Mgmt: Graph, update to microsoft graph API (Azure#18420)

* remove non need parameter

* update specs

* generate microsoft graph v1.0

* fix service principal error

* fix application error

* add domain yml

* regenerate

* fix user error

* download groups.yml

* add delete members api from https://docs.microsoft.com/en-us/graph/api/group-delete-members

* regen

* fix group error

* fix compile error

* update test

* update azure environment

* group members return 204 as success

* regen

* fix some test error

* password credential do not allow specifying value

* use display name for credentials

* application do not need sing on url

* fix refresh credential

* remove password secret due to it cannot be set

* custom sign on url is removed

* use subscription id from withSubscriptionId

* update export to file method

* service principal use addPassword for creation and use inner for others creation or deletion

* update test

* update session records

* fix keyvault test

* update session records

* change display name and spNames order

* Revert "update azure environment"

This reverts commit 8de3c2d.

* fix compile error

* fix compile error

* change readme.md to swagger.md due to CI

* remove groups onenote api

* regen

* fix checkstyle

* add credcheck for secretText

* add credcheck search

* run credcheck

* remove conflict file change

* run cred check

* fix checkstyle

* fix spotbugs

* deprecate export to auth file and add password consumer

* add password consumer test

* add logging for parser

* use singletonMap

* add delete logic for test

* add back withNewApplication(String)

* update session records

* update core-management

* update microsoft graph endpoint

* update graph endpoint in test

* add all endpoint to test profile

* add change log

* remove groups calender events threads API

* regen

* skip revapi

* update change log

* remove en-us in link

* skip revapi in keyvault

* skip in other dependency

* update revapi

Author: ChenTanyi

sdk/resourcemanager/api-specs.json

@@ -167,10 +167,11 @@
     "args": "--tag=package-features-2015-12"
   },
   "graphrbac": {
+    "spec": "https://raw.githubusercontent.com/Azure/azure-sdk-for-java/master/sdk/resourcemanager",
     "dir": "azure-resourcemanager-authorization",
-    "source": "specification/graphrbac/data-plane/readme.md",
+    "source": "azure-resourcemanager-authorization/swagger/swagger.md",
     "package": "com.azure.resourcemanager.authorization",
-    "args": "--payload-flattening-threshold=1 --tag=1.6"
+    "args": "--tag=v1.0 --title=MicrosoftGraphClient --models-subpackage=fluent.models"
   },
   "iothub": {
     "dir": "azure-resourcemanager-devices",

sdk/resourcemanager/azure-resourcemanager-appservice/pom.xml

@@ -206,6 +206,7 @@
         <artifactId>revapi-maven-plugin</artifactId>
         <version>0.11.2</version> <!-- {x-version-update;org.revapi:revapi-maven-plugin;external_dependency} -->
         <configuration>
+          <skip>true</skip>
           <analysisConfiguration>
             <revapi.ignore>
               <item>

sdk/resourcemanager/azure-resourcemanager-authorization/CHANGELOG.md

@@ -2,6 +2,11 @@
 
 ## 2.2.0-beta.1 (Unreleased)
 
+- Updated API from `AAD Graph` to `Microsoft Graph`. New permission needs to be granted before calling the API, [Reference](https://docs.microsoft.com/graph/permissions-reference)
+- Removed `applicationPermissions` in `ActiveDirectoryApplication`
+- Removed `signInName` in `ActiveDirectoryUser`
+- Removed `withPasswordValue` in `PasswordCredential.Definition`
+- Supported `withPasswordConsumer` in `PasswordCredential.Definition` to consume the password value.
 
 ## 2.1.0 (2020-11-24)
 

sdk/resourcemanager/azure-resourcemanager-authorization/pom.xml

@@ -153,6 +153,7 @@
         <artifactId>revapi-maven-plugin</artifactId>
         <version>0.11.2</version> <!-- {x-version-update;org.revapi:revapi-maven-plugin;external_dependency} -->
         <configuration>
+          <skip>true</skip>
           <analysisConfiguration>
             <revapi.ignore>
               <item>

sdk/resourcemanager/azure-resourcemanager-authorization/src/main/java/com/azure/resourcemanager/authorization/AuthorizationManager.java

@@ -5,14 +5,15 @@
 
 import com.azure.core.credential.TokenCredential;
 import com.azure.core.http.HttpPipeline;
+import com.azure.core.management.AzureEnvironment;
 import com.azure.core.management.profile.AzureProfile;
 import com.azure.resourcemanager.authorization.fluent.AuthorizationManagementClient;
+import com.azure.resourcemanager.authorization.fluent.MicrosoftGraphClient;
 import com.azure.resourcemanager.authorization.implementation.AuthorizationManagementClientBuilder;
-import com.azure.resourcemanager.authorization.fluent.GraphRbacManagementClient;
-import com.azure.resourcemanager.authorization.implementation.GraphRbacManagementClientBuilder;
 import com.azure.resourcemanager.authorization.implementation.ActiveDirectoryApplicationsImpl;
 import com.azure.resourcemanager.authorization.implementation.ActiveDirectoryGroupsImpl;
 import com.azure.resourcemanager.authorization.implementation.ActiveDirectoryUsersImpl;
+import com.azure.resourcemanager.authorization.implementation.MicrosoftGraphClientBuilder;
 import com.azure.resourcemanager.authorization.implementation.RoleAssignmentsImpl;
 import com.azure.resourcemanager.authorization.implementation.RoleDefinitionsImpl;
 import com.azure.resourcemanager.authorization.implementation.ServicePrincipalsImpl;
@@ -29,11 +30,12 @@
 import com.azure.resourcemanager.resources.fluentcore.utils.ResourceManagerUtils;
 
 /** Entry point to Azure Authorization and Graph RBAC management. */
-public final class AuthorizationManager implements HasServiceClient<GraphRbacManagementClient> {
+public final class AuthorizationManager implements HasServiceClient<MicrosoftGraphClient> {
     private final String tenantId;
+    private final AzureEnvironment environment;
     private ResourceManagerUtils.InternalRuntimeContext internalContext;
     // The sdk clients
-    private final GraphRbacManagementClient graphRbacManagementClient;
+    private final MicrosoftGraphClient microsoftGraphClient;
     private final AuthorizationManagementClient authorizationManagementClient;
     // The collections
     private ActiveDirectoryUsers activeDirectoryUsers;
@@ -43,6 +45,8 @@ public final class AuthorizationManager implements HasServiceClient<GraphRbacMan
     private RoleAssignments roleAssignments;
     private RoleDefinitions roleDefinitions;
 
+    private static final String DEFAULT_GRAPH_ENDPOINT_SUFFIX = "v1.0";
+
     /**
      * Creates an instance of AuthorizationManager that exposes Authorization
      * and Graph RBAC management API entry points.
@@ -77,8 +81,8 @@ public static Configurable configure() {
     }
 
     @Override
-    public GraphRbacManagementClient serviceClient() {
-        return this.graphRbacManagementClient;
+    public MicrosoftGraphClient serviceClient() {
+        return this.microsoftGraphClient;
     }
 
     /** The interface allowing configurations to be set. */
@@ -103,11 +107,15 @@ public AuthorizationManager authenticate(TokenCredential credential, AzureProfil
     }
 
     private AuthorizationManager(HttpPipeline httpPipeline, AzureProfile profile) {
-        this.graphRbacManagementClient =
-            new GraphRbacManagementClientBuilder()
+        String graphEndpoint = profile.getEnvironment().getMicrosoftGraphEndpoint();
+        graphEndpoint = graphEndpoint.endsWith("/")
+            ? graphEndpoint + DEFAULT_GRAPH_ENDPOINT_SUFFIX
+            : graphEndpoint + "/" + DEFAULT_GRAPH_ENDPOINT_SUFFIX;
+
+        this.microsoftGraphClient =
+            new MicrosoftGraphClientBuilder()
                 .pipeline(httpPipeline)
-                .endpoint(profile.getEnvironment().getGraphEndpoint())
-                .tenantId(profile.getTenantId())
+                .endpoint(graphEndpoint)
                 .buildClient();
         this.authorizationManagementClient =
             new AuthorizationManagementClientBuilder()
@@ -116,6 +124,7 @@ private AuthorizationManager(HttpPipeline httpPipeline, AzureProfile profile) {
                 .subscriptionId(profile.getSubscriptionId())
                 .buildClient();
         this.tenantId = profile.getTenantId();
+        this.environment = profile.getEnvironment();
     }
 
     /**
@@ -131,6 +140,11 @@ public String tenantId() {
         return tenantId;
     }
 
+    /** @return the environment the graph client is associated with */
+    public AzureEnvironment environment() {
+        return environment;
+    }
+
     /** @return the {@link ResourceManagerUtils.InternalRuntimeContext} associated with this manager */
     public ResourceManagerUtils.InternalRuntimeContext internalContext() {
         if (internalContext == null) {
@@ -158,15 +172,15 @@ public ActiveDirectoryGroups groups() {
     /** @return the service principal management API entry point */
     public ServicePrincipals servicePrincipals() {
         if (servicePrincipals == null) {
-            servicePrincipals = new ServicePrincipalsImpl(graphRbacManagementClient.getServicePrincipals(), this);
+            servicePrincipals = new ServicePrincipalsImpl(this);
         }
         return servicePrincipals;
     }
 
     /** @return the application management API entry point */
     public ActiveDirectoryApplications applications() {
         if (applications == null) {
-            applications = new ActiveDirectoryApplicationsImpl(graphRbacManagementClient.getApplications(), this);
+            applications = new ActiveDirectoryApplicationsImpl(this);
         }
         return applications;
     }