cache format tests + format changes #1350
Conversation
| public const string RefreshToken = "refreshtoken"; | ||
| public const string IdToken = "IdToken"; | ||
| public const string AccessToken = "AccessToken"; | ||
| public const string RefreshToken = "RefreshToken"; |
There was a problem hiding this comment.
not sure I understand why you are CamelCasing these. Though I see that the methods lowercases everything. #Pending
There was a problem hiding this comment.
According to current schema design doc https://identitydivision.visualstudio.com/DevEx/DevEx%20Team/_git/AuthLibrariesApiReview?path=%2FUnifiedSchema%2FSchema.md&version=GBoldalton%2Funified_schema_transfer
credential_type is case sensitive, but all keys are lowercased
There was a problem hiding this comment.
ok... not sure though why the values here are CamelCased (if it's being lower cased later anyway).
In reply to: 227980008 [](ancestors = 227980008)
There was a problem hiding this comment.
same values stored in cache entity in Camel Case but in corresponding key in lower case (it was agreed to have lower cased keys for all cache entities)
| @@ -60,8 +60,8 @@ internal MsalAccessTokenCacheItem | |||
| NormalizedScopes = scopes; | |||
| TenantId = tenantId; | |||
| Secret = secret; | |||
| ExpiresOnUnixTimestamp = CoreHelpers.DateTimeToUnixTimestamp(accessTokenExpiresOn); | |||
| CachedAt = CoreHelpers.CurrDateTimeInUnixTimestamp(); | |||
| ExpiresOnUnixTimestamp = CoreHelpers.DateTimeToUnixTimestamp(accessTokenExpiresOn).ToString(); | |||
There was a problem hiding this comment.
Would it make sense to make the DateTimeToUnixTimestamp return as string or perhaps to add another helper e.g. DateTimeToUnixTimestampAsString ensuring people do not have to rememeber to add .ToString() ? #Closed
There was a problem hiding this comment.
sure, will change #Closed
| @@ -45,7 +45,7 @@ internal MsalAccessTokenCacheItem() | |||
| internal MsalAccessTokenCacheItem | |||
| (string environment, string clientId, MsalTokenResponse response, string tenantId) : | |||
|
|
|||
| this(environment, clientId, response.TokenType, ScopeHelper.ConvertStringToLowercaseSortedSet(response.Scope).AsSingleString(), | |||
| this(environment, clientId, response.TokenType, response.Scope, | |||
There was a problem hiding this comment.
response.Scope [](start = 60, length = 14)
Does this handle sorting and normalizing? I believe that is a requirement we wanted to ensure happened for the cache? #Pending
There was a problem hiding this comment.
according to schema scopes should be stored as returned from sts
There was a problem hiding this comment.
great, that was not how I understood it. Are we sure the server is sorting etc.?
In reply to: 227981415 [](ancestors = 227981415)
There was a problem hiding this comment.
no, it does not , we should do it during cache lookup logic
| @@ -35,7 +35,7 @@ public MsalUserAccessTokenControl() | |||
| private void expireAccessTokenButton_Click(object sender, System.EventArgs e) | |||
| { | |||
| expiresOnLabel.Text = DateTimeOffset.UtcNow.ToString(); | |||
| _item.ExpiresOnUnixTimestamp = CoreHelpers.DateTimeToUnixTimestamp(DateTimeOffset.UtcNow); | |||
| _item.ExpiresOnUnixTimestamp = CoreHelpers.DateTimeToUnixTimestamp(DateTimeOffset.UtcNow).ToString(); | |||
There was a problem hiding this comment.
.ToString(); [](start = 101, length = 12)
made a comment elsewhere on this
| @@ -52,7 +53,7 @@ public partial class AccessTokenCacheItemDetails : ContentPage | |||
| expiresOnLabel.Text = msalAccessTokenCacheItem.ExpiresOn.ToString(); | |||
| scopesLabel.Text = msalAccessTokenCacheItem.NormalizedScopes; | |||
|
|
|||
| cachedAtLabel.Text = CoreHelpers.UnixTimestampToDateTime(msalAccessTokenCacheItem.CachedAt).ToString(); | |||
| cachedAtLabel.Text = CoreHelpers.UnixTimestampToDateTime(Convert.ToInt64(msalAccessTokenCacheItem.CachedAt)).ToString(); | |||
There was a problem hiding this comment.
Convert.ToInt64( [](start = 69, length = 16)
can this be moved to the MsalAccessTokenCacheItem class? #Closed
There was a problem hiding this comment.
yes, will change #Closed
|
Thanks a lot for looking into this Petro! #Closed |
| @@ -72,6 +74,12 @@ internal class IdToken | |||
| [DataMember(Name = IdTokenClaim.HomeObjectId, IsRequired = false)] | |||
| public string HomeObjectId { get; set; } | |||
|
|
|||
| [DataMember(Name = IdTokenClaim.GivenName)] | |||
There was a problem hiding this comment.
this one doesn't need IsRequired = false?
