Fix API client in QbPackParser

sherryhli · sherryhli · commit ad8d54f95e67 · 2019-08-27T20:25:15.000-04:00
diff --git a/QbPackParser/APIClient/QbQuestionsClient.cs b/QbPackParser/APIClient/QbQuestionsClient.cs
@@ -1,4 +1,8 @@
+using Microsoft.Azure.KeyVault;
+using Microsoft.Azure.KeyVault.Models;
+using Microsoft.Azure.Services.AppAuthentication;
 using System.Net.Http;
+using System.Net.Http.Headers;
 using System.Text;
 using System.Threading.Tasks;
 
@@ -18,8 +22,32 @@ public QbQuestionsClient() : base()
         /// <param name="content">The questions to add in the form of a JSON array</param>
         public async Task<HttpResponseMessage> AddQuestionsToDbAsync(string content)
         {
+            HttpResponseMessage authorizationResponse = await GetAuthorization();
+            string token = await authorizationResponse.Content.ReadAsStringAsync();
+            DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", token);
             StringContent stringContent = new StringContent(content, Encoding.UTF8, "application/json");
-            return await PostAsync("qbquestions", stringContent);
+            return await PostAsync("api/qbquestions", stringContent);
+        }
+
+        // TODO: Refactor to use refresh token
+        /// <summary>Gets the authorization information.</summary>
+        private async Task<HttpResponseMessage> GetAuthorization()
+        {
+            string username = await GetKeyVaultSecret("https://extriviaganza-vault.vault.azure.net/secrets/QbQuestionsUsername");
+            string password = await GetKeyVaultSecret("https://extriviaganza-vault.vault.azure.net/secrets/QbQuestionsPassword");
+            string content = "{\"username\":\"" + username + "\",\"password\":\"" + password + "\"}";
+            StringContent stringContent = new StringContent(content, Encoding.UTF8, "application/json");
+            return await PostAsync("api/authenticate", stringContent);
+        }
+
+        /// <summary>Retrieves a secret from Azure Key Vault</summary>
+        /// <param name="secretId">The secret's identifier in Azure Key Vault</param>
+        private async Task<string> GetKeyVaultSecret(string secretId)
+        {
+            AzureServiceTokenProvider azureServiceTokenProvider = new AzureServiceTokenProvider();
+            KeyVaultClient keyVaultClient = new KeyVaultClient(new KeyVaultClient.AuthenticationCallback(azureServiceTokenProvider.KeyVaultTokenCallback));
+            SecretBundle secret = await keyVaultClient.GetSecretAsync(secretId).ConfigureAwait(false);
+            return secret.Value;
         }
     }
 }
diff --git a/QbPackParser/QbPackParser.csproj b/QbPackParser/QbPackParser.csproj
@@ -6,6 +6,8 @@
   </PropertyGroup>
 
   <ItemGroup>
+    <PackageReference Include="Microsoft.Azure.KeyVault" Version="3.0.4" />
+    <PackageReference Include="Microsoft.Azure.Services.AppAuthentication" Version="1.3.1" />
     <PackageReference Include="Newtonsoft.Json" Version="12.0.2" />
   </ItemGroup>
 
