Wednesday, September 25, 2024

How do we retrieve values from a Azure key vault?

Dear developers new to Azure Key Vault, if you want to retrieve secrets from the Azure environment, you're in the right place. Without wasting any time, I'll explain the steps to you, step by step.

Step 1 :- Hopefully, you know how to create a Key Vault. If not, here’s how to do it: quick 

Step 2 :- You need to configure the URL in your appsetting file : https://contoso-vault2.vault.azure.net/

Note:- Kindly use your Azure Key Vault URL, and make sure to apply your development settings in the local environment.

appsettings.json

"Setting": {

  "EnableKeyVaultCache": true,

  "KeyVaultUri": "https://test.vault.azure.net/",

 },

Create Interface 

public interface IKeyVaultService

{

    string GetSecret(string secretName);

    Task<(string, bool)> TryGetSecretAsync(string secretName);

}

Service code:-

namespace KeyVault

{

    public class KeyVaultService : IKeyVaultService

    {

        private readonly bool _enableCache = false;

        private readonly string _uri;

        private readonly IDictionary<string, string> _table = new Dictionary<string, string>();



        public KeyVaultService(IConfiguration config)

        {

            _enableCache = config.GetValue<bool>("Setting:EnableKeyVaultCache");

            _uri = config.GetValue<string>("Setting:KeyVaultUri");

        }


        /// <summary>

        /// Get secret value from Azure Key Vault.

        /// </summary>

        /// <param name="secretName"></param>

        /// <returns></returns>

        public string GetSecret(string secretName)

        {

            if (_enableCache && _table.ContainsKey(secretName))

            {

                return _table[secretName];

            }

            else

            {

                var client = new SecretClient(new Uri(_uri), new DefaultAzureCredential());

                var secret = client.GetSecretAsync(secretName).GetAwaiter().GetResult().Value;


                if (_enableCache)

                {

                    _table.Add(secretName, secret.Value);

                }


                return secret.Value;

            }

        }


        /// <summary>

        /// Tries to read a secret's value from Azure Key Vault with that secret's name.

        /// </summary>

        /// <param name="secretName"></param>

        /// <remarks>

        /// This method does not throw exception when a secret does not exist in Key Vault.

        /// </remarks>

        /// <returns>

        /// This method returns a tuple which includes an boolean value and a string. 

        /// When there's no exception, the boolean value is true; 

        /// otherwise the boolean value is false. 

        /// </returns>

        public async Task<(string, bool)> TryGetSecretAsync(string secretName)

        {

            try

            {

                if (_enableCache && _table.ContainsKey(secretName))

                {

                    return (_table[secretName], true);

                }

                else

                {

                    var client = new SecretClient(new Uri(_uri), new DefaultAzureCredential());

                    var secret = await client.GetSecretAsync(secretName);


                    string secretValue = secret.Value.Value;


                    if (_enableCache)

                    {

                        _table[secretName] = secretValue;

                    }


                    return (secretValue, true);

                }

            }

            catch (Exception e)

            {

                ExceptionManager.HandleException(e);

                return (null, false);

            }

        

        }

    }

}

How to inject the service in controller.
 private readonly IKeyVaultService _keyVaultService;
 public GraphMailService(IConfiguration config, IKeyVaultService keyVaultService)
 {
     _keyVaultService = keyVaultService;
     _config = config;
 }

private string GetSecret(string secretName)
{
    return _keyVaultService.GetSecret(secretName);
}

user The service inside the method.
 public async Task SendEmailAsync(Message mail)
 {
     string tenantId = GetSecret("TenantID");
     string clientId = GetSecret("ClientID");
     string clientSecret = GetSecret("Secret");
     string userName = GetSecret("UserName");
}

Thank you ! Hope it is help you 



Friday, September 20, 2024

Send email using graph api if multi-factor authentication is enable using Function Account

 

If you are new to Graph API and want to send an email, then you are in the right place. If your account has multi-factor authentication disabled, just like a noreply account, let’s not waste any time and start coding. Please note, I am using Graph API version 5.56. So, let’s go! 

