Support for OAuthCards (real and mocked) (#433)

* Emulator OAuthCard support * PKCE support to login without magic code * Extra button for OAuthCards for code verification path * Merge in latest DL and WebChat and support setting * Update webchat package
microsoft · May 1, 2018 · aa6c640 · aa6c640
1 parent e3ada04
commit aa6c640
Show file tree

Hide file tree

Showing 25 changed files with 777 additions and 33 deletions.
diff --git a/gulpfile.js b/gulpfile.js
@@ -1,4 +1,5 @@
 var gulp = require('gulp');
+var typescript = require('gulp-tsc');
 
 gulp.task('clean', function () {
     var clean = require('gulp-clean');
@@ -10,14 +11,15 @@ gulp.task('build-app', function () {
     var tsc = require('gulp-tsc');
     var tsconfig = require('./tsconfig.json');
     return gulp.src(['src/**/*.ts', 'src/**/*.tsx'])
-        .pipe(tsc(tsconfig.compilerOptions))
+        .pipe(typescript(tsconfig.compilerOptions))
         .pipe(gulp.dest('app/'));
 });
 
 gulp.task('build-site', function () {
     return gulp.src([
         './src/**/*.html',
-        './src/**/*.css'])
+        './src/**/*.css',
+        './src/**/adaptivecards-hostconfig.json'])
         .pipe(gulp.dest('app/'));
 });
 

diff --git a/package.json b/package.json
@@ -66,15 +66,17 @@
     "object-assign": "4.1.0",
     "restify": "5.1.0",
     "tslib": "1.5.0",
-    "typescript": "2.3.4",
+    "typescript": "^2.4.0",
     "vinyl": "2.0.1",
     "vinyl-fs": "2.4.4"
   },
   "dependencies": {
     "async": "2.1.4",
     "base64url": "2.0.0",
-    "botframework-webchat": "0.11.2",
+    "botframework-webchat": "^0.13.1",
+    "btoa": "^1.2.1",
     "command-line-args": "4.0.7",
+    "crypto-js": "^3.1.9-1",
     "electron-debug": "1.1.0",
     "electron-localshortcut": "2.0.2",
     "es6-shim": "0.35.2",
@@ -94,6 +96,8 @@
     "restify": "4.3.0",
     "rsa-pem-from-mod-exp": "0.8.4",
     "rxjs": "5.4.2",
+    "sha.js": "^2.4.11",
+    "utf8": "^3.0.0",
     "xmldom": "0.1.27",
     "xtend": "4.0.1"
   },

