Validate the AccessTokenUri is well formed, UrlEncode before logging (#86)

Tim Hess · web-flow · commit 564ff4759721 · 2019-07-18T16:09:22.000-05:00
diff --git a/src/Common/src/Common.Http/HttpClientHelper.cs b/src/Common/src/Common.Http/HttpClientHelper.cs
@@ -184,19 +184,26 @@ public static Task<string> GetAccessToken(
 
             if (string.IsNullOrEmpty(clientId))
             {
-                throw new ArgumentException(nameof(accessTokenUri));
+                throw new ArgumentException(nameof(clientId));
             }
 
             if (string.IsNullOrEmpty(clientSecret))
             {
-                throw new ArgumentException(nameof(accessTokenUri));
+                throw new ArgumentException(nameof(clientSecret));
             }
 
-            return GetAccessTokenInternal(accessTokenUri, clientId, clientSecret, timeout, validateCertificates, logger);
+            var parsedUri = new Uri(accessTokenUri);
+
+            if (!parsedUri.IsWellFormedOriginalString())
+            {
+                throw new ArgumentException("Access token Uri is not well formed", nameof(accessTokenUri));
+            }
+
+            return GetAccessTokenInternal(parsedUri, clientId, clientSecret, timeout, validateCertificates, logger);
         }
 
         private static async Task<string> GetAccessTokenInternal(
-            string accessTokenUri,
+            Uri accessTokenUri,
             string clientId,
             string clientSecret,
             int timeout,
@@ -228,7 +235,7 @@ private static async Task<string> GetAccessTokenInternal(
                             logger?.LogInformation(
                                 "GetAccessToken returned status: {0} while obtaining access token from: {1}",
                                 response.StatusCode,
-                                accessTokenUri);
+                                WebUtility.UrlEncode(accessTokenUri.OriginalString));
                             return null;
                         }
 
@@ -240,7 +247,7 @@ private static async Task<string> GetAccessTokenInternal(
             }
             catch (Exception e)
             {
-                logger?.LogError("GetAccessToken exception: {0} ,obtaining access token from: {1}", e, WebUtility.UrlEncode(accessTokenUri));
+                logger?.LogError("GetAccessToken exception: {0}, obtaining access token from: {1}", e, WebUtility.UrlEncode(accessTokenUri.OriginalString));
             }
             finally
             {

Original file line number	Diff line number	Diff line change
`@@ -184,19 +184,26 @@ public static Task<string> GetAccessToken(`
`184`	`184`
`185`	`185`	`if (string.IsNullOrEmpty(clientId))`
`186`	`186`	`{`
`187`		`- throw new ArgumentException(nameof(accessTokenUri));`
	`187`	`+ throw new ArgumentException(nameof(clientId));`
`188`	`188`	`}`
`189`	`189`
`190`	`190`	`if (string.IsNullOrEmpty(clientSecret))`
`191`	`191`	`{`
`192`		`- throw new ArgumentException(nameof(accessTokenUri));`
	`192`	`+ throw new ArgumentException(nameof(clientSecret));`
`193`	`193`	`}`
`194`	`194`
`195`		`- return GetAccessTokenInternal(accessTokenUri, clientId, clientSecret, timeout, validateCertificates, logger);`
	`195`	`+ var parsedUri = new Uri(accessTokenUri);`
	`196`	`+`
	`197`	`+ if (!parsedUri.IsWellFormedOriginalString())`
	`198`	`+ {`
	`199`	`+ throw new ArgumentException("Access token Uri is not well formed", nameof(accessTokenUri));`
	`200`	`+ }`
	`201`	`+`
	`202`	`+ return GetAccessTokenInternal(parsedUri, clientId, clientSecret, timeout, validateCertificates, logger);`
`196`	`203`	`}`
`197`	`204`
`198`	`205`	`private static async Task<string> GetAccessTokenInternal(`
`199`		`- string accessTokenUri,`
	`206`	`+ Uri accessTokenUri,`
`200`	`207`	`string clientId,`
`201`	`208`	`string clientSecret,`
`202`	`209`	`int timeout,`
`@@ -228,7 +235,7 @@ private static async Task<string> GetAccessTokenInternal(`
`228`	`235`	`logger?.LogInformation(`
`229`	`236`	`"GetAccessToken returned status: {0} while obtaining access token from: {1}",`
`230`	`237`	`response.StatusCode,`
`231`		`- accessTokenUri);`
	`238`	`+ WebUtility.UrlEncode(accessTokenUri.OriginalString));`
`232`	`239`	`return null;`
`233`	`240`	`}`
`234`	`241`
`@@ -240,7 +247,7 @@ private static async Task<string> GetAccessTokenInternal(`
`240`	`247`	`}`
`241`	`248`	`catch (Exception e)`
`242`	`249`	`{`
`243`		`- logger?.LogError("GetAccessToken exception: {0} ,obtaining access token from: {1}", e, WebUtility.UrlEncode(accessTokenUri));`
	`250`	`+ logger?.LogError("GetAccessToken exception: {0}, obtaining access token from: {1}", e, WebUtility.UrlEncode(accessTokenUri.OriginalString));`
`244`	`251`	`}`
`245`	`252`	`finally`
`246`	`253`	`{`