/// <summary>
/// Constructs a new session token via identity SSO.
/// Note: These are not cached.
/// </summary>
/// <exception cref="InvalidCredentialException">Thrown if authentication response is fail</exception>
/// <exception cref="IOException">Thrown if authentication call fails</exception>
/// <returns></returns>
public AppKeyAndSession GetOrCreateNewSession()
{
if (_session != null)
{
//have a cached session - is it expired
if ((_session.CreateTime + SessionExpireTime) > DateTime.UtcNow)
{
Trace.TraceInformation("SSO Login - session not expired - re-using");
return(_session);
}
else
{
Trace.TraceInformation("SSO Login - session expired");
}
}
Trace.TraceInformation("SSO Login host={0}, appkey={1}, username={2}",
_host,
_appkey,
_username);
SessionDetails sessionDetails;
try
{
string uri = string.Format("https://{0}/api/login?username={1}&password={2}",
_host,
_username,
_password);
HttpWebRequest loginRequest = (HttpWebRequest)WebRequest.Create(uri);
loginRequest.Headers.Add("X-Application", _appkey);
loginRequest.Accept = "application/json";
loginRequest.Method = "POST";
loginRequest.Timeout = (int)Timeout.TotalMilliseconds;
WebResponse thePage = loginRequest.GetResponse();
using StreamReader reader = new(thePage.GetResponseStream());
string response = reader.ReadToEnd();
Trace.TraceInformation("{0}: Response: {1}", _host, response);
sessionDetails = JsonConvert.DeserializeObject <SessionDetails>(response);
}
catch (Exception e)
{
throw new IOException("SSO Authentication - call failed:", e);
}
//got a response - decode
if (sessionDetails != null && "SUCCESS".Equals(sessionDetails.Status))
{
_session = new AppKeyAndSession(_appkey, sessionDetails.Token);
}
else
{
throw new InvalidCredentialException("SSO Authentication - response is fail: " + sessionDetails.Error);
}
return(_session);
}
/// <summary>
/// Expires cached token
/// </summary>
public void ExpireTokenNow()
{
Trace.TraceInformation("SSO Login - expiring session token now");
_session = null;
}
