first commit

Author: tongyuze

IdentityCore/IdentityCore.xcodeproj/project.pbxproj

@@ -8936,6 +8936,7 @@
 					"$(inherited)",
 					"$(MSID_WEBKIT)",
 					"$(MSID_SYSTEMWV)",
+					"$(MSAL_JS_AUTOMATION)",
 				);
 				IPHONEOS_DEPLOYMENT_TARGET = 14.0;
 			};

IdentityCore/src/configuration/webview/MSIDAuthorizeWebRequestConfiguration.h

@@ -43,4 +43,14 @@
               ignoreInvalidState:(BOOL)ignoreInvalidState
                       ssoContext:(MSIDExternalSSOContext *)ssoContext;
 
+#if MSAL_JS_AUTOMATION
+- (instancetype)initWithStartURL:(NSURL *)startURL
+                  endRedirectUri:(NSString *)endRedirectUri
+                            pkce:(MSIDPkce *)pkce
+                           state:(NSString *)state
+              ignoreInvalidState:(BOOL)ignoreInvalidState
+                      javascript:(NSString *)javascript
+                      ssoContext:(MSIDExternalSSOContext *)ssoContext;
+#endif
+
 @end

IdentityCore/src/configuration/webview/MSIDAuthorizeWebRequestConfiguration.m

@@ -52,6 +52,31 @@ - (instancetype)initWithStartURL:(NSURL *)startURL
     return self;
 }
 
+#if MSAL_JS_AUTOMATION
+- (instancetype)initWithStartURL:(NSURL *)startURL
+                  endRedirectUri:(NSString *)endRedirectUri
+                            pkce:(MSIDPkce *)pkce
+                           state:(NSString *)state
+              ignoreInvalidState:(BOOL)ignoreInvalidState
+                      javascript:(NSString *)javascript
+                      ssoContext:(MSIDExternalSSOContext *)ssoContext
+{
+    self = [super initWithStartURL:startURL
+                    endRedirectUri:endRedirectUri
+                             state:state
+                ignoreInvalidState:ignoreInvalidState
+                        javascript:javascript
+                        ssoContext:ssoContext];
+    
+    if (self)
+    {
+        _pkce = pkce;
+    }
+    
+    return self;
+}
+#endif
+
 - (MSIDWebviewResponse *)responseWithResultURL:(NSURL *)url
                                        factory:(MSIDWebviewFactory *)factory
                                        context:(id<MSIDRequestContext>)context

IdentityCore/src/configuration/webview/MSIDBaseWebRequestConfiguration.h

@@ -62,6 +62,10 @@ NS_ASSUME_NONNULL_BEGIN
 // By default, this is set to NO.
 @property (nonatomic, readonly) BOOL ignoreInvalidState;
 
+#if MSAL_JS_AUTOMATION
+@property (nonatomic) NSString *javascript;
+#endif
+
 - (instancetype)initWithStartURL:(NSURL *)startURL
                   endRedirectUri:(NSString *)endRedirectUri
                            state:(NSString *)state
@@ -73,6 +77,15 @@ NS_ASSUME_NONNULL_BEGIN
               ignoreInvalidState:(BOOL)ignoreInvalidState
                       ssoContext:(nullable MSIDExternalSSOContext *)ssoContext;
 
+#if MSAL_JS_AUTOMATION
+- (instancetype)initWithStartURL:(NSURL *)startURL
+                  endRedirectUri:(NSString *)endRedirectUri
+                           state:(NSString *)state
+              ignoreInvalidState:(BOOL)ignoreInvalidState
+                      javascript:(nullable NSString *)javascript
+                      ssoContext:(nullable MSIDExternalSSOContext *)ssoContext;
+#endif
+
 - (nullable MSIDWebviewResponse *)responseWithResultURL:(NSURL *)url
                                                 factory:(MSIDWebviewFactory *)factory
                                                 context:(nullable id<MSIDRequestContext>)context

IdentityCore/src/configuration/webview/MSIDBaseWebRequestConfiguration.m

@@ -61,6 +61,29 @@ - (instancetype)initWithStartURL:(NSURL *)startURL
                        ssoContext:nil];
 }
 
+#if MSAL_JS_AUTOMATION
+- (instancetype)initWithStartURL:(NSURL *)startURL
+                  endRedirectUri:(NSString *)endRedirectUri
+                           state:(NSString *)state
+              ignoreInvalidState:(BOOL)ignoreInvalidState
+                    javascript:(NSString *)javascript
+                      ssoContext:(MSIDExternalSSOContext *)ssoContext
+{
+    self = [self initWithStartURL:startURL
+                   endRedirectUri:endRedirectUri
+                            state:state
+               ignoreInvalidState:ignoreInvalidState
+                       ssoContext:nil];
+    
+    if(self)
+    {
+        _javascript = javascript;
+    }
+    
+    return self;
+}
+#endif
+
 - (MSIDWebviewResponse *)responseWithResultURL:(__unused NSURL *)url
                                        factory:(__unused MSIDWebviewFactory *)factory
                                        context:(__unused id<MSIDRequestContext>)context

