Ejemplo n.º 1
0
        internal static async Task <bool> IsValidIdentityProviderAsync(this IClientStore store, string clientId, string provider)
        {
            var restrictions = await store.GetIdentityProviderRestrictionsAsync(clientId);

            if (restrictions.Any())
            {
                return(restrictions.Contains(provider));
            }

            return(true);
        }
Ejemplo n.º 2
0
        private async Task <IHttpActionResult> RenderLoginPage(SignInMessage message, string signInMessageId, string errorMessage = null, string username = null, bool rememberMe = false)
        {
            if (message == null)
            {
                throw new ArgumentNullException("message");
            }

            username = GetUserNameForLoginPage(message, username);

            var isLocalLoginAllowedForClient = await IsLocalLoginAllowedForClient(message);

            var isLocalLoginAllowed = isLocalLoginAllowedForClient && options.AuthenticationOptions.EnableLocalLogin;

            var idpRestrictions = await clientStore.GetIdentityProviderRestrictionsAsync(message.ClientId);

            var providers     = context.GetExternalAuthenticationProviders(idpRestrictions);
            var providerLinks = context.GetLinksFromProviders(providers, signInMessageId);
            var visibleLinks  = providerLinks.FilterHiddenLinks();
            var client        = await clientStore.FindClientByIdAsync(message.ClientId);

            if (errorMessage != null)
            {
                Logger.InfoFormat("rendering login page with error message: {0}", errorMessage);
            }
            else
            {
                if (isLocalLoginAllowed == false)
                {
                    if (options.AuthenticationOptions.EnableLocalLogin)
                    {
                        Logger.Info("local login disabled");
                    }
                    if (isLocalLoginAllowedForClient)
                    {
                        Logger.Info("local login disabled for the client");
                    }

                    string url = null;

                    if (!providerLinks.Any())
                    {
                        Logger.Info("no providers registered for client");
                        return(RenderErrorPage());
                    }
                    else if (providerLinks.Count() == 1)
                    {
                        Logger.Info("only one provider for client");
                        url = providerLinks.First().Href;
                    }
                    else if (visibleLinks.Count() == 1)
                    {
                        Logger.Info("only one visible provider");
                        url = visibleLinks.First().Href;
                    }

                    if (url.IsPresent())
                    {
                        Logger.InfoFormat("redirecting to provider URL: {0}", url);
                        return(Redirect(url));
                    }
                }

                Logger.Info("rendering login page");
            }

            var loginPageLinks = options.AuthenticationOptions.LoginPageLinks.Render(Request.GetIdentityServerBaseUrl(), signInMessageId);

            var loginModel = new LoginViewModel
            {
                RequestId         = context.GetRequestId(),
                SiteName          = options.SiteName,
                SiteUrl           = Request.GetIdentityServerBaseUrl(),
                ExternalProviders = visibleLinks,
                AdditionalLinks   = loginPageLinks,
                ErrorMessage      = errorMessage,
                LoginUrl          = isLocalLoginAllowed ? Url.Route(Constants.RouteNames.Login, new { signin = signInMessageId }) : null,
                AllowRememberMe   = options.AuthenticationOptions.CookieOptions.AllowRememberMe,
                RememberMe        = options.AuthenticationOptions.CookieOptions.AllowRememberMe && rememberMe,
                CurrentUser       = context.GetCurrentUserDisplayName(),
                LogoutUrl         = context.GetIdentityServerLogoutUrl(),
                AntiForgery       = antiForgeryToken.GetAntiForgeryToken(),
                Username          = username,
                ClientName        = client != null ? client.ClientName : null,
                ClientUrl         = client != null ? client.ClientUri : null,
                ClientLogoUrl     = client != null ? client.LogoUri : null
            };

            return(new LoginActionResult(viewService, loginModel, message));
        }