Add support for storage token auth (Azure#15509)

Author: pakrym

sdk/extensions/Microsoft.Extensions.Azure/api/Microsoft.Extensions.Azure.netstandard2.0.cs

@@ -27,6 +27,12 @@ public static partial class AzureClientServiceCollectionExtensions
     {
         public static void AddAzureClients(this Microsoft.Extensions.DependencyInjection.IServiceCollection collection, System.Action<Microsoft.Extensions.Azure.AzureClientFactoryBuilder> configureClients) { }
     }
+    public abstract partial class AzureComponentFactory
+    {
+        protected AzureComponentFactory() { }
+        public abstract object CreateClientOptions(System.Type optionsType, object serviceVersion, Microsoft.Extensions.Configuration.IConfiguration configuration);
+        public abstract Azure.Core.TokenCredential CreateCredential(Microsoft.Extensions.Configuration.IConfiguration configuration);
+    }
     public partial interface IAzureClientFactory<TClient>
     {
         TClient CreateClient(string name);

sdk/extensions/Microsoft.Extensions.Azure/src/AzureClientFactoryBuilder.cs

@@ -26,6 +26,7 @@ internal AzureClientFactoryBuilder(IServiceCollection serviceCollection)
             _serviceCollection.AddOptions();
             _serviceCollection.TryAddSingleton<EventSourceLogForwarder>();
             _serviceCollection.TryAddSingleton(typeof(IAzureClientFactory<>), typeof(FallbackAzureClientFactory<>));
+            _serviceCollection.TryAddSingleton<AzureComponentFactory, AzureComponentFactoryImpl>();
         }
 
         IAzureClientBuilder<TClient, TOptions> IAzureClientFactoryBuilder.RegisterClientFactory<TClient, TOptions>(Func<TOptions, TClient> clientFactory)

sdk/extensions/Microsoft.Extensions.Azure/src/Internal/AzureClientFactory.cs

@@ -19,6 +19,7 @@ internal class AzureClientFactory<TClient, TOptions>: IAzureClientFactory<TClien
         private readonly IOptionsMonitor<TOptions> _monitor;
 
         private readonly EventSourceLogForwarder _logForwarder;
+        private readonly AzureComponentFactory _componentFactory;
         private FallbackAzureClientFactory<TClient> _fallbackFactory;
 
         public AzureClientFactory(
@@ -27,7 +28,8 @@ public AzureClientFactory(
             IOptionsMonitor<AzureClientCredentialOptions<TClient>> clientsOptions,
             IEnumerable<ClientRegistration<TClient>> clientRegistrations,
             IOptionsMonitor<TOptions> monitor,
-            EventSourceLogForwarder logForwarder)
+            EventSourceLogForwarder logForwarder,
+            AzureComponentFactory componentFactory)
         {
             _clientRegistrations = new Dictionary<string, ClientRegistration<TClient>>();
             foreach (var registration in clientRegistrations)
@@ -40,6 +42,7 @@ public AzureClientFactory(
             _clientsOptions = clientsOptions;
             _monitor = monitor;
             _logForwarder = logForwarder;
+            _componentFactory = componentFactory;
         }
 
         public TClient CreateClient(string name)
@@ -48,8 +51,11 @@ public TClient CreateClient(string name)
 
             if (!_clientRegistrations.TryGetValue(name, out ClientRegistration<TClient> registration))
             {
-                _fallbackFactory ??= new FallbackAzureClientFactory<TClient>(_globalOptions, _serviceProvider, _logForwarder);
-
+                _fallbackFactory ??= new FallbackAzureClientFactory<TClient>(
+                    _globalOptions,
+                    _serviceProvider,
+                    _componentFactory,
+                    _logForwarder);
                 return _fallbackFactory.CreateClient(name);
             }
 

