Follow the 'connections' uri when present

bable5 · Sean Mooney · commit adf214a702da · 2020-11-02T07:52:48.000-06:00
* Full access to the API requires both user consent and designating
which organizations the user wants the application to be able to
interact with. Follow the 'connections' uri if present on any org to
allow the user finish the setup process.
* The connections app knows how to issue a redirct when the
select-organization route is opened with a `redirect_uri` query parameter.
This can send the user back to the original app once they have completed
the organization selection process and makes exercising the api through
the demo app smoother.
diff --git a/CSharpApp/Controllers/HomeController.cs b/CSharpApp/Controllers/HomeController.cs
@@ -27,11 +27,12 @@ public IActionResult Index()
             _settings.ClientId = _configuration["JDeere:ClientId"];
             _settings.ClientSecret = _configuration["JDeere:ClientSecret"];
             _settings.WellKnown = _configuration["JDeere:WellKnown"];
-            _settings.CallbackUrl = _configuration["JDeere:CallbackUrl"];
+            _settings.ServerUrl = _configuration["JDeere:ServerUrl"];
+            _settings.CallbackUrl = _settings.ServerUrl + _configuration["JDeere:Callback"];
             _settings.Scopes = _configuration["JDeere:Scopes"];
             _settings.State = _configuration["JDeere:State"];
             _settings.APIURL = _configuration["JDeere:ApiUrl"];
-            
+
             ViewBag.Settings = _settings;
 
             return View();
@@ -87,6 +88,12 @@ public async Task<IActionResult> Callback(string code, string state)
             var responseContent = await response.Content.ReadAsStringAsync();
             _settings.AccessToken = JsonConvert.DeserializeObject<Token>(responseContent);
 
+            string organizationAccessUrl = await NeedsOrganizationAccess();
+            if (organizationAccessUrl != null)
+            {
+                return Redirect(organizationAccessUrl);
+            }
+
             ViewBag.Settings = _settings;
 
             return View("Index");
@@ -165,6 +172,36 @@ private async Task<HttpResponseMessage> SecuredApiGetRequest(string url)
 
             return await client.GetAsync(url);
         }
+
+        /// <summary>Check to see if the 'connections' rel is present for any organization.
+        /// If the rel is present it means the oauth application has not completed it's
+        /// access to an organization and must redirect the user to the uri provided
+        /// in the link.</summary>
+        /// <returns>A redirect uri if the <code>connections</code>
+        /// connections rel is present or <null> if no redirect is
+        /// required to finish the setup.</returns>
+        private async Task<string> NeedsOrganizationAccess()
+        {
+            var response = await SecuredApiGetRequest(_settings.APIURL + "/organizations");
+
+            response.EnsureSuccessStatusCode();
+            var responseContent = await response.Content.ReadAsStringAsync();
+            var dynorg = JsonConvert.DeserializeObject<dynamic>(responseContent);
+
+            foreach (var organization in dynorg.values)
+            {
+                foreach (var link in organization.links)
+                {
+                    string rel = link.rel;
+                    if (rel == "connections")
+                    {
+                        string connectionsLink = link.uri;
+                        return QueryHelpers.AddQueryString(connectionsLink, "redirect_uri", _settings.ServerUrl);
+                    }
+                }
+            }
+            return null;
+        }
     }
 }
 
diff --git a/CSharpApp/Models/JDeere.cs b/CSharpApp/Models/JDeere.cs
@@ -1,10 +1,11 @@
-﻿namespace CSharpApp.Models 
+﻿namespace CSharpApp.Models
 {
     public class JDeere
     {
         public string ClientId { get; set; }
         public string ClientSecret { get; set; }
         public string WellKnown { get; set; }
+        public string ServerUrl { get; set; }
         public string CallbackUrl { get; set; }
         public Token AccessToken { get; set; }
         public string Scopes { get; set; }
diff --git a/CSharpApp/appsettings.json b/CSharpApp/appsettings.json
@@ -13,7 +13,8 @@
     "ApiUrl": "https://sandboxapi.deere.com/platform",
     "Scopes": "openid profile offline_access ag1 eq1",
     "State": "test state",
-    "CallbackUrl": "http://localhost:9090/callback"
+    "ServerUrl": "http://localhost:9090",
+    "Callback": "/callback"
   },
   "AllowedHosts": "*"
 }

Original file line number	Diff line number	Diff line change
`@@ -1,10 +1,11 @@`
`1`		`-namespace CSharpApp.Models`
	`1`	`+namespace CSharpApp.Models`
`2`	`2`	`{`
`3`	`3`	`public class JDeere`
`4`	`4`	`{`
`5`	`5`	`public string ClientId { get; set; }`
`6`	`6`	`public string ClientSecret { get; set; }`
`7`	`7`	`public string WellKnown { get; set; }`
	`8`	`+ public string ServerUrl { get; set; }`
`8`	`9`	`public string CallbackUrl { get; set; }`
`9`	`10`	`public Token AccessToken { get; set; }`
`10`	`11`	`public string Scopes { get; set; }`