clean up some stuff

paule96 · paule96 · commit 54154f2219a6 · 2018-12-10T20:06:05.000+01:00
diff --git a/KK.AspNetCore.EasyAuthAuthentication.sln b/KK.AspNetCore.EasyAuthAuthentication.sln
@@ -1,4 +1,4 @@
-﻿
+
 Microsoft Visual Studio Solution File, Format Version 12.00
 # Visual Studio 15
 VisualStudioVersion = 15.0.26124.0
diff --git a/src/KK.AspNetCore.EasyAuthAuthentication/EasyAuthAuthenticationHandler.cs b/src/KK.AspNetCore.EasyAuthAuthentication/EasyAuthAuthenticationHandler.cs
@@ -39,13 +39,18 @@ public EasyAuthAuthenticationHandler(
         {
         }
 
-        private static Func<ClaimsPrincipal, bool> isContextUserNotAuthenticated = user => (user == null || user.Identity == null || user.Identity.IsAuthenticated == false);
-        private static Func<IHeaderDictionary, bool> isAADIdTokenNotSet = headers => !string.IsNullOrEmpty(headers[AuthTokenHeaderNames.AADIdToken].ToString());
-        private Func<IHeaderDictionary, ClaimsPrincipal, bool> canUseHeaderAuth => (headers, user) => isContextUserNotAuthenticated(user) && !isAADIdTokenNotSet(headers);
-        private Func<IHeaderDictionary, ClaimsPrincipal, HttpRequest, bool> canUseEasyAuthJson => (headers, user, request) =>
-            isContextUserNotAuthenticated(user)
-            && isAADIdTokenNotSet(headers)
-            && request.Path != "/" + $"{this.Options.AuthEndpoint}";
+        private static Func<ClaimsPrincipal, bool> isContextUserNotAuthenticated =
+            user => (user == null || user.Identity == null || user.Identity.IsAuthenticated == false);
+        private static Func<IHeaderDictionary, string, bool> isHeaderSet =
+            (headers, headerName) => !string.IsNullOrEmpty(headers[headerName].ToString());
+        private Func<IHeaderDictionary, ClaimsPrincipal, bool> canUseHeaderAuth =
+            (headers, user) => isContextUserNotAuthenticated(user) &&
+            isHeaderSet(headers, AuthTokenHeaderNames.AADIdToken);
+        private static Func<IHeaderDictionary, ClaimsPrincipal, HttpRequest, string, bool> canUseEasyAuthJson =
+            (headers, user, request, authEndpoint) =>
+                isContextUserNotAuthenticated(user)
+                && !isHeaderSet(headers, AuthTokenHeaderNames.AADIdToken)
+                && request.Path != "/" + $"{authEndpoint}";
 
         /// <inheritdoc/>
         protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
@@ -56,7 +61,7 @@ protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
             {
                 return EasyAuthWithHeaderService.AuthUser(this.Logger, this.Context);
             }
-            else if (canUseEasyAuthJson(this.Context.Request.Headers, this.Context.User, this.Context.Request))
+            else if (canUseEasyAuthJson(this.Context.Request.Headers, this.Context.User, this.Context.Request, this.Options.AuthEndpoint))
             {
                 return await EasyAuthWithAuthMeService.AuthUser(this.Logger, this.Context, this.Options.AuthEndpoint);
             }
diff --git a/src/KK.AspNetCore.EasyAuthAuthentication/KK.AspNetCore.EasyAuthAuthentication.csproj b/src/KK.AspNetCore.EasyAuthAuthentication/KK.AspNetCore.EasyAuthAuthentication.csproj
@@ -16,7 +16,8 @@
   <ItemGroup>
     <PackageReference Include="Microsoft.AspNetCore.Authentication" Version="2.1.2" />
     <PackageReference Include="Microsoft.AspNetCore.Http.Abstractions" Version="2.1.1" />
-    <PackageReference Include="Newtonsoft.Json" Version="11.0.2" />
+    <PackageReference Include="Newtonsoft.Json" Version="12.0.1" />
+    <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="5.3.0" />
   </ItemGroup>
 
