C# (CSharp) PbDemo.Authorisation.Repositories AuthorisationRepository Examples

Programming Language: C# (CSharp)

Namespace/Package Name: PbDemo.Authorisation.Repositories

Examples at hotexamples.com: 2

C# (CSharp) PbDemo.Authorisation.Repositories AuthorisationRepository - 2 examples found. These are the top rated real world C# (CSharp) examples of PbDemo.Authorisation.Repositories.AuthorisationRepository extracted from open source projects. You can rate examples to help us improve the quality of examples.

Frequently Used Methods

Show Hide

FindUser(1)

Example #1

Show file

File: PbAuthorizationServerProvider.cs Project: ns6482/practice3

        /// <summary>
        /// Called when a request to the Token endpoint arrives with a "grant_type" of "password". This occurs when the user has provided name and password
        /// credentials directly into the client application's user interface, and the client application is using those to acquire an "access_token" and
        /// optional "refresh_token". If the web application supports the
        /// resource owner credentials grant type it must validate the context.Username and context.Password as appropriate. To issue an
        /// access token the context.Validated must be called with a new ticket containing the claims about the resource owner which should be associated
        /// with the access token. The application should take appropriate measures to ensure that the endpoint isn’t abused by malicious callers.
        /// The default behavior is to reject this grant type.
        /// See also http://tools.ietf.org/html/rfc6749#section-4.3.2
        /// </summary>
        /// <param name="context">The context of the event carries information in and results out.</param>
        /// <returns>
        /// Task to enable asynchronous execution
        /// </returns>
        public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
        {
            context.OwinContext.Response.Headers.Add("Access-Control-Allow-Origin", new[] {"*"});

            string actorType;
            using (var repo = new AuthorisationRepository())
            {
                var user = await repo.FindUser(context.UserName, context.Password); //actual authentication here

                if (user == null)
                {
                    context.SetError("invalid_grant", "The user name or password is incorrect.");
                    return;
                }

                actorType = user.Claims.First(x => x.ClaimType == ClaimTypes.Actor).ClaimValue;

                context.OwinContext.Set("user_type", actorType);
                //determine if it's a buyer or a seller
            }

            //useful info to include in the token here
           
            var identity = new ClaimsIdentity(context.Options.AuthenticationType);
            identity.AddClaim(new Claim("sub", context.UserName));
            identity.AddClaim(new Claim("role", "user"));
            identity.AddClaim(new Claim("actor", actorType));

            context.Validated(identity);
        }

Example #2

Show file

File: UserController.cs Project: ns6482/practice3

        private readonly AuthorisationRepository _repo; //TODO inject this, use IAuthorisationRepsitory

        /// <summary>
        /// Initializes a new instance of the <see cref="UserController"/> class.
        /// </summary>

        public UserController()
        {
            _repo = new AuthorisationRepository();
        }