Removed ProcessUserGroupsForOverage From Readme

Shama-K · Shama-K · commit 03477308266c · 2020-09-24T09:31:55.000-07:00
diff --git a/5-WebApp-AuthZ/5-2-Groups/README-incremental-instructions.md b/5-WebApp-AuthZ/5-2-Groups/README-incremental-instructions.md
@@ -305,75 +305,6 @@ The following files have the code that would be of interest to you:
           }
       ```
 
-    **ProcessClaimsForGroupsOverage** method uses `GraphServiceClient` to retrieve groups for the signed-in user from [/me/memberOf](https://docs.microsoft.com/graph/api/user-list-memberof) endpoint. All the group ids are stored in Session.
-
-      ```csharp
-          private static async Task<List<string>> ProcessUserGroupsForOverage(TokenValidatedContext context)
-          {
-              List<string> groupClaims = new List<string>();
-              ...
-                  var graphClient = context.HttpContext.RequestServices.GetService<GraphServiceClient>();
-                  if (graphClient == null)
-                  {
-                      Console.WriteLine("No service for type 'Microsoft.Graph.GraphServiceClient' has been registered in the Startup.");
-                  }
-                  else if (context.SecurityToken != null)
-                  {
-                      if (!context.HttpContext.Items.ContainsKey("JwtSecurityTokenUsedToCallWebAPI"))
-                      {
-                          context.HttpContext.Items.Add("JwtSecurityTokenUsedToCallWebAPI", context.SecurityToken as JwtSecurityToken);
-                      }
-                      string select = "id,displayName,onPremisesNetBiosName,onPremisesDomainName,onPremisesSamAccountNameonPremisesSecurityIdentifier";
-
-                      IUserMemberOfCollectionWithReferencesPage memberPage = new UserMemberOfCollectionWithReferencesPage();
-                      try
-                      {
-                          memberPage = await graphClient.Me.MemberOf.Request().Select(select).GetAsync().ConfigureAwait(false);
-                      }
-                      catch (Exception graphEx)
-                      {
-                          var exMsg = graphEx.InnerException != null ? graphEx.InnerException.Message : graphEx.Message;
-                          Console.WriteLine("Call to Microsoft Graph failed: " + exMsg);
-                      }
-                      if (memberPage?.Count > 0)
-                      {
-                          var allgroups = ProcessIGraphServiceMemberOfCollectionPage(memberPage);
-                          if (allgroups?.Count > 0)
-                          {
-                              var identity = (ClaimsIdentity)context.Principal.Identity;
-
-                              if (identity != null)
-                              {
-                                  if (!IsAccessToken(identity))
-                                  {
-                                      foreach (Group group in allgroups)
-                                      {
-                                          groupClaims.Add(group.Id);
-                                      }
-                                      context.HttpContext.Session.SetAsByteArray("groupClaims", groupClaims);
-                                  }
-                              }
-                          }
-                      }
-                  }
-              }
-              ...
-              return groupClaims;
-          }
-      ```
-
-    In the app registration, you might want to add other attributes than id to the `groups` claim; For instance if, the required format is `NetBIOSDomain\sAMAccountName` then replace
-
-      ```csharp
-          groupClaims.Add(new Claim("groups", group.Id));
-      ```
-
-    with
-
-      ```csharp
-       groupClaims.Add(group.OnPremisesNetBiosName+"\\"+group.OnPremisesSamAccountName));
-      ```
-
     GraphHelper.cs contains a method **CheckUsersGroupMembership** that is called in `CustomAuthorization.cs` to check if value of GroupName parameter exists in either Session for Overage scenario or in User claims otherwise.
 
       ```csharp
diff --git a/5-WebApp-AuthZ/5-2-Groups/README.md b/5-WebApp-AuthZ/5-2-Groups/README.md
@@ -423,75 +423,6 @@ The following files have the code that would be of interest to you:
           }
       ```
 
-    **ProcessClaimsForGroupsOverage** method uses `GraphServiceClient` to retrieve groups for the signed-in user from [/me/memberOf](https://docs.microsoft.com/graph/api/user-list-memberof) endpoint. All the group ids are stored in Session.
-
-      ```csharp
-          private static async Task<List<string>> ProcessUserGroupsForOverage(TokenValidatedContext context)
-          {
-              List<string> groupClaims = new List<string>();
-              ...
-                  var graphClient = context.HttpContext.RequestServices.GetService<GraphServiceClient>();
-                  if (graphClient == null)
-                  {
-                      Console.WriteLine("No service for type 'Microsoft.Graph.GraphServiceClient' has been registered in the Startup.");
-                  }
-                  else if (context.SecurityToken != null)
-                  {
-                      if (!context.HttpContext.Items.ContainsKey("JwtSecurityTokenUsedToCallWebAPI"))
-                      {
-                          context.HttpContext.Items.Add("JwtSecurityTokenUsedToCallWebAPI", context.SecurityToken as JwtSecurityToken);
-                      }
-                      string select = "id,displayName,onPremisesNetBiosName,onPremisesDomainName,onPremisesSamAccountNameonPremisesSecurityIdentifier";
-
-                      IUserMemberOfCollectionWithReferencesPage memberPage = new UserMemberOfCollectionWithReferencesPage();
-                      try
-                      {
-                          memberPage = await graphClient.Me.MemberOf.Request().Select(select).GetAsync().ConfigureAwait(false);
-                      }
-                      catch (Exception graphEx)
-                      {
-                          var exMsg = graphEx.InnerException != null ? graphEx.InnerException.Message : graphEx.Message;
-                          Console.WriteLine("Call to Microsoft Graph failed: " + exMsg);
-                      }
-                      if (memberPage?.Count > 0)
-                      {
-                          var allgroups = ProcessIGraphServiceMemberOfCollectionPage(memberPage);
-                          if (allgroups?.Count > 0)
-                          {
-                              var identity = (ClaimsIdentity)context.Principal.Identity;
-
-                              if (identity != null)
-                              {
-                                  if (!IsAccessToken(identity))
-                                  {
-                                      foreach (Group group in allgroups)
-                                      {
-                                          groupClaims.Add(group.Id);
-                                      }
-                                      context.HttpContext.Session.SetAsByteArray("groupClaims", groupClaims);
-                                  }
-                              }
-                          }
-                      }
-                  }
-              }
-              ...
-              return groupClaims;
-          }
-      ```
-
-    In the app registration, you might want to add other attributes than id to the `groups` claim; For instance if, the required format is `NetBIOSDomain\sAMAccountName` then replace
-
-      ```csharp
-          groupClaims.Add(new Claim("groups", group.Id));
-      ```
-
-    with
-
-      ```csharp
-       groupClaims.Add(group.OnPremisesNetBiosName+"\\"+group.OnPremisesSamAccountName));
-      ```
-
     GraphHelper.cs contains a method **CheckUsersGroupMembership** that is called in `CustomAuthorization.cs` to check if value of GroupName parameter exists in either Session for Overage scenario or in User claims otherwise.
 
       ```csharp
