Merge pull request #65 from AzureAD/sagonzal/cacheTests

Add acquire token silent and remove accounts tests. Fix remove accounts

Author: sangonzal

src/integrationtest/java/com.microsoft.aad.msal4j/AcquireTokenSilentIT.java

@@ -0,0 +1,194 @@
+// Copyright (c) Microsoft Corporation.
+// All rights reserved.
+//
+// This code is licensed under the MIT License.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a copy
+// of this software and associated documentation files(the "Software"), to deal
+// in the Software without restriction, including without limitation the rights
+// to use, copy, modify, merge, publish, distribute, sublicense, and / or sell
+// copies of the Software, and to permit persons to whom the Software is
+// furnished to do so, subject to the following conditions :
+//
+// The above copyright notice and this permission notice shall be included in
+// all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.IN NO EVENT SHALL THE
+// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+// THE SOFTWARE.
+
+package com.microsoft.aad.msal4j;
+
+import labapi.FederationProvider;
+import labapi.LabResponse;
+import labapi.LabUserProvider;
+import labapi.NationalCloud;
+import org.testng.Assert;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Test;
+
+import java.util.Collections;
+import java.util.Set;
+
+public class AcquireTokenSilentIT {
+    private LabUserProvider labUserProvider;
+
+    @BeforeClass
+    public void setUp() {
+        labUserProvider = LabUserProvider.getInstance();
+    }
+
+    @Test
+    public void acquireTokenSilent_OrganizationAuthority_TokenRefreshed() throws Exception {
+
+        // When using common, organization, or consumer tenants, cache has no way
+        // of determining which access token to return therefore token is always refreshed
+        IPublicClientApplication pca = getPublicClientApplicationWithTokensInCache();
+
+        IAccount account = pca.getAccounts().join().iterator().next();
+        SilentParameters parameters =  SilentParameters.builder(
+                Collections.singleton(TestConstants.GRAPH_DEFAULT_SCOPE),
+                account).build();
+
+        IAuthenticationResult result =  pca.acquireTokenSilently(parameters).get();
+
+        Assert.assertNotNull(result);
+        Assert.assertNotNull(result.accessToken());
+        Assert.assertNotNull(result.idToken());
+    }
+
+    @Test
+    public void acquireTokenSilent_LabAuthority_TokenNotRefreshed() throws Exception {
+        // Access token should be returned from cache, and not using refresh token
+
+        LabResponse labResponse = labUserProvider.getDefaultUser(
+                NationalCloud.AZURE_CLOUD,
+                false);
+        String password = labUserProvider.getUserPassword(labResponse.getUser());
+        String labAuthority = TestConstants.MICROSOFT_AUTHORITY_HOST + labResponse.getUser().getTenantId();
+
+        PublicClientApplication pca = new PublicClientApplication.Builder(
+                labResponse.getAppId()).
+                authority(labAuthority).
+                build();
+
+        IAuthenticationResult result =  pca.acquireToken(UserNamePasswordParameters.
+                builder(Collections.singleton(TestConstants.GRAPH_DEFAULT_SCOPE),
+                        labResponse.getUser().getUpn(),
+                        password.toCharArray())
+                .build())
+                .get();
+
+        IAccount account = pca.getAccounts().join().iterator().next();
+        SilentParameters parameters =  SilentParameters.builder(
+                Collections.singleton(TestConstants.GRAPH_DEFAULT_SCOPE), account).
+                build();
+
+        IAuthenticationResult acquireSilentResult =  pca.acquireTokenSilently(parameters).get();
+
+        Assert.assertNotNull(acquireSilentResult.accessToken());
+        Assert.assertNotNull(result.idToken());
+        // Check that access and id tokens are coming from cache
+        Assert.assertEquals(result.accessToken(), acquireSilentResult.accessToken());
+        Assert.assertEquals(result.idToken(), acquireSilentResult.idToken());
+    }
+
+    @Test
+    public void acquireTokenSilent_ForceRefresh() throws Exception {
+
+        LabResponse labResponse = labUserProvider.getDefaultUser(
+                NationalCloud.AZURE_CLOUD,
+                false);
+        String password = labUserProvider.getUserPassword(labResponse.getUser());
+
+        PublicClientApplication pca = new PublicClientApplication.Builder(
+                labResponse.getAppId()).
+                authority(TestConstants.ORGANIZATIONS_AUTHORITY).
+                build();
+
+        IAuthenticationResult result =  pca.acquireToken(UserNamePasswordParameters.
+                builder(Collections.singleton(TestConstants.GRAPH_DEFAULT_SCOPE),
+                        labResponse.getUser().getUpn(),
+                        password.toCharArray())
+                .build())
+                .get();
+
+        IAccount account = pca.getAccounts().join().iterator().next();
+        SilentParameters parameters =  SilentParameters.builder(
+                Collections.singleton(TestConstants.GRAPH_DEFAULT_SCOPE), account).
+                forceRefresh(true).
+                build();
+
+        IAuthenticationResult resultAfterRefresh =  pca.acquireTokenSilently(parameters).get();
+
+        Assert.assertNotNull(resultAfterRefresh);
+        Assert.assertNotNull(resultAfterRefresh.accessToken());
+        Assert.assertNotNull(resultAfterRefresh.idToken());
+        // Check that new refresh and id tokens are being returned
+        Assert.assertNotEquals(result.accessToken(), resultAfterRefresh.accessToken());
+        Assert.assertNotEquals(result.idToken(), resultAfterRefresh.idToken());
+    }
+
+    @Test
+    public void acquireTokenSilent_MultipleAccountsInCache_UseCorrectAccount() throws Exception {
+
+        IPublicClientApplication pca = getPublicClientApplicationWithTokensInCache();
+
+        // get lab user for different account
+        LabResponse labResponse = labUserProvider.getAdfsUser(
+                FederationProvider.ADFSV4,
+                true,
+                false);
+        String password = labUserProvider.getUserPassword(labResponse.getUser());
+
+        // acquire token for different account
+        pca.acquireToken(UserNamePasswordParameters.
+                builder(Collections.singleton(TestConstants.GRAPH_DEFAULT_SCOPE),
+                        labResponse.getUser().getUpn(),
+                        password.toCharArray())
+                .build())
+                .get();
+
+        Set<IAccount> accounts = pca.getAccounts().join();
+        IAccount account = accounts.stream().filter(
+                x -> x.username().equalsIgnoreCase(
+                        labResponse.getUser().getUpn())).findFirst().orElse(null);
+
+        SilentParameters parameters =  SilentParameters.builder(
+                Collections.singleton(TestConstants.GRAPH_DEFAULT_SCOPE), account).
+                forceRefresh(true).
+                build();
+
+        IAuthenticationResult result =  pca.acquireTokenSilently(parameters).get();
+
+        Assert.assertNotNull(result);
+        Assert.assertNotNull(result.accessToken());
+        Assert.assertNotNull(result.idToken());
+        Assert.assertEquals(result.account().username(), labResponse.getUser().getUpn());
+    }
+
+    private IPublicClientApplication getPublicClientApplicationWithTokensInCache()
+            throws Exception {
+        LabResponse labResponse = labUserProvider.getDefaultUser(
+                NationalCloud.AZURE_CLOUD,
+                false);
+        String password = labUserProvider.getUserPassword(labResponse.getUser());
+
+        PublicClientApplication pca = new PublicClientApplication.Builder(
+                labResponse.getAppId()).
+                authority(TestConstants.ORGANIZATIONS_AUTHORITY).
+                build();
+
+        pca.acquireToken(UserNamePasswordParameters.
+                builder(Collections.singleton(TestConstants.GRAPH_DEFAULT_SCOPE),
+                        labResponse.getUser().getUpn(),
+                        password.toCharArray())
+                .build())
+                .get();
+        return pca;
+    }
+}

