public static void Configure(IAppBuilder app, IAuthApplicationService authAppService)
{
var OAuthOptions = new OAuthAuthorizationServerOptions
{
TokenEndpointPath = new PathString("/security/token"),
Provider = new AuthorizationProvider(authAppService),
AccessTokenExpireTimeSpan = TimeSpan.FromHours(2),
AllowInsecureHttp = true,
RefreshTokenProvider = new RefreshTokenProvider()
};
var bearerOptions = new OAuthBearerAuthenticationOptions()
{
AccessTokenFormat = OAuthOptions.AccessTokenFormat,
AccessTokenProvider = OAuthOptions.AccessTokenProvider,
AuthenticationMode = OAuthOptions.AuthenticationMode,
AuthenticationType = OAuthOptions.AuthenticationType,
Description = OAuthOptions.Description,
Provider = new BearerAuthenticationProvider(),
SystemClock = OAuthOptions.SystemClock
};
app.UseOAuthAuthorizationServer(OAuthOptions);
OAuthBearerAuthenticationExtensions.UseOAuthBearerAuthentication(app, bearerOptions);
}
// For more information on configuring authentication, please visit http://go.microsoft.com/fwlink/?LinkId=301864
//public void ConfigureAuth(IAppBuilder app)
//{
// // Enable the application to use a cookie to store information for the signed in user
// // and to use a cookie to temporarily store information about a user logging in with a third party login provider
// app.UseCookieAuthentication(new CookieAuthenticationOptions());
// app.UseExternalSignInCookie(DefaultAuthenticationTypes.ExternalCookie);
// // Enable the application to use bearer tokens to authenticate users
// app.UseOAuthBearerTokens(OAuthOptions);
// // Enable CORS
// app.UseCors(Microsoft.Owin.Cors.CorsOptions.AllowAll);
// // Uncomment the following lines to enable logging in with third party login providers
// //app.UseMicrosoftAccountAuthentication(
// // clientId: "",
// // clientSecret: "");
// //app.UseTwitterAuthentication(
// // consumerKey: "",
// // consumerSecret: "");
// //app.UseFacebookAuthentication(
// // appId: "",
// // appSecret: "");
// //app.UseGoogleAuthentication();
//}
public void ConfigureOAuth(IAppBuilder app)
{
OAuthAuthorizationServerOptions OAuthOptions = new OAuthAuthorizationServerOptions()
{
AllowInsecureHttp = true,
TokenEndpointPath = new PathString("/token"),
AccessTokenExpireTimeSpan = TimeSpan.FromDays(1),
Provider = new AuthorizationServerProvider()
};
OAuthBearerAuthenticationOptions OAuthBearerOptions = new OAuthBearerAuthenticationOptions();
OAuthBearerOptions.AccessTokenFormat = OAuthOptions.AccessTokenFormat;
OAuthBearerOptions.AccessTokenProvider = OAuthOptions.AccessTokenProvider;
OAuthBearerOptions.AuthenticationMode = OAuthOptions.AuthenticationMode;
OAuthBearerOptions.AuthenticationType = OAuthOptions.AuthenticationType;
OAuthBearerOptions.Description = OAuthOptions.Description;
// The provider is the only object we need to redefine. See below for the implementation
OAuthBearerOptions.Provider = new Authorizefilter();
OAuthBearerOptions.SystemClock = OAuthOptions.SystemClock;
// Token Generation
OAuthBearerAuthenticationExtensions.UseOAuthBearerAuthentication(app, OAuthBearerOptions);
//app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions()
//{
// // AuthenticationMode =Microsoft.Owin.Security.AuthenticationMode.Active,
// Provider = new Authorizefilter(),
//});
app.UseOAuthAuthorizationServer(OAuthOptions);
}
public void ConfigureAuth(IAppBuilder app)
{
// Enable the application to use a cookie to store information for the signed in user
app.UseCookieAuthentication(new CookieAuthenticationOptions
{
AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,
LoginPath = new PathString("/Account/Login"),
Provider = new CookieAuthenticationProvider()
{
OnApplyRedirect = ctx =>
{
if (!ctx.Request.Path.StartsWithSegments(new PathString("/api"))) //Prevent login redirect when using api
{
ctx.Response.Redirect(ctx.RedirectUri);
}
}
}
});
// Use a cookie to temporarily store information about a user logging in with a third party login provider
app.UseExternalSignInCookie(DefaultAuthenticationTypes.ExternalCookie);
OAuthBearerAuthenticationExtensions.UseOAuthBearerAuthentication(app, OAuthBearerOptions);
app.UseTwitterAuthentication(
consumerKey: "REDACTED",
consumerSecret: "REDACTED");
app.UseFacebookAuthentication(
appId: "REDACTED",
appSecret: "REDACTED");
}
// For more information on configuring authentication, please visit http://go.microsoft.com/fwlink/?LinkId=301864
public void ConfigureAuth(IAppBuilder app)
{
// Configure the db context and user manager to use a single instance per request
app.CreatePerOwinContext(ApplicationDbContext.Create);
app.CreatePerOwinContext <ApplicationUserManager>(ApplicationUserManager.Create);
// Enable the application to use a cookie to store information for the signed in user
// and to use a cookie to temporarily store information about a user logging in with a third party login provider
app.UseCookieAuthentication(new CookieAuthenticationOptions());
app.UseExternalSignInCookie(DefaultAuthenticationTypes.ExternalCookie);
// Configure the application for OAuth based flow
PublicClientId = "self";
OAuthOptions = new OAuthAuthorizationServerOptions
{
TokenEndpointPath = new PathString("/Token"),
Provider = new ApplicationOAuthProvider(PublicClientId),
AuthorizeEndpointPath = new PathString("/api/Account/ExternalLogin"),
AccessTokenExpireTimeSpan = TimeSpan.FromDays(14),
AllowInsecureHttp = true
};
OAuthBearerOptions = new OAuthBearerAuthenticationOptions();
OAuthBearerOptions.AccessTokenFormat = OAuthOptions.AccessTokenFormat;
OAuthBearerOptions.AccessTokenProvider = OAuthOptions.AccessTokenProvider;
OAuthBearerOptions.AuthenticationMode = OAuthOptions.AuthenticationMode;
OAuthBearerOptions.AuthenticationType = OAuthOptions.AuthenticationType;
OAuthBearerOptions.Description = OAuthOptions.Description;
OAuthBearerOptions.Provider = new CustomBearerAuthenticationProvider();
OAuthBearerOptions.SystemClock = OAuthOptions.SystemClock;
// Enable the application to use bearer tokens to authenticate users
app.UseOAuthBearerTokens(OAuthOptions);
OAuthBearerAuthenticationExtensions.UseOAuthBearerAuthentication(app, OAuthBearerOptions);
// Uncomment the following lines to enable logging in with third party login providers
//app.UseMicrosoftAccountAuthentication(
// clientId: "",
// clientSecret: "");
//app.UseTwitterAuthentication(
// consumerKey: "",
// consumerSecret: "");
app.UseFacebookAuthentication(
appId: ConfigurationManager.AppSettings["facebookAppId"],
appSecret: ConfigurationManager.AppSettings["facebookAppSecret"]);
/*app.UseGoogleAuthentication(new GoogleOAuth2AuthenticationOptions
* {
* ClientId = "79011049554-0ck6n5t46ckpr168ip6biv0dmicbphpj.apps.googleusercontent.com",
* ClientSecret = "4Du6V1xAX9IuU28iKSg3I4dM"
* });*/
}
