[Feature] Adapt to Web App Service easyauth (#699)

<!-- Please provide brief information about the PR, what it contains &
its purpose, new behaviors after the change. And let us know here if you
need any help: https://github.com/microsoft/HydraLab/issues/new -->

## Description

<!-- A few words to explain your changes -->

### Linked GitHub issue ID: #  

## Pull Request Checklist
<!-- Put an x in the boxes that apply. This is simply a reminder of what
we are going to look for before merging your code. -->

- [x] Tests for the changes have been added (for bug fixes / features)
- [x] Code compiles correctly with all tests are passed.
- [x] I've read the [contributing
guide](https://github.com/microsoft/HydraLab/blob/main/CONTRIBUTING.md#making-changes-to-the-code)
and followed the recommended practices.
- [x] [Wikis](https://github.com/microsoft/HydraLab/wiki) or
[README](https://github.com/microsoft/HydraLab/blob/main/README.md) have
been reviewed and added / updated if needed (for bug fixes / features)

### Does this introduce a breaking change?
*If this introduces a breaking change for Hydra Lab users, please
describe the impact and migration path.*

- [ ] Yes
- [x] No

## How you tested it
*Please make sure the change is tested, you can test it by adding UTs,
do local test and share the screenshots, etc.*


Please check the type of change your PR introduces:
- [ ] Bugfix
- [x] Feature
- [ ] Technical design
- [ ] Build related changes
- [ ] Refactoring (no functional changes, no api changes)
- [ ] Code style update (formatting, renaming) or Documentation content
changes
- [ ] Other (please describe): 

### Feature UI screenshots or Technical design diagrams
*If this is a relatively large or complex change, kick it off by drawing
the tech design with PlantUML and explaining why you chose the solution
you did and what alternatives you considered, etc...*

---------

Co-authored-by: Le Zhou <[email protected]>

Author: zhou9584

center/src/main/java/com/microsoft/hydralab/center/interceptor/BaseInterceptor.java

@@ -71,8 +71,26 @@ public boolean preHandle(HttpServletRequest request, HttpServletResponse respons
         if (authToken != null) {
             authToken = authToken.replaceAll("Bearer ", "");
         }
+
+        // For Azure AD authentication
+        String accessToken = request.getHeader("X-MS-TOKEN-AAD-ID-TOKEN");
+
+        LOGGER.info("IdToken: " + request.getHeader("X-MS-TOKEN-AAD-ID-TOKEN"));
+        LOGGER.info("AccessToken: " + request.getHeader("X-MS-TOKEN-AAD-ACCESS-TOKEN"));
+        LOGGER.info("UserId: " + request.getHeader("X-MS-CLIENT-PRINCIPAL-ID"));
+        LOGGER.info("UserName: " + request.getHeader("X-MS-CLIENT-PRINCIPAL-NAME"));
+
         //check is ignore
         if (!authUtil.isIgnore(requestURI)) {
+            //invoked by API client
+            if (!StringUtils.isEmpty(accessToken)) {
+                if (authTokenService.checkAADToken(accessToken)) {
+                    return true;
+                } else {
+                    response.sendError(HttpStatus.UNAUTHORIZED.value(), "unauthorized, error authorization code");
+                }
+            }
+
             //invoke by client
             if (!StringUtils.isEmpty(authToken)) {
                 if (authTokenService.checkAuthToken(authToken)) {

center/src/main/java/com/microsoft/hydralab/center/service/AuthTokenService.java

@@ -4,6 +4,7 @@
 package com.microsoft.hydralab.center.service;
 
 import com.microsoft.hydralab.center.repository.AuthTokenRepository;
+import com.microsoft.hydralab.center.util.AuthUtil;
 import com.microsoft.hydralab.common.entity.center.AuthToken;
 import org.springframework.security.core.Authentication;
 import org.springframework.security.core.context.SecurityContextHolder;
@@ -17,6 +18,8 @@
 @Service
 public class AuthTokenService {
 
+    @Resource
+    AuthUtil authUtil;
     @Resource
     AuthTokenRepository authTokenRepository;
     @Resource
@@ -64,6 +67,15 @@ public boolean checkAuthToken(String authToken) {
         }
     }
 
+    public boolean checkAADToken(String aadToken) {
+        Authentication authObj = securityUserService.loadUserAuthentication(authUtil.getLoginUserName(aadToken), aadToken);
+        if (authObj == null) {
+            return false;
+        }
+        SecurityContextHolder.getContext().setAuthentication(authObj);
+        return true;
+    }
+
     public void loadDefaultUser(HttpSession session) {
         securityUserService.addDefaultUserSession(session);
     }

react/src/component/HeaderView.jsx

@@ -51,7 +51,7 @@ export default class HeaderView extends BaseView {
         const settings = [
             { text: this.state.userInfo ? this.state.userInfo.userName : 'Loading', dialog: null },
             { text: `Default Team: ${this.state.userInfo && this.state.userInfo.defaultTeamName ? this.state.userInfo.defaultTeamName : 'Loading'}`, dialog: 'changeDefaultTeamIsShown' },
-            { text: 'Logout', dialog: null }
+            { text: 'Logout', dialog: null, href: '/.auth/logout' }
         ];
         const helpSettings = [
             { text: 'Feedback', href: 'https://forms.office.com/r/0wnc2Sk0tp' },
@@ -136,6 +136,9 @@ export default class HeaderView extends BaseView {
                                 this.handleStatus(setting.dialog, true)
                                 this.getUserInfo()
                                 this.refreshTeamList()
+                                if (setting.href) {
+                                    window.location.href = setting.href
+                                }
                             }}>
                                 <Typography textAlign="center">{setting.text}</Typography>
                             </MenuItem>