139 lines
5.2 KiB
C#
139 lines
5.2 KiB
C#
using Microsoft.AspNet.Http;
|
|
using System;
|
|
using System.Collections.Generic;
|
|
using System.Diagnostics.CodeAnalysis;
|
|
|
|
namespace OAuth.AspNet.AuthServer
|
|
{
|
|
|
|
/// <summary>
|
|
/// Data object representing the information contained in the query string of an Authorize endpoint request.
|
|
/// </summary>
|
|
public class AuthorizeEndpointRequest
|
|
{
|
|
/// <summary>
|
|
/// Creates a new instance populated with values from the query string parameters.
|
|
/// </summary>
|
|
/// <param name="parameters">Query string parameters from a request.</param>
|
|
public AuthorizeEndpointRequest(IReadableStringCollection parameters)
|
|
{
|
|
if (parameters == null)
|
|
{
|
|
throw new ArgumentNullException("parameters");
|
|
}
|
|
|
|
Scope = new List<string>();
|
|
|
|
foreach (var parameter in parameters)
|
|
{
|
|
AddParameter(parameter.Key, parameters[parameter.Key]);
|
|
}
|
|
}
|
|
|
|
/// <summary>
|
|
/// The "response_type" query string parameter of the Authorize request. Known values are "code" and "token".
|
|
/// </summary>
|
|
public string ResponseType { get; set; }
|
|
|
|
/// <summary>
|
|
/// The "response_mode" query string parameter of the Authorize request. Known values are "query", "fragment" and "form_post"
|
|
/// See also, http://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html
|
|
/// </summary>
|
|
public string ResponseMode { get; set; }
|
|
|
|
/// <summary>
|
|
/// The "client_id" query string parameter of the Authorize request.
|
|
/// </summary>
|
|
public string ClientId { get; set; }
|
|
|
|
/// <summary>
|
|
/// The "redirect_uri" query string parameter of the Authorize request. May be absent if the server should use the
|
|
/// redirect uri known to be registered to the client id.
|
|
/// </summary>
|
|
[SuppressMessage("Microsoft.Design", "CA1056:UriPropertiesShouldNotBeStrings", Justification = "By design")]
|
|
public string RedirectUri { get; set; }
|
|
|
|
/// <summary>
|
|
/// The "scope" query string parameter of the Authorize request. May be absent if the server should use default scopes.
|
|
/// </summary>
|
|
public IList<string> Scope { get; private set; }
|
|
|
|
/// <summary>
|
|
/// The "scope" query string parameter of the Authorize request. May be absent if the client does not require state to be
|
|
/// included when returning to the RedirectUri.
|
|
/// </summary>
|
|
public string State { get; set; }
|
|
|
|
/// <summary>
|
|
/// True if the "response_type" query string parameter is "code".
|
|
/// See also, http://tools.ietf.org/html/rfc6749#section-4.1.1
|
|
/// </summary>
|
|
public bool IsAuthorizationCodeGrantType
|
|
{
|
|
get { return ContainsGrantType(Constants.ResponseTypes.Code); }
|
|
}
|
|
|
|
/// <summary>
|
|
/// True if the "response_type" query string parameter is "token".
|
|
/// See also, http://tools.ietf.org/html/rfc6749#section-4.2.1
|
|
/// </summary>
|
|
public bool IsImplicitGrantType
|
|
{
|
|
get { return ContainsGrantType(Constants.ResponseTypes.Token); }
|
|
}
|
|
|
|
public bool IsFormPostResponseMode
|
|
{
|
|
get { return string.Equals(ResponseMode, Constants.ResponseModes.FormPost, StringComparison.Ordinal); }
|
|
}
|
|
|
|
/// <summary>
|
|
/// True if the "response_type" query string contains the passed responseType.
|
|
/// See also, http://openid.net/specs/oauth-v2-multiple-response-types-1_0.html
|
|
/// </summary>
|
|
/// <param name="responseType">The responseType that is expected within the "response_type" query string</param>
|
|
/// <returns>True if the "response_type" query string contains the passed responseType.</returns>
|
|
public bool ContainsGrantType(string responseType)
|
|
{
|
|
var parts = ResponseType.Split(' ');
|
|
foreach (var part in parts)
|
|
{
|
|
if (string.Equals(part, responseType, StringComparison.Ordinal))
|
|
{
|
|
return true;
|
|
}
|
|
}
|
|
return false;
|
|
}
|
|
|
|
private void AddParameter(string name, string value)
|
|
{
|
|
if (string.Equals(name, Constants.Parameters.ResponseType, StringComparison.Ordinal))
|
|
{
|
|
ResponseType = value;
|
|
}
|
|
else if (string.Equals(name, Constants.Parameters.ClientId, StringComparison.Ordinal))
|
|
{
|
|
ClientId = value;
|
|
}
|
|
else if (string.Equals(name, Constants.Parameters.RedirectUri, StringComparison.Ordinal))
|
|
{
|
|
RedirectUri = value;
|
|
}
|
|
else if (string.Equals(name, Constants.Parameters.Scope, StringComparison.Ordinal))
|
|
{
|
|
Scope = value.Split(' ');
|
|
}
|
|
else if (string.Equals(name, Constants.Parameters.State, StringComparison.Ordinal))
|
|
{
|
|
State = value;
|
|
}
|
|
else if (string.Equals(name, Constants.Parameters.ResponseMode, StringComparison.Ordinal))
|
|
{
|
|
ResponseMode = value;
|
|
}
|
|
}
|
|
}
|
|
|
|
}
|