diff --git a/src/client/adaptivecards-hostconfig.json b/src/client/adaptivecards-hostconfig.json
@@ -0,0 +1,121 @@
+{
+  "supportsInteractivity": true,
+  "spacing": {
+    "small": 4,
+    "default": 8,
+    "medium": 16,
+    "large": 24,
+    "extraLarge": 32,
+    "padding": 8
+  },
+  "separator": {
+    "lineThickness": 1,
+    "lineColor": "#cccccc"
+  },
+  "fontFamily": "\"Segoe UI\", sans-serif",
+  "fontSizes": {
+    "small": 12,
+    "default": 13,
+    "medium": 15,
+    "large": 17,
+    "extraLarge": 19
+  },
+  "fontWeights": {
+    "lighter": 200,
+    "default": 400,
+    "bolder": 700
+  },
+  "containerStyles": {
+    "default": {
+      "backgroundColor": "#00000000",
+      "foregroundColors": {
+        "default": {
+          "default": "#000000",
+          "subtle": "#808c95"
+        },
+        "accent": {
+          "default": "#2e89fc",
+          "subtle": "#802E8901"
+        },
+        "attention": {
+          "default": "#ffd800",
+          "subtle": "#CCFFD800"
+        },
+        "good": {
+          "default": "#00ff00",
+          "subtle": "#CC00FF00"
+        },
+        "warning": {
+          "default": "#ff0000",
+          "subtle": "#CCFF0000"
+        }
+      }
+    },
+    "emphasis": {
+      "backgroundColor": "#08000000",
+      "foregroundColors": {
+        "default": {
+          "default": "#333333",
+          "subtle": "#EE333333"
+        },
+        "accent": {
+          "default": "#2e89fc",
+          "subtle": "#882E89FC"
+        },
+        "attention": {
+          "default": "#cc3300",
+          "subtle": "#DDCC3300"
+        },
+        "good": {
+          "default": "#54a254",
+          "subtle": "#DD54A254"
+        },
+        "warning": {
+          "default": "#e69500",
+          "subtle": "#DDE69500"
+        }
+      }
+    }
+  },
+  "imageSizes": {
+    "small": 40,
+    "medium": 80,
+    "large": 160
+  },
+  "actions": {
+    "maxActions": 100,
+    "spacing": "default",
+    "buttonSpacing": 8,
+    "showCard": {
+      "actionMode": "inline",
+      "inlineTopMargin": 8
+    },
+    "actionsOrientation": "vertical",
+    "actionAlignment": "stretch"
+  },
+  "adaptiveCard": {
+    "allowCustomStyle": false
+  },
+  "imageSet": {
+    "imageSize": "medium",
+    "maxImageHeight": 100
+  },
+  "factSet": {
+    "title": {
+      "color": "default",
+      "size": "default",
+      "isSubtle": false,
+      "weight": "bolder",
+      "wrap": true,
+      "maxWidth": 150
+    },
+    "value": {
+      "color": "default",
+      "size": "default",
+      "isSubtle": false,
+      "weight": "default",
+      "wrap": true
+    },
+    "spacing": 8
+  }
+}
diff --git a/src/client/dialogs/appSettingsDialog.tsx b/src/client/dialogs/appSettingsDialog.tsx
@@ -53,6 +53,7 @@ export class AppSettingsDialog extends React.Component<{}, AppSettingsDialogStat
     stateSizeLimitInputRef: any;
     bypassNgrokLocalhostInputRef: any;
     use10TokensInputRef: any;
+    useCodeValidationInputRef: any;
     showing: boolean;
     lastFocusRef: any;
 
@@ -78,7 +79,8 @@ export class AppSettingsDialog extends React.Component<{}, AppSettingsDialogStat
             ngrokPath: this.ngrokPathInputRef.value,
             bypassNgrokLocalhost: this.bypassNgrokLocalhostInputRef.checked,
             stateSizeLimit: this.stateSizeLimitInputRef.value,
-            use10Tokens: this.use10TokensInputRef.checked
+            use10Tokens: this.use10TokensInputRef.checked,
+            useCodeValidation: this.useCodeValidationInputRef.checked
         });
         AddressBarActions.hideAppSettings();
     }
@@ -223,6 +225,17 @@ export class AppSettingsDialog extends React.Component<{}, AppSettingsDialogStat
                                 Use version 1.0 authentication tokens
                             </label>
                         </div>
+                        <div className="input-group appsettings-checkbox-group">
+                            <label className="form-label clickable">
+                                <input
+                                    type="checkbox"
+                                    name="useCodeValidation"
+                                    ref={ref => this.useCodeValidationInputRef = ref}
+                                    className="form-input"
+                                    defaultChecked={ serverSettings.framework.useCodeValidation } />
+                                Use a sign-in verification code for OAuthCards
+                            </label>
+                        </div>
                     </div>) )}
                     {this.renderNavTab("state", (<div>
                         <div className='emu-dialog-text'>

diff --git a/src/client/emulator.ts b/src/client/emulator.ts
@@ -169,6 +169,19 @@ export class Emulator {
         request(options, responseCallback);
     }
 
+    public static sendTokenResponse(connectionName: string, token: string, cb: (result: boolean) => void) {
+        const settings = getSettings();
+        let options: request.OptionsWithUrl = {
+            url: `${this.serviceUrl}/emulator/${settings.conversation.conversationId}/invoke/sendTokenResponse`,
+            method: "POST",
+            json: [{token: token, connectionName: connectionName }],
+        };
+        let responseCallback = (err, resp: http.IncomingMessage, body) => {
+            cb(true);
+        };
+        request(options, responseCallback);
+    }
+
     public static zoomIn() {
         let options: request.OptionsWithUrl = {
             url: `${this.serviceUrl}/emulator/window/zoomIn`,

