Ministry of Attorney General ISB Dynamics-OpenShift DevOrg
This repository is an example of how to connect to Microsoft Dynamics from within software deployed to the OpenShift environment.
Layer | Technology |
---|---|
Framework | Dotnet Core 2.2 |
Presentation | Razor / JSON API responses |
Business Logic | C# - Dotnet Core 2.2 Web MVC |
Web Server | Kestrel |
Authentication, including OAUTH2 and SAML | ADFS 2016, On Premise |
Data | Dynamics 365 CE Version 9, On Premise |
File Storage | SharePoint 2016, On Premise |
Portal Application and Example Dynamics Library
DevOps
Configure the following secrets in your development or deployment environment:
Secret Name | Description |
---|---|
ADFS_OAUTH2_URI | ADFS OAUTH2 URI - usually /adfs/oauth2/token on your STS server. |
DYNAMICS_ODATA_URI | Endpoint for the Dynamics REST interface. May be an API gateway URL. |
DYNAMICS_APP_GROUP_RESOURCE | ADFS 2016 Application Group resource (URI) |
DYNAMICS_APP_GROUP_CLIENT_ID | ADFS 2016 Application Group Client ID |
DYNAMICS_APP_GROUP_SECRET | ADFS 2016 Application Group Secret |
DYNAMICS_USERNAME | Service account username. Format is username@domain where domain is the Active Directory domain. |
DYNAMICS_PASSWORD | Service account password |
SHAREPOINT_ADFS_TOKEN_URI | URI that will be used to get a SAML token |
SHAREPOINT_RELYING_PARTY_IDENTIFIER | URN for the relying party. Matches that used for interactive login. |
SHAREPOINT_USERNAME | Username for the Service Account that will be used to access SharePoint. In most cases this will be the same as that used for Dynamics. |
SHAREPOINT_PASSWORD | Password for the Service Account that will be used to access SharePoint. |
SPLUNK_COLLECTOR_URL | Base URI for Splunk - hostname or a full URI if a reverse proxy is used. Do not add the endpoint of the HTTP collector, it will be appended by Serilog. |
SPLUNK_TOKEN | The Splunk token, as defined on the Data Inputs, Http Event Collector page of Splunk. |
Fiddler, Wireshark or similar traffic analysis tools are essential for troubleshooting authentication issues.
Please report any issues.
Pull requests are always welcome.
If you would like to contribute, please see our contributing guidelines.
Please note that this project is released with a Contributor Code of Conduct. By participating in this project you agree to abide by its terms.
Copyright 2019 Province of British Columbia
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
This repository is maintained by BC Attorney General.