src/integrationtest/java/com.microsoft.aad.msal4j/AuthorizationCodeIT.java

@@ -41,7 +41,6 @@
 import org.testng.util.Strings;
 
 import java.io.UnsupportedEncodingException;
-import java.net.MalformedURLException;
 import java.net.URI;
 import java.net.URLEncoder;
 import java.util.Collections;
@@ -247,7 +246,7 @@ private IAuthenticationResult acquireTokenInteractiveAAD(
         try {
             PublicClientApplication pca = PublicClientApplication.builder(
                     labResponse.getAppId()).
-                    authority(TestConstants.AUTHORITY_ORGANIZATIONS).
+                    authority(TestConstants.ORGANIZATIONS_AUTHORITY).
                     build();
 
             result = pca.acquireToken(AuthorizationCodeParameters
@@ -388,7 +387,7 @@ private String buildAuthenticationCodeURL(String appId, AuthorityType authorityT
         String authority;
         String scope;
         if(authorityType == AuthorityType.AAD){
-            authority = TestConstants.AUTHORITY_ORGANIZATIONS;
+            authority = TestConstants.ORGANIZATIONS_AUTHORITY;
             scope = TestConstants.GRAPH_DEFAULT_SCOPE;
         } else {
             authority = TestConstants.B2C_AUTHORITY_URL;

src/integrationtest/java/com.microsoft.aad.msal4j/CachePersistenceIntegrationTest.java renamed to src/integrationtest/java/com.microsoft.aad.msal4j/CachePersistenceIT.java