sdk/extensions/Microsoft.Extensions.Azure/src/Internal/AzureComponentFactory.cs

@@ -0,0 +1,29 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+using System;
+using Azure.Core;
+using Microsoft.Extensions.Configuration;
+
+namespace Microsoft.Extensions.Azure
+{
+    /// <summary>
+    /// Exposes methods to create various Azure client related types.
+    /// </summary>
+    public abstract class AzureComponentFactory
+    {
+        /// <summary>
+        /// Creates an instance of <see cref="TokenCredential"/> from the provided <see cref="IConfiguration"/> object or returns a current default.
+        /// </summary>
+        public abstract TokenCredential CreateCredential(IConfiguration configuration);
+
+        /// <summary>
+        /// Creates an instance of a client options type while applying the global and configuration settings to it.
+        /// </summary>
+        /// <param name="optionsType">Type of the options.</param>
+        /// <param name="serviceVersion">The value of ServiceVersion enum to use, null to use the default.</param>
+        /// <param name="configuration">The <see cref="IConfiguration"/> instance to apply to options.</param>
+        /// <returns>A new instance of <paramref name="optionsType"/>.</returns>
+        public abstract object CreateClientOptions(Type optionsType, object serviceVersion, IConfiguration configuration);
+    }
+}

sdk/extensions/Microsoft.Extensions.Azure/src/Internal/AzureComponentFactoryImpl.cs

@@ -0,0 +1,43 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+using System;
+using Azure.Core;
+using Microsoft.Extensions.Configuration;
+using Microsoft.Extensions.Options;
+
+namespace Microsoft.Extensions.Azure
+{
+    internal class AzureComponentFactoryImpl: AzureComponentFactory
+    {
+        private readonly IServiceProvider _serviceProvider;
+        private readonly IOptionsMonitor<AzureClientsGlobalOptions> _globalOptions;
+
+        public AzureComponentFactoryImpl(IOptionsMonitor<AzureClientsGlobalOptions> globalOptions, IServiceProvider serviceProvider)
+        {
+            _serviceProvider = serviceProvider;
+            _globalOptions = globalOptions;
+        }
+
+        /// <inheritdoc />
+        public override TokenCredential CreateCredential(IConfiguration configuration)
+        {
+            return ClientFactory.CreateCredential(configuration) ?? _globalOptions.CurrentValue.CredentialFactory(_serviceProvider);
+        }
+
+        public override object CreateClientOptions(Type optionsType, object serviceVersion, IConfiguration configuration)
+        {
+            var options = ClientFactory.CreateClientOptions(serviceVersion, optionsType);
+
+            if (options is ClientOptions clientOptions)
+            {
+                foreach (var globalConfigureOption in _globalOptions.CurrentValue.ConfigureOptionDelegates)
+                {
+                    globalConfigureOption(clientOptions, _serviceProvider);
+                }
+            }
+            configuration?.Bind(options);
+            return options;
+        }
+    }
+}

sdk/extensions/Microsoft.Extensions.Azure/src/Internal/FallbackAzureClientFactory.cs

@@ -14,8 +14,7 @@ namespace Microsoft.Extensions.Azure
 {
     internal class FallbackAzureClientFactory<TClient>: IAzureClientFactory<TClient>
     {
-        private readonly AzureClientsGlobalOptions _globalOptions;
-        private readonly IServiceProvider _serviceProvider;
+        private readonly AzureComponentFactory _componentFactory;
         private readonly EventSourceLogForwarder _logForwarder;
         private readonly Dictionary<string, FallbackClientRegistration<TClient>> _clientRegistrations;
         private readonly Type _clientOptionType;
@@ -25,12 +24,12 @@ internal class FallbackAzureClientFactory<TClient>: IAzureClientFactory<TClient>
         public FallbackAzureClientFactory(
             IOptionsMonitor<AzureClientsGlobalOptions> globalOptions,
             IServiceProvider serviceProvider,
+            AzureComponentFactory componentFactory,
             EventSourceLogForwarder logForwarder)
         {
-            _serviceProvider = serviceProvider;
-            _globalOptions = globalOptions.CurrentValue;
-            _configurationRoot = _globalOptions.ConfigurationRootResolver?.Invoke(_serviceProvider);
+            _configurationRoot = globalOptions.CurrentValue.ConfigurationRootResolver?.Invoke(serviceProvider);
 
+            _componentFactory = componentFactory;
             _logForwarder = logForwarder;
             _clientRegistrations = new Dictionary<string, FallbackClientRegistration<TClient>>();
 
@@ -84,8 +83,7 @@ public TClient CreateClient(string name)
 
             var currentOptions = _optionsFactory.CreateOptions(name);
             registration.Configuration.Bind(currentOptions);
-            return registration.GetClient(currentOptions,
-                ClientFactory.CreateCredential(registration.Configuration) ?? _globalOptions.CredentialFactory(_serviceProvider));
+            return registration.GetClient(currentOptions, _componentFactory.CreateCredential(registration.Configuration));
         }
 
