Removed not released properties from validate-azure-ad-token (#142)

Mielek · web-flow · commit d44fb8438dac · 2025-04-02T11:02:19.000+02:00
diff --git a/src/Authoring/Configs/ValidateAzureAdTokenConfig.cs b/src/Authoring/Configs/ValidateAzureAdTokenConfig.cs
@@ -50,22 +50,6 @@ public record ValidateAzureAdTokenConfig
     /// </summary>
     public string? OutputTokenVariableName { get; init; }
 
-    /// <summary>
-    /// Indicates whether to allow protected forwarded tokens.
-    /// </summary>
-    [ExpressionAllowed]
-    public bool? AllowProtectedForwardedTokens { get; init; }
-
-    /// <summary>
-    /// Indicates whether to allow proof of possession tokens.
-    /// </summary>
-    public bool? AllowProofOfPossessionTokes { get; init; }
-
-    /// <summary>
-    /// The name of the variable to store the proof of possession token.
-    /// </summary>
-    public string? OutputPftTokenVariableName { get; init; }
-
     /// <summary>
     /// The application IDs of the backend services.
     /// </summary>
diff --git a/src/Core/Compiling/Policy/ValidateAzureAdTokenCompiler.cs b/src/Core/Compiling/Policy/ValidateAzureAdTokenCompiler.cs
@@ -43,14 +43,8 @@ public void Handle(ICompilationContext context, InvocationExpressionSyntax node)
             "failed-validation-httpcode");
         element.AddAttribute(values, nameof(ValidateAzureAdTokenConfig.FailedValidationErrorMessage),
             "failed-validation-error-message");
-        element.AddAttribute(values, nameof(ValidateAzureAdTokenConfig.AllowProtectedForwardedTokens),
-            "allow-protected-forwarded-tokens");
-        element.AddAttribute(values, nameof(ValidateAzureAdTokenConfig.AllowProofOfPossessionTokes),
-            "allow-proof-of-possession-tokens");
         element.AddAttribute(values, nameof(ValidateAzureAdTokenConfig.OutputTokenVariableName),
             "output-token-variable-name");
-        element.AddAttribute(values, nameof(ValidateAzureAdTokenConfig.OutputPftTokenVariableName),
-            "output-pft-token-variable-name");
 
         GenericCompiler.HandleList(element, values, nameof(ValidateAzureAdTokenConfig.BackendApplicationIds),
             "backend-application-ids", "application-id");
diff --git a/test/Test.Core/Compiling/ValidateAzureAdTokenTests.cs b/test/Test.Core/Compiling/ValidateAzureAdTokenTests.cs
@@ -310,125 +310,6 @@ public void Inbound(IInboundContext context) {
         """,
         DisplayName = "Should compile validate-azure-ad-token policy with output-token-variable-name"
     )]
-    [DataRow(
-        """
-        [Document]
-        public class PolicyDocument : IDocument
-        {
-            public void Inbound(IInboundContext context) {
-                context.ValidateAzureAdToken(new ValidateAzureAdTokenConfig
-                {
-                    TenantId = "{{aad-tenant-id}}",
-                    AllowProtectedForwardedTokens = true
-                });
-            }
-        }
-        """,
-        """
-        <policies>
-            <inbound>
-                <validate-azure-ad-token tenant-id="{{aad-tenant-id}}" allow-protected-forwarded-tokens="true" />
-            </inbound>
-        </policies>
-        """,
-        DisplayName = "Should compile validate-azure-ad-token policy with allow-protected-forwarded-tokens"
-    )]
-    [DataRow(
-        """
-        [Document]
-        public class PolicyDocument : IDocument
-        {
-            public void Inbound(IInboundContext context) {
-                context.ValidateAzureAdToken(new ValidateAzureAdTokenConfig
-                {
-                    TenantId = "{{aad-tenant-id}}",
-                    AllowProtectedForwardedTokens = GetAllowProtectedForwardedTokens(context.ExpressionContext)
-                });
-            }
-            bool GetAllowProtectedForwardedTokens(IExpressionContext context) => (bool)context.Variable["allow-protected-forwarded-tokens"];
-        }
-        """,
-        """
-        <policies>
-            <inbound>
-                <validate-azure-ad-token tenant-id="{{aad-tenant-id}}" allow-protected-forwarded-tokens="@((bool)context.Variable["allow-protected-forwarded-tokens"])" />
-            </inbound>
-        </policies>
-        """,
-        DisplayName =
-            "Should compile validate-azure-ad-token policy with expression in allow-protected-forwarded-tokens"
-    )]
-    [DataRow(
-        """
-        [Document]
-        public class PolicyDocument : IDocument
-        {
-            public void Inbound(IInboundContext context) {
-                context.ValidateAzureAdToken(new ValidateAzureAdTokenConfig
-                {
-                    TenantId = "{{aad-tenant-id}}",
-                    AllowProofOfPossessionTokes = true
-                });
-            }
-        }
-        """,
-        """
-        <policies>
-            <inbound>
-                <validate-azure-ad-token tenant-id="{{aad-tenant-id}}" allow-proof-of-possession-tokens="true" />
-            </inbound>
-        </policies>
-        """,
-        DisplayName = "Should compile validate-azure-ad-token policy with allow-proof-of-possession-tokens"
-    )]
-    [DataRow(
-        """
-        [Document]
-        public class PolicyDocument : IDocument
-        {
-            public void Inbound(IInboundContext context) {
-                context.ValidateAzureAdToken(new ValidateAzureAdTokenConfig
-                {
-                    TenantId = "{{aad-tenant-id}}",
-                    AllowProofOfPossessionTokes = GetAllowProofOfPossessionTokes(context.ExpressionContext)
-                });
-            }
-            bool GetAllowProofOfPossessionTokes(IExpressionContext context) => (bool)context.Variable["allow-proof-of-possession-tokens"];
-        }
-        """,
-        """
-        <policies>
-            <inbound>
-                <validate-azure-ad-token tenant-id="{{aad-tenant-id}}" allow-proof-of-possession-tokens="@((bool)context.Variable["allow-proof-of-possession-tokens"])" />
-            </inbound>
-        </policies>
-        """,
-        DisplayName =
-            "Should compile validate-azure-ad-token policy with expression in allow-proof-of-possession-tokens"
-    )]
-    [DataRow(
-        """
-        [Document]
-        public class PolicyDocument : IDocument
-        {
-            public void Inbound(IInboundContext context) {
-                context.ValidateAzureAdToken(new ValidateAzureAdTokenConfig
-                {
-                    TenantId = "{{aad-tenant-id}}",
-                    OutputPftTokenVariableName = "variable-name"
-                });
-            }
-        }
-        """,
-        """
-        <policies>
-            <inbound>
-                <validate-azure-ad-token tenant-id="{{aad-tenant-id}}" output-pft-token-variable-name="variable-name" />
-            </inbound>
-        </policies>
-        """,
-        DisplayName = "Should compile validate-azure-ad-token policy with output-pft-token-variable-name"
-    )]
     [DataRow(
         """
         [Document]
