Cleanup code for StyleCop

Author: kirkone

StyleCop.ruleset

@@ -17,6 +17,8 @@
     <Rule Id="SA1623" Action="None" /> <!-- The property's documentation summary text should begin with : 'Gets or sets' -->
     <Rule Id="SA1650" Action="None" /> <!-- The documentation header contains invalidly spelled words. -->
     <Rule Id="SA1602" Action="None" /> <!-- Enumeration items should be documented. -->
+    <Rule Id="SA1009" Action="None" /> <!-- Closing parenthesis should not be preceded by a space. -->
+    <Rule Id="SA1111" Action="None" /> <!-- Closing Parenthesis Must Be On Line Of Last Parameter. -->
     <Rule Id="SA1128" Action="None" /> <!-- Put constructor initializers on their own line. -->
   </Rules>
 </RuleSet>

src/KK.AspNetCore.EasyAuthAuthentication/AuthTokenHeaderNames.cs

@@ -2,36 +2,34 @@ namespace KK.AspNetCore.EasyAuthAuthentication
 {
     /// <summary>
     /// This class contains all header names that are possible to make an authentication.
-    /// The source of the list can find here: https://docs.microsoft.com/en-us/azure/app-service/app-service-authentication-how-to#retrieve-tokens-in-app-code
+    /// The source of the list can find here: https://docs.microsoft.com/en-us/azure/app-service/app-service-authentication-how-to#retrieve-tokens-in-app-code .
     /// </summary>
-    public static class AuthTokenHeaderNames
+    internal static class AuthTokenHeaderNames
     {
-        #region AzureAd
+        // AzureAd
         public const string AADIdToken = "X-MS-TOKEN-AAD-ID-TOKEN";
         public const string AADAccessToken = "X-MS-TOKEN-AAD-ACCESS-TOKEN";
         public const string AADExpiresOn = "X-MS-TOKEN-AAD-EXPIRES-ON";
         public const string AADRefreshToken = "X-MS-TOKEN-AAD-REFRESH-TOKEN";
-        #endregion
-        #region Facebook
+
+        // Facebook
         public const string FacebookAccessToken = "X-MS-TOKEN-FACEBOOK-ACCESS-TOKEN";
         public const string FacebookExpiresOn = "X-MS-TOKEN-FACEBOOK-EXPIRES-ON";
-        #endregion
-        #region Google
+
+        // Google
         public const string GoogleIdToken = "X-MS-TOKEN-GOOGLE-ID-TOKEN";
         public const string GoogleAccessToken = "X-MS-TOKEN-GOOGLE-ACCESS-TOKEN";
         public const string GoogleExpiresOn = "X-MS-TOKEN-GOOGLE-EXPIRES-ON";
         public const string GoogleRefreshToken = "X-MS-TOKEN-GOOGLE-REFRESH-TOKEN";
 
-        #endregion
-        #region Microsoft Account
+        // Microsoft Account
         public const string MicrosoftAccessToken = "X-MS-TOKEN-MICROSOFTACCOUNT-ACCESS-TOKEN";
         public const string MicrosoftExpiresOn = "X-MS-TOKEN-MICROSOFTACCOUNT-EXPIRES-ON";
         public const string MicrosoftAuthenticationToken = "X-MS-TOKEN-MICROSOFTACCOUNT-AUTHENTICATION-TOKEN";
         public const string MicrosoftRefreshToken = "X-MS-TOKEN-MICROSOFTACCOUNT-REFRESH-TOKEN";
-        #endregion
-        #region Twitter
+
+        // Twitter
         public const string TwitterAccessToken = "X-MS-TOKEN-TWITTER-ACCESS-TOKEN";
         public const string TwitterAccessTokenSecret = "X-MS-TOKEN-TWITTER-ACCESS-TOKEN-SECRET";
-        #endregion
     }
 }