diff --git a/src/client/hyperlinkHandler.ts b/src/client/hyperlinkHandler.ts
@@ -39,9 +39,11 @@ import { getSettings, selectedActivity$ } from './settings';
 import { Settings as ServerSettings } from '../types/serverSettingsTypes';
 import { Emulator } from './emulator';
 import { PaymentEncoder } from '../shared/paymentEncoder';
+import { OAuthClientEncoder } from '../shared/oauthClientEncoder';
+import { OAuthLinkEncoder } from '../shared/oauthLinkEncoder';
 import * as log from './log';
 import * as Electron from 'electron';
-
+import { uniqueId } from '../shared/utils';
 
 export function navigate(url: string) {
     try {
@@ -59,6 +61,10 @@ export function navigate(url: string) {
             }
         } else if (parsed.protocol.startsWith(PaymentEncoder.PaymentEmulatorUrlProtocol)) {
             navigatePaymentUrl(parsed.path);
+        } else if (parsed.protocol.startsWith(OAuthClientEncoder.OAuthEmulatorUrlProtocol)) {
+            navigateEmulatedOAuthUrl(url.substring(8));
+        } else if (parsed.protocol.startsWith(OAuthLinkEncoder.OAuthUrlProtocol)) {
+            navigateOAuthUrl(url.substring(12));
         } else if (parsed.protocol.startsWith('file:')) {
             // ignore
         } else if (parsed.protocol.startsWith('javascript:')) {
@@ -141,3 +147,17 @@ function navigatePaymentUrl(payload: string) {
         serviceUrl: Emulator.serviceUrl
     });
 }
+
+function navigateEmulatedOAuthUrl(connectionName: string) {
+    Emulator.sendTokenResponse(connectionName, 'emulatedToken_' + uniqueId(),
+        (result: boolean) => {});
+}
+
+function navigateOAuthUrl(url: string) {
+    const settings = getSettings();
+    Electron.ipcRenderer.send("createOAuthWindow", {
+        url: url,
+        settings: settings,
+        serviceUrl: Emulator.serviceUrl
+    });
+}
diff --git a/src/client/mainView.tsx b/src/client/mainView.tsx
@@ -52,6 +52,8 @@ import { ISpeechTokenInfo } from '../types/speechTypes';
 const CognitiveServices = require('../../node_modules/botframework-webchat/CognitiveServices');
 const remote = require('electron').remote;
 const ipcRenderer = require('electron').ipcRenderer;
+const AdaptiveCardsHostConfig = require('./adaptivecards-hostconfig.json');
+
 
 export class MainView extends React.Component<{}, {}> {
     settingsUnsubscribe: any;
@@ -241,6 +243,7 @@ export class MainView extends React.Component<{}, {}> {
             const srvSettings = new ServerSettings(settings.serverSettings);
             const activeBot = srvSettings.getActiveBot();
             const props: BotChat.ChatProps = {
+                adaptiveCardsHostConfig: AdaptiveCardsHostConfig,
                 botConnection: this.directline,
                 locale: activeBot.locale || remote.app.getLocale(),
                 formatOptions: {

diff --git a/src/client/reducers.ts b/src/client/reducers.ts
@@ -404,6 +404,7 @@ export class ServerSettingsActions {
         ngrokPath: string,
         bypassNgrokLocalhost: boolean,
         use10Tokens: boolean,
+        useCodeValidation: boolean,
         stateSizeLimit: number
     }) {
         serverChangeSetting('Framework_Set', state);

diff --git a/src/server/OpenIdMetadata.ts b/src/server/OpenIdMetadata.ts
@@ -32,7 +32,6 @@
 //
 
 import * as got from 'got';
-import { emulator } from './emulator';
 let getPem = require('rsa-pem-from-mod-exp');
 let base64url = require('base64url');
 

diff --git a/src/server/botFrameworkService.ts b/src/server/botFrameworkService.ts
@@ -36,6 +36,8 @@ import { ConversationsController } from './controllers/connector/conversationsCo
 import { AttachmentsController } from './controllers/connector/attachmentsController';
 import { BotStateController } from './controllers/connector/botStateController';
 import { ConversationsControllerV3 as DirectLineConversationsController } from './controllers/directLine/conversationsControllerV3';
+import { SessionController } from './controllers/directLine/sessionController';
+import { UserTokenController } from './controllers/connector/userTokenController';
 import { EmulatorController } from './controllers/emulator/emulatorController';
 import { RestServer } from './restServer';
 import { getStore, getSettings, addSettingsListener } from './settings';
@@ -66,6 +68,10 @@ export class BotFrameworkService extends RestServer {
         }
     }
 
