protected virtual void ConfigureAuthBuilder(AuthenticationBuilder authBuilder)
{
var allUserAreas = _userAreaDefinitionRepository.GetAll();
foreach (var userArea in allUserAreas)
{
var cookieNamespace = _authCookieNamespaceProvider.GetNamespace(userArea.UserAreaCode);
var scheme = AuthenticationSchemeNames.UserArea(userArea.UserAreaCode);
var options = new UserAreaSchemeRegistrationOptions(userArea, scheme, cookieNamespace);
ConfigureUserAreaScheme(authBuilder, options);
}
}
public void Configure(IMvcBuilder mvcBuilder)
{
var services = mvcBuilder.Services;
var allUserAreas = _userAreaDefinitionRepository.GetAll();
// Set default schema as specified in config, falling back to CofoundryAdminUserArea
// Since any additional areas are configured by the implementor there shouldn't be multiple
// unless the developer has misconfigured their areas.
var defaultSchemaCode = allUserAreas
.OrderByDescending(u => u.IsDefaultAuthSchema)
.ThenByDescending(u => u is CofoundryAdminUserArea)
.ThenBy(u => u.Name)
.Select(u => u.UserAreaCode)
.First();
var defaultScheme = CofoundryAuthenticationConstants.FormatAuthenticationScheme(defaultSchemaCode);
var authBuilder = mvcBuilder.Services.AddAuthentication(defaultScheme);
var cookieNamespace = _authCookieNamespaceProvider.GetNamespace();
foreach (var userAreaDefinition in allUserAreas)
{
var scheme = CofoundryAuthenticationConstants.FormatAuthenticationScheme(userAreaDefinition.UserAreaCode);
authBuilder
.AddCookie(scheme, cookieOptions =>
{
cookieOptions.Cookie.Name = cookieNamespace + userAreaDefinition.UserAreaCode;
cookieOptions.Cookie.HttpOnly = true;
cookieOptions.Cookie.IsEssential = true;
cookieOptions.Cookie.SameSite = SameSiteMode.Lax;
if (!string.IsNullOrWhiteSpace(userAreaDefinition.LoginPath))
{
cookieOptions.LoginPath = userAreaDefinition.LoginPath;
}
});
}
mvcBuilder.Services.AddAuthorization();
}