Added setting to disable email notifications

Author: alrios-ms

Scripts/Set-SenderRecipientCredentials.ps1

@@ -47,6 +47,46 @@ Set-SenderRecipientCredentials	-SubscriptionName "<subscription name>" `
 								-Verbose
 
 #>
+
+function Skip-SenderRecipientCredentials {
+	[CmdletBinding()]
+	param(
+		[Parameter(Mandatory=$True)]
+		[string] $SubscriptionName,
+		[Parameter(Mandatory=$True)]
+		[string] $SolutionAbbreviation,
+		[Parameter(Mandatory=$True)]
+		[string] $EnvironmentAbbreviation
+	)
+
+	$defaultValue = "not-set"
+	$defaultSecret = New-Object System.Security.SecureString
+	$defaultValue.ToCharArray() | ForEach-Object { $defaultSecret.AppendChar($_) }
+
+	Set-SenderRecipientCredentials `
+		-SubscriptionName $SubscriptionName `
+		-SolutionAbbreviation $SolutionAbbreviation `
+		-EnvironmentAbbreviation $EnvironmentAbbreviation `
+		-SecureSenderUsername $defaultSecret `
+		-SecureSenderPassword $defaultSecret `
+		-SecureSyncCompletedCCEmailAddresses $defaultValue `
+		-SecureSyncDisabledCCEmailAddresses $defaultValue `
+		-SecureSupportEmailAddresses $defaultValue `
+		-GmmGraphAppHasMailApplicationPermissions $false
+
+		$dataResourceGroupName = "$SolutionAbbreviation-data-$EnvironmentAbbreviation"
+		$appConfigName = "$SolutionAbbreviation-appConfig-$EnvironmentAbbreviation"
+		$appConfigObject = Get-AzAppConfigurationStore -ResourceGroupName $dataResourceGroupName -Name $appConfigName;
+
+		Set-AzAppConfigurationKeyValue -Endpoint $appConfigObject.Endpoint `
+										-Key "Mail:SkipMailNotifications" `
+										-Value "true" `
+										-ContentType "boolean" `
+										-Etag { tag1="Mail" }
+
+		Write-Host "Set Mail:SkipMailNotifications key with the value 'true'";
+}
+
 function Set-SenderRecipientCredentials {
 	[CmdletBinding()]
 	param(
@@ -147,13 +187,13 @@ function Set-SenderRecipientCredentials {
 
 	#endregion
 
+	$dataResourceGroupName = "$SolutionAbbreviation-data-$EnvironmentAbbreviation"
+	$appConfigName = "$SolutionAbbreviation-appConfig-$EnvironmentAbbreviation"
+	$appConfigObject = Get-AzAppConfigurationStore -ResourceGroupName $dataResourceGroupName -Name $appConfigName;
+
 	#region If GMM Graph App has Application permission for Mail.Send, add app config value to indicate it
 	if($GmmGraphAppHasMailApplicationPermissions) {
 
-		$dataResourceGroupName = "$SolutionAbbreviation-data-$EnvironmentAbbreviation"
-		$appConfigName = "$SolutionAbbreviation-appConfig-$EnvironmentAbbreviation"
-		$appConfigObject = Get-AzAppConfigurationStore -ResourceGroupName $dataResourceGroupName -Name $appConfigName;
-
 		Set-AzAppConfigurationKeyValue -Endpoint $appConfigObject.Endpoint `
 										-Key "Mail:IsMailApplicationPermissionGranted" `
 										-Value "true" `
@@ -164,6 +204,12 @@ function Set-SenderRecipientCredentials {
 
 	}
 
+	Set-AzAppConfigurationKeyValue -Endpoint $appConfigObject.Endpoint `
+		-Key "Mail:SkipMailNotifications" `
+		-Value "false" `
+		-ContentType "boolean" `
+		-Etag { tag1="Mail" }
+
 	#endregion
 
 	Write-Verbose "Set-SenderRecipientCredentials completed."

Service/GroupMembershipManagement/DIConcreteTypes/MailConfig.cs

@@ -10,12 +10,14 @@ public class MailConfig : IMailConfig
         public bool IsAdaptiveCardEnabled { get; set; }
         public bool GMMHasSendMailApplicationPermissions { get; set; }
         public string SenderAddress { get; set; }
+        public bool SkipEmailNotifications { get; set; }
 
-        public MailConfig(bool isAdaptiveCardEnabled, bool gmmHasSendMailApplicationPermissions, string senderAddress)
+        public MailConfig(bool isAdaptiveCardEnabled, bool gmmHasSendMailApplicationPermissions, string senderAddress, bool skipEmailNotifications)
         {
             IsAdaptiveCardEnabled = isAdaptiveCardEnabled;
             GMMHasSendMailApplicationPermissions = gmmHasSendMailApplicationPermissions;
             SenderAddress = senderAddress;
+            SkipEmailNotifications = skipEmailNotifications;
         }
 
         public MailConfig()

Service/GroupMembershipManagement/Hosts.FunctionBase/CommonStartup.cs

@@ -157,7 +157,8 @@ public override void Configure(IFunctionsHostBuilder builder)
                 var configuration = services.GetService<IConfiguration>();
                 return new MailConfig(configuration.GetValue<bool>("Mail:IsAdaptiveCardEnabled"),
                     configuration.GetValue("Mail:IsMailApplicationPermissionGranted", false),
-                    configuration.GetValue<string>("senderAddress"));
+                    configuration.GetValue<string>("senderAddress"),
+                    configuration.GetValue("Mail:SkipMailNotifications", false));
             });
 
             builder.Services.AddSingleton<IMailRepository>(services =>

Service/GroupMembershipManagement/Hosts/Notifier/Services.Notifier.Tests/NotifierServiceTests.cs

@@ -25,6 +25,13 @@
 using DIConcreteTypes;
 using Repositories.Logging;
 using Models.Entities;
+using Repositories.Mail;
+using Microsoft.Graph;
+using Microsoft.Azure.Documents.SystemFunctions;
+using Microsoft.Graph.Me.SendMail;
+using static Microsoft.Graph.Me.SendMail.SendMailRequestBuilder;
+using System.Threading;
+using Microsoft.Kiota.Abstractions;
 
 namespace Services.Notifier.Tests
 {
@@ -250,5 +257,69 @@ public async Task SendNormalThresholdEmailAsync_SendsEmail_WithExpectedParameter
             _mailRepository.Verify(x => x.SendMailAsync(It.IsAny<EmailMessage>(), It.IsAny<Guid?>()), Times.Once());
 
         }
+
+        [TestMethod]
+        public async Task SendEmailWhenEmailsHaveBeenDisabled()
+        {
+
+            var requestAdapter = new Mock<IRequestAdapter>();
+            requestAdapter.SetupProperty(x => x.BaseUrl).SetReturnsDefault("https://graph.microsoft.com/v1.0");
+            var graphServiceClient = new Mock<GraphServiceClient>(requestAdapter.Object, "https://graph.microsoft.com/v1.0");
+
+            var mailConfig = new MailConfig(true, false, "not-set", true);
+            var mailRepository = new MailRepository(graphServiceClient.Object,
+                                                    mailConfig,
+                                                    _localizationRepository,
+                                                    _loggerMock.Object,
+                                                    "abc",
+                                                    _graphGroupRepository.Object,
+                                                    new Mock<IDatabaseSettingsRepository>().Object);
+
+            _notifierService = new NotifierService(_loggerMock.Object,
+                                    mailRepository,
+                                    _mailAddresses.Object,
+                                    _localizationRepository,
+                                    _thresholdNotificationService.Object,
+                                    _notificationRepository.Object,
+                                    _graphGroupRepository.Object,
+                                    _notificationTypesRepository.Object,
+                                    _jobNotificationRepository.Object,
+                                    _thresholdConfig.Object,
+                                    _gmmResources.Object,
+                                    _telemetryClient
+                                    );
+
+            SyncJob job = SampleDataHelper.CreateSampleSyncJobs(1, GroupMembership).First();
+            var notificationTypeId = 1;
+
+            string[] additionalContentParameters = new string[] { "Param1", "Param2" };
+            var messageContent = new Dictionary<string, Object>
+            {
+                { "SyncJob", job },
+                { "AdditionalContentParameters", additionalContentParameters }
+            };
+            string subjectTemplate = "DisabledJobEmailSubject";
+            string contentTemplate = "SyncDisabledNoGroupEmailBody";
+            _notificationTypesRepository.Setup(repo => repo.GetNotificationTypeByNotificationTypeNameAsync(contentTemplate))
+                .ReturnsAsync(new NotificationType { Id = notificationTypeId, Name = contentTemplate, Disabled = false });
+
+            _jobNotificationRepository.Setup(repo => repo.IsNotificationDisabledForJobAsync(job.Id, notificationTypeId))
+                .ReturnsAsync(false);
+
+            string serializedMessageContent = JsonSerializer.Serialize(messageContent);
+            OrchestratorRequest request = new OrchestratorRequest
+            {
+                MessageType = nameof(NotificationMessageType.SyncStartedNotification),
+                MessageBody = serializedMessageContent,
+                SubjectTemplate = subjectTemplate,
+                ContentTemplate = contentTemplate
+            };
+
+            await _notifierService.SendEmailAsync(request.MessageType, request.MessageBody, request.SubjectTemplate, request.ContentTemplate);
+            _loggerMock.Verify(x => x.LogMessageAsync(It.Is<LogMessage>(m => m.Message.Equals("Email notifications are disabled.")), 
+                                                        VerbosityLevel.INFO, 
+                                                        It.IsAny<string>(), 
+                                                        It.IsAny<string>()), Times.Once());
+        }
     }
 }

Service/GroupMembershipManagement/Repositories.Contracts/InjectConfig/IMailConfig.cs

@@ -8,5 +8,6 @@ public interface IMailConfig
         public bool IsAdaptiveCardEnabled { get; }
         public bool GMMHasSendMailApplicationPermissions { get; set; }
         public string SenderAddress { get; set; }
+        public bool SkipEmailNotifications { get; set; }
     }
 }

Service/GroupMembershipManagement/Repositories.Mail/Documentation/SetSenderAddressForEmailNotification.md

@@ -1,5 +1,7 @@
 # Set sender address for email notification
 
+Follow the steps below to set the sender's credentials that will be used to send email notifications. If you don't want to use email notifications see [Skip email notifications](#skip-email-notifications).
+
 1) Open the Azure Portal from the tenant where the Graph App is created in
 2) Add Mail.Send Delegated Permission in `<SolutionAbbreviation>-Graph-<EnvironmentAbbreviation>` application
 
@@ -58,4 +60,32 @@
     * key = "Mail:IsMailApplicationPermissionGranted"
     * value = "true"
 
-3) If the key-value pair above does not exist (maybe the Set-SenderReceipientCredentials script failed at the end) then add it
+3) If the key-value pair above does not exist (maybe the Set-SenderReceipientCredentials script failed at the end) then add it
+
+## Skip email notifications
+
+If you decide not to use email notifications follow these steps. From Powershell 7 command prompt run:
+
+```
+ . ./Set-SenderRecipientCredentials.ps1
+
+ Skip-SenderRecipientCredentials `
+    -SubscriptionName "<SubscriptionName>" `
+    -SolutionAbbreviation "<SolutionAbbreviation>" `
+    -EnvironmentAbbreviation "<EnvironmentAbbreviation>" `
+```
+
+The script will populate default values for sender's username and password required by GMM deployment to succeed, and it also indicates GMM to not send any email notifications by setting Mail:SkipMailNotifications to true in App Configuration settings.
+
+If at a later time you decide to use email notifications you will need to follow steps from [Set sender address for email notification](#set-sender-address-for-email-notification). Keep in mind that re-running these scripts creates a new version of the senderUsername and senderPassword secrets in your prereqs keyvault. You will need to update the Notifier's function settings to use the latest version of the secrets.
+
+Notifier's function sender credentials settings that need to be updated:
+```
+"name": "senderAddress",  
+"value": "@Microsoft.KeyVault(SecretUri=https://<solutionAbbreviation>-prereqs-<environmentAbbreviation>.vault.azure.net/secrets/senderUsername/<version>)"
+  
+"name": "senderPassword",  
+"value": "@Microsoft.KeyVault(SecretUri=https://<solutionAbbreviation>-prereqs-<environmentAbbreviation>.vault.azure.net/secrets/senderPassword/<version>)"
+```
+
+`<version>` - Needs to be replaced with the latest version for both secrets in the prereqs keyvault.

Service/GroupMembershipManagement/Repositories.Mail/MailRepository.cs

@@ -41,6 +41,17 @@ public MailRepository(GraphServiceClient graphClient, IMailConfig mailAdaptiveCa
 
         public async Task SendMailAsync(EmailMessage emailMessage, Guid? runId)
         {
+            if (_mailConfig.SkipEmailNotifications)
+            {
+                await _loggingRepository.LogMessageAsync(new LogMessage
+                {
+                    RunId = runId,
+                    Message = "Email notifications are disabled."
+                });
+
+                return;
+            }
+
             if (emailMessage is null)
             {
                 throw new ArgumentNullException(nameof(emailMessage));
@@ -75,7 +86,7 @@ public async Task SendMailAsync(EmailMessage emailMessage, Guid? runId)
 
             try
             {
-                if(_mailConfig.GMMHasSendMailApplicationPermissions)
+                if (_mailConfig.GMMHasSendMailApplicationPermissions)
                 {
                     var body = new Microsoft.Graph.Users.Item.SendMail.SendMailPostRequestBody
                     {
@@ -139,8 +150,8 @@ public async Task<Message> GetAdaptiveCardMessage(EmailMessage emailMessage)
 
             string groupId = emailMessage?.AdditionalContentParams[0];
             string destinationGroupName = string.IsNullOrEmpty(emailMessage?.DestinationGroupName) ? "" : emailMessage.DestinationGroupName;
-            var urlSetting =  await _settingsRepository.GetSettingByKeyAsync(SettingKey.UIUrl);
-            var dashboardUrlSetting =  await _settingsRepository.GetSettingByKeyAsync(SettingKey.DashboardUrl);
+            var urlSetting = await _settingsRepository.GetSettingByKeyAsync(SettingKey.UIUrl);
+            var dashboardUrlSetting = await _settingsRepository.GetSettingByKeyAsync(SettingKey.DashboardUrl);
 
             string UIUrl = urlSetting?.SettingValue ?? "";
             string dashboardUrl = dashboardUrlSetting?.SettingValue ?? "";