Incorporating feedback and code refactoring (core)

Author: andretms

JavaScriptSPA/app.js

@@ -1,68 +1,47 @@
-
-var graphAPIMeEndpoint = "https://graph.microsoft.com/v1.0/me";
+// Graph API endpoint to show user profile
+var graphApiEndpoint = "https://graph.microsoft.com/v1.0/me";
+
+// Graph API scope used to obtain the access token to read user profile
 var graphAPIScopes = ["https://graph.microsoft.com/user.read"];
 
 // Initialize application
-var userAgentApplication = new Msal.UserAgentApplication(msalconfig.clientID, null, displayUserInfo, {
+var userAgentApplication = new Msal.UserAgentApplication(msalconfig.clientID, null, loginCallback, {
     redirectUri: msalconfig.redirectUri
 });
 
 //Previous version of msal uses redirect url via a property
-if (userAgentApplication.redirectUri) userAgentApplication.redirectUri = msalconfig.redirectUri;
+if (userAgentApplication.redirectUri) {
+    userAgentApplication.redirectUri = msalconfig.redirectUri;
+}
 
-var user = userAgentApplication.getUser();
 window.onload = function () {
-    //Add support to display user info in case of reload of the page
+    // If page is refreshed, continue to display user info
     if (!userAgentApplication.isCallback(window.location.hash) && window.parent === window && !window.opener) {
+        var user = userAgentApplication.getUser();
         if (user) {
-            displayUserInfo();
+            callGraphApi();
         }
     }
-
 }
 
-/**
- * Display the results from Web API call in json format
- * 
- * @param {object} data - Results from API call
- * @param {object} token - The access token
- * @param {object} responseElement - HTML element to show the results
- * @param {object} showTokenElement - HTML element to show the RAW token
- */
-function showAPIResponse(data, token, responseElement, showTokenElement) {
-    console.log(data);
-    responseElement.innerHTML = JSON.stringify(data, null, 4);
-    if (showTokenElement) {
-        showTokenElement.parentElement.classList.remove("hidden");
-        showTokenElement.innerHTML = token;
-    }
-}
-
-/**
- * Show an error message in the page
- * @param {any} endpoint - the endpoint used for the error message
- * @param {any} error - the error string
- * @param {any} errorElement - the HTML element in the page to display the error
- */
-function showError(endpoint, error, errorElement) {
-    console.error(error);
-    var formattedError = JSON.stringify(error, null, 4);
-    if (formattedError.length < 3) {
-        formattedError = error;
-    }
-    errorElement.innerHTML = "Error calling " + endpoint + ": " + formattedError;
-}
 
 /**
- * Displays user information based on the information contained in the id token
- * And also calls the method to display the user profile via Microsoft Graph API
+ * Call the Microsoft Graph API and display the results on the page
  */
-function displayUserInfo() {
+function callGraphApi() {
     var user = userAgentApplication.getUser();
     if (!user) {
-        //If user is not signed in, then prompt user to sing-in via loginRedirect
+        // If user is not signed in, then prompt user to sign in via loginRedirect.
+        // This will redirect user to the Azure Active Directory v2 Endpoint
         userAgentApplication.loginRedirect(graphAPIScopes);
+
+        // The call to loginRedirect above frontloads the consent to query Graph API during the sign-in.
+        // If you want to use dynamic consent, just remove the graphAPIScopes from loginRedirect call:
+        // As such, user will be prompted to give consent as soon as the token for a resource that 
+        // he/she hasn't consented before is requested. In the case of this application - 
+        // the first time the Graph API call to obtain user's profile is executed.
     } else {
+
         // If user is already signed in, display the user info
         var userInfoElement = document.getElementById("userInfo");
         userInfoElement.parentElement.classList.remove("hidden");
@@ -71,59 +50,60 @@ function displayUserInfo() {
         // Show Sign-Out button
         document.getElementById("signOutButton").classList.remove("hidden");
 
