Esempio n. 1
0
        // This method gets called by the runtime. Use this method to add services to the container.
        public IServiceProvider ConfigureServices(IServiceCollection services)
        {
            services.Configure <CookiePolicyOptions>(options =>
            {
                // This lambda determines whether user consent for non-essential cookies is needed for a given request.
                options.CheckConsentNeeded    = context => true;
                options.MinimumSameSitePolicy = SameSiteMode.None;
            });

            var neo4JConnectionConfiguration =
                Configuration.FromSection <Neo4JConnectionConfiguration>("neo4JConnectionConfiguration");

            services.AddSingleton(s => GraphDatabase.Driver(neo4JConnectionConfiguration.ConnectionString,
                                                            AuthTokens.Basic(neo4JConnectionConfiguration.UserName, neo4JConnectionConfiguration.Password)));
            services.AddScoped(s => s.GetService <IDriver>().Session());
            services.AddNeo4jClientStore <ApplicationUser>();

            services.AddIdentity <ApplicationUser, Neo4jIdentityRole>()
            .AddNeo4jDataStores("MainTenant")
            .AddNeo4jMultiFactorStore <ApplicationFactor>()
            .AddDefaultTokenProviders();

            services.AddDetection();

            services.AddMvc().SetCompatibilityVersion(CompatibilityVersion.Version_2_1);

            services.AddTransient <IEmailSender, EmailSender>();

            services
            .AddScoped
            <Microsoft.AspNetCore.Identity.IUserClaimsPrincipalFactory <ApplicationUser>,
             AppClaimsPrincipalFactory <ApplicationUser, Neo4jIdentityRole> >();

            // configure identity server with in-memory stores, keys, clients and scopes
            var identityServerBuilder = services.AddIdentityServer(options =>
            {
                options.UserInteraction.LoginUrl              = "/identity/account/login";
                options.UserInteraction.LogoutUrl             = "/identity/account/logout";
                options.UserInteraction.ConsentUrl            = "/identity/consent";
                options.Authentication.CheckSessionCookieName = $".idsrv.session.{Configuration["appName"]}";
            })
                                        .AddDeveloperSigningCredential()
                                        .AddInMemoryPersistedGrants()
                                        .AddAspNetIdentity <ApplicationUser>();

            // My Overrides.
            identityServerBuilder.SwapOutRedirectUriValidator <StrictRemoteRedirectUriValidator>();
            identityServerBuilder.SwapOutAspNetIdentityProfileService <ApplicationUser>();

            var authenticationBuilder = services.AddAuthentication();
            var googleClientId        = Configuration["Google-ClientId"];
            var googleClientSecret    = Configuration["Google-ClientSecret"];

            if (!string.IsNullOrEmpty(googleClientId) && !string.IsNullOrEmpty(googleClientSecret))
            {
                authenticationBuilder.P7AddGoogle(options =>
                {
                    options.SaveTokens             = true;
                    options.ClientId               = googleClientId;
                    options.ClientSecret           = googleClientSecret;
                    options.Events.OnRemoteFailure = context =>
                    {
                        context.Response.Redirect("/");
                        context.HandleResponse();
                        return(Task.CompletedTask);
                    };
                });
            }

            var section             = Configuration.GetSection("oauth2");
            var oAuth2SchemeRecords = new List <OAuth2SchemeRecord>();

            section.Bind(oAuth2SchemeRecords);
            foreach (var record in oAuth2SchemeRecords)
            {
                var scheme = record.Scheme;
                authenticationBuilder.P7AddOpenIdConnect(scheme, scheme, options =>
                {
                    options.Authority            = record.Authority;
                    options.CallbackPath         = record.CallbackPath;
                    options.RequireHttpsMetadata = false;

                    options.ClientId   = record.ClientId;
                    options.SaveTokens = true;

                    options.Events.OnRedirectToIdentityProvider = context =>
                    {
                        if (context.ProtocolMessage.RequestType == OpenIdConnectRequestType.Authentication)
                        {
                            context.ProtocolMessage.AcrValues = "some-acr=some-value";
                        }

                        return(Task.CompletedTask);
                    };
                    options.Events.OnRemoteFailure = context =>
                    {
                        context.Response.Redirect("/");
                        context.HandleResponse();
                        return(Task.CompletedTask);
                    };
                });
            }

            services.AddProtectedCookie();
            services.AddTokenStore();
            services.AddAuthenticatedInformation();

            services.AddScoped <IExternalLoginProvider, ExternalLoginProvider>();
            var serviceProvider = services.BuildServiceProvider();

            AppDependencyResolver.Init(serviceProvider);
            return(serviceProvider);
        }
Esempio n. 2
0
 public static void Init(IServiceProvider services)
 {
     _resolver = new AppDependencyResolver(services);
 }