[Security] Add AAD sign out capability for sample app (#5310)

jimchou-dev · web-flow · commit 458786efbb0e · 2024-11-04T14:35:07.000-08:00
diff --git a/.github/workflows/deploy-azure-webapps.yml b/.github/workflows/deploy-azure-webapps.yml
@@ -42,6 +42,12 @@ jobs:
       - name: Install Rush
         run: npm install -g @microsoft/rush@$(jq -r '.rushVersion' "rush.json")
 
+      - name: Inject AAD signout html for sample App
+        run: |
+          node ./common/scripts/inject-signout-html.mjs Calling
+          node ./common/scripts/inject-signout-html.mjs Chat
+          node ./common/scripts/inject-signout-html.mjs CallWithChat
+
       - name: Set commit SHA as environment variable
         run: echo "REACT_APP_COMMIT_SHA=${GITHUB_SHA::7}" >> $GITHUB_ENV
 
diff --git a/change-beta/@azure-communication-react-1e398edd-86c6-42bd-a9bc-cf2b8ed7b41b.json b/change-beta/@azure-communication-react-1e398edd-86c6-42bd-a9bc-cf2b8ed7b41b.json
@@ -0,0 +1,9 @@
+{
+  "type": "patch",
+  "area": "improvement",
+  "workstream": "sample-app-aad",
+  "comment": "Add AAD sign out capability for sample app",
+  "packageName": "@azure/communication-react",
+  "email": "77021369+jimchou-dev@users.noreply.github.com",
+  "dependentChangeType": "patch"
+}
diff --git a/change/@azure-communication-react-1e398edd-86c6-42bd-a9bc-cf2b8ed7b41b.json b/change/@azure-communication-react-1e398edd-86c6-42bd-a9bc-cf2b8ed7b41b.json
@@ -0,0 +1,9 @@
+{
+  "type": "patch",
+  "area": "improvement",
+  "workstream": "sample-app-aad",
+  "comment": "Add AAD sign out capability for sample app",
+  "packageName": "@azure/communication-react",
+  "email": "77021369+jimchou-dev@users.noreply.github.com",
+  "dependentChangeType": "patch"
+}
diff --git a/common/scripts/inject-signout-html.mjs b/common/scripts/inject-signout-html.mjs
@@ -0,0 +1,96 @@
+#!/usr/bin/env node
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT License.
+
+import { REPO_ROOT } from './lib/index.mjs';
+import { readFileSync, writeFileSync } from 'fs';
+import path from 'path';
+
+
+const MATRIX_JSON = path.join(REPO_ROOT, 'common', 'config', 'workflows', 'matrix.json');
+
+/**
+ * This script injects sign-out html logic as part of CI pipeline.
+ * 
+ * In uri query parameter add '&hideSignout=true' to hide the signout bar/button.
+ * 
+ * Usage: node inject-signout-html.mjs <Calling/CallWithChat/Chat>
+ */
+function main(args) {
+  const target = args[2]
+  if (target !== 'Calling' && target !== 'CallWithChat' && target !== 'Chat') {
+    throw new Error(`Usage: ${args[1]} ['Calling' | 'CallWithChat' | 'Chat']\n`);
+  }
+  const indexHtmlPath = path.join(REPO_ROOT, 'samples', target, 'public', 'index.html');
+  injectSignoutToIndexHtmlFile(indexHtmlPath);
+}
+
+function injectSignoutToIndexHtmlFile(filePath) {
+    const bodySearchString = '<div id="root" class="Root"></div>';
+    const headSearchString = '</head>';
+    const styles = `  <style>
+      .signout-bar {
+          display: flex;
+          background-color: #0078d4;
+          color: white;
+          padding: 10px;
+      }
+  
+      .signout-button {
+          margin-left: auto;
+          background-color: white;
+          color: black;
+          border: 1px solid;
+          border-radius: 2px;
+          cursor: pointer;
+          font-size: 16px;
+          padding: 8px 16px;
+          transition: background-color 0.3s, color 0.3s, border-color 0.3s;
+      }
+  
+      .signout-button:hover {
+          background-color: #f3f2f1;
+          border-color: #005a9e;
+      }
+  
+      .signout-button:focus {
+          outline: none;
+          box-shadow: 0 0 0 2px rgba(0, 120, 212, 0.5);
+      }
+  
+      .signout-button:active {
+          background-color: #e0e0e0;
+      }
+    </style>
+  </head>`
+    const content = `<div id="signout-container">
+      <div id="signout-bar" class="signout-bar" style="display: flex;">
+        <button id="signoutButton" class="signout-button">Sign Out</button>
+      </div>
+    </div>
+    <div id="root" class="Root"></div>
+    <script>
+      // Ignore: for internal testing only
+      function handleSignOut() {
+        console.log("You have signed out!");
+        window.location.href = window.location.origin + '/.auth/logout';
+      }
+      document.getElementById('signoutButton').addEventListener('click', handleSignOut);
+
+      const urlQueryParameters = new URLSearchParams(window.location.search);
+      const display = urlQueryParameters.get('hideSignout') === 'true' ? 'none' : 'flex';          
+      document.getElementById('signout-bar').style.display = display;
+    </script>`;
+    try {
+        const fileContent = readFileSync(filePath, 'utf-8');
+        const updatedContent = fileContent
+            .replace(new RegExp(bodySearchString, 'g'), content)
+            .replace(new RegExp(headSearchString, 'g'), styles);
+        writeFileSync(filePath, updatedContent, 'utf-8');
+        console.log(`Successfully replaced "${bodySearchString}" and "${headSearchString}" with signout logic in ${filePath}`);
+    } catch (error) {
+        console.error('Error processing the file:', error);
+    }
+}
+
+main(process.argv);
diff --git a/samples/CallWithChat/public/index.html b/samples/CallWithChat/public/index.html
@@ -21,6 +21,10 @@
       script.src = 'https://cdn.jsdelivr.net/npm/react-render-tracker';
       document.head.appendChild(script);
     </script>
+    <style>
+      body { display: flex; flex-direction: column; height: auto; }
+      #Root { flex: 1; }
+    </style>
   </head>
 
