public bool CheckSecurity()
{
if (S.User.userId > 0)
{
return(true);
}
//check cookie authentication
AuthenticationHttpContextExtensions.ChallengeAsync(S.Context,
CookieAuthenticationDefaults.AuthenticationScheme,
new AuthenticationProperties()
{
RedirectUri = "/access-denied"
}
);
return(false);
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app, IHostingEnvironment env)
{
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
}
app.UseAuthentication();
Func <HttpContext, GraphServiceClient> getGraphServiceClient = (context) =>
{
var identifier = context.User.FindFirst(ObjectIdentifierType).Value;
var memorycache = context.RequestServices.GetRequiredService <IMemoryCache>();
var sessionTokencache = new SessionTokenCache(identifier, memorycache);
var ctx = new AuthenticationContext(authority, sessionTokencache.GetCacheInstance());
var result = ctx.AcquireTokenSilentAsync(resource, new ClientCredential(clientid, secret), new UserIdentifier(identifier, UserIdentifierType.UniqueId)).Result;
var graphserviceClient = new GraphServiceClient(new DelegateAuthenticationProvider(async(request) =>
{
request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", result.AccessToken);
await Task.FromResult(0);
}))
{
BaseUrl = $"{resource}/{{version}}"
};
return(graphserviceClient);
};
app.Map("/messages", (builder) =>
{
builder.Run(async(context) =>
{
context.Response.ContentType = "text/html;charset=utf-8";
if (context.User.Identity.IsAuthenticated)
{
var client = getGraphServiceClient(context);
var messages = await client.Me.Messages.Request().GetAsync();
await context.Response.WriteAsync($"<h1>我的邮件</h1>{string.Join("<br />", messages.Select(x => x.Subject))}", Encoding.UTF8);
}
else
{
await AuthenticationHttpContextExtensions.ChallengeAsync(context, OpenIdConnectDefaults.AuthenticationScheme);
}
});
});
app.Map("/files", (builder) =>
{
builder.Run(async(context) =>
{
context.Response.ContentType = "text/html;charset=utf-8";
if (context.User.Identity.IsAuthenticated)
{
var client = getGraphServiceClient(context);
var files = await client.Me.Drive.Root.Children.Request().GetAsync();
await context.Response.WriteAsync($"<h1>我的文件</h1>{string.Join("<br />", files.Select(x => x.Name))}", Encoding.UTF8);
}
else
{
await AuthenticationHttpContextExtensions.ChallengeAsync(context, OpenIdConnectDefaults.AuthenticationScheme);
}
});
});
app.Run(async(context) =>
{
context.Response.ContentType = "text/html;charset=utf-8";
if (context.User.Identity.IsAuthenticated)
{
var client = getGraphServiceClient(context);
var me = await client.Me.Request().GetAsync();
var sb = new StringBuilder();
sb.Append("<h2>欢迎使用Microsoft Graph</h2>");
sb.Append("<p>个人信息</p>");
sb.Append($"<p>姓名:{me.DisplayName}</p>");
sb.Append($"<p>邮箱:{me.UserPrincipalName}</p>");
sb.Append($"<p><a href='/messages'>我的邮件</p>");
sb.Append($"<p><a href='/files'>我的文件</p>");
await context.Response.WriteAsync(sb.ToString(), Encoding.UTF8);
}
else
{
await AuthenticationHttpContextExtensions.ChallengeAsync(context, OpenIdConnectDefaults.AuthenticationScheme);
}
});
}