src/KK.AspNetCore.EasyAuthAuthentication/AuthenticationTicketBuilder.cs

@@ -1,36 +1,35 @@
-using System.Collections.Generic;
-using System.Linq;
-using System.Security.Claims;
-using System.Security.Principal;
-using Microsoft.AspNetCore.Authentication;
-using Newtonsoft.Json.Linq;
-
 namespace KK.AspNetCore.EasyAuthAuthentication
 {
-    public static class AuthenticationTicketBuilder
+    using System.Collections.Generic;
+    using System.Linq;
+    using System.Security.Claims;
+    using Microsoft.AspNetCore.Authentication;
+    using Newtonsoft.Json.Linq;
+
+    internal static class AuthenticationTicketBuilder
     {
         /// <summary>
-        /// Build a `AuthenticationTicket` from the given payload, the principal name and the provider name
+        /// Build a `AuthenticationTicket` from the given payload, the principal name and the provider name.
         /// </summary>
-        /// <param name="claimsPayload">A array of JObjects that have a `type` and a `val` property</param>
+        /// <param name="claimsPayload">A array of JObjects that have a `type` and a `val` property.</param>
         /// <param name="providerName">The provider name of the current auth provider.</param>
-        /// <returns>A `AuthenticationTicket`</returns>
+        /// <returns>A `AuthenticationTicket`.</returns>
         public static AuthenticationTicket Build(IEnumerable<JObject> claimsPayload, string providerName)
         {
+            // setting ClaimsIdentity.AuthenticationType to value that Azure AD non-EasyAuth setups use
             var identity = new ClaimsIdentity(
-                createClaims(claimsPayload),
-                // setting ClaimsIdentity.AuthenticationType to value that Azure AD non-EasyAuth setups use
+                CreateClaims(claimsPayload),
                 AuthenticationTypesNames.Federation
             );
 
-            addScopeClaim(identity);
-            addProviderNameClaim(identity, providerName);
+            AddScopeClaim(identity);
+            AddProviderNameClaim(identity, providerName);
             var genericPrincipal = new ClaimsPrincipal(identity);
 
             return new AuthenticationTicket(genericPrincipal, EasyAuthAuthenticationDefaults.AuthenticationScheme);
         }
 
-        private static IEnumerable<Claim> createClaims(IEnumerable<JObject> claimsAsJson)
+        private static IEnumerable<Claim> CreateClaims(IEnumerable<JObject> claimsAsJson)
         {
             foreach (var claim in claimsAsJson)
             {
@@ -42,12 +41,14 @@ private static IEnumerable<Claim> createClaims(IEnumerable<JObject> claimsAsJson
                         {
                             yield return new Claim(ClaimTypes.Authentication, item);
                         }
+
                         break;
                     case "roles":
                         foreach (var item in claim["val"].ToString().Split(','))
                         {
                             yield return new Claim(ClaimTypes.Role, item);
                         }
+
                         break;
                     default:
                         yield return new Claim(claimType, claim["val"].ToString());
@@ -56,7 +57,7 @@ private static IEnumerable<Claim> createClaims(IEnumerable<JObject> claimsAsJson
             }
         }
 
-        private static void addScopeClaim(ClaimsIdentity identity)
+        private static void AddScopeClaim(ClaimsIdentity identity)
         {
             if (!identity.Claims.Any(claim => claim.Type == "scp"))
             {
@@ -66,7 +67,7 @@ private static void addScopeClaim(ClaimsIdentity identity)
             }
         }
 
-        private static void addProviderNameClaim(ClaimsIdentity identity, string providerName)
+        private static void AddProviderNameClaim(ClaimsIdentity identity, string providerName)
         {
             if (!identity.Claims.Any(claim => claim.Type == "provider_name"))
             {

src/KK.AspNetCore.EasyAuthAuthentication/AuthenticationTypesNames.cs

@@ -2,9 +2,9 @@ namespace KK.AspNetCore.EasyAuthAuthentication
 {
     /// <summary>
     /// This class contains all Authentication type names.
-    /// Source of this is: https://docs.microsoft.com/en-us/dotnet/api/system.security.claims.authenticationtypes?view=netframework-4.7.2
+    /// Source of this is: https://docs.microsoft.com/en-us/dotnet/api/system.security.claims.authenticationtypes?view=netframework-4.7.2 .
     /// </summary>
-    public class AuthenticationTypesNames
+    internal class AuthenticationTypesNames
     {
         public const string Basic = "AuthenticationTypes.Basic";
         public const string Federation = "AuthenticationTypes.Federation";

