May 10, 2020

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – MS FLOW EMAIL(Part 3 of 3)

Continuing series with more detail on security. Add MS Flow to read REST API data with Azure AD token. MS Flow acts as HTTP client same as end user web browser. MS Flow can execute HTTP POST pair to first download Access Token and then retrieve HTTP JSON data with Azure AD “Bearer” token. Chrome F12 and Postman are essential tools for mapping out HTTP POST format with headers, body, and expected JSON reply schema.

When complete, we have daily MS Flow scheduled email which downloads JSON from WebAPI via secure AzureAD token. Great way to protect API endpoints and provide rich email features. Cheers.

This post is part of series with three posts:

Code

HTTP POST

https://login.microsoftonline.com/spjeff.onmicrosoft.com/oauth2/token

grant_type=client_credentials
&client_id=APP_ID_HERE
&client_secret=APP_SECRET_HERE
&resource=APP_ID_HERE

Video

Screenshots

References

May 10, 2020

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – SECURITY GROUP (Part 2 of 3)

Continuing series with more detail on security. Add C# code to detect Azure AD group membership. When REST API call for data is made to WebAPI HTTPS endpoint we already validate Azure AD authentication token (user part of AAD).

Building upon this, we can add AAD Security Group membership detection for business logic “If user is member of HELLOWORLD group then provide data. Otherwise access denied.”

For that, we translate the AAD Security Group into GUID number by locating the group at https://portal.azure.com. Steps cover how to update AAD token, C# dot net code for WebAPI endpoint, and verify secrurity with Postman. Cheers.

This post is part of series with three posts:

HTTP API Test Responses

https://localhost:44326/api/Test/GetData
“ACCESS DENIED, NOT MEMBER OF GROUP”
“REAL DATA HERE”

API Permission Grants

GroupMember.Read.All
User.Read

Video

Screenshots

References

May 7, 2020

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – SETUP (Part 1 of 3)

Wanted to share video walk through of how to create an AngularJS front end Single Page Application (SPA) which SQL Server WebAPI secured using Azure Active Directory authentication. Project includes PowerShell PS1 automation for App Registration within Azure AD. All HTTP data traffic POST and GET is now protect with Azure AD authentication tokens to ensure only valid users can leverage the application or HTTP data endpoints. Excellent design pattern to provide rich user experience with secure data storage, all hosted on Azure with Website, SQL, and App Registration. Cheers.

Technical topics covered include:

AngularJS 1x single page application (SPA)
AngularJS routing
ADAL login / logout user experience
Dot Net WebAPI endpoints for HTTP GET/POST
Dot Net Entity Framework
Dot Net web.config lifecycle DEV/PROD
Azure website
Azure SQL
Azure Active Directory – App Registration
Azure Active Directory – Bearer token
JWT IO – Bearer token
Postman HTTP 401 to verify AAD security

This post is part of series with three posts:

Video

Code

https://github.com/Azure-Samples/active-directory-angularjs-singlepageapp

Screenshots

References

April 29, 2020

VIDEO – PowerShell PNP to parse InfoPath XML Attachments

Wanted to share quick tutorial on how to parse InfoPath attachment XML. Source Form Library contains XML with Base64 encoded attachments which we can parse into local TEMP folder and then upload to destination Document Library. Extract filename and file content for each InfoPath attachment XML node. Save into subfolders and match original file naming. Helpful for Office 365 migration and scenarios where InfoPath client is no longer available and users prefer to view attachments directly.

Video, screenshots, and source code below.

Cheers

GitHub Repo

https://github.com/spjeff/O365-Split-InfoPath-Attach-XML

Video

Screenshots

SPBestWarmup	SPLaunch
SPPatchify	SPCrud

spcrud	101 commits
sppatchify	159
spbestwarmup	115
office365	95
insanemove	56
spquery	10
sosgrid	18
HelloTime	18
dbftw	11
todo-karma-coverage	14
sp-peoplepicker	10

spbestwarmup	20,386 downloads
splaunch	133
spupgradehelper	75
infopathdb	1,270
spdash	896
comb	649

Blog

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – MS FLOW EMAIL(Part 3 of 3)

Code

Video

Screenshots

References

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – SECURITY GROUP (Part 2 of 3)

Video

Screenshots

References

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – SETUP (Part 1 of 3)

Video

Code

Screenshots

References

VIDEO – PowerShell PNP to parse InfoPath XML Attachments

GitHub Repo

Video

Screenshots

Cloud Ready

Videos

Blog

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – MS FLOW EMAIL(Part 3 of 3)

Code

Video

Screenshots

References

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – SECURITY GROUP (Part 2 of 3)

Video

Screenshots

References

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – SETUP (Part 1 of 3)

Video

Code

Screenshots

References

VIDEO – PowerShell PNP to parse InfoPath XML Attachments

GitHub Repo

Video

Screenshots

Connect

Tags

Cloud Ready

Videos