@@ -28,12 +28,15 @@
 import java.io.IOException;
 import java.net.URISyntaxException;
 
-public class CachePersistenceIntegrationTest {
+public class CachePersistenceIT {
+
     static class TokenPersistence implements ITokenCacheAccessAspect{
+        String data;
+
         TokenPersistence(String data){
             this.data = data;
         }
-        String data;
+
         @Override
         public void beforeCacheAccess(ITokenCacheAccessContext iTokenCacheAccessContext){
             iTokenCacheAccessContext.tokenCache().deserialize(data);
@@ -44,6 +47,7 @@ public void afterCacheAccess(ITokenCacheAccessContext iTokenCacheAccessContext)
             data = iTokenCacheAccessContext.tokenCache().serialize();
         }
     }
+
     @Test
     public void cacheDeserializationSerializationTest() throws IOException, URISyntaxException {
         String dataToInitCache = TestHelper.readResource(this.getClass(), "/cache_data/serialized_cache.json");

src/integrationtest/java/com.microsoft.aad.msal4j/ClientCredentialsIT.java

@@ -62,7 +62,7 @@ public void acquireTokenClientCredentials_ClientSecret() throws Exception{
     private void assertAcquireTokenCommon(String clientId, IClientCredential credential) throws Exception{
         ConfidentialClientApplication cca = new ConfidentialClientApplication.Builder(
                 clientId, credential).
-                authority(TestConstants.AUTHORITY_MICROSOFT).
+                authority(TestConstants.MICROSOFT_AUTHORITY).
                 build();
 
         IAuthenticationResult result = cca.acquireToken(ClientCredentialParameters

src/integrationtest/java/com.microsoft.aad.msal4j/DeviceCodeIT.java

@@ -64,7 +64,7 @@ public void DeviceCodeFlowTest() throws Exception {
 
         PublicClientApplication pca = new PublicClientApplication.Builder(
                 labResponse.getAppId()).
-                authority(TestConstants.AUTHORITY_ORGANIZATIONS).
+                authority(TestConstants.ORGANIZATIONS_AUTHORITY).
                 build();
 
         Consumer<DeviceCode> deviceCodeConsumer = (DeviceCode deviceCode) -> {

src/integrationtest/java/com.microsoft.aad.msal4j/NationalCloudIT.java

@@ -63,7 +63,7 @@ private void assertAcquireTokenCommon(NationalCloud cloud) throws Exception{
 
         PublicClientApplication pca = new PublicClientApplication.Builder(
                 labResponse.getAppId()).
-                authority(TestConstants.AUTHORITY_ORGANIZATIONS).
+                authority(TestConstants.ORGANIZATIONS_AUTHORITY).
                 build();
 
         IAuthenticationResult result = pca.acquireToken(UserNamePasswordParameters

src/integrationtest/java/com.microsoft.aad.msal4j/RefreshTokenIT.java

@@ -47,7 +47,7 @@ public void setUp() throws Exception {
         String password = labUserProvider.getUserPassword(labResponse.getUser());
         pca = new PublicClientApplication.Builder(
                 labResponse.getAppId()).
-                authority(TestConstants.AUTHORITY_ORGANIZATIONS).
+                authority(TestConstants.ORGANIZATIONS_AUTHORITY).
                 build();
 
         AuthenticationResult result = (AuthenticationResult)pca.acquireToken(UserNamePasswordParameters

src/integrationtest/java/com.microsoft.aad.msal4j/TestConstants.java

@@ -28,8 +28,9 @@ public class TestConstants {
     public final static String GRAPH_DEFAULT_SCOPE = "https://graph.windows.net/.default";
     public final static String B2C_LAB_SCOPE = "https://msidlabb2c.onmicrosoft.com/msaapp/user_impersonation";
 
-    public final static String AUTHORITY_ORGANIZATIONS = "https://login.microsoftonline.com/organizations/";
-    public final static String AUTHORITY_MICROSOFT = "https://login.microsoftonline.com/microsoft.onmicrosoft.com";
+    public final static String MICROSOFT_AUTHORITY_HOST = "https://login.microsoftonline.com/";
+    public final static String ORGANIZATIONS_AUTHORITY = MICROSOFT_AUTHORITY_HOST + "organizations/";
+    public final static String MICROSOFT_AUTHORITY = MICROSOFT_AUTHORITY_HOST + "microsoft.onmicrosoft.com";
 
     public final static String B2C_AUTHORITY = "https://msidlabb2c.b2clogin.com/tfp/msidlabb2c.onmicrosoft.com/";
     public final static String B2C_AUTHORITY_URL = "https://msidlabb2c.b2clogin.com/msidlabb2c.onmicrosoft.com/";