   <!-- StyleCop Settings -->
@@ -25,12 +26,6 @@
     <CodeAnalysisRuleSet>..\..\StyleCop.ruleset</CodeAnalysisRuleSet>
   </PropertyGroup>
   <ItemGroup>
-    <PackageReference Include="StyleCop.Analyzers" Version="1.1.0-beta009" privateassets="all" />
-    <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="5.3.0" />
-  </ItemGroup>
-  <ItemGroup>
-    <Reference Include="System.IdentityModel.Tokens.Jwt">
-      <HintPath>C:\Program Files\dotnet\sdk\NuGetFallbackFolder\system.identitymodel.tokens.jwt\5.2.0\lib\netstandard1.4\System.IdentityModel.Tokens.Jwt.dll</HintPath>
-    </Reference>
+    <PackageReference Include="StyleCop.Analyzers" Version="1.1.1-beta.61" privateassets="all" />
   </ItemGroup>
 </Project>
diff --git a/src/KK.AspNetCore.EasyAuthAuthentication/Services/EasyAuthWithAuthMeService.cs b/src/KK.AspNetCore.EasyAuthAuthentication/Services/EasyAuthWithAuthMeService.cs
@@ -36,7 +36,6 @@ private EasyAuthWithAuthMeService(
             Headers = headers;
             AuthEndPoint = authEndPoint;
             this.Logger = logger;
-
         }
 
         /// <summary>
diff --git a/src/KK.AspNetCore.EasyAuthAuthentication/Services/EasyAuthWithHeaderService.cs b/src/KK.AspNetCore.EasyAuthAuthentication/Services/EasyAuthWithHeaderService.cs
@@ -14,6 +14,12 @@ namespace KK.AspNetCore.EasyAuthAuthentication.Services
 {
     public class EasyAuthWithHeaderService
     {
+        public const string PrincipalNameHeader = "X-MS-CLIENT-PRINCIPAL-NAME";
+        /// <summary>
+        /// JWT
+        /// </summary>
+        public const string PrincipalObjectHeader = "X-MS-CLIENT-PRINCIPAL";
+        public const string PrincipalIdpHeaderName = "X-MS-CLIENT-PRINCIPAL-IDP";
         public ILogger Logger { get; }
         public IHeaderDictionary Headers { get; }
 
@@ -44,14 +50,14 @@ public static AuthenticateResult AuthUser(ILogger logger, HttpContext context)
 
         private AuthenticationTicket BuildIdentityFromEasyAuthRequestHeaders()
         {
-            var name = this.Headers["X-MS-CLIENT-PRINCIPAL-NAME"][0];
+            var name = this.Headers[PrincipalNameHeader][0];
             this.Logger.LogDebug($"payload was fetched from easyauth headers, name: {name}");
 
             var identity = new GenericIdentity(name, AuthenticationTypesNames.Federation); // setting ClaimsIdentity.AuthenticationType to value that azureAd non-easyauth setups use
 
             this.Logger.LogInformation("building claims from payload...");
 
-            var xMsClientPrincipal = JObject.Parse(Encoding.UTF8.GetString(Convert.FromBase64String(this.Headers["X-MS-CLIENT-PRINCIPAL"][0])));
+            var xMsClientPrincipal = JObject.Parse(Encoding.UTF8.GetString(Convert.FromBase64String(this.Headers[PrincipalObjectHeader][0])));
             var claims = xMsClientPrincipal["claims"].Children<JObject>();
             var providerName = this.Headers["X-MS-CLIENT-PRINCIPAL-IDP"][0];
             return AuthenticationTicketBuilder.Build(claims, name, providerName);