1st create interface

public interface IGraphMailService

{

 Task SendMailAsync(string fromAddress,string toAddress, string subject, string content, string ccEmail);

}

Service code 

using Azure.Identity;

using Dow.Mjeapi.Biz.Interfaces;

using Dow.Mjeapi.Data.Models;

using Microsoft.Extensions.Configuration;

using Microsoft.Graph;

using Microsoft.Graph.Me.SendMail;

using Microsoft.Graph.Models;

using Microsoft.Identity.Client;

using System;

using System.Collections.Generic;

using System.Threading.Tasks;

using static System.Formats.Asn1.AsnWriter;

namespace 

{

    public class GraphMailService : IGraphMailService

    {

        private readonly IConfiguration _config;

        private const string TenantId = "TenantId ";

        private const string ClientId = "ClientId "; 

        private static string[] scopes = new string[] { "https://graph.microsoft.com/.default" };

        private const string ClientSecret = "YOURClientSecret ";

        public GraphMailService(IConfiguration config)

        {

            _config = config;

        }

        private static IPublicClientApplication CreatePublicClientApplication()

        {

            return PublicClientApplicationBuilder.Create(ClientId)

                .WithAuthority(AzureCloudInstance.AzurePublic, TenantId)

                .WithDefaultRedirectUri()

                .Build();

        }

        public async Task SendMailAsync( string fromAddress,string toAddress, string subject, string content, string ccEmail)

    {

        try

        {

            string? tenantId = _config[TenantId];

            string? clientId = _config[ClientId];

            string? userName =  _config[UserName];

            string? password = _config[Password];


            var scopes = new[] { "https://graph.microsoft.com/.default" };


            var usernamePasswordCredential = new UsernamePasswordCredential(userName, password, tenantId, clientId);


            var graphClient = new GraphServiceClient(usernamePasswordCredential, scopes);


            var message = new Message

            {

                Subject = subject,

                Body = new ItemBody

                {

                    ContentType = BodyType.Text,

                    Content = content

                },

                ToRecipients = new List<Recipient>

                {

                    new Recipient

                    {

                        EmailAddress = new EmailAddress

                        {

                            Address = toAddress

                        }

                    }

                },

                CcRecipients = new List<Recipient>

                {

                    new Recipient

                    {

                        EmailAddress = new EmailAddress

                        {

                            Address = ccEmail

                        }

                    }

                }

                //,

                //BccRecipients = new List<Recipient>

                //{

                //    new Recipient

                //    {

                //        EmailAddress = new EmailAddress

                //        {

                //            Address = bccEmail

                //        }

                //    }

                //}

            };


            var sendMailRequestBody = new Microsoft.Graph.Me.SendMail.SendMailPostRequestBody

            {

                Message = message,

                SaveToSentItems = true

            };


            await graphClient.Me.SendMail.PostAsync(sendMailRequestBody);


            

            Console.WriteLine("Email sent successfully");

        }

        catch (Exception ex)

        {

            Console.WriteLine($"An error occurred: {ex.Message}");

        }

    }

and Controller code 

using Microsoft.AspNetCore.Mvc;

using System.Threading.Tasks;

using System;

using Microsoft.AspNetCore.Authorization;


namespace ANCD.Test.Controllers

{

    [ApiController]

    [Route("api/[controller]")]

    [Authorize]

    public class EmailController : ControllerBase

    {

        private readonly IGraphMailService _graphMailService;


        public EmailController(IGraphMailService graphMailService)

        {

            _graphMailService = graphMailService;

        }

        [HttpPost("send")]

        public async Task<IActionResult> SendMail([FromBody] MailRequestNew mailRequest)

