Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Onboard Id Web to Threading Analyzers #3041

Open
wants to merge 12 commits into
base: master
Choose a base branch
from
Open

Onboard Id Web to Threading Analyzers #3041

wants to merge 12 commits into from

Conversation

westin-m
Copy link
Contributor

@westin-m westin-m commented Sep 26, 2024
edited
Loading

The following E2E scenarios were tested using the corresponding devapps:
Web app calls web api call graph
B2C web app calls web api
Owin
Blazer server calls web api
Blazer server B2C calls api
Ciam web app calls api
Web app calls graph
Deamon console calling downstream api, graph

All are working as expected.

@westin-m westin-m linked an issue Sep 26, 2024 that may be closed by this pull request
Add threading analyzers and resolve issues #2766
Open
@westin-m westin-m marked this pull request as ready for review September 27, 2024 01:37
@westin-m westin-m requested a review from a team as a code owner September 27, 2024 01:37
jmprieur
jmprieur reviewed Sep 27, 2024
View reviewed changes
Copy link
Collaborator

@jmprieur jmprieur left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM at first review, @westin-m
Make sure you run end to end tests with credentials.
There was a race condition at some point, which is why the credential loaders used GetAwaiter.GetAsync().

I'm surprised there is no change in the public API?

src/Microsoft.Identity.Web.Certificate/DefaultCertificateLoader.cs Outdated Show resolved Hide resolved
src/Microsoft.Identity.Web/AzureADB2COpenIDConnectEventHandlers.cs Outdated Show resolved Hide resolved
jennyf19
jennyf19 requested changes Sep 29, 2024
View reviewed changes
Copy link
Collaborator

@jennyf19 jennyf19 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

would like to have clarity on which E2E tests were run to verify things are working as expected, and which scenarios were covered.
would like to have no public API changes now.

@westin-m
Copy link
Contributor Author

would like to have clarity on which E2E tests were run to verify things are working as expected, and which scenarios were covered. would like to have no public API changes now.

I've added this to the description

pmaytak
pmaytak reviewed Sep 30, 2024
View reviewed changes
src/Microsoft.Identity.Web.Certificate/DefaultCertificateLoader.cs
/// </summary>
/// <param name="certificateDescriptions">Description of the certificates.</param>
/// <returns>First certificate in the certificate description list.</returns>
public static async Task<X509Certificate2?> LoadFirstCertificateAsync(IEnumerable<CertificateDescription> certificateDescriptions)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not for this PR, but long-term we should add an overload that accepts a CancellationToken, which should be propagated down - LoadCredentialsIfNeededAsync uses a semaphore which accepts a cancellation token.

pmaytak
pmaytak reviewed Oct 1, 2024
View reviewed changes
tests/E2E Tests/WebAppUiTests/TestingWebAppLocally.cs
{
LabResponse labResponse = await LabUserHelper.GetDefaultUserAsync();

var clientEnvVars = new Dictionary<string, string>();

await ExecuteWebAppCallsGraphFlow(labResponse.User.Upn, labResponse.User.GetOrFetchPassword(), clientEnvVars, TraceFileClassName);
await ExecuteWebAppCallsGraphFlowAsync(labResponse.User.Upn, labResponse.User.GetOrFetchPassword(), clientEnvVars, TraceFileClassName).ConfigureAwait(false);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Remove ConfigureAwait in xUnit tests for better performance.

pmaytak
pmaytak requested changes Oct 1, 2024
View reviewed changes
src/Microsoft.Identity.Web.OWIN/OpenIdConnectCachingSecurityTokenProvider.cs
{
_synclock.EnterWriteLock();
try
{
OpenIdConnectConfiguration config = Task.Run(_configManager.GetConfigurationAsync).Result;
OpenIdConnectConfiguration config = await _configManager.GetConfigurationAsync();
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Need to revert and block it here.

https://stackoverflow.com/questions/59048102/c-sharp-fire-and-forget-task-and-discard

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jmprieur jmprieur jmprieur left review comments

@kellyyangsong kellyyangsong kellyyangsong left review comments

@msbw2 msbw2 msbw2 left review comments

@jennyf19 jennyf19 jennyf19 requested changes

@pmaytak pmaytak pmaytak requested changes

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Add threading analyzers and resolve issues
6 participants
@westin-m @jmprieur @jennyf19 @pmaytak @kellyyangsong @msbw2