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-`
	`1`	`+`
`2`	`2`	`Microsoft Visual Studio Solution File, Format Version 12.00`
`3`	`3`	`# Visual Studio 15`
`4`	`4`	`VisualStudioVersion = 15.0.26124.0`
Original file line number	Diff line number	Diff line change
`@@ -39,13 +39,18 @@ public EasyAuthAuthenticationHandler(`
`39`	`39`	`{`
`40`	`40`	`}`
`41`	`41`
`42`		`- private static Func<ClaimsPrincipal, bool> isContextUserNotAuthenticated = user => (user == null \|\| user.Identity == null \|\| user.Identity.IsAuthenticated == false);`
`43`		`- private static Func<IHeaderDictionary, bool> isAADIdTokenNotSet = headers => !string.IsNullOrEmpty(headers[AuthTokenHeaderNames.AADIdToken].ToString());`
`44`		`- private Func<IHeaderDictionary, ClaimsPrincipal, bool> canUseHeaderAuth => (headers, user) => isContextUserNotAuthenticated(user) && !isAADIdTokenNotSet(headers);`
`45`		`- private Func<IHeaderDictionary, ClaimsPrincipal, HttpRequest, bool> canUseEasyAuthJson => (headers, user, request) =>`
`46`		`- isContextUserNotAuthenticated(user)`
`47`		`- && isAADIdTokenNotSet(headers)`
`48`		`- && request.Path != "/" + $"{this.Options.AuthEndpoint}";`
	`42`	`+ private static Func<ClaimsPrincipal, bool> isContextUserNotAuthenticated =`
	`43`	`+ user => (user == null \|\| user.Identity == null \|\| user.Identity.IsAuthenticated == false);`
	`44`	`+ private static Func<IHeaderDictionary, string, bool> isHeaderSet =`
	`45`	`+ (headers, headerName) => !string.IsNullOrEmpty(headers[headerName].ToString());`
	`46`	`+ private Func<IHeaderDictionary, ClaimsPrincipal, bool> canUseHeaderAuth =`
	`47`	`+ (headers, user) => isContextUserNotAuthenticated(user) &&`
	`48`	`+ isHeaderSet(headers, AuthTokenHeaderNames.AADIdToken);`
	`49`	`+ private static Func<IHeaderDictionary, ClaimsPrincipal, HttpRequest, string, bool> canUseEasyAuthJson =`
	`50`	`+ (headers, user, request, authEndpoint) =>`
	`51`	`+ isContextUserNotAuthenticated(user)`
	`52`	`+ && !isHeaderSet(headers, AuthTokenHeaderNames.AADIdToken)`
	`53`	`+ && request.Path != "/" + $"{authEndpoint}";`
`49`	`54`
`50`	`55`	`/// <inheritdoc/>`
`51`	`56`	`protected override async Task<AuthenticateResult> HandleAuthenticateAsync()`
`@@ -56,7 +61,7 @@ protected override async Task<AuthenticateResult> HandleAuthenticateAsync()`
`56`	`61`	`{`
`57`	`62`	`return EasyAuthWithHeaderService.AuthUser(this.Logger, this.Context);`
`58`	`63`	`}`
`59`		`- else if (canUseEasyAuthJson(this.Context.Request.Headers, this.Context.User, this.Context.Request))`
	`64`	`+ else if (canUseEasyAuthJson(this.Context.Request.Headers, this.Context.User, this.Context.Request, this.Options.AuthEndpoint))`
`60`	`65`	`{`
`61`	`66`	`return await EasyAuthWithAuthMeService.AuthUser(this.Logger, this.Context, this.Options.AuthEndpoint);`
`62`	`67`	`}`
Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,6 @@ private EasyAuthWithAuthMeService(`
`36`	`36`	`Headers = headers;`
`37`	`37`	`AuthEndPoint = authEndPoint;`
`38`	`38`	`this.Logger = logger;`
`39`		`-`
`40`	`39`	`}`
`41`	`40`
`42`	`41`	`/// <summary>`