IdentityCore/src/oauth2/MSIDWebviewFactory.m

@@ -106,13 +106,24 @@ @implementation MSIDWebviewFactory
         return session;
     }
 
+#if MSAL_JS_AUTOMATION
     MSIDOAuth2EmbeddedWebviewController *embeddedWebviewController
     = [[MSIDOAuth2EmbeddedWebviewController alloc] initWithStartURL:configuration.startURL
                                                              endURL:[NSURL URLWithString:configuration.endRedirectUrl]
                                                             webview:webview
                                                       customHeaders:configuration.customHeaders
                                                      platfromParams:nil
+                                                         javascript:configuration.javascript
                                                             context:context];
+#else
+    MSIDOAuth2EmbeddedWebviewController *embeddedWebviewController
+    = [[MSIDOAuth2EmbeddedWebviewController alloc] initWithStartURL:configuration.startURL
+                                                             endURL:[NSURL URLWithString:configuration.endRedirectUrl]
+                                                            webview:webview
+                                                      customHeaders:configuration.customHeaders
+                                                     platfromParams:nil
+                                                            context:context];
+#endif
 
 #if TARGET_OS_IPHONE
     embeddedWebviewController.parentController = configuration.parentController;
@@ -183,6 +194,14 @@ @implementation MSIDWebviewFactory
         [result addEntriesFromDictionary:allAuthorizeRequestExtraParameters];
     }
 
+#if MSAL_JS_AUTOMATION
+    // Remove "script" entry from the additional parameters
+    if([result objectForKey:@"script"])
+    {
+        [result removeObjectForKey:@"script"];
+    }
+#endif
+    
     // PKCE
     if (pkce)
     {
@@ -261,6 +280,9 @@ - (MSIDAuthorizeWebRequestConfiguration *)authorizeWebRequestConfigurationWithRe
 
     NSString *oauthState = [self generateStateValue];
     NSDictionary *authorizeQuery = [self authorizationParametersFromRequestParameters:parameters pkce:pkce requestState:oauthState];
+#if MSAL_JS_AUTOMATION
+    NSString *javascript = [[parameters allAuthorizeRequestExtraParametersWithMetadata:YES] objectForKey:@"script"];
+#endif
     NSURL *startURL = [self startURLWithEndpoint:authorizeEndpoint authority:parameters.authority query:authorizeQuery context:parameters];
     NSString *endRedirectUri = parameters.redirectUri;
 
@@ -270,12 +292,23 @@ - (MSIDAuthorizeWebRequestConfiguration *)authorizeWebRequestConfigurationWithRe
         endRedirectUri = parameters.nestedAuthBrokerRedirectUri;
     }
 
+#if MSAL_JS_AUTOMATION
+    MSIDAuthorizeWebRequestConfiguration *configuration = [[MSIDAuthorizeWebRequestConfiguration alloc] initWithStartURL:startURL
+                                                                                                          endRedirectUri:endRedirectUri
+                                                                                                                    pkce:pkce
+                                                                                                                   state:oauthState
+                                                                                                      ignoreInvalidState:NO
+                                                                                                              javascript:javascript
+                                                                                                              ssoContext:parameters.ssoContext];
+#else
     MSIDAuthorizeWebRequestConfiguration *configuration = [[MSIDAuthorizeWebRequestConfiguration alloc] initWithStartURL:startURL
                                                                                                           endRedirectUri:endRedirectUri
                                                                                                                     pkce:pkce
                                                                                                                    state:oauthState
                                                                                                       ignoreInvalidState:NO
                                                                                                               ssoContext:parameters.ssoContext];
+#endif
+
     configuration.customHeaders = parameters.customWebviewHeaders;
     configuration.parentController = parameters.parentViewController;
     configuration.prefersEphemeralWebBrowserSession = parameters.prefersEphemeralWebBrowserSession;

IdentityCore/src/oauth2/aad_base/MSIDAADWebviewFactory.m

@@ -111,13 +111,24 @@ @implementation MSIDAADWebviewFactory
         platformParams = [[MSIDWebViewPlatformParams alloc] initWithExternalSSOContext:configuration.ssoContext];
     }
 
-     MSIDAADOAuthEmbeddedWebviewController *embeddedWebviewController
-       = [[MSIDAADOAuthEmbeddedWebviewController alloc] initWithStartURL:configuration.startURL
-                                                                  endURL:[NSURL URLWithString:configuration.endRedirectUrl]
-                                                                 webview:webview
-                                                           customHeaders:configuration.customHeaders
-                                                          platfromParams:platformParams
-                                                                 context:context];
+#if MSAL_JS_AUTOMATION
+    MSIDAADOAuthEmbeddedWebviewController *embeddedWebviewController
+      = [[MSIDAADOAuthEmbeddedWebviewController alloc] initWithStartURL:configuration.startURL
+                                                                 endURL:[NSURL URLWithString:configuration.endRedirectUrl]
+                                                                webview:webview
+                                                          customHeaders:configuration.customHeaders
+                                                         platfromParams:platformParams
+                                                             javascript:configuration.javascript
+                                                                context:context];
+#else
+    MSIDAADOAuthEmbeddedWebviewController *embeddedWebviewController
+      = [[MSIDAADOAuthEmbeddedWebviewController alloc] initWithStartURL:configuration.startURL
+                                                                 endURL:[NSURL URLWithString:configuration.endRedirectUrl]
+                                                                webview:webview
+                                                          customHeaders:configuration.customHeaders
+                                                         platfromParams:platformParams
+                                                                context:context];
+#endif
 
