public override Task ValidateClientAuthentication( ValidateClientAuthenticationContext context) { // Since there's only one application and since it's a public client // (i.e a client that cannot keep its credentials private), call Skipped() // to inform the server the request should be accepted without // enforcing client authentication. context.Skipped(); return(Task.FromResult(0)); }
public override Task ValidateClientAuthentication(ValidateClientAuthenticationContext context) { if (context.ClientId == "AspNetContribSample") { // Note: the context is marked as skipped instead of validated because the client // is not trusted (JavaScript applications cannot keep their credentials secret). context.Skipped(); } else { // If the client_id doesn't correspond to the // intended identifier, reject the request. context.Rejected(); } return(Task.FromResult(0)); }
public override Task ValidateClientAuthentication( ValidateClientAuthenticationContext context) { context.Skipped(); return(Task.FromResult <object>(null)); }