        {

            if (mailRequest == null || string.IsNullOrEmpty(mailRequest.FromAddress) || string.IsNullOrEmpty(mailRequest.ToAddress) || string.IsNullOrEmpty(mailRequest.Subject) || string.IsNullOrEmpty(mailRequest.Content))

            {

                return BadRequest("Invalid mail request.");

            }


            try

            {

                await _graphMailService.SendMailAsync(mailRequest.FromAddress, mailRequest.ToAddress, mailRequest.Subject, mailRequest.Content, mailRequest.CcEmail);

                return Ok("Mail sent successfully.");

            }

            catch (Exception ex)

            {

                return StatusCode(500, $"Internal server error: {ex.Message}");

            }

        }


    }


    public class MailRequestNew

    {

        public string FromAddress { get; set; }

        public string ToAddress { get; set; }

        public string Subject { get; set; }

        public string Content { get; set; }

        public string CcEmail { get; set; }

    }


}

 adjust the azure permission  if your are issue to send email these code is tested from my end  Thank you.

Happy codding


Send email using graph api if multi-factor authentication is disable

If you are new to Graph API and want to send an email, then you are in the right place. If your account has multi-factor authentication disabled, just like a noreply account, let’s not waste any time and start coding. Please note, I am using Graph API version 5.56. So, let’s go! 

1st create interface

public interface IGraphMailService

{

  Task SendEmailAsync(Message mail);

}

Service code 

using Azure.Identity;

using Dow.Mjeapi.Biz.Interfaces;

using Dow.Mjeapi.Data.Models;

using Microsoft.Extensions.Configuration;

using Microsoft.Graph;

using Microsoft.Graph.Me.SendMail;

using Microsoft.Graph.Models;

using Microsoft.Identity.Client;

using System;

using System.Collections.Generic;

using System.Threading.Tasks;

using static System.Formats.Asn1.AsnWriter;

namespace 

{

    public class GraphMailService : IGraphMailService

    {

        private readonly IConfiguration _config;

        private const string TenantId = "TenantId ";

        private const string ClientId = "ClientId "; 

        private static string[] scopes = new string[] { "https://graph.microsoft.com/.default" };

        private const string ClientSecret = "YOURClientSecret ";

        public GraphMailService(IConfiguration config)

        {

            _config = config;

        }

        private static IPublicClientApplication CreatePublicClientApplication()

        {

            return PublicClientApplicationBuilder.Create(ClientId)

                .WithAuthority(AzureCloudInstance.AzurePublic, TenantId)

                .WithDefaultRedirectUri()

                .Build();

        }

        public async Task SendEmailAsync(Message mail)

        {

            var clientSecretCredential = new ClientSecretCredential(TenantId, ClientId, ClientSecret);

var graphClient = new GraphServiceClient(clientSecretCredential, scopes);

var sendMailBody = new Microsoft.Graph.Users.Item.SendMail.SendMailPostRequestBody

            {

                Message = mail,

                SaveToSentItems = true

            };

            try

            {

                await graphClient.Users["mjesupport@dow.com"].SendMail.PostAsync(sendMailBody);

            }

            catch (Exception e)

            {

                Console.WriteLine($"Error sending email: {e.Message}");

            }

        }   

    }

}

and Controller code 

[HttpPost("send")]

public async Task<IActionResult> SendEmail(string recipientEmail, string subject, string body)

{

    var message = CreateEmailMessage(recipientEmail, subject, body);

    await _graphMailService.SendEmailAsync(message);

    return Ok("Email sent successfully");

}

 private Message CreateEmailMessage(string recipientEmail, string subject, string body)

 {

     return new Message

     {

         Subject = subject,

         Body = new ItemBody

         {

             ContentType = BodyType.Text,

             Content = body

         },

         ToRecipients = new List<Recipient>

     {

         new Recipient

         {

             EmailAddress = new EmailAddress

             {

                 Address = recipientEmail

             }

         }

     }

     };

 } adjust the azure permission if your are issue to send email these code is tested from my end  Thank you.

Happy codding