applicable to the new network requests in this PR. Otherwise LGTM

DarylThayil
DarylThayil approved these changes Jun 15, 2020
View reviewed changes
Copy link
Contributor

@DarylThayil DarylThayil left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Largely looks good to me, thanks for all the tests!

pkanher617
pkanher617 reviewed Jun 15, 2020
View reviewed changes
lib/msal-core/src/telemetry/TelemetryUtils.ts
import { UrlUtils } from "../utils/UrlUtils";
import { TrustedAuthority } from "../authority/TrustedAuthority";

export const scrubTenantFromUri = (uri: string): String => {
Copy link
Contributor

@pkanher617 pkanher617 Jun 15, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we create a utility class with static functions instead of exporting function constants?

Copy link
Collaborator Author

@tnorling tnorling Jun 15, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think that's reasonable but since this PR isn't really changing any telemetry files other than to fix compilation, I think that can be taken separately.

@github-actions github-actions bot added angularjs msal-node Related to msal-node package labels Jun 15, 2020
@tnorling tnorling merged commit 504d352 into dev Jun 15, 2020
@tnorling tnorling deleted the cloud-discovery branch June 15, 2020 19:49
This was referenced Jun 22, 2020
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hectormmg hectormmg hectormmg approved these changes

@jasonnutter jasonnutter Awaiting requested review from jasonnutter

@sameerag sameerag Awaiting requested review from sameerag

@jo-arroyo jo-arroyo Awaiting requested review from jo-arroyo

@sangonzal sangonzal Awaiting requested review from sangonzal

+3 more reviewers

@jmckennon jmckennon jmckennon left review comments

@DarylThayil DarylThayil DarylThayil approved these changes

@pkanher617 pkanher617 pkanher617 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

msal-node Related to msal-node package samples Related to the samples apps for the library.

Projects

None yet

Milestone

[email protected] - Release

Development

Successfully merging this pull request may close these issues.

8 participants

@tnorling @coveralls @jasonnutter @DarylThayil @hectormmg @pkanher617 @jmckennon