 

sdk/storage/Azure.Storage.Webjobs.Extensions.Blobs/tests/BlobConfigurationTests.cs

@@ -0,0 +1,115 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+using System.Collections.Generic;
+using System.Threading.Tasks;
+using Azure.Storage.Blobs.Specialized;
+using Azure.WebJobs.Extensions.Storage.Common.Tests;
+using Microsoft.Azure.WebJobs.Host.TestCommon;
+using Microsoft.Extensions.Azure;
+using Microsoft.Extensions.Configuration;
+using Microsoft.Extensions.Hosting;
+using Xunit;
+
+namespace Microsoft.Azure.WebJobs.Host.FunctionalTests
+{
+    [Collection(AzuriteCollection.Name)]
+    public class BlobConfigurationTests
+    {
+        private readonly AzuriteFixture azuriteFixture;
+
+        public BlobConfigurationTests(AzuriteFixture azuriteFixture)
+        {
+            this.azuriteFixture = azuriteFixture;
+        }
+
+        [Fact]
+        public async Task BlobClient_CanConnect_ConnectionString()
+        {
+            var account = azuriteFixture.GetAzureAccount();
+            var prog = new BindToCloudBlockBlobProgram();
+            IHost host = new HostBuilder()
+                .ConfigureAppConfiguration(cb =>
+                {
+                    cb.AddInMemoryCollection(new Dictionary<string, string>()
+                    {
+                        {"CustomConnection", account.ConnectionString },
+                        {"blobPath", "cscontainer/csblob" }
+                    });
+                })
+                .ConfigureDefaultTestHost(prog, builder =>
+                {
+                    SetupAzurite(builder);
+                    builder.AddAzureStorageBlobs().AddAzureStorageQueues();
+                })
+                .Build();
+
+            var jobHost = host.GetJobHost<BindToCloudBlockBlobProgram>();
+            await jobHost.CallAsync(nameof(BindToCloudBlockBlobProgram.Run));
+
+            var result = prog.Result;
+
+            // Assert
+            Assert.NotNull(result);
+            Assert.Equal("csblob", result.Name);
+            Assert.Equal("cscontainer", result.BlobContainerName);
+            Assert.NotNull(result.BlobContainerName);
+            Assert.False(await result.ExistsAsync());
+        }
+
+        [Fact]
+        public async Task BlobClient_CanConnect_EndPoint()
+        {
+            var account = azuriteFixture.GetAzureAccount();
+            var prog = new BindToCloudBlockBlobProgram();
+            IHost host = new HostBuilder()
+                .ConfigureAppConfiguration(cb =>
+                {
+                    cb.AddInMemoryCollection(new Dictionary<string, string>()
+                    {
+                        {"CustomConnection:endpoint", account.Endpoint },
+                        {"blobPath", "endpointcontainer/endpointblob" }
+                    });
+                })
+                .ConfigureDefaultTestHost(prog, builder =>
+                {
+                    SetupAzurite(builder);
+                    builder.AddAzureStorageBlobs().AddAzureStorageQueues();
+                })
+                .Build();
+
+            var jobHost = host.GetJobHost<BindToCloudBlockBlobProgram>();
+            await jobHost.CallAsync(nameof(BindToCloudBlockBlobProgram.Run));
+
+            var result = prog.Result;
+
+            // Assert
+            Assert.NotNull(result);
+            Assert.Equal("endpointblob", result.Name);
+            Assert.Equal("endpointcontainer", result.BlobContainerName);
+            Assert.NotNull(result.BlobContainerName);
+            Assert.False(await result.ExistsAsync());
+        }
+
+        private void SetupAzurite(IWebJobsBuilder builder)
+        {
+            builder.Services.AddAzureClients(builder =>
+            {
+                builder.UseCredential(azuriteFixture.GetCredential());
+                builder.ConfigureDefaults(options => options.Transport = azuriteFixture.GetTransport());
+            });
+        }
+
+
+        private class BindToCloudBlockBlobProgram
+        {
+            public BlockBlobClient Result { get; set; }
+
+            public void Run(
+                [Blob("%blobPath%", Connection = "CustomConnection")] BlockBlobClient blob)
+            {
+                Result = blob;
+            }
+        }
+    }
+}

sdk/storage/Azure.Storage.Webjobs.Extensions.Common/api/Azure.WebJobs.Extensions.Storage.Common.netstandard2.0.cs

