forked from gbwisx/msal_mobile
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmsal_mobile.dart
214 lines (194 loc) · 8.01 KB
/
msal_mobile.dart
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
import 'dart:async';
import 'dart:convert';
import 'package:flutter/services.dart';
import 'package:flutter_cache_manager/flutter_cache_manager.dart';
import 'exception.dart';
import 'payload.dart';
import 'result.dart';
export 'exception.dart';
export 'account.dart';
export 'payload.dart';
class MsalMobile {
static const MethodChannel _channel =
const MethodChannel('com.gbwisx.msal_mobile');
static bool initialized = false;
/// Creates a new MsalMobile client object to make calls to the MSAL library.
/// The signed in status is updated as a result of this call.
static Future<MsalMobile> create(
String configFilePath, String authority) async {
if (initialized) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.alreadyInitialized);
}
String cacheFilePath;
if (configFilePath == null || configFilePath.length < 1) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.configRequired);
}
try {
cacheFilePath = await cacheConfigFile(configFilePath);
} on Exception catch (ex) {
throw MsalMobileException.fromErrorCodeWithInner(
MsalMobileExceptionErrorCode.configReadError, ex);
}
final response = await _channel.invokeMethod<String>(
'init', <String, dynamic>{
'configFilePath': cacheFilePath,
'authority': authority
});
final result = response != null
? MsalMobileResult.fromJson(jsonDecode(response))
: null;
if (!result.isSuccess && result.exception != null) {
throw MsalMobileException.copy(result.exception, result.innerException);
}
initialized = true;
final client = MsalMobile();
return client;
}
/// Caches the auth configuration file so it can be accessed by the platform specific MSAL implementations.
static Future<String> cacheConfigFile(String configPath) async {
final ByteData data = await rootBundle.load(configPath);
final file = await DefaultCacheManager()
.putFile(configPath, data.buffer.asUint8List());
return file.path;
}
/// Gets the current signed in status. If a current account is specified by the MSAL library, then this is considered to be a signed in state.
Future<bool> getSignedIn() async {
if (!initialized) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.notInitialized);
}
final accounts = await getAccount();
return accounts != null && accounts.currentAccount != null;
}
/// Gets the current and prior account (if applicable) that was authenticated with MSAL.
Future<MsalMobileGetAccountResultPayload> getAccount() async {
if (!initialized) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.notInitialized);
}
final response = await _channel.invokeMethod('getAccount');
final result = response != null
? MsalMobileGetAccountResult.fromJson(jsonDecode(response))
: null;
if (!result.isSuccess && result.exception != null) {
throw MsalMobileException.copy(result.exception, result.innerException);
}
return result.payload;
}
/// Signs a user into MSAL if there is not currently any user signed in. This should be done prior to retrieving
/// a token if there is no user currently signed in.
Future<MsalMobileAuthenticationResultPayload> signIn(
String loginHint, List<String> scopes) async {
if (!initialized) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.notInitialized);
}
final response = await _channel.invokeMethod(
'signIn',
<String, dynamic>{'loginHint': loginHint, 'scopes': scopes},
);
final result = response != null
? MsalMobileAuthenticationResult.fromJson(jsonDecode(response))
: null;
if (!result.isSuccess && result.exception != null) {
// check if the user is already signed in. That could be the cause of an invalid_parameter failure from MSAL
final signedIn = await this.getSignedIn();
if (signedIn) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.alreadySignedIn);
}
throw MsalMobileException.copy(result.exception, result.innerException);
}
return result.payload;
}
/// Signs a user out of MSAL if there is currently a user signed in.
Future<void> signOut() async {
if (!initialized) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.notInitialized);
}
final response = await _channel.invokeMethod('signOut');
final result = response != null
? MsalMobileResult.fromJson(jsonDecode(response))
: null;
if (!result.isSuccess && result.exception != null) {
throw MsalMobileException.copy(result.exception, result.innerException);
}
}
/// Acquires a token interactively, using the necessary UI screens to facilitate the token acquisition. This bypasses cached values.
Future<MsalMobileAuthenticationResultPayload> acquireTokenInteractive(
List<String> scopes) async {
if (!initialized) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.notInitialized);
}
final response = await _channel.invokeMethod(
'acquireToken',
<String, dynamic>{'scopes': scopes},
);
final result = response != null
? MsalMobileAuthenticationResult.fromJson(jsonDecode(response))
: null;
if (!result.isSuccess && result.exception != null) {
throw MsalMobileException.copy(result.exception, result.innerException);
}
return result.payload;
}
/// Acquires a token silently (without UI). An exception will be thrown if a token cannot be acquired silently. A user must
/// first be signed in to successfully retrieve a token silently.
Future<MsalMobileAuthenticationResultPayload> acquireTokenSilent(
List<String> scopes, String authority) async {
if (!initialized) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.notInitialized);
}
final response = await _channel.invokeMethod(
'acquireTokenSilent',
<String, dynamic>{'scopes': scopes, 'authority': authority},
);
final result = response != null
? MsalMobileAuthenticationResult.fromJson(jsonDecode(response))
: null;
if (!result.isSuccess && result.exception != null) {
throw MsalMobileException.copy(result.exception, result.innerException);
}
return result.payload;
}
/// Attempts to acquire a token silently. If silent token acquisition fails because the UI is required, then an attempt to acquire a token interactively will be made.
Future<MsalMobileAuthenticationResultPayload> acquireToken(
List<String> scopes, String authority) async {
if (!initialized) {
throw MsalMobileException.fromErrorCode(
MsalMobileExceptionErrorCode.notInitialized);
}
final silentResponse = await _channel.invokeMethod(
'acquireTokenSilent',
<String, dynamic>{'scopes': scopes, 'authority': authority},
);
final silentResult = silentResponse != null
? MsalMobileAuthenticationResult.fromJson(jsonDecode(silentResponse))
: null;
if (!silentResult.isSuccess && silentResult.isUiRequired) {
// acquire a token interactively
final interactiveResponse = await _channel.invokeMethod(
'acquireToken',
<String, dynamic>{'scopes': scopes},
);
final interactiveResult = interactiveResponse != null
? MsalMobileAuthenticationResult.fromJson(
jsonDecode(interactiveResponse))
: null;
if (!interactiveResult.isSuccess && interactiveResult.exception != null) {
throw MsalMobileException.copy(
interactiveResult.exception, interactiveResult.innerException);
}
return interactiveResult.payload;
} else if (!silentResult.isSuccess && silentResult.exception != null) {
throw MsalMobileException.copy(
silentResult.exception, silentResult.innerException);
}
return silentResult.payload;
}
}