yavsc/testOauthClient/Startup.cs

using System;
using Microsoft.AspNet.Builder;
using Microsoft.AspNet.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging;
using Microsoft.AspNet.Authentication;
using Microsoft.AspNet.Http;
using Microsoft.AspNet.Authentication.Cookies;
using Microsoft.Extensions.WebEncoders;
using Microsoft.AspNet.Authentication.OAuth;
using System.Net.Http;
using System.Net.Http.Headers;
using Newtonsoft.Json.Linq;
using System.Security.Claims;

namespace testOauthClient
{
    public class Startup
    {
        public Startup(IHostingEnvironment env)
        {
            // Set up configuration sources.
            var builder = new ConfigurationBuilder()
                .AddJsonFile("appsettings.json")
                .AddEnvironmentVariables();
            Configuration = builder.Build();
        }

        public IConfigurationRoot Configuration { get; set; }

        // This method gets called by the runtime. Use this method to add services to the container.
        public void ConfigureServices(IServiceCollection services)
        {

            services.Configure<SharedAuthenticationOptions>(options =>
            {
                options.SignInScheme = "Bearer";
            });

            services.AddTransient<Microsoft.Extensions.WebEncoders.UrlEncoder, UrlEncoder>();

            services.AddAuthentication();

            services.AddMvc();

        }

        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
        public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory)
        {
            loggerFactory.AddConsole(Configuration.GetSection("Logging"));
            loggerFactory.AddDebug();

            if (env.IsDevelopment())
            {
                app.UseDeveloperExceptionPage();
            }
            else
            {
                app.UseExceptionHandler("/Home/Error");
            }
            app.UseIISPlatformHandler(options =>
            {
                options.AuthenticationDescriptions.Clear();
            });
            app.UseStaticFiles();
            var authConf = Configuration.GetSection("Authentication").GetSection("Yavsc");
            var clientId = authConf.GetSection("ClientId").Value;
            var clientSecret = authConf.GetSection("ClientSecret").Value;
            var logger = loggerFactory.CreateLogger<Startup>();
            logger.LogInformation($"## ClientId: {clientId} ClientSecret: {clientSecret}");
            app.UseCookieAuthentication(new CookieAuthenticationOptions
            {
                AutomaticAuthenticate = true,
                AutomaticChallenge = true,
                AuthenticationScheme = "Bearer",
                CookieName = CookieAuthenticationDefaults.CookiePrefix + "Bearer",
                ExpireTimeSpan = TimeSpan.FromMinutes(5),
                LoginPath = new PathString("/signin"),
                LogoutPath = new PathString("/signout")
            });
            var host =  "http://dev.pschneider.fr";
            app.UseOAuthAuthentication(
                options =>
                {
                    options.AuthenticationScheme = "Yavsc";
                    options.AuthorizationEndpoint = $"{host}/authorize";
                    options.TokenEndpoint = $"{host}/token";
                    options.CallbackPath = new PathString("/signin-yavsc");
                    options.DisplayName = "Yavsc dev";
                    options.ClientId = clientId;
                    options.ClientSecret = clientSecret;
                    options.Scope.Add("profile");
                    options.SaveTokensAsClaims = true;
                    options.UserInformationEndpoint = $"{host}/api/me";
                    
                    options.Events = new OAuthEvents
                    {
                        OnCreatingTicket = async context =>
                            {
                                var request = new HttpRequestMessage(HttpMethod.Get, options.UserInformationEndpoint);
                                request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", context.AccessToken);
                                var response = await context.Backchannel.SendAsync(request);
                                response.EnsureSuccessStatusCode();

                                var payload = JObject.Parse(await response.Content.ReadAsStringAsync());
                                var identifier = payload.Value<string>("Id");
                                var givenName = payload.Value<string>("UserName");
                                var emails = payload.Value<JArray>("EMails");
                                var roles = payload.Value<JArray>("Roles");
                                string email = null;
                                if (emails !=null)
                                  email = emails.First?.Value<string>();
                                if (identifier!=null)
                                    context.Identity.AddClaim(
                                        new Claim( ClaimTypes.NameIdentifier,identifier));
                                if (givenName!=null)
                                    context.Identity.AddClaim(
                                        new Claim( ClaimTypes.Name,givenName));
                                if (email!=null)
                                    context.Identity.AddClaim(
                                        new Claim( ClaimTypes.Email,email));
                                    // TODO add all emails and roles

                            }
                    };
                }
            );

            app.UseMvc(routes =>
            {
                routes.MapRoute(
                    name: "default",
                    template: "{controller=Home}/{action=Index}/{id?}");
            });
        }

        // Entry point for the application.
        public static void Main(string[] args) => Microsoft.AspNet.Hosting.WebApplication.Run<Startup>(args);
    }
}
oidc 8 years ago			`using System;`
			`using Microsoft.AspNet.Builder;`
			`using Microsoft.AspNet.Hosting;`
			`using Microsoft.Extensions.Configuration;`
			`using Microsoft.Extensions.DependencyInjection;`
			`using Microsoft.Extensions.Logging;`
			`using Microsoft.AspNet.Authentication;`
			`using Microsoft.AspNet.Http;`
			`using Microsoft.AspNet.Authentication.Cookies;`
commentaire nul 8 years ago			`using Microsoft.Extensions.WebEncoders;`
recupères les info utilisateur à l'authentification 8 years ago			`using Microsoft.AspNet.Authentication.OAuth;`
			`using System.Net.Http;`
			`using System.Net.Http.Headers;`
			`using Newtonsoft.Json.Linq;`
			`using System.Security.Claims;`
oidc 8 years ago
			`namespace testOauthClient`
			`{`
			`public class Startup`
			`{`
			`public Startup(IHostingEnvironment env)`
			`{`
			`// Set up configuration sources.`
			`var builder = new ConfigurationBuilder()`
			`.AddJsonFile("appsettings.json")`
			`.AddEnvironmentVariables();`
			`Configuration = builder.Build();`
			`}`

			`public IConfigurationRoot Configuration { get; set; }`

			`// This method gets called by the runtime. Use this method to add services to the container.`
			`public void ConfigureServices(IServiceCollection services)`
			`{`
recupères les info utilisateur à l'authentification 8 years ago
			`services.Configure<SharedAuthenticationOptions>(options =>`
			`{`
-oidc 8 years ago			`options.SignInScheme = "Bearer";`
oidc 8 years ago			`});`
oidc 8 years ago
commentaire nul 8 years ago			`services.AddTransient<Microsoft.Extensions.WebEncoders.UrlEncoder, UrlEncoder>();`

oidc 8 years ago			`services.AddAuthentication();`

oidc 8 years ago			`services.AddMvc();`
recupères les info utilisateur à l'authentification 8 years ago
oidc 8 years ago			`}`

			`// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.`
			`public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory)`
			`{`
			`loggerFactory.AddConsole(Configuration.GetSection("Logging"));`
			`loggerFactory.AddDebug();`

			`if (env.IsDevelopment())`
			`{`
			`app.UseDeveloperExceptionPage();`
			`}`
			`else`
			`{`
			`app.UseExceptionHandler("/Home/Error");`
			`}`
recupères les info utilisateur à l'authentification 8 years ago			`app.UseIISPlatformHandler(options =>`
			`{`
oidc 8 years ago			`options.AuthenticationDescriptions.Clear();`
			`});`
			`app.UseStaticFiles();`
log credentials 7 years ago			`var authConf = Configuration.GetSection("Authentication").GetSection("Yavsc");`
			`var clientId = authConf.GetSection("ClientId").Value;`
			`var clientSecret = authConf.GetSection("ClientSecret").Value;`
			`var logger = loggerFactory.CreateLogger<Startup>();`
			`logger.LogInformation($"## ClientId: {clientId} ClientSecret: {clientSecret}");`
recupères les info utilisateur à l'authentification 8 years ago			`app.UseCookieAuthentication(new CookieAuthenticationOptions`
			`{`
-oidc 8 years ago			`AutomaticAuthenticate = true,`
			`AutomaticChallenge = true,`
			`AuthenticationScheme = "Bearer",`
			`CookieName = CookieAuthenticationDefaults.CookiePrefix + "Bearer",`
			`ExpireTimeSpan = TimeSpan.FromMinutes(5),`
			`LoginPath = new PathString("/signin"),`
			`LogoutPath = new PathString("/signout")`
			`});`
servicing 6 years ago			`var host = "http://dev.pschneider.fr";`
commentaire nul 8 years ago			`app.UseOAuthAuthentication(`
recupères les info utilisateur à l'authentification 8 years ago			`options =>`
			`{`
OAuth OK! 8 years ago			`options.AuthenticationScheme = "Yavsc";`
nettoyage 8 years ago			`options.AuthorizationEndpoint = $"{host}/authorize";`
log credentials 7 years ago			`options.TokenEndpoint = $"{host}/token";`
OAuth OK! 8 years ago			`options.CallbackPath = new PathString("/signin-yavsc");`
log credentials 7 years ago			`options.DisplayName = "Yavsc dev";`
			`options.ClientId = clientId;`
			`options.ClientSecret = clientSecret;`
OAuth OK! 8 years ago			`options.Scope.Add("profile");`
recupères les info utilisateur à l'authentification 8 years ago			`options.SaveTokensAsClaims = true;`
nettoyage 8 years ago			`options.UserInformationEndpoint = $"{host}/api/me";`
log credentials 7 years ago
recupères les info utilisateur à l'authentification 8 years ago			`options.Events = new OAuthEvents`
			`{`
			`OnCreatingTicket = async context =>`
			`{`
			`var request = new HttpRequestMessage(HttpMethod.Get, options.UserInformationEndpoint);`
			`request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", context.AccessToken);`
			`var response = await context.Backchannel.SendAsync(request);`
			`response.EnsureSuccessStatusCode();`

			`var payload = JObject.Parse(await response.Content.ReadAsStringAsync());`
Adds a comment 8 years ago			`var identifier = payload.Value<string>("Id");`
			`var givenName = payload.Value<string>("UserName");`
			`var emails = payload.Value<JArray>("EMails");`
			`var roles = payload.Value<JArray>("Roles");`
recupères les info utilisateur à l'authentification 8 years ago			`string email = null;`
			`if (emails !=null)`
			`email = emails.First?.Value<string>();`
refabrique : une librairie serveur 7 years ago			`if (identifier!=null)`
			`context.Identity.AddClaim(`
			`new Claim( ClaimTypes.NameIdentifier,identifier));`
			`if (givenName!=null)`
			`context.Identity.AddClaim(`
			`new Claim( ClaimTypes.Name,givenName));`
			`if (email!=null)`
			`context.Identity.AddClaim(`
			`new Claim( ClaimTypes.Email,email));`
Adds a comment 8 years ago			`// TODO add all emails and roles`
recupères les info utilisateur à l'authentification 8 years ago
			`}`
			`};`
commentaire nul 8 years ago			`}`
			`);`

oidc 8 years ago			`app.UseMvc(routes =>`
			`{`
			`routes.MapRoute(`
			`name: "default",`
			`template: "{controller=Home}/{action=Index}/{id?}");`
			`});`
			`}`

			`// Entry point for the application.`
			`public static void Main(string[] args) => Microsoft.AspNet.Hosting.WebApplication.Run<Startup>(args);`
			`}`
			`}`