In [1]:
#!import "../1-models/Azure.ipynb"
#!import "../1-models/Portal.ipynb"

# Azure Subscription

This model is based on the subscription webhooks received from the Azure Marketplace.
The landing page creates these facts.
The portal subscribes to them to determine how many replicators can be configured.

## Enterprise Application Pattern

The Azure landing page app is an enterprise application.
The top-level user is a temporary principal.
It is created to initialize the environment and the first administrator.
And then the private key is discarded.

Administrators represent people.
Administrators are granted permission to add service principals and other administrators to an environment.
That permission can be revoked.

The creator of the environment grants permission to the initial administrator.
Thereafter, an administrator can add new administrators and revoke permissions.

## Azure Marketplace Service Principals

Service principals represents machines.
Different machines play different roles within the process.
The model represents each role as a different type, so that authorization and distribution rules can be granular.

Azure Marketplace service principals run the marketplace admin site and landing page.
They respond to user input, administrator input, and webhooks.
They can record facts about user identities and subscriptions.

Portal service principals run the Replicator portal.
They connect the user and their replicators to Azure user identities and subscriptions.
They use that information to enable and disable endpoints in the multitenant replicator and API gateway.

An administrator creates service principals.
Service principals cannot grant privileges to others.

## Subscriptions

Azure informs the landing page app of subscription activities by and related to a user.
It does so through webhook calls.
The landing page app also permits that user to take actions on the subscription through its own user interface.

This model also represents the user by their identifier.
The model does not treat Azure users as Jinaga users.
It records information _about_ the user, not _by_ the user.

A user can transfer a subscription to another user.
This is modeled using the Entity Reference pattern, a kind of mutable property.

## Subscription Activities

A user can adjust the plan to which a subscription applies.
This is captured as a mutable property.

The user can activate and deactivate their subscription.
Azure can also choose to suspend and reinstate the subscription.
Finally, the user periodically renews their subscription.
Renewal occurs within a monthly period.

## Replicator

A developer can create any number of replicators.
They give them a name and an environment (typically "dev", "test", or "prod").
Both name and environment are mutable properties.

## Authentication

A developer can configure authentication mechanisms for replicators.
Supported authentication mechanisms include Apple and Google.
Given the requirements of each of those providers, these authentication mechanisms take different parameters.

While the end user authenticates with Apple or Google, they use that identity to further authenticate with the replicator.
This phase is a standard OAuth2 authorization code flow.
The developer supplies callback URLs for this flow.

All of this configuration information is shared with a host device.
This device is well known to the developer.

## Request Completions

The host device processes the authentication and endpoint requests.
It responds with a completion fact that sometimes carries generated information.

For example, upon completing a request for an endpoint, the host provides a URL.
And when completing a request for an OAuth2 authentication service, the host responds with the public key that will be used to validate JWT tokens.

## Secrets

When setting up authorization and distribution rules, the developer must provide a shared secret.
They request a secret from the host.
The host responds with a randomly generated secret that can be used to authenticate a CI/CD server.

## RaaS Service Principal

The Replicator as a Service portal defines a service principal that associates Azure subscriptions with replicators.
The service principal grants a device permission to create facts within an environment.

In [2]:
[FactType("RaaS.ServicePrincipal")]
public record RaaSServicePrincipal(Device device, Environment environment, DateTime createdAt);

[FactType("RaaS.ServicePrincipal.Revoke")]
public record RevokeRaaSServicePrincipal(RaaSServicePrincipal servicePrincipal);

Renderer.RenderTypes(typeof(RaaSServicePrincipal), typeof(RevokeRaaSServicePrincipal))

## Subscription Allocation

The RaaS service principal controls the connection between the Azure Marketplace and the replicator-as-a-service portal.
The connection starts with the user identity.
The service principal associate a Jinaga user to an Azure user identity.
This happens on login.

Then, the service principal allocates subscriptions to replicators.
If a subscription is available, and a replicator is created, then it will allocate it.
A replicator will only be activated once a subscription is allocated.
If the subscription is cancelled, then the replicator is deactivated.

In [4]:
[FactType("RaaS.UserIdentity")]
public record RaasUserIdentity(User user, UserIdentity userIdentity);

[FactType("RaaS.Replicator.Subscription")]
public record ReplicatorSubscription(Replicator replicator, Subscription subscription);

Renderer.RenderTypes(typeof(RaasUserIdentity), typeof(ReplicatorSubscription), typeof(SubscriptionUserIdentity))