/// <summary>
/// Constructor
/// </summary>
/// <param name="client"></param>
/// <param name="optionsAccessor"></param>
/// <param name="idProviderAccessor"></param>
/// <param name="logger"></param>
public AuthorizationHelper(
IAuthorizationClient client,
IOptions <AuthorizationClientOptions> optionsAccessor,
IOptions <IdentityProviderOptions> idProviderAccessor,
ILogger logger)
{
this.client = client;
this.options = optionsAccessor.Value;
this.idProviderOptions = idProviderAccessor.Value;
this.logger = logger;
}
public AuthorizationService(IOptions <AuthorizationClientOptions> authorizationClientOptionsAccessor, IOptions <ExpenseDemoOptions> expenseDemoOptionsAccessor, IHttpContextAccessor httpContextAccessor, IPolicyDecisionPoint policyDecisionPoint, IUserMetadataService userMetadataService, IAttributeAssignmentService attributeAssignmentService, IMemoryCache memoryCache)
{
this.authorizationClientOptions = authorizationClientOptionsAccessor.Value;
this.expenseDemoOptions = expenseDemoOptionsAccessor.Value;
this.httpContext = httpContextAccessor.HttpContext;
this.policyDecisionPoint = policyDecisionPoint;
this.userMetadataService = userMetadataService;
this.attributeAssignmentService = attributeAssignmentService;
this.memoryCache = memoryCache;
this.currentUser = new Lazy <UserMetadata>(() => this.PopulateCurrentUser().Result);
this.currentUserAttributeAssignments = new Lazy <IEnumerable <AttributeEntityAssignment> >(() => this.PopulateCurrentUserAttributeAssignments().Result);
this.impersonationCheckAccessResult = new Lazy <bool>(() => this.ImpersonationCheckAccess().Result);
}
private void ConfigureAuth(IAppBuilder app)
{
app.SetDefaultSignInAsAuthenticationType(CookieAuthenticationDefaults.AuthenticationType);
app.UseCookieAuthentication(new CookieAuthenticationOptions());
app.UseOpenIdConnectAuthentication(new OpenIdConnectAuthenticationOptions
{
ClientId = clientId,
Authority = authority,
RedirectUri = redirectUri,
PostLogoutRedirectUri = redirectUri,
Scope = "openid profile",
ResponseType = "id_token",
TokenValidationParameters = new TokenValidationParameters {
ValidateIssuer = false, NameClaimType = "name"
},
Notifications = new OpenIdConnectAuthenticationNotifications
{
AuthenticationFailed = this.OnAuthenticationFailedAsync,
SecurityTokenValidated = this.OnSecurityTokenValidatedAsync
}
});
// Initialize AuthorizationOptions for OneAuthz
AuthorizationClientOptions authOptions = new AuthorizationClientOptions()
{
AuthenticationOptions = new Microsoft.Enterprise.Authorization.Client.AuthenticationOptions()
{
ClientId = clientId,
ClientSecret = clientSecret,
},
ApplicationId = Guid.Parse(clientId)
};
AuthHelper.InitializeAuthorizationClientOptions(authOptions);
}
internal static void InitializeAuthorizationClientOptions(AuthorizationClientOptions authorizationClientOptions)
{
AuthorizationClientOptions = authorizationClientOptions;
}
