Examples with PublicClientApplication com.microsoft.aad.msal4j.PublicClientApplication used on opensource projects

Example 1 with PublicClientApplication

use of com.microsoft.aad.msal4j.PublicClientApplication in project mssql-jdbc by Microsoft.

the class SQLServerMSAL4JUtils method getSqlFedAuthTokenIntegrated.

static SqlFedAuthToken getSqlFedAuthTokenIntegrated(SqlFedAuthInfo fedAuthInfo, String authenticationString) throws SQLServerException {
    ExecutorService executorService = Executors.newSingleThreadExecutor();
    try {
        /*
             * principal name does not matter, what matters is the realm name it gets the username in
             * principal_name@realm_name format
             */
        KerberosPrincipal kerberosPrincipal = new KerberosPrincipal("username");
        String user = kerberosPrincipal.getName();
        if (logger.isLoggable(Level.FINE)) {
            logger.fine(logger.toString() + " realm name is:" + kerberosPrincipal.getRealm());
        }
        final PublicClientApplication pca = PublicClientApplication.builder(ActiveDirectoryAuthentication.JDBC_FEDAUTH_CLIENT_ID).executorService(executorService).authority(fedAuthInfo.stsurl).build();
        final CompletableFuture<IAuthenticationResult> future = pca.acquireToken(IntegratedWindowsAuthenticationParameters.builder(Collections.singleton(fedAuthInfo.spn + SLASH_DEFAULT), user).build());
        final IAuthenticationResult authenticationResult = future.get();
        return new SqlFedAuthToken(authenticationResult.accessToken(), authenticationResult.expiresOnDate());
    } catch (InterruptedException | IOException e) {
        throw new SQLServerException(e.getMessage(), e);
    } catch (ExecutionException e) {
        throw getCorrectedException(e, "", authenticationString);
    } finally {
        executorService.shutdown();
    }
}

Example 2 with PublicClientApplication

use of com.microsoft.aad.msal4j.PublicClientApplication in project mssql-jdbc by microsoft.

the class FedauthCommon method getFedauthInfo.

/**
 * Get Fedauth info
 */
static void getFedauthInfo() {
    try {
        final PublicClientApplication clientApplication = PublicClientApplication.builder(fedauthClientId).executorService(Executors.newFixedThreadPool(1)).authority(stsurl).build();
        final CompletableFuture<IAuthenticationResult> future = clientApplication.acquireToken(UserNamePasswordParameters.builder(Collections.singleton(spn + "/.default"), azureUserName, azurePassword.toCharArray()).build());
        final IAuthenticationResult authenticationResult = future.get();
        secondsBeforeExpiration = TimeUnit.MILLISECONDS.toSeconds(authenticationResult.expiresOnDate().getTime() - new Date().getTime());
        accessToken = authenticationResult.accessToken();
    } catch (Exception e) {
        fail(e.getMessage());
    }
}

Example 3 with PublicClientApplication

use of com.microsoft.aad.msal4j.PublicClientApplication in project mssql-jdbc by microsoft.

the class SQLServerMSAL4JUtils method getSqlFedAuthTokenInteractive.

static SqlFedAuthToken getSqlFedAuthTokenInteractive(SqlFedAuthInfo fedAuthInfo, String user, String authenticationString) throws SQLServerException {
    ExecutorService executorService = Executors.newSingleThreadExecutor();
    try {
        PublicClientApplication pca = PublicClientApplication.builder(ActiveDirectoryAuthentication.JDBC_FEDAUTH_CLIENT_ID).executorService(executorService).setTokenCacheAccessAspect(PersistentTokenCacheAccessAspect.getInstance()).authority(fedAuthInfo.stsurl).logPii((logger.isLoggable(Level.FINE))).build();
        CompletableFuture<IAuthenticationResult> future = null;
        IAuthenticationResult authenticationResult = null;
        // try to acquire token silently if user account found in cache
        try {
            Set<IAccount> accountsInCache = pca.getAccounts().join();
            if (null != accountsInCache && !accountsInCache.isEmpty() && null != user && !user.isEmpty()) {
                IAccount account = getAccountByUsername(accountsInCache, user);
                if (null != account) {
                    if (logger.isLoggable(Level.FINE)) {
                        logger.fine(logger.toString() + "Silent authentication for user:" + user);
                    }
                    SilentParameters silentParameters = SilentParameters.builder(Collections.singleton(fedAuthInfo.spn + SLASH_DEFAULT), account).build();
                    future = pca.acquireTokenSilently(silentParameters);
                }
            }
        } catch (MsalInteractionRequiredException e) {
        // not an error, need to get token interactively
        }
        if (null != future) {
            authenticationResult = future.get();
        } else {
            // acquire token interactively with system browser
            if (logger.isLoggable(Level.FINE)) {
                logger.fine(logger.toString() + "Interactive authentication");
            }
            InteractiveRequestParameters parameters = InteractiveRequestParameters.builder(new URI(REDIRECTURI)).systemBrowserOptions(SystemBrowserOptions.builder().htmlMessageSuccess(SQLServerResource.getResource("R_MSALAuthComplete")).build()).loginHint(user).scopes(Collections.singleton(fedAuthInfo.spn + SLASH_DEFAULT)).build();
            future = pca.acquireToken(parameters);
            authenticationResult = future.get();
        }
        return new SqlFedAuthToken(authenticationResult.accessToken(), authenticationResult.expiresOnDate());
    } catch (MalformedURLException | InterruptedException | URISyntaxException e) {
        throw new SQLServerException(e.getMessage(), e);
    } catch (ExecutionException e) {
        throw getCorrectedException(e, user, authenticationString);
    } finally {
        executorService.shutdown();
    }
}

