# Microsoft Graph

“[Build .NET apps with Microsoft Graph](https://learn.microsoft.com/en-us/graph/tutorials/dotnet?tabs=aad)”

In [1]:
#r "nuget: Microsoft.Graph"
#r "nuget: Azure.Core,1.31"
#r "nuget: Azure.Identity"

In [2]:
#r "nuget: SonghayCore"

In [3]:
using System.IO;
using System.Text.Json;
using Songhay.Models;

var json = File.ReadAllText(Environment.GetEnvironmentVariable("SONGHAY_APP_SETTINGS_PATH"));

JsonDocument.Parse(json).RootElement.TryGetProperty(typeof(ProgramMetadata).Name, out var element)

In [4]:
var meta = JsonSerializer.Deserialize<ProgramMetadata>(element);
var restMeta = meta.RestApiMetadataSet["MSAL2023"];

restMeta.ClaimsSet.Keys

In [5]:
using Azure.Core;
using Azure.Identity;

var options = new DeviceCodeCredentialOptions
{
    ClientId = restMeta.ClaimsSet["ClientId"],
    TenantId = restMeta.ClaimsSet["ClientTenantId"],
    DeviceCodeCallback = (info, _) =>
        {
            // Display the device code message to
            // the user. This tells them
            // where to go to sign in and provides the
            // code to use.
            Console.WriteLine(info.Message);
            return Task.FromResult(0);
        }
};

var credential = new DeviceCodeCredential(options);

var scopes = new[] { "User.Read" };

var context = new TokenRequestContext(scopes);

var response = await credential.GetTokenAsync(context);

!string.IsNullOrWhiteSpace(response.Token)

To sign in, use a web browser to open the page https://microsoft.com/devicelogin and enter the code F88FS8GJ5 to authenticate.


In [6]:
using Microsoft.Graph;

var client = new GraphServiceClient(credential, scopes);

var users = await client.Users.GetAsync(config =>
    {
        config.QueryParameters.Select = new[] { "DisplayName", "CompanyName" };
        config.QueryParameters.Top = 5;
        config.QueryParameters.Orderby = new[] { "DisplayName" };
    });

users

In [7]:
var me = await client.Me.GetAsync();

me

key,value
,
AboutMe,<null>
AccountEnabled,<null>
Activities,<null>
AgeGroup,<null>
AgreementAcceptances,<null>
AppRoleAssignments,<null>
AssignedLicenses,<null>
AssignedPlans,<null>
Authentication,<null>

key,value
@odata.context,https://graph.microsoft.com/v1.0/$metadata#users/$entity

Unnamed: 0,Unnamed: 1
ReturnOnlyChangedValues,False
InitializationCompleted,True


In [8]:
#r "nuget: Azure.Storage.Blobs"


In [9]:
using Azure.Storage.Blobs;
using Azure.Storage.Blobs.Models;

var uri = new Uri("https://fubar.blob.core.windows.net", UriKind.Absolute);
var client = new BlobServiceClient(uri, credential);

var containerClient = client.GetBlobContainerClient("foo");

var blobClient = containerClient.GetBlobClient("kb-1064618963.json");

blobClient.DownloadContent()

To sign in, use a web browser to open the page https://microsoft.com/devicelogin and enter the code FT66MAL5X to authenticate.


Error: Azure.RequestFailedException: Server failed to authenticate the request. Please refer to the information in the www-authenticate header.
RequestId:f2aca1e4-101e-0011-68c6-80bb24000000
Time:2023-05-07T09:31:30.6492515Z
Status: 401 (Server failed to authenticate the request. Please refer to the information in the www-authenticate header.)
ErrorCode: InvalidAuthenticationInfo

Additional Information:
AuthenticationErrorDetail: Issuer validation failed. Issuer did not match.

Headers:
Vary: Origin
Server: Microsoft-HTTPAPI/2.0
x-ms-request-id: f2aca1e4-101e-0011-68c6-80bb24000000
x-ms-error-code: InvalidAuthenticationInfo
WWW-Authenticate: Bearer authorization_uri=https://login.microsoftonline.com/common/oauth2/authorize resource_id=https://storage.azure.com
Date: Sun, 07 May 2023 09:31:29 GMT
Content-Length: 402
Content-Type: application/xml

   at Azure.Storage.Blobs.BlobRestClient.Download(String snapshot, String versionId, Nullable`1 timeout, String range, String leaseId, Nullable`1 rangeGetContentMD5, Nullable`1 rangeGetContentCRC64, String encryptionKey, String encryptionKeySha256, Nullable`1 encryptionAlgorithm, Nullable`1 ifModifiedSince, Nullable`1 ifUnmodifiedSince, String ifMatch, String ifNoneMatch, String ifTags, CancellationToken cancellationToken)
   at Azure.Storage.Blobs.Specialized.BlobBaseClient.StartDownloadAsync(HttpRange range, BlobRequestConditions conditions, DownloadTransferValidationOptions validationOptions, Int64 startOffset, Boolean async, CancellationToken cancellationToken)
   at Azure.Storage.Blobs.Specialized.BlobBaseClient.DownloadStreamingInternal(HttpRange range, BlobRequestConditions conditions, DownloadTransferValidationOptions transferValidationOverride, IProgress`1 progressHandler, String operationName, Boolean async, CancellationToken cancellationToken)
   at Azure.Storage.Blobs.Specialized.BlobBaseClient.DownloadStreamingDirect(HttpRange range, BlobRequestConditions conditions, DownloadTransferValidationOptions transferValidationOverride, IProgress`1 progressHandler, String operationName, Boolean async, CancellationToken cancellationToken)
   at Azure.Storage.Blobs.Specialized.BlobBaseClient.DownloadContentInternal(BlobRequestConditions conditions, IProgress`1 progressHandler, HttpRange range, DownloadTransferValidationOptions transferValidationOverride, Boolean async, CancellationToken cancellationToken)
   at Azure.Core.Pipeline.TaskExtensions.EnsureCompleted[T](Task`1 task)
   at Azure.Storage.Blobs.Specialized.BlobBaseClient.DownloadContent(BlobRequestConditions conditions, CancellationToken cancellationToken)
   at Azure.Storage.Blobs.Specialized.BlobBaseClient.DownloadContent(CancellationToken cancellationToken)
   at Azure.Storage.Blobs.Specialized.BlobBaseClient.DownloadContent()
   at Submission#7.<<Initialize>>d__0.MoveNext()
--- End of stack trace from previous location ---
   at Microsoft.CodeAnalysis.Scripting.ScriptExecutionState.RunSubmissionsAsync[TResult](ImmutableArray`1 precedingExecutors, Func`2 currentExecutor, StrongBox`1 exceptionHolderOpt, Func`2 catchExceptionOpt, CancellationToken cancellationToken)