@@ -2,7 +2,7 @@ namespace Microsoft.Azure.WebJobs.Extensions.Storage.Common
 {
     public partial class StorageAccount
     {
-        public StorageAccount(string connectionString, Azure.Storage.Blobs.BlobClientOptions.ServiceVersion? blobServiceVersion = default(Azure.Storage.Blobs.BlobClientOptions.ServiceVersion?), Azure.Storage.Queues.QueueClientOptions.ServiceVersion? queueServiceVersion = default(Azure.Storage.Queues.QueueClientOptions.ServiceVersion?)) { }
+        public StorageAccount(Azure.Storage.Blobs.BlobServiceClient blobServiceClient, Azure.Storage.Queues.QueueServiceClient queueServiceClient) { }
         public virtual string Name { get { throw null; } }
         public virtual Azure.Storage.Blobs.BlobServiceClient CreateBlobServiceClient() { throw null; }
         public virtual Azure.Storage.Queues.QueueServiceClient CreateQueueServiceClient() { throw null; }
@@ -11,7 +11,7 @@ public partial class StorageAccount
     }
     public partial class StorageAccountProvider
     {
-        public StorageAccountProvider(Microsoft.Extensions.Configuration.IConfiguration configuration) { }
+        public StorageAccountProvider(Microsoft.Extensions.Configuration.IConfiguration configuration, Microsoft.Extensions.Azure.AzureComponentFactory componentFactory) { }
         public virtual Microsoft.Azure.WebJobs.Extensions.Storage.Common.StorageAccount Get(string name) { throw null; }
         public Microsoft.Azure.WebJobs.Extensions.Storage.Common.StorageAccount Get(string name, Microsoft.Azure.WebJobs.INameResolver resolver) { throw null; }
         public virtual Microsoft.Azure.WebJobs.Extensions.Storage.Common.StorageAccount GetHost() { throw null; }

sdk/storage/Azure.Storage.Webjobs.Extensions.Common/src/Azure.WebJobs.Extensions.Storage.Common.csproj

@@ -21,6 +21,7 @@
 
   <ItemGroup>
     <!-- TODO (kasobol-msft) change this to PackageReference when stable -->
+    <ProjectReference Include="..\..\..\extensions\Microsoft.Extensions.Azure\src\Microsoft.Extensions.Azure.csproj" />
     <ProjectReference Include="..\..\Azure.Storage.Blobs\src\Azure.Storage.Blobs.csproj" />
     <ProjectReference Include="..\..\Azure.Storage.Queues\src\Azure.Storage.Queues.csproj" />
   </ItemGroup>

sdk/storage/Azure.Storage.Webjobs.Extensions.Common/src/IConfigurationExtensions.cs

@@ -0,0 +1,47 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+using Microsoft.Extensions.Configuration;
+
+namespace Microsoft.Azure.WebJobs.Extensions.Storage.Common
+{
+    internal static class IConfigurationExtensions
+    {
+        public static IConfigurationSection GetWebJobsConnectionStringSection(this IConfiguration configuration, string connectionStringName)
+        {
+            // first try prefixing
+            string prefixedConnectionStringName = GetPrefixedConnectionStringName(connectionStringName);
+            IConfigurationSection section = GetConnectionStringOrSetting(configuration, prefixedConnectionStringName);
+
+            if (!section.Exists())
+            {
+                // next try a direct unprefixed lookup
+                section = GetConnectionStringOrSetting(configuration, connectionStringName);
+            }
+
+            return section;
+        }
+
+        public static string GetPrefixedConnectionStringName(string connectionStringName)
+        {
+            return Constants.WebJobsConfigurationSectionName + connectionStringName;
+        }
+
+        /// <summary>
+        /// Looks for a connection string by first checking the ConfigurationStrings section, and then the root.
+        /// </summary>
+        /// <param name="configuration">The configuration.</param>
+        /// <param name="connectionName">The connection string key.</param>
+        /// <returns></returns>
+        public static IConfigurationSection GetConnectionStringOrSetting(this IConfiguration configuration, string connectionName)
+        {
+            var connectionStringSection = configuration?.GetSection("ConnectionStrings").GetSection(connectionName);
+
+            if (connectionStringSection.Exists())
+            {
+                return connectionStringSection;
+            }
+            return configuration?.GetSection(connectionName);
+        }
+    }
+}