Esempio n. 1
        public void ConfigureAuth(IAppBuilder app)
            app.UseCookieAuthentication(new CookieAuthenticationOptions
                AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,
                CookieName         = SystemCookieNames.AuthenticationCookie,
                LoginPath          = new PathString("/login"),
                Provider           = new CookieAuthenticationProvider
                    OnValidateIdentity = ApplicationSecurityStampValidator.OnValidateIdentity(
                        validateInterval: TimeSpan.FromMinutes(30),
                        regenerateIdentity: (manager, userId) => Task.FromResult(manager.CreateIdentity(userId)),
                        manager: EngineContext.Current.Resolve <IAccountService>())


            app.UseGoogleAuthentication(new GoogleOAuth2AuthenticationOptions
                ClientId     = ConfigurationManager.AppSettings["google:ClientId"],
                ClientSecret = ConfigurationManager.AppSettings["google:ClientSecret"],
                Caption      = "Google",

            //    clientId: "",
            //    clientSecret: "");

            app.UseTwitterAuthentication(new TwitterAuthenticationOptions()
                ConsumerKey    = ConfigurationManager.AppSettings["twitter:ConsumerKey"],
                ConsumerSecret = ConfigurationManager.AppSettings["twitter:ConsumerSecret"],
                Provider       = new TwitterAuthenticationProvider
                    OnAuthenticated = (context) =>
                        context.Identity.AddClaim(new Claim("urn:twitter:access_token", context.AccessToken));
                        context.Identity.AddClaim(new Claim("urn:twitter:access_secret", context.AccessTokenSecret));
                BackchannelCertificateValidator = new CertificateSubjectKeyIdentifierValidator(new[]
                    "A5EF0B11CEC04103A34A659048B21CE0572D7D47",  // VeriSign Class 3 Secure Server CA - G2
                    "0D445C165344C1827E1D20AB25F40163D8BE79A5",  // VeriSign Class 3 Secure Server CA - G3
                    "7FD365A7C2DDECBBF03009F34339FA02AF333133",  // VeriSign Class 3 Public Primary Certification Authority - G5
                    "39A55D933676616E73A761DFA16A7E59CDE66FAD",  // Symantec Class 3 Secure Server CA - G4
                    "‎add53f6680fe66e383cbac3e60922e3b4c412bed", // Symantec Class 3 EV SSL CA - G3
                    "4eb6d578499b1ccf5f581ead56be3d9b6744a5e5",  // VeriSign Class 3 Primary CA - G5
                    "5168FF90AF0207753CCCD9656462A212B859723B",  // DigiCert SHA2 High Assurance Server C‎A
                    "B13EC36903F8BF4701D498261A0802EF63642BC3"   // DigiCert High Assurance EV Root CA

                appId: ConfigurationManager.AppSettings["facebook:AppId"],
                appSecret: ConfigurationManager.AppSettings["facebook:AppSecret"]);
Esempio n. 2
        /// <summary>
        /// </summary>
        /// <returns></returns>
        public Func <CookieValidateIdentityContext, Task> OnValidateIdentity()
            // Process
            var result = ApplicationSecurityStampValidator.OnValidateIdentity(TimeSpan.FromMinutes(0), GenerateUserIdentityAsync, identity => Guid.Parse(identity.GetUserId()));

            // Result
        // For more information on configuring authentication, please visit
        public void ConfigureAuth(IAppBuilder app, IContainer container)
            // Enable the application to use a cookie to store information for the signed in user
            // and to use a cookie to temporarily store information about a user logging in with a third party login provider
            // Configure the sign in cookie
            app.UseCookieAuthentication(new CookieAuthenticationOptions
                AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,
                LoginPath          = new PathString("/Account/Login"),
                Provider           = new CookieAuthenticationProvider
                    // Enables the application to validate the security stamp when the user logs in.
                    // This is a security feature which is used when you change a password or add an external login to your account.
                    OnValidateIdentity = ApplicationSecurityStampValidator.OnValidateIdentity(
                        validateInterval: TimeSpan.FromMinutes(30),
                        regenerateIdentity: (manager, userId) => Task.FromResult(manager.CreateIdentity(userId)),
                        manager: DependencyResolver.Current.GetService <IIdentityAuthService>())

            // Enables the application to temporarily store user information when they are verifying the second factor in the two-factor authentication process.
            app.UseTwoFactorSignInCookie(DefaultAuthenticationTypes.TwoFactorCookie, TimeSpan.FromMinutes(5));

            // Enables the application to remember the second login verification factor such as phone or email.
            // Once you check this option, your second step of verification during the login process will be remembered on the device where you logged in from.
            // This is similar to the RememberMe option when you log in.

            // Uncomment the following lines to enable logging in with third party login providers
            //    clientId: "",
            //    clientSecret: "");

            //   consumerKey: "",
            //   consumerSecret: "");

            //   appId: "",
            //   appSecret: "");

            //app.UseGoogleAuthentication(new GoogleOAuth2AuthenticationOptions()
            //    ClientId = "",
            //    ClientSecret = ""