Conversation
…tion-library-for-java into avdunn/msalruntime-integration
| /** | ||
| * Used to define the basic set of methods that all Brokers must implement | ||
| */ | ||
| public interface IBroker { |
There was a problem hiding this comment.
The I prefix is quite an outdated approach. I would suggest you consider calling this Broker instead.
There was a problem hiding this comment.
Agreed that it is an outdated approach but we try to be in sync with other MSALs. This IBroker interface is introduced to be in sync with MSAL .NET.
There was a problem hiding this comment.
I would argue to not follow conventions of another language, if you can help it.
There was a problem hiding this comment.
I also agree that it's outdated, but it's also something that all the other interfaces in our library follow. Consistency with the other MSALs is also a big focus for this feature, since most of the libraries will be also be integrating with MSALRuntime we want to keep things as similar as we can
| Account signInSilently(PublicClientApplication clientApplication, InteractiveRequestParameters interactiveRequestParameters); | ||
|
|
||
| Account signInInteractively(PublicClientApplication clientApplication, InteractiveRequestParameters interactiveRequestParameters); | ||
|
|
||
| AuthenticationResult acquireTokenSilently(PublicClientApplication clientApplication, InteractiveRequestParameters interactiveRequestParameters, Account account); | ||
|
|
||
| AuthenticationResult acquireTokenInteractively(PublicClientApplication clientApplication, InteractiveRequestParameters interactiveRequestParameters, Account account); | ||
|
|
||
| void signOutSilently(PublicClientApplication clientApplication, InteractiveRequestParameters interactiveRequestParameters); | ||
|
|
||
| //TODO: too specific to MSALRuntime? Should it be split into a generic getAccount(something) and getAllAccounts(clientId)? | ||
| void discoverAccounts(PublicClientApplication clientApplication, InteractiveRequestParameters interactiveRequestParameters); |
There was a problem hiding this comment.
Because all methods seem to require a PublicClientApplication, I wonder if this should be a constructor parameter in implementations of this interface? Do you expect for an instance of Broker that the PublicClientApplication will always be the same?
There was a problem hiding this comment.
This has been completely refactored from this initial generic design to something more like the rest of MSAL Java, where there are a series of acquireToken() methods overloaded for each type of request (leaving it up to a broker to figure out how to handle each type of request).
| AuthorizationResult authorizationResult = getAuthorizationResult(); | ||
| validateState(authorizationResult); | ||
| return acquireTokenWithAuthorizationCode(authorizationResult); | ||
| if (clientApplication.allowBroker()) { |
There was a problem hiding this comment.
We should have boolean getters prefixed with is, so perhaps this method should be named isBrokerAllowed() or similar?
There was a problem hiding this comment.
This is just the flag decided on in the design doc (mainly according to conventions in Python and .NET since they were the frontrunners on this). Normally I'd agree that it's weird and change it to something like 'isBrokerAllowed', but consistency across MSALs is a focus on this project, and we other parameters like this in our library already so it shouldn't be too confusing.
| public LongByReference authParamsHandle; | ||
| public LongByReference accountHandle; | ||
| public LongByReference authResultHandle; | ||
| public MSALRuntimeUtils.StringByReference idToken = new MSALRuntimeUtils.StringByReference(new WString("")); | ||
| public MSALRuntimeUtils.StringByReference accessToken = new MSALRuntimeUtils.StringByReference(new WString("")); | ||
| public LongByReference accessTokenExpirationTime; | ||
| public MSALRuntimeUtils.StringByReference accountId = new MSALRuntimeUtils.StringByReference(new WString(""));//TODO: split AuthenticationResult into SignInResult (id token/account) and TokenResult (access tokens)? Or keep it simple all-in-one like MSAL Java's AuthenticationResult? | ||
| public MSALRuntimeUtils.StringByReference accountClientInfo = new MSALRuntimeUtils.StringByReference(new WString("")); |
There was a problem hiding this comment.
We shouldn't have public instance fields in our APIs, if at all possible
There was a problem hiding this comment.
These fields (and the class itself) need to be public due to how JNA handles converting Java classes to C structs. Basically, JNA will ignore any field that isn't public when creating the native struct, so anything on the Java side tried to access native structs JNA is handling you'd get an error about the struct not having a field named XYZ.
src/main/java/com/microsoft/aad/msal4j/MSALRuntimeAuthResult.java
Outdated
Show resolved
Hide resolved
src/main/java/com/microsoft/aad/msal4j/MSALRuntimeAuthResult.java
Outdated
Show resolved
Hide resolved
src/main/java/com/microsoft/aad/msal4j/MSALRuntimeAuthResult.java
Outdated
Show resolved
Hide resolved
|
Enough design changes have happened to make this version obsolete, new PR IBroker and it's implementation for MSALRuntime can be found here: #563 |
3 participants
Draft PR for the work-in-progress MSALRuntime integration. Most of the new files will be split off into either a new Broker repository or the existing MSAL C++ repository, and are just here for easier initial code review
This PR currently has: