yavsc/src/Yavsc.Server/Services/ProfileService.cs

using System.Security.Claims;
using IdentityModel;
using IdentityServer8.Models;
using IdentityServer8.Services;
using IdentityServer8.Stores;
using Microsoft.AspNetCore.Identity;
using Microsoft.Extensions.Logging;
using Yavsc.Models;

namespace Yavsc.Services
{
    public class ProfileService : DefaultProfileService, IProfileService
    {
        private readonly UserManager<ApplicationUser> _userManager;
        public ProfileService(
            UserManager<ApplicationUser> userManager, ILogger<DefaultProfileService> logger) : base(logger)
        {
            _userManager = userManager;
        }

        public async Task<List<Claim>> GetClaimsFromUserAsync(
            ProfileDataRequestContext context,
            ApplicationUser user)
        {
            var requestedApiResources = context.RequestedResources.Resources.ApiResources.Select(
                r => r.Name
            ).ToArray();
            var requestedApiScopes = context.RequestedResources.Resources.ApiScopes.Select(
                s => s.Name
            ).ToArray();

            var requestedScopes = context.Client.AllowedScopes
            .Where(s => s != JwtClaimTypes.Subject
            && requestedApiScopes.Contains(s))
            .ToList();

            if (context.RequestedClaimTypes.Contains("profile"))
            if (requestedScopes.Contains("profile"))
            {
                requestedScopes.Remove("profile");
                requestedScopes.Add(JwtClaimTypes.Name);
                requestedScopes.Add(JwtClaimTypes.FamilyName);
                requestedScopes.Add(JwtClaimTypes.Email);
                requestedScopes.Add(JwtClaimTypes.PreferredUserName);
                requestedScopes.Add(JwtClaimTypes.Role);
            }

            var claims = new List<Claim> {
                new Claim(JwtClaimTypes.Subject,user.Id.ToString()),
            };
            if (requestedScopes.Contains(JwtClaimTypes.Name)||
                requestedScopes.Contains(JwtClaimTypes.FamilyName))
            {
                claims.Add(new Claim(JwtClaimTypes.Name, user.FullName));
            }

            if (requestedScopes.Contains(JwtClaimTypes.PreferredUserName) )
            {
                claims.Add(new Claim(JwtClaimTypes.Name, user.UserName));
            }
            if (requestedScopes.Contains(JwtClaimTypes.Email))
                claims.Add(new Claim(JwtClaimTypes.Email, user.Email));
            
            if (requestedScopes.Contains(JwtClaimTypes.Role))
            {
                var roles = await this._userManager.GetRolesAsync(user);
                if (roles.Count()>0)
                {
                    claims.Add(new Claim(JwtClaimTypes.Role,String.Join(" ",roles)));
                }
            }
            return claims;
        }

        override public async Task GetProfileDataAsync(ProfileDataRequestContext context)
        {
            var subjectId = context.Subject.Claims.FirstOrDefault(c => c.Type == "sub").Value;
            var user = await _userManager.FindByIdAsync(subjectId);
            context.IssuedClaims = await GetClaimsFromUserAsync(context, user);
        }

        override public async Task IsActiveAsync(IsActiveContext context)
        {
            var subjectId = context.Subject.Claims.FirstOrDefault(c => c.Type == "sub").Value;
            var user = await _userManager.FindByIdAsync(subjectId);
            context.IsActive = user != null;
        }

    }
}
map the roles in the JWToken 10 months ago			`using System.Security.Claims;`
			`using IdentityModel;`
			`using IdentityServer8.Models;`
			`using IdentityServer8.Services;`
get more claims 10 months ago			`using IdentityServer8.Stores;`
map the roles in the JWToken 10 months ago			`using Microsoft.AspNetCore.Identity;`
more services from Web API 10 months ago			`using Microsoft.Extensions.Logging;`
map the roles in the JWToken 10 months ago			`using Yavsc.Models;`

