/// <summary>
/// Add identity server token authentication to the pipeline.
/// </summary>
/// <param name="app">The application.</param>
/// <param name="options">The options.</param>
/// <returns></returns>
public static IApplicationBuilder UseIdentityServerBearerTokenAuthentication(this IApplicationBuilder app, IdentityServerBearerTokenAuthenticationOptions options)
{
if (app == null)
{
throw new ArgumentNullException("app");
}
if (options == null)
{
throw new ArgumentNullException("options");
}
var loggerFactory = app.GetLoggerFactory();
var middlewareOptions = new IdentityServerOAuthBearerAuthenticationOptions();
switch (options.ValidationMode)
{
case ValidationMode.Local:
middlewareOptions.LocalValidationOptions = ConfigureLocalValidation(options, loggerFactory);
break;
case ValidationMode.ValidationEndpoint:
middlewareOptions.EndpointValidationOptions = ConfigureEndpointValidation(options, loggerFactory);
break;
case ValidationMode.Both:
middlewareOptions.LocalValidationOptions = ConfigureLocalValidation(options, loggerFactory);
middlewareOptions.EndpointValidationOptions = ConfigureEndpointValidation(options, loggerFactory);
break;
default:
throw new Exception("ValidationMode has invalid value");
}
if (!options.DelayLoadMetadata)
{
// evaluate the lazy members so that they can do their job
if (middlewareOptions.LocalValidationOptions != null)
{
var ignore = middlewareOptions.LocalValidationOptions.Value;
}
if (middlewareOptions.EndpointValidationOptions != null)
{
var ignore = middlewareOptions.EndpointValidationOptions.Value;
}
}
if (options.TokenProvider != null)
{
middlewareOptions.TokenProvider = options.TokenProvider;
}
app.Use<IdentityServerBearerTokenValidationMiddleware>(app, middlewareOptions, loggerFactory);
if (options.RequiredScopes.Any())
{
var scopeOptions = new ScopeRequirementOptions
{
AuthenticationType = options.AuthenticationType,
RequiredScopes = options.RequiredScopes
};
app.Use<ScopeRequirementMiddleware>(scopeOptions);
}
if (options.PreserveAccessToken)
{
app.Use<PreserveAccessTokenMiddleware>();
}
return app;
}
/// <summary>
/// Add identity server token authentication to the pipeline.
/// </summary>
/// <param name="app">The application.</param>
/// <param name="options">The options.</param>
/// <returns></returns>
public static IAppBuilder UseIdentityServerBearerTokenAuthentication(this IAppBuilder app, IdentityServerBearerTokenAuthenticationOptions options)
{
if (app == null)
{
throw new ArgumentNullException("app");
}
if (options == null)
{
throw new ArgumentNullException("options");
}
var loggerFactory = app.GetLoggerFactory();
var middlewareOptions = new IdentityServerOAuthBearerAuthenticationOptions();
switch (options.ValidationMode)
{
case ValidationMode.Local:
middlewareOptions.LocalValidationOptions = ConfigureLocalValidation(options, loggerFactory);
break;
case ValidationMode.ValidationEndpoint:
middlewareOptions.EndpointValidationOptions = ConfigureEndpointValidation(options, loggerFactory);
break;
case ValidationMode.Both:
middlewareOptions.LocalValidationOptions = ConfigureLocalValidation(options, loggerFactory);
middlewareOptions.EndpointValidationOptions = ConfigureEndpointValidation(options, loggerFactory);
break;
default:
throw new Exception("ValidationMode has invalid value");
}
if (!options.DelayLoadMetadata)
{
// evaluate the lazy members so that they can do their job
if (middlewareOptions.LocalValidationOptions != null)
{
var ignore = middlewareOptions.LocalValidationOptions.Value;
}
if (middlewareOptions.EndpointValidationOptions != null)
{
var ignore = middlewareOptions.EndpointValidationOptions.Value;
}
}
if (options.TokenProvider != null)
{
middlewareOptions.TokenProvider = options.TokenProvider;
}
app.Use <IdentityServerBearerTokenValidationMiddleware>(app, middlewareOptions, loggerFactory);
if (options.RequiredScopes.Any())
{
var scopeOptions = new ScopeRequirementOptions
{
AuthenticationType = options.AuthenticationType,
RequiredScopes = options.RequiredScopes
};
app.Use <ScopeRequirementMiddleware>(scopeOptions);
}
if (options.PreserveAccessToken)
{
app.Use <PreserveAccessTokenMiddleware>();
}
return(app);
}
