Last active
April 25, 2019 19:37
-
-
Save ahelland/28cc85cc8d458d570bc73df89b26bd2e to your computer and use it in GitHub Desktop.
Azure Function - B2C HRD Lookup
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #r "Newtonsoft.Json" | |
| using System; | |
| using System.Net; | |
| using System.Net.Http.Formatting; | |
| using Newtonsoft.Json; | |
| public static async Task<object> Run(HttpRequestMessage request, TraceWriter log) | |
| { | |
| log.Info($"Webhook was triggered!"); | |
| string requestContentAsString = await request.Content.ReadAsStringAsync(); | |
| dynamic requestContentAsJObject = JsonConvert.DeserializeObject(requestContentAsString); | |
| log.Info($"Request: {requestContentAsString}"); | |
| if (requestContentAsJObject.emailAddress == null) | |
| { | |
| log.Info($"Empty request"); | |
| return request.CreateResponse(HttpStatusCode.OK); | |
| } | |
| var email = ((string)requestContentAsJObject.emailAddress).ToLower(); | |
| log.Info($"email: {email}"); | |
| char splitter = '@'; | |
| string[] splitEmail = email.Split(splitter); | |
| var emailSuffix = splitEmail[1]; | |
| //For the "aad" identity provider | |
| if (email == "bar@foo.com") | |
| { | |
| log.Info($"Identity Provider: aad"); | |
| return request.CreateResponse<ResponseContent>( | |
| HttpStatusCode.OK, | |
| new ResponseContent | |
| { | |
| version = "1.0.0", | |
| status = (int)HttpStatusCode.OK, | |
| userMessage = $"Your account is a generic Azure AD account.", | |
| idp = "aad", | |
| signInName = email | |
| }, | |
| new JsonMediaTypeFormatter(), | |
| "application/json"); | |
| } | |
| //For B2C local accounts | |
| if (email == "foo@bar.com") | |
| { | |
| log.Info($"Identity Provider: local"); | |
| return request.CreateResponse<ResponseContent>( | |
| HttpStatusCode.OK, | |
| new ResponseContent | |
| { | |
| version = "1.0.0", | |
| status = (int)HttpStatusCode.OK, | |
| userMessage = $"Your account seems to be a local account.", | |
| idp = "local", | |
| signInName = email | |
| }, | |
| new JsonMediaTypeFormatter(), | |
| "application/json"); | |
| } | |
| //For Contoso AAD accounts | |
| if (emailSuffix == "contoso.com") | |
| { | |
| log.Info($"Identity Provider: contoso"); | |
| return request.CreateResponse<ResponseContent>( | |
| HttpStatusCode.OK, | |
| new ResponseContent | |
| { | |
| version = "1.0.0", | |
| status = (int)HttpStatusCode.OK, | |
| userMessage = $"Your account belongs to the Contoso Identity Provider", | |
| idp = "contoso", | |
| signInName = email | |
| }, | |
| new JsonMediaTypeFormatter(), | |
| "application/json"); | |
| } | |
| else | |
| { | |
| log.Info($"Identity Provider: none"); | |
| return request.CreateResponse<BlankContent>( | |
| HttpStatusCode.OK, | |
| new BlankContent | |
| { | |
| status = (int)HttpStatusCode.OK, | |
| signInName = email | |
| }, | |
| new JsonMediaTypeFormatter(), | |
| "application/json"); | |
| } | |
| } | |
| //Default responses where there is no match | |
| public class BlankContent | |
| { | |
| public int status { get; set; } | |
| public string signInName { get; set; } | |
| } | |
| //For responses where there is an IdP matching | |
| public class ResponseContent | |
| { | |
| public string version { get; set; } | |
| public int status { get; set; } | |
| public string userMessage { get; set; } | |
| public string idp { get; set; } | |
| public string signInName { get; set; } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment