Merge pull request #86 from Esri/PaulAllanSturm/authenticateWithToken

"Authenticate with token" sample

Author: PaulAllanSturm

assets/generated_samples_list.json

@@ -275,6 +275,41 @@
     "title": "Authenticate with OAuth",
     "key": "authenticate_with_oauth"
   },
+  "authenticate_with_token": {
+    "category": "Cloud and Portal",
+    "description": "Access a web map that is secured with ArcGIS token-based authentication.",
+    "ignore": false,
+    "images": [
+      "authenticate_with_token.png"
+    ],
+    "keywords": [
+      "authentication",
+      "cloud",
+      "portal",
+      "remember",
+      "security",
+      "ArcGISAuthenticationChallengeHandler",
+      "ArcGISMap",
+      "ArcGISMapView",
+      "AuthenticationManager",
+      "Portal",
+      "PortalItem"
+    ],
+    "redirect_from": [],
+    "relevant_apis": [
+      "ArcGISAuthenticationChallengeHandler",
+      "ArcGISMap",
+      "ArcGISMapView",
+      "AuthenticationManager",
+      "Portal",
+      "PortalItem"
+    ],
+    "snippets": [
+      "authenticate_with_token_sample.dart"
+    ],
+    "title": "Authenticate with token",
+    "key": "authenticate_with_token"
+  },
   "create_mobile_geodatabase": {
     "category": "Edit and Manage Data",
     "description": "Create and share a mobile geodatabase.",

lib/models/samples_widget_list.dart

@@ -8,6 +8,7 @@ import 'package:arcgis_maps_sdk_flutter_samples/samples/apply_scheduled_updates_
 import 'package:arcgis_maps_sdk_flutter_samples/samples/apply_simple_renderer_to_feature_layer/apply_simple_renderer_to_feature_layer_sample.dart';
 import 'package:arcgis_maps_sdk_flutter_samples/samples/apply_unique_value_renderer/apply_unique_value_renderer_sample.dart';
 import 'package:arcgis_maps_sdk_flutter_samples/samples/authenticate_with_oauth/authenticate_with_oauth_sample.dart';
+import 'package:arcgis_maps_sdk_flutter_samples/samples/authenticate_with_token/authenticate_with_token_sample.dart';
 import 'package:arcgis_maps_sdk_flutter_samples/samples/create_mobile_geodatabase/create_mobile_geodatabase_sample.dart';
 import 'package:arcgis_maps_sdk_flutter_samples/samples/create_planar_and_geodetic_buffers/create_planar_and_geodetic_buffers_sample.dart';
 import 'package:arcgis_maps_sdk_flutter_samples/samples/densify_and_generalize_geometry/densify_and_generalize_geometry_sample.dart';
@@ -55,6 +56,7 @@ const sampleWidgets = <String, Widget>{
       ApplySimpleRendererToFeatureLayerSample(),
   'apply_unique_value_renderer': ApplyUniqueValueRendererSample(),
   'authenticate_with_oauth': AuthenticateWithOAuthSample(),
+  'authenticate_with_token': AuthenticateWithTokenSample(),
   'create_mobile_geodatabase': CreateMobileGeodatabaseSample(),
   'create_planar_and_geodetic_buffers': CreatePlanarAndGeodeticBuffersSample(),
   'densify_and_generalize_geometry': DensifyAndGeneralizeGeometrySample(),

lib/samples/authenticate_with_token/README.md

@@ -0,0 +1,43 @@
+# Authenticate with token
+
+Access a web map that is secured with ArcGIS token-based authentication.
+
+![Image of authenticate with token](authenticate_with_token.png)
+
+## Use case
+
+Allows you to access a secure service with the convenience and security of ArcGIS token-based authentication. For example, rather than providing a user name and password every time you want to access a secure service, you only provide those creditials initially to obtain a token which then can be used to access secured resources.
+
+## How to use the sample
+
+Once you launch the app, you will be challenged for an ArcGIS Online login to view the protected map service. Enter a user name and password for an ArcGIS Online named user account (such as your ArcGIS Location Platform account). If you authenticate successfully, the protected map service will display in the map.
+
+## How it works
+
+1. Implement the `ArcGISAuthenticationChallengeHandler` interface to handle the challenges sent by the protected map service.
+2. Set the `arcGISAuthenticationChallengeHandler` property on `AuthenticationManager`.
+3. Create a `Portal`.
+4. Create a `PortalItem` for the protected web map using the `Portal` and Item ID of the protected map service.
+5. Create a map to display in the `ArcGISMapView` using the `PortalItem`.
+6. Set the map to display in the `ArcGISMapView`.
+
+## Relevant API
+
+* ArcGISAuthenticationChallengeHandler
+* ArcGISMap
+* ArcGISMapView
+* AuthenticationManager
+* Portal
+* PortalItem
+
+## About the data
+
+The Traffic web map uses public layers as well as the world traffic (premium content) layer. The world traffic service presents historical and near real-time traffic information for different regions in the world. The data is updated every 5 minutes. This map service requires an ArcGIS Online or ArcGIS Location Platform subscription.
+
+## Additional information
+
+Please note: the username and password are case sensitive for token-based authentication. If the user doesn't have permission to access all the content within the portal item, partial or no content will be returned.
+
+## Tags
+
+authentication, cloud, portal, remember, security

lib/samples/authenticate_with_token/README.metadata.json

@@ -0,0 +1,34 @@
+{
+    "category": "Cloud and Portal",
+    "description": "Access a web map that is secured with ArcGIS token-based authentication.",
+    "ignore": false,
+    "images": [
+        "authenticate_with_token.png"
+    ],
+    "keywords": [
+        "authentication",
+        "cloud",
+        "portal",
+        "remember",
+        "security",
+        "ArcGISAuthenticationChallengeHandler",
+        "ArcGISMap",
+        "ArcGISMapView",
+        "AuthenticationManager",
+        "Portal",
+        "PortalItem"
+    ],
+    "redirect_from": [],
+    "relevant_apis": [
+        "ArcGISAuthenticationChallengeHandler",
+        "ArcGISMap",
+        "ArcGISMapView",
+        "AuthenticationManager",
+        "Portal",
+        "PortalItem"
+    ],
+    "snippets": [
+        "authenticate_with_token_sample.dart"
+    ],
+    "title": "Authenticate with token"
+}

lib/samples/authenticate_with_token/authenticate_with_token.png

@@ -0,0 +1,221 @@
+//
+// Copyright 2024 Esri
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//   https://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+
+import 'package:arcgis_maps/arcgis_maps.dart';
+import 'package:flutter/material.dart';
+
+import '../../utils/sample_state_support.dart';
+
+class AuthenticateWithTokenSample extends StatefulWidget {
+  const AuthenticateWithTokenSample({super.key});
+
+  @override
+  State<AuthenticateWithTokenSample> createState() =>
+      _AuthenticateWithTokenSampleState();
+}
+
+class _AuthenticateWithTokenSampleState
+    extends State<AuthenticateWithTokenSample>
+    with SampleStateSupport
+    implements ArcGISAuthenticationChallengeHandler {
+  // Create a controller for the map view.
+  final _mapViewController = ArcGISMapView.createController();
+
+  @override
+  void initState() {
+    super.initState();
+
+    // This class implements the ArcGISAuthenticationChallengeHandler interface,
+    // which allows it to handle authentication challenges via calls to its
+    // handleArcGISAuthenticationChallenge() method.
+    ArcGISEnvironment
+        .authenticationManager.arcGISAuthenticationChallengeHandler = this;
+  }
+
+  @override
+  void dispose() {
+    // We do not want to handle authentication challenges outside of this sample,
+    // so we remove this as the challenge handler.
+    ArcGISEnvironment
+        .authenticationManager.arcGISAuthenticationChallengeHandler = null;
+
+    // Log out by removing all credentials.
+    ArcGISEnvironment.authenticationManager.arcGISCredentialStore.removeAll();
+
+    super.dispose();
+  }
+
+  @override
+  Widget build(BuildContext context) {
+    return Scaffold(
+      resizeToAvoidBottomInset: false,
+      // Add a map view to the widget tree and set a controller.
+      body: ArcGISMapView(
+        controllerProvider: () => _mapViewController,
+        onMapViewReady: onMapViewReady,
+      ),
+    );
+  }
+
+  void onMapViewReady() async {
+    // Set a portal item map that has a secure layer (traffic).
+    // Loading the secure layer will trigger an authentication challenge.
+    _mapViewController.arcGISMap = ArcGISMap.withItem(
+      PortalItem.withPortalAndItemId(
+        portal: Portal.arcGISOnline(connection: PortalConnection.authenticated),
+        itemId: 'e5039444ef3c48b8a8fdc9227f9be7c1',
+      ),
+    );
+  }
+
+  @override
+  void handleArcGISAuthenticationChallenge(
+      ArcGISAuthenticationChallenge challenge) async {
+    // Show a login dialog to handle the authentication challenge.
+    await showDialog(
+      context: context,
+      builder: (context) => LoginWidget(challenge: challenge),
+    );
+  }
+}
+
+// A widget that handles an authentication challenge by prompting the user to log in.
+class LoginWidget extends StatefulWidget {
+  final ArcGISAuthenticationChallenge challenge;
+
+  const LoginWidget({
+    super.key,
+    required this.challenge,
+  });
+
+  @override
+  State<LoginWidget> createState() => _LoginWidgetState();
+}
+
+class _LoginWidgetState extends State<LoginWidget> {
+  // Controllers for the username and password text fields.
+  final _usernameController = TextEditingController();
+  final _passwordController = TextEditingController();
+  // An error message to display.
+  String? _error;
+  // The result: true if the user logged in, false if the user canceled.
+  bool? _result;
+
+  @override
+  void dispose() {
+    // If the widget was dismissed without a result, the challenge should fail.
+    if (_result == null) widget.challenge.continueAndFail();
+
+    // Text editing controllers must be disposed.
+    _usernameController.dispose();
+    _passwordController.dispose();
+
+    super.dispose();
+  }
+
+  @override
+  Widget build(BuildContext context) {
+    return Dialog(
+      child: Padding(
+        padding: const EdgeInsets.all(20.0),
+        child: SingleChildScrollView(
+          child: Column(
+            mainAxisSize: MainAxisSize.min,
+            children: [
+              Text(
+                'Authentication Required',
+                style: Theme.of(context).textTheme.titleLarge,
+              ),
+              // Show the server URL that is requiring authentication.
+              Text(widget.challenge.requestUri.toString()),
+              // Text fields for the username and password.
+              TextField(
+                controller: _usernameController,
+                autocorrect: false,
+                decoration: const InputDecoration(hintText: 'Username'),
+              ),
+              TextField(
+                controller: _passwordController,
+                autocorrect: false,
+                obscureText: true,
+                decoration: const InputDecoration(hintText: 'Password'),
+              ),
+              const SizedBox(height: 10.0),
+              // Buttons to cancel or log in.
+              Row(
+                children: [
+                  ElevatedButton(
+                    onPressed: cancel,
+                    child: const Text('Cancel'),
+                  ),
+                  const Spacer(),
+                  ElevatedButton(
+                    onPressed: login,
+                    child: const Text('Login'),
+                  ),
+                ],
+              ),
+              // Display an error message if there is one.
+              Text(
+                _error ?? '',
+                style: const TextStyle(color: Colors.red),
+              ),
+            ],
+          ),
+        ),
+      ),
+    );
+  }
+
+  void login() async {
+    setState(() => _error = null);
+
+    // Username and password are required.
+    final username = _usernameController.text;
+    if (username.isEmpty) {
+      setState(() => _error = 'Username is required.');
+      return;
+    }
+    final password = _passwordController.text;
+    if (password.isEmpty) {
+      setState(() => _error = 'Password is required.');
+      return;
+    }
+
+    try {
+      // Attempt to create a credential with the provided username and password.
+      final credential = await TokenCredential.createWithChallenge(
+        widget.challenge,
+        username: username,
+        password: password,
+      );
+      if (!mounted) return;
+
+      // If successful, continue with the credential.
+      widget.challenge.continueWithCredential(credential);
+      Navigator.of(context).pop(_result = true);
+    } on ArcGISException catch (e) {
+      // If there was an error, display the error message.
+      setState(() => _error = e.message);
+    }
+  }
+
+  void cancel() {
+    // If the user cancels, cancel the challenge and dismiss the dialog.
+    widget.challenge.cancel();
+    Navigator.of(context).pop(_result = false);
+  }
+}