Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Task: throw error on implicit flow #5692

Closed
wants to merge 11 commits into from
Closed

Task: throw error on implicit flow #5692

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
c1df4c7
test for implicit flow
thewahome Oct 30, 2024
9aa0581
support only implicit flow for oauth2
thewahome Oct 30, 2024
34aa32f
Merge branch 'main' into task/throw-error-on-implicit-flow
thewahome Oct 30, 2024
dcf1ac7
Merge branch 'main' into task/throw-error-on-implicit-flow
thewahome Oct 30, 2024
8b155ef
change to authorization code flow check
thewahome Oct 30, 2024
4c1b792
Merge branch 'task/throw-error-on-implicit-flow' of https://github.co…
thewahome Oct 30, 2024
e5eb087
support only AuthorizationCode flow
thewahome Oct 30, 2024
c6d1389
isolate test to allow only authcode flow
thewahome Oct 30, 2024
a03fdc8
add failure test for implicit flow
thewahome Oct 31, 2024
6541afc
Merge branch 'main' into task/throw-error-on-implicit-flow
thewahome Oct 31, 2024
3c47e2d
Merge branch 'main' into task/throw-error-on-implicit-flow
thewahome Nov 4, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 3 additions & 2 deletions src/Kiota.Builder/Plugins/PluginsGenerationService.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -79,7 +79,7 @@
pluginDocument.Write(writer);
break;
case PluginType.APIManifest:
var apiManifest = new ApiManifestDocument("application"); //TODO add application name

Check warning on line 82 in src/Kiota.Builder/Plugins/PluginsGenerationService.cs

View workflow job for this annotation

GitHub Actions / Build 

Complete the task associated to this 'TODO' comment. (https://rules.sonarsource.com/csharp/RSPEC-1135)

Check warning on line 82 in src/Kiota.Builder/Plugins/PluginsGenerationService.cs

View workflow job for this annotation

GitHub Actions / Build 

Complete the task associated to this 'TODO' comment. (https://rules.sonarsource.com/csharp/RSPEC-1135)
// pass empty config hash so that its not included in this manifest.
apiManifest.ApiDependencies[Configuration.ClientClassName] = Configuration.ToApiDependency(string.Empty, TreeNode?.GetRequestInfo().ToDictionary(static x => x.Key, static x => x.Value) ?? [], WorkingDirectory);
var publisherName = string.IsNullOrEmpty(OAIDocument.Info?.Contact?.Name)
Expand Down Expand Up @@ -137,7 +137,7 @@
}
return newSchema;
}
static OpenApiSchema? MergeAllOfInSchema(OpenApiSchema? schema)

Check warning on line 140 in src/Kiota.Builder/Plugins/PluginsGenerationService.cs

View workflow job for this annotation

GitHub Actions / Build 

Refactor this static local function to reduce its Cognitive Complexity from 137 to the 15 allowed. (https://rules.sonarsource.com/csharp/RSPEC-3776)

Check warning on line 140 in src/Kiota.Builder/Plugins/PluginsGenerationService.cs

View workflow job for this annotation

GitHub Actions / Build 

Refactor this static local function to reduce its Cognitive Complexity from 137 to the 15 allowed. (https://rules.sonarsource.com/csharp/RSPEC-3776)
{
if (schema?.AllOf is not { Count: > 0 }) return schema;
var newSchema = new OpenApiSchema();
Expand Down Expand Up @@ -414,12 +414,13 @@
{
ReferenceId = $"{{{name}_REGISTRATION_ID}}"
},
SecuritySchemeType.OAuth2 => new OAuthPluginVault
// Only AuthorizationCode flow is supported
SecuritySchemeType.OAuth2 when securityScheme.Flows?.AuthorizationCode != null => new OAuthPluginVault
{
ReferenceId = $"{{{name}_CONFIGURATION_ID}}"
},
_ => throw new UnsupportedSecuritySchemeException(["Bearer Token", "Api Key", "OpenId Connect", "OAuth"],
$"Unsupported security scheme type '{securityScheme.Type}'.")
$"Unsupported security scheme type '{securityScheme.Type}'.")
};
}

Expand Down
16 changes: 14 additions & 2 deletions tests/Kiota.Builder.Tests/Plugins/PluginsGenerationServiceTests.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -384,9 +384,9 @@ public static TheoryData<string, string, string, PluginAuthConfiguration, Action
Assert.Equal("{openIdConnect0_REGISTRATION_ID}", ((ApiKeyPluginVault)auth0!).ReferenceId);
}
},
// oauth2
// oauth2: authorization code
{
"{securitySchemes: {oauth2_0: {type: oauth2, flows: {}}}}",
"{securitySchemes: {oauth2_0: {type: oauth2, flows: {authorizationCode: {}}}}}",
string.Empty, "security: [oauth2_0: []]", null, resultingManifest =>
{
Assert.NotNull(resultingManifest.Document);
Expand All @@ -398,6 +398,7 @@ public static TheoryData<string, string, string, PluginAuthConfiguration, Action
Assert.Equal("{oauth2_0_CONFIGURATION_ID}", ((OAuthPluginVault)auth0!).ReferenceId);
}
},

// should be anonymous
{
"{}", string.Empty, "security: [invalid: []]", null, resultingManifest =>
Expand Down Expand Up @@ -507,6 +508,17 @@ await Assert.ThrowsAsync<UnsupportedSecuritySchemeException>(async () =>
});
}
},
// oauth2: Implicit flow
{
"{securitySchemes: {oauth2_0: {type: oauth2, flows: {implicit: {}}}}}",
string.Empty, "security: [oauth2_0: []]", null, async (action) =>
{
await Assert.ThrowsAsync<Kiota.Builder.Plugins.UnsupportedSecuritySchemeException>(async () =>
{
await action();
});
}
},
};
}

Expand Down
Loading