final changes2

derisen · derisen · commit 74874cecd58c · 2020-02-21T10:32:39.000-08:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,7 +1,9 @@
 # CHANGELOG
 
-## 2/13/2020
+## 2/21/2020
 
 * Source code refactored.
+* Ajax calls replaced with Fetch API.
+* Corrected HTML structure.
 * UI redesigned with Bootstrap 4 framework.
-* Added AppCreationScripts for Powershell users.
+* Corrected README.md.
diff --git a/JavaScriptSPA/api.js b/JavaScriptSPA/api.js
@@ -10,12 +10,13 @@ function callApiWithAccessToken(endpoint, accessToken) {
         headers: headers
       };
   
-    console.log('request made to Graph API at: ' + new Date().toString());
+    console.log('request made to Web API at: ' + new Date().toString());
     
     fetch(endpoint, options)
       .then(response => response.json())
       .then(response => {
-        logMessage("Web APi returned:\n" + JSON.stringify(response));
+        console.log('web API responded at: ' + new Date().toString());
+        logMessage("web API returned:\n" + JSON.stringify(response));
       }).catch(error => {
         logMessage("Error calling the Web api:\n" + error);
       });
diff --git a/JavaScriptSPA/apiConfig.js b/JavaScriptSPA/apiConfig.js
@@ -1,5 +1,5 @@
 // The current application coordinates were pre-registered in a B2C tenant.
-var apiConfig = {
+const apiConfig = {
     b2cScopes: ["https://fabrikamb2c.onmicrosoft.com/helloapi/demo.read"],
     webApi: "https://fabrikamb2chello.azurewebsites.net/hello"
   };
diff --git a/JavaScriptSPA/auth.js b/JavaScriptSPA/auth.js
@@ -9,7 +9,6 @@ const myMSALObj = new Msal.UserAgentApplication(msalConfig);
 function signIn() {
     myMSALObj.loginPopup(loginRequest)
         .then(loginResponse => {
-            console.log(loginResponse)
             getToken(tokenRequest)
                 .then(updateUI);
     }).catch(error => {
diff --git a/JavaScriptSPA/index.html b/JavaScriptSPA/index.html
@@ -6,10 +6,15 @@
   <title>AAD B2C | MSAL.JS Vanilla JavaScript SPA</title>
 
   <!-- bluebird only needed if this page needs to run on Internet Explorer -->
-  <script src="https://cdnjs.cloudflare.com/ajax/libs/bluebird/3.3.4/bluebird.min.js" class="pre"></script>
+  <script type="text/javascript" src="//cdn.jsdelivr.net/npm/bluebird@3.7.2/js/browser/bluebird.min.js"></script>
+  
   <!-- msal.min.js can be used in the place of msal.js; included msal.js to make debug easy -->
   <script type="text/javascript" src="https://alcdn.msftauth.net/lib/1.2.1/js/msal.js" integrity="sha384-9TV1245fz+BaI+VvCjMYL0YDMElLBwNS84v3mY57pXNOt6xcUYch2QLImaTahcOP" crossorigin="anonymous"></script>
-
+  
+  <script type="text/javascript">
+    if(typeof Msal === 'undefined')document.write(unescape("%3Cscript src='https://alcdn.msftauth.net/lib/1.2.1/js/msal.js' type='text/javascript' integrity='sha384-9TV1245fz+BaI+VvCjMYL0YDMElLBwNS84v3mY57pXNOt6xcUYch2QLImaTahcOP' crossorigin='anonymous'%3E%3C/script%3E"));
+  </script>
+  
   <!-- adding Bootstrap 4 for UI components  -->
   <link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css" integrity="sha384-Vkoo8x4CGsO3+Hhxv8T/Q5PaXtkKtu6ug5TOeNV6gBiFeWPGFN9MuhOf23Q9Ifjh" crossorigin="anonymous">
 </head>
diff --git a/JavaScriptSPA/ui.js b/JavaScriptSPA/ui.js
@@ -22,5 +22,5 @@ function updateUI() {
 // debug helper
 function logMessage(s) {
     document.getElementById("response")
-        .appendChild(document.createTextNode('\n' + s));
+        .appendChild(document.createTextNode('\n\n' + s));
 }
diff --git a/README.md b/README.md
diff --git a/SECURITY.md b/SECURITY.md
@@ -16,13 +16,13 @@ You should receive a response within 24 hours. If for some reason you do not, pl
 
 Please include the requested information listed below (as much as you can provide) to help us better understand the nature and scope of the possible issue:
 
-  * Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
-  * Full paths of source file(s) related to the manifestation of the issue
-  * The location of the affected source code (tag/branch/commit or direct URL)
-  * Any special configuration required to reproduce the issue
-  * Step-by-step instructions to reproduce the issue
-  * Proof-of-concept or exploit code (if possible)
-  * Impact of the issue, including how an attacker might exploit the issue
+* Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
+* Full paths of source file(s) related to the manifestation of the issue
+* The location of the affected source code (tag/branch/commit or direct URL)
+* Any special configuration required to reproduce the issue
+* Step-by-step instructions to reproduce the issue
+* Proof-of-concept or exploit code (if possible)
+* Impact of the issue, including how an attacker might exploit the issue
 
 This information will help us triage your report more quickly.
 

Original file line number	Diff line number	Diff line change
`@@ -22,5 +22,5 @@ function updateUI() {`
`22`	`22`	`// debug helper`
`23`	`23`	`function logMessage(s) {`
`24`	`24`	`document.getElementById("response")`
`25`		`- .appendChild(document.createTextNode('\n' + s));`
	`25`	`+ .appendChild(document.createTextNode('\n\n' + s));`
`26`	`26`	`}`