			`namespace Yavsc.Services`
			`{`
Web Api found ... 10 months ago			`public class ProfileService : DefaultProfileService, IProfileService`
map the roles in the JWToken 10 months ago			`{`
			`private readonly UserManager<ApplicationUser> _userManager;`
			`public ProfileService(`
Web Api found ... 10 months ago			`UserManager<ApplicationUser> userManager, ILogger<DefaultProfileService> logger) : base(logger)`
map the roles in the JWToken 10 months ago			`{`
			`_userManager = userManager;`
			`}`

get more claims 10 months ago			`public async Task<List<Claim>> GetClaimsFromUserAsync(`
			`ProfileDataRequestContext context,`
			`ApplicationUser user)`
map the roles in the JWToken 10 months ago			`{`
Web Api found ... 10 months ago			`var requestedApiResources = context.RequestedResources.Resources.ApiResources.Select(`
			`r => r.Name`
			`).ToArray();`
			`var requestedApiScopes = context.RequestedResources.Resources.ApiScopes.Select(`
			`s => s.Name`
			`).ToArray();`
get more claims 10 months ago
Web Api found ... 10 months ago			`var requestedScopes = context.Client.AllowedScopes`
			`.Where(s => s != JwtClaimTypes.Subject`
			`&& requestedApiScopes.Contains(s))`
get more claims 10 months ago			`.ToList();`
Web Api found ... 10 months ago
			`if (context.RequestedClaimTypes.Contains("profile"))`
			`if (requestedScopes.Contains("profile"))`
get more claims 10 months ago			`{`
Web Api found ... 10 months ago			`requestedScopes.Remove("profile");`
			`requestedScopes.Add(JwtClaimTypes.Name);`
			`requestedScopes.Add(JwtClaimTypes.FamilyName);`
			`requestedScopes.Add(JwtClaimTypes.Email);`
			`requestedScopes.Add(JwtClaimTypes.PreferredUserName);`
			`requestedScopes.Add(JwtClaimTypes.Role);`
get more claims 10 months ago			`}`

map the roles in the JWToken 10 months ago			`var claims = new List<Claim> {`
			`new Claim(JwtClaimTypes.Subject,user.Id.ToString()),`
			`};`
Web Api found ... 10 months ago			`if (requestedScopes.Contains(JwtClaimTypes.Name)\|\|`
			`requestedScopes.Contains(JwtClaimTypes.FamilyName))`
map the roles in the JWToken 10 months ago			`{`
Web Api found ... 10 months ago			`claims.Add(new Claim(JwtClaimTypes.Name, user.FullName));`
get more claims 10 months ago			`}`
map the roles in the JWToken 10 months ago
Web Api found ... 10 months ago			`if (requestedScopes.Contains(JwtClaimTypes.PreferredUserName) )`
get more claims 10 months ago			`{`
Web Api found ... 10 months ago			`claims.Add(new Claim(JwtClaimTypes.Name, user.UserName));`
			`}`
			`if (requestedScopes.Contains(JwtClaimTypes.Email))`
			`claims.Add(new Claim(JwtClaimTypes.Email, user.Email));`

			`if (requestedScopes.Contains(JwtClaimTypes.Role))`
			`{`
			`var roles = await this._userManager.GetRolesAsync(user);`
			`if (roles.Count()>0)`
			`{`
			`claims.Add(new Claim(JwtClaimTypes.Role,String.Join(" ",roles)));`
			`}`
get more claims 10 months ago			`}`
map the roles in the JWToken 10 months ago			`return claims;`
			`}`

more services from Web API 10 months ago			`override public async Task GetProfileDataAsync(ProfileDataRequestContext context)`
map the roles in the JWToken 10 months ago			`{`
			`var subjectId = context.Subject.Claims.FirstOrDefault(c => c.Type == "sub").Value;`
			`var user = await _userManager.FindByIdAsync(subjectId);`
get more claims 10 months ago			`context.IssuedClaims = await GetClaimsFromUserAsync(context, user);`
map the roles in the JWToken 10 months ago			`}`

more services from Web API 10 months ago			`override public async Task IsActiveAsync(IsActiveContext context)`
map the roles in the JWToken 10 months ago			`{`
			`var subjectId = context.Subject.Claims.FirstOrDefault(c => c.Type == "sub").Value;`
			`var user = await _userManager.FindByIdAsync(subjectId);`
			`context.IsActive = user != null;`
			`}`

			`}`
			`}`