-        //Now Call Graph API to show the user profile information
-        callGraphAPI();
+        // Now Call Graph API to show the user profile information:
+        var graphCallResponseElement = document.getElementById("graphResponse");
+        graphCallResponseElement.parentElement.classList.remove("hidden");
+        graphCallResponseElement.innerText = "Calling Graph ...";
+
+        // In order to call the Graph API, an access token needs to be acquired.
+        // Try to acquire the token used to Query Graph API silently first
+        userAgentApplication.acquireTokenSilent(graphAPIScopes)
+            .then(function (token) {
+                //After the access token is acquired, call the Web API, sending the acquired token
+                callWebApiWithToken(graphApiEndpoint, token, graphCallResponseElement, document.getElementById("accessToken"));
+
+            }, function (error) {
+                // If the acquireTokenSilent() method fails, then acquire the token interactively via acquireTokenRedirect().
+                // In this case, the browser will redirect user back to the Azure Active Directory v2 Endpoint so the user 
+                // can re-type the current username and password and/ or give consent to new permissions your application is requesting.
+                // After authentication/ authorization completes, this page will be reloaded again and callGraphApi() will be called.
+                // Then, acquireTokenSilent will then acquire the token silently, the Graph API call results will be made and results will be displayed in the page.
+                if (error) {
+                    userAgentApplication.acquireTokenRedirect(graphAPIScopes);
+                }
+            });
+
     }
 }
 
 /**
- * Call the Microsoft Graph API and display the results on the page
+ * Show an error message in the page
+ * @param {string} endpoint - the endpoint used for the error message
+ * @param {string} error - the error string
+ * @param {object} errorElement - the HTML element in the page to display the error
  */
-function callGraphAPI() {
-    var user = userAgentApplication.getUser();
-    if (user) {
-        var responseElement = document.getElementById("graphResponse");
-        responseElement.parentElement.classList.remove("hidden");
-        responseElement.innerText = "Calling Graph ...";
-        callWebApiWithScope(graphAPIMeEndpoint,
-            graphAPIScopes,
-            responseElement,
-            document.getElementById("errorMessage"),
-            document.getElementById("accessToken"));
-    } else {
-        showError(graphAPIMeEndpoint, "User has not signed-in", document.getElementById("errorMessage"));
+function showError(endpoint, error, errorDesc) {
+    var formattedError = JSON.stringify(error, null, 4);
+    if (formattedError.length < 3) {
+        formattedError = error;
     }
+    document.getElementById("errorMessage").innerHTML = "An error has occurred:<br/>Endpoint: " + endpoint + "<br/>Error: " + formattedError + "<br/>" + errorDesc;
+    console.error(error);
 }
 
 /**
- * Call a Web API that requires scope, then display the response
- * 
- * @param {string} endpoint - The Web API endpoint
- * @param {object} scope - An array containing the API scopes
- * @param {object} responseElement - HTML element used to display the results
- * @param {object} errorElement = HTML element used to display an error message
- * @param {object} showTokenElement = HTML element used to display the RAW access token
+ * Callback method from sign-in: if no errors, call callGraphApi() to show results.
+ * @param {string} errorDesc - If error occur, the error message
+ * @param {object} token - The token received from login
+ * @param {object} error - The error 
+ * @param {string} tokenType - the token type: usually id_token
  */
-function callWebApiWithScope(endpoint, scope, responseElement, errorElement, showTokenElement) {
-    //Try to acquire the token silently first
-    userAgentApplication.acquireTokenSilent(scope)
-        .then(function (token) {
-            //After the access token is acquired, call the Web API, sending the acquired token
-            callWebApiWithToken(endpoint, token, responseElement, errorElement, showTokenElement);
-        }, function (error) {
-            //If the acquireTokenSilent fails, then acquire the token interactively via acquireTokenPopup
-            if (error) {
-                userAgentApplication.acquireTokenPopup(scope).then(function (token) {
-                        //After the access token is acquired, call the Web API, sending the acquired token
-                        callWebApiWithToken(endpoint, token, responseElement, errorElement, showTokenElement);
-                    },
-                    function (error) {
-                        showError(endpoint, error, errorElement);
-                    });
-            } else {
-                showError(endpoint, error, errorElement);
-            }
-        });
+function loginCallback(errorDesc, token, error, tokenType) {
+    if (errorDesc) {
+        showError(msal.authority, error, errorDesc);
+    } else {
+        callGraphApi();
+    }
 }
 
 /**
@@ -132,10 +112,9 @@ function callWebApiWithScope(endpoint, scope, responseElement, errorElement, sho
  * @param {any} endpoint - Web API endpoint
  * @param {any} token - Access token
  * @param {object} responseElement - HTML element used to display the results
- * @param {object} errorElement = HTML element used to display an error message
  * @param {object} showTokenElement = HTML element used to display the RAW access token
  */
-function callWebApiWithToken(endpoint, token, responseElement, errorElement, showTokenElement) {
+function callWebApiWithToken(endpoint, token, responseElement, showTokenElement) {
     var headers = new Headers();
     var bearer = "Bearer " + token;
     headers.append("Authorization", bearer);
@@ -144,35 +123,40 @@ function callWebApiWithToken(endpoint, token, responseElement, errorElement, sho
         headers: headers
     };
 