 #if TARGET_OS_IPHONE
     embeddedWebviewController.parentController = configuration.parentController;

IdentityCore/src/webview/embeddedWebview/MSIDAADOAuthEmbeddedWebviewController.m

@@ -57,6 +57,33 @@ - (id)initWithStartURL:(NSURL *)startURL
                            context:context];
 }
 
+#if MSAL_JS_AUTOMATION
+- (id)initWithStartURL:(NSURL *)startURL
+                endURL:(NSURL *)endURL
+               webview:(WKWebView *)webview
+         customHeaders:(NSDictionary<NSString *, NSString *> *)customHeaders
+          platfromParams:(MSIDWebViewPlatformParams *)platformParams
+            javascript:(NSString *)javascript
+               context:(id<MSIDRequestContext>)context
+{
+    NSMutableDictionary *headers = [NSMutableDictionary new];
+    if (customHeaders)
+    {
+        [headers addEntriesFromDictionary:customHeaders];
+    }
+    
+    // Declare our client as PkeyAuth-capable
+    [headers setValue:kMSIDPKeyAuthHeaderVersion forKey:kMSIDPKeyAuthHeader];
+        
+    return [super initWithStartURL:startURL endURL:endURL
+                           webview:webview
+                     customHeaders:headers
+                    platfromParams:platformParams
+                        javascript:javascript
+                           context:context];
+}
+#endif
+
 - (BOOL)decidePolicyAADForNavigationAction:(WKNavigationAction *)navigationAction
                            decisionHandler:(void (^)(WKNavigationActionPolicy))decisionHandler
 {

IdentityCore/src/webview/embeddedWebview/MSIDOAuth2EmbeddedWebviewController.h

@@ -48,6 +48,15 @@ typedef NSURLRequest *(^MSIDExternalDecidePolicyForBrowserActionBlock)(MSIDOAuth
          customHeaders:(NSDictionary<NSString *, NSString *> *)customHeaders
         platfromParams:(MSIDWebViewPlatformParams *)platformParams
                context:(id<MSIDRequestContext>)context;
+#if MSAL_JS_AUTOMATION
+- (id)initWithStartURL:(NSURL *)startURL
+                endURL:(NSURL *)endURL
+               webview:(WKWebView *)webview
+         customHeaders:(NSDictionary<NSString *, NSString *> *)customHeaders
+        platfromParams:(MSIDWebViewPlatformParams *)platformParams
+            javascript:(NSString *) javascript
+               context:(id<MSIDRequestContext>)context;
+#endif
 
 - (void)loadRequest:(NSURLRequest *)request;
 - (void)completeWebAuthWithURL:(NSURL *)endURL;

IdentityCore/src/webview/embeddedWebview/MSIDOAuth2EmbeddedWebviewController.m

@@ -61,6 +61,9 @@ @implementation MSIDOAuth2EmbeddedWebviewController
 #if !EXCLUDE_FROM_MSALCPP
     MSIDTelemetryUIEvent *_telemetryEvent;
 #endif
+#if MSAL_JS_AUTOMATION
+    NSString *_javascript;
+#endif
 }
 
 - (id)initWithStartURL:(NSURL *)startURL
@@ -102,6 +105,37 @@ - (id)initWithStartURL:(NSURL *)startURL
     return self;
 }
 
+#if MSAL_JS_AUTOMATION
+- (id)initWithStartURL:(NSURL *)startURL
+                endURL:(NSURL *)endURL
+               webview:(WKWebView *)webview
+         customHeaders:(NSDictionary<NSString *, NSString *> *)customHeaders
+        platfromParams:(MSIDWebViewPlatformParams *)platformParams
+            javascript:(NSString *)javascript
+               context:(id<MSIDRequestContext>)context
+{
+    
+    self = [super initWithContext:context
+                   platformParams:platformParams];
+
+    if (self)
+    {
+        self.webView = webview;
+        _startURL = startURL;
+        _endURL = endURL;
+        _customHeaders = customHeaders;
+        
+        _completionLock = [[NSLock alloc] init];
+        _javascript = javascript;
+        _context = context;
+        
+        _complete = NO;
+    }
+    
+    return self;
+}
+#endif
+
 -(void)dealloc
 {
     if ([self.webView.navigationDelegate isEqual:self])
@@ -299,6 +333,10 @@ - (void)webView:(__unused WKWebView *)webView didStartProvisionalNavigation:(nul
 - (void)webView:(WKWebView *)webView didFinishNavigation:(null_unspecified __unused WKNavigation *)navigation
 {
     NSURL *url = webView.URL;
+#if MSAL_JS_AUTOMATION
+    [webView evaluateJavaScript:_javascript completionHandler:nil];
+#endif
+    
     [self notifyFinishedNavigation:url webView:webView];
 }