+    public getNgrokServiceUrl() : string {
+        return this.ngrokServiceUrl;
+    }
+
     authentication = new BotFrameworkAuthentication();
 
     constructor() {
@@ -74,6 +80,8 @@ export class BotFrameworkService extends RestServer {
         AttachmentsController.registerRoutes(this);
         BotStateController.registerRoutes(this, this.authentication);
         DirectLineConversationsController.registerRoutes(this);
+        SessionController.registerRoutes(this);
+        UserTokenController.registerRoutes(this, this.authentication);
         EmulatorController.registerRoutes(this);
         addSettingsListener((settings: Settings) => {
             this.configure(settings);

diff --git a/src/server/controllers/connector/conversationsController.ts b/src/server/controllers/connector/conversationsController.ts
@@ -47,7 +47,7 @@ import { BotFrameworkAuthentication } from '../../botFrameworkAuthentication';
 import { error } from '../../log';
 import { jsonBodyParser } from '../../jsonBodyParser';
 import { VersionManager } from '../../versionManager';
-
+import { OAuthLinkEncoder } from '../../../shared/oauthLinkEncoder';
 
 interface IConversationAPIPathParameters {
     conversationId: string;
@@ -184,20 +184,31 @@ export class ConversationsController {
             activity.id = null;
             activity.replyToId = req.params.activityId;
 
-            // look up conversation
+            let continuation = function(): void {
-            const conversation = emulator.conversations.conversationById(activeBot.botId, parms.conversationId);
+                    // look up conversation
-            if (!conversation)
+                const conversation = emulator.conversations.conversationById(activeBot.botId, parms.conversationId);
-                throw ResponseTypes.createAPIException(HttpStatus.NOT_FOUND, ErrorCodes.BadArgument, "conversation not found");
+                if (!conversation)
-
+                    throw ResponseTypes.createAPIException(HttpStatus.NOT_FOUND, ErrorCodes.BadArgument, "conversation not found");
-            // if we found the activity to reply to
+
-            //if (!conversation.activities.find((existingActivity, index, obj) => existingActivity.id == activity.replyToId))
+                // if we found the activity to reply to
-            //    throw ResponseTypes.createAPIException(HttpStatus.NOT_FOUND, ErrorCodes.BadArgument, "replyToId is not a known activity id");
+                //if (!conversation.activities.find((existingActivity, index, obj) => existingActivity.id == activity.replyToId))
-
+                //    throw ResponseTypes.createAPIException(HttpStatus.NOT_FOUND, ErrorCodes.BadArgument, "replyToId is not a known activity id");
-            // post activity
+
-            let response: IResourceResponse = conversation.postActivityToUser(activity);
+                // post activity
-            res.send(HttpStatus.OK, response);
+                let response: IResourceResponse = conversation.postActivityToUser(activity);
-            res.end();
+                res.send(HttpStatus.OK, response);
-            log.api(`Reply[${activity.type}]`, req, res, activity, response, getActivityText(activity));
+                res.end();
+                log.api(`Reply[${activity.type}]`, req, res, activity, response, getActivityText(activity));
+            };
+
+            let visitor = new OAuthLinkEncoder(emulator.framework.getNgrokServiceUrl(), req.headers['authorization'], activity);
+            visitor.resolveOAuthCards(activity).then((value?: any) =>
+            {
+                continuation();
+            }, (reason: any) => {
+                log.api(`Failed resolveOAuthCards`, req, res, activity);
+                continuation();
+            });
         } catch (err) {
             let error = ResponseTypes.sendErrorResponse(req, res, next, err);
             log.api(`Reply[${activity.type}]`, req, res, activity, error, getActivityText(activity));