-    // Note that fetch API is not available in all browsers
     fetch(endpoint, options)
         .then(function (response) {
             var contentType = response.headers.get("content-type");
             if (response.status === 200 && contentType && contentType.indexOf("application/json") !== -1) {
                 response.json()
                     .then(function (data) {
                         // Display response in the page
-                        showAPIResponse(data, token, responseElement, showTokenElement);
+                        console.log(data);
+                        responseElement.innerHTML = JSON.stringify(data, null, 4);
+                        if (showTokenElement) {
+                            showTokenElement.parentElement.classList.remove("hidden");
+                            showTokenElement.innerHTML = token;
+                        }
                     })
                     .catch(function (error) {
-                        showError(endpoint, error, errorElement);
+                        showError(endpoint, error);
                     });
             } else {
                 response.json()
                     .then(function (data) {
-                        // Display response in the page
-                        showError(endpoint, data, errorElement);
+                        // Display response as error in the page
+                        showError(endpoint, data);
                     })
                     .catch(function (error) {
-                        showError(endpoint, error, errorElement);
+                        showError(endpoint, error);
                     });
             }
         })
         .catch(function (error) {
-            showError(endpoint, error, errorElement);
+            showError(endpoint, error);
         });
 }
 
+
 /**
  * Sign-out the user
  */

JavaScriptSPA/index.html

@@ -1,34 +1,37 @@
 <!DOCTYPE html>
 <html>
 <head>
+    <!-- bootstrap reference used for styling the page -->
     <link href="//maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css" rel="stylesheet">
     <title>JavaScript SPA Guided Setup</title>
 </head>
 <body style="margin: 40px">
-<button id="callGraphButton" type="button" class="btn btn-primary" onclick="displayUserInfo()">Call Microsoft Graph API</button>
-<div id="errorMessage" class="text-danger"></div>
-<div class="hidden">
-    <h3>Graph API Call Response</h3>
-    <pre class="well" id="graphResponse"></pre>
-</div>
-<div class="hidden">
-    <h3>Access Token</h3>
-    <pre class="well" id="accessToken"></pre>
-</div>
-<div class="hidden">
-    <h3>ID Token Claims</h3>
-    <pre class="well" id="userInfo"></pre>
-</div>
-<button id="signOutButton" type="button" class="btn btn-primary hidden" onclick="signOut()">Sign out</button>
+    <button id="callGraphButton" type="button" class="btn btn-primary" onclick="callGraphApi()">Call Microsoft Graph API</button>
+    <div id="errorMessage" class="text-danger"></div>
+    <div class="hidden">
+        <h3>Graph API Call Response</h3>
+        <pre class="well" id="graphResponse"></pre>
+    </div>
+    <div class="hidden">
+        <h3>Access Token</h3>
+        <pre class="well" id="accessToken"></pre>
+    </div>
+    <div class="hidden">
+        <h3>ID Token Claims</h3>
+        <pre class="well" id="userInfo"></pre>
+    </div>
+    <button id="signOutButton" type="button" class="btn btn-primary hidden" onclick="signOut()">Sign out</button>
 
-<script src="//secure.aadcdn.microsoftonline-p.com/lib/0.1.1/js/msal.min.js"></script>
-<script type="text/javascript" src="msalconfig.js"></script>
+    <!-- This app uses cdn to reference msal.js (recommended). 
+         You can also download it from: https://github.com/AzureAD/microsoft-authentication-library-for-js -->
+    <script src="//secure.aadcdn.microsoftonline-p.com/lib/0.1.1/js/msal.min.js"></script>
+    <!--<script type="text/javascript" src="msal.js"></script>-->
+    <script type="text/javascript" src="msalconfig.js"></script>
 
-<!-- The 'bluebird' and 'fetch' references below are required if you need to run this application on Internet Explorer -->
-<script src="//cdnjs.cloudflare.com/ajax/libs/bluebird/3.3.4/bluebird.min.js"></script>
-<script src="//cdnjs.cloudflare.com/ajax/libs/fetch/2.0.3/fetch.min.js"></script>
-    
-<script type="text/javascript" src="app.js"></script>
+    <!-- The 'bluebird' and 'fetch' references below are required if you need to run this application on Internet Explorer -->
+    <script src="//cdnjs.cloudflare.com/ajax/libs/bluebird/3.3.4/bluebird.min.js"></script>
+    <script src="//cdnjs.cloudflare.com/ajax/libs/fetch/2.0.3/fetch.min.js"></script>
 
+    <script type="text/javascript" src="app.js"></script>
 </body>
 </html>