Example 4 with PublicClientApplication

use of com.microsoft.aad.msal4j.PublicClientApplication in project mssql-jdbc by microsoft.

the class SQLServerMSAL4JUtils method getSqlFedAuthToken.

static SqlFedAuthToken getSqlFedAuthToken(SqlFedAuthInfo fedAuthInfo, String user, String password, String authenticationString) throws SQLServerException {
    ExecutorService executorService = Executors.newSingleThreadExecutor();
    try {
        final PublicClientApplication pca = PublicClientApplication.builder(ActiveDirectoryAuthentication.JDBC_FEDAUTH_CLIENT_ID).executorService(executorService).authority(fedAuthInfo.stsurl).build();
        final CompletableFuture<IAuthenticationResult> future = pca.acquireToken(UserNamePasswordParameters.builder(Collections.singleton(fedAuthInfo.spn + SLASH_DEFAULT), user, password.toCharArray()).build());
        final IAuthenticationResult authenticationResult = future.get();
        return new SqlFedAuthToken(authenticationResult.accessToken(), authenticationResult.expiresOnDate());
    } catch (MalformedURLException | InterruptedException e) {
        throw new SQLServerException(e.getMessage(), e);
    } catch (ExecutionException e) {
        throw getCorrectedException(e, user, authenticationString);
    } finally {
        executorService.shutdown();
    }
}

Example 5 with PublicClientApplication

use of com.microsoft.aad.msal4j.PublicClientApplication in project microsoft-authentication-library-for-java by AzureAD.

the class InteractiveFlowB2C method acquireTokenInteractiveB2C.

private static IAuthenticationResult acquireTokenInteractiveB2C() throws Exception {
    // Load token cache from file and initialize token cache aspect. The token cache will have
    // dummy data, so the acquireTokenSilently call will fail.
    TokenCacheAspect tokenCacheAspect = new TokenCacheAspect("sample_cache.json");
    PublicClientApplication pca = PublicClientApplication.builder(CLIENT_ID).b2cAuthority(AUTHORITY).setTokenCacheAccessAspect(tokenCacheAspect).build();
    Set<IAccount> accountsInCache = pca.getAccounts().join();
    // Use first account in the cache. In a production application, you would filter
    // accountsInCache to get the right account for the user authenticating.
    IAccount account = accountsInCache.iterator().next();
    IAuthenticationResult result;
    try {
        SilentParameters silentParameters = SilentParameters.builder(SCOPE, account).build();
        // try to acquire token silently. This call will fail since the token cache
        // does not have any data for the user you are trying to acquire a token for
        result = pca.acquireTokenSilently(silentParameters).join();
    } catch (Exception ex) {
        if (ex.getCause() instanceof MsalException) {
            // For B2C, you have to specify a port for the redirect URL
            InteractiveRequestParameters parameters = InteractiveRequestParameters.builder(new URI("http://localhost:8080")).scopes(SCOPE).build();
            // Try to acquire a token interactively with system browser. If successful, you should see
            // the token and account information printed out to console
            result = pca.acquireToken(parameters).join();
        } else {
            // Handle other exceptions accordingly
            throw ex;
        }
    }
    return result;
}