   <body>
diff --git a/samples/Calling/public/index.html b/samples/Calling/public/index.html
@@ -21,10 +21,14 @@
       script.src = 'https://cdn.jsdelivr.net/npm/react-render-tracker';
       document.head.appendChild(script);
     </script>
+    <style>
+      body { display: flex; flex-direction: column; height: auto; }
+      #Root { flex: 1; }
+    </style>
   </head>
 
   <body>
-    <main id="root" class="Root"></main>
+    <div id="root" class="Root"></div>
     <script type="text/javascript">
       window.FabricConfig = {};
     </script>
diff --git a/samples/Chat/public/index.html b/samples/Chat/public/index.html
@@ -22,7 +22,12 @@
       script.src = 'https://cdn.jsdelivr.net/npm/react-render-tracker';
       document.head.appendChild(script);
     </script>
+    <style>
+      body { display: flex; flex-direction: column; height: auto; }
+      #Root { flex: 1; }
+    </style>
   </head>
+
   <body>
     <div id="root" class="Root"></div>
     <script type="text/javascript">
diff --git a/samples/Chat/src/app/ChatHeader.tsx b/samples/Chat/src/app/ChatHeader.tsx
@@ -30,7 +30,7 @@ export interface ChatHeaderProps extends PeopleButtonProps {
 export const ChatHeader = (props: ChatHeaderProps): JSX.Element => {
   const theme = useTheme();
 
-  const leaveString = 'Leave';
+  const leaveString = 'Leave Chat';
   return (
     <Stack
       horizontal={true}
diff --git a/samples/Chat/src/app/styles/ChatHeader.styles.ts b/samples/Chat/src/app/styles/ChatHeader.styles.ts
@@ -15,7 +15,7 @@ export const chatHeaderContainerStyle = mergeStyles({
 
 export const leaveButtonStyle = mergeStyles({
   marginRight: '0.625rem',
-  width: '6.688rem',
+  width: '8rem',
   borderWidth: '0.125rem',
   fontSize: '0.875rem', // 14px
   fontWeight: 600