There was a problem hiding this comment.
it is optional, which means that other sdk might not persist it #ByDesign
There was a problem hiding this comment.
| @@ -56,7 +56,7 @@ namespace Microsoft.Identity.Client | |||
| public sealed class TokenCache | |||
| #pragma warning restore CS1574 // XML comment has cref attribute that could not be resolved | |||
| { | |||
| internal const string NullPreferredUsernameDisplayLabel = "preferred_username not in id_token"; | |||
| internal const string NullPreferredUsernameDisplayLabel = "Missing from the token response"; | |||
There was a problem hiding this comment.
Missing from the token response [](start = 67, length = 31)
much better wording #Closed
| } | ||
|
|
||
| public string GetiOSServiceKey() | ||
| { | ||
| return _tenantId ?? ""; | ||
| return (_tenantId ?? "").ToLower(); |
There was a problem hiding this comment.
return (_tenantId ?? "").ToLower(); [](start = 7, length = 40)
I'm speculating, however wouldn't this righ backwards compatibility? #Closed
There was a problem hiding this comment.
we do not access cache by individual key , we do it by cache entity type - like read all access tokens,
so this is not a problem #Closed
…y-library-for-dotnet into somkape/cacheFormatTest
| @@ -0,0 +1,308 @@ | |||
| using Microsoft.Identity.Client; | |||
| using Microsoft.Identity.Client.Internal; | |||
|
|
||
| [DataMember(Name = "user_assertion_hash")] | ||
| [DataMember(Name = "user_assertion_hash", EmitDefaultValue = false)] |
There was a problem hiding this comment.
EmitDefaultValue = false [](start = 50, length = 24)
what's this for?
There was a problem hiding this comment.
is used to determine whether to serialize the default value for a field or property being serialized
| @@ -41,7 +41,6 @@ internal abstract class MsalCacheItemBase | |||
| [DataMember(Name = "environment", IsRequired = true)] | |||
| internal string Environment { get; set; } | |||
|
|
|||
| [DataMember(Name = "client_info")] | |||
There was a problem hiding this comment.
remove this as a datamember because it's not required...correct? #Closed
There was a problem hiding this comment.
it was decided to persist it only with account object #Closed
| } | ||
| } | ||
| } | ||
| #endif |
There was a problem hiding this comment.
this is pretty cool. What about ADFS scenarios?
There was a problem hiding this comment.
can be also included quite easily, main challenge is to create test data for adfs -> sts response and expectations , it probably should be done in separate PR related to enabling ADFS in msal
| internal MsalAccountCacheKey GetKey() | ||
| { | ||
| return new MsalAccountCacheKey(Environment, TenantId, HomeAccountId, LocalAccountId); | ||
| return new MsalAccountCacheKey(Environment, TenantId, HomeAccountId, PreferredUsername); |
There was a problem hiding this comment.
PreferredUsername [](start = 81, length = 17)
Why is this changing to PreferredUsername? Will that impact existing cache (pre-next release)?
There was a problem hiding this comment.
this change was requested by iOS team, purpose is to optimize cache lookups,
it will not affect .NET Msal lookup because it does not perform lookup on individual keys
| @@ -39,9 +39,9 @@ internal class MsalAccountCacheKey | |||
| private readonly string _environment; | |||
| private readonly string _homeAccountId; | |||
| private readonly string _tenantId; | |||
| private readonly string _localAccountId; | |||
| private readonly string _username; | |||
There was a problem hiding this comment.
_username [](start = 32, length = 9)
why the switch to _username? #Closed
There was a problem hiding this comment.
this field is used only for persistence on iOS - as value for "Generic", iOS team requested this change
to optimize cache lookup, from .Net side we need to change it to be compatible with iOS Msal #Closed
| @@ -111,7 +111,7 @@ public void OnExpire(object sender, EventArgs e) | |||
| var tokenCache = App.MsalPublicClient.UserTokenCache; | |||
|
|
|||
| // set access token as expired | |||
| accessTokenCacheItem.ExpiresOnUnixTimestamp = GetCurrentTimestamp(); | |||
| accessTokenCacheItem.ExpiresOnUnixTimestamp = GetCurrentTimestamp().ToString(); | |||
There was a problem hiding this comment.
GetCurrentTimestamp [](start = 58, length = 19)
nit: consider making the method return a string
| @@ -61,7 +61,7 @@ internal MsalAccessTokenCacheItem | |||
| TenantId = tenantId; | |||
| Secret = secret; | |||
| ExpiresOnUnixTimestamp = CoreHelpers.DateTimeToUnixTimestamp(accessTokenExpiresOn); | |||
| CachedAt = CoreHelpers.CurrDateTimeInUnixTimestamp(); | |||
| CachedAt = CoreHelpers.CurrDateTimeInUnixTimestamp().ToString(); | |||
There was a problem hiding this comment.
CurrDateTimeInUnixTimestamp(). [](start = 35, length = 30)
is this used anywhere else where it's supposed to return a long or can the method be updated to return a string?
Cache format tests
While writing cache format test some cache format inconsistencies with current version of unified schema were found:
Others:
2.1. AccounId is derived from ClientInfo (Not opposite way - ClientInfo can not be recreated from accountId, it can contains more fields )
2.2. Some code was written based on assumption that client info is always persisted with cache entities, which is wrong because it is optional field, so some library can not persist it.