src/KK.AspNetCore.EasyAuthAuthentication/EasyAuthAuthenticationHandler.cs

@@ -1,29 +1,36 @@
 namespace KK.AspNetCore.EasyAuthAuthentication
 {
     using System;
-    using System.Collections.Generic;
-    using System.IdentityModel.Tokens.Jwt;
-    using System.Linq; // required by Children<JObject>.FirstOrDefault requires using System.Linq;
-    using System.Net;
-    using System.Net.Http;
     using System.Security.Claims;
-    using System.Security.Principal;
-    using System.Text;
     using System.Text.Encodings.Web;
     using System.Threading.Tasks;
     using KK.AspNetCore.EasyAuthAuthentication.Services;
     using Microsoft.AspNetCore.Authentication;
     using Microsoft.AspNetCore.Http;
     using Microsoft.Extensions.Logging;
     using Microsoft.Extensions.Options;
-    using Newtonsoft.Json;
-    using Newtonsoft.Json.Linq;
 
     /// <summary>
     /// Enables the handler in an Easy Auth context.
     /// </summary>
     public class EasyAuthAuthenticationHandler : AuthenticationHandler<EasyAuthAuthenticationOptions>
     {
+        private static readonly Func<ClaimsPrincipal, bool> IsContextUserNotAuthenticated =
+            user => user == null || user.Identity == null || user.Identity.IsAuthenticated == false;
+
+        private static readonly Func<IHeaderDictionary, string, bool> IsHeaderSet =
+            (headers, headerName) => !string.IsNullOrEmpty(headers[headerName].ToString());
+
+        private static readonly Func<IHeaderDictionary, ClaimsPrincipal, HttpRequest, string, bool> CanUseEasyAuthJson =
+            (headers, user, request, authEndpoint) =>
+                IsContextUserNotAuthenticated(user)
+                && !IsHeaderSet(headers, AuthTokenHeaderNames.AADIdToken)
+                && request.Path != "/" + $"{authEndpoint}";
+
+        private readonly Func<IHeaderDictionary, ClaimsPrincipal, bool> canUseHeaderAuth =
+            (headers, user) => IsContextUserNotAuthenticated(user) &&
+            IsHeaderSet(headers, AuthTokenHeaderNames.AADIdToken);
+
         /// <summary>
         /// Initializes a new instance of the <see cref="EasyAuthAuthenticationHandler"/> class.
         /// </summary>
@@ -39,42 +46,30 @@ public EasyAuthAuthenticationHandler(
         {
         }
 
-        private static Func<ClaimsPrincipal, bool> isContextUserNotAuthenticated =
-            user => (user == null || user.Identity == null || user.Identity.IsAuthenticated == false);
-        private static Func<IHeaderDictionary, string, bool> isHeaderSet =
-            (headers, headerName) => !string.IsNullOrEmpty(headers[headerName].ToString());
-        private Func<IHeaderDictionary, ClaimsPrincipal, bool> canUseHeaderAuth =
-            (headers, user) => isContextUserNotAuthenticated(user) &&
-            isHeaderSet(headers, AuthTokenHeaderNames.AADIdToken);
-        private static Func<IHeaderDictionary, ClaimsPrincipal, HttpRequest, string, bool> canUseEasyAuthJson =
-            (headers, user, request, authEndpoint) =>
-                isContextUserNotAuthenticated(user)
-                && !isHeaderSet(headers, AuthTokenHeaderNames.AADIdToken)
-                && request.Path != "/" + $"{authEndpoint}";
-
         /// <inheritdoc/>
         protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
         {
             this.Logger.LogInformation("starting authentication handler for app service authentication");
 
-            if (canUseHeaderAuth(this.Context.Request.Headers, this.Context.User))
+            if (this.canUseHeaderAuth(this.Context.Request.Headers, this.Context.User))
             {
                 return EasyAuthWithHeaderService.AuthUser(this.Logger, this.Context);
             }
-            else if (canUseEasyAuthJson(this.Context.Request.Headers, this.Context.User, this.Context.Request, this.Options.AuthEndpoint))
+            else if (CanUseEasyAuthJson(this.Context.Request.Headers, this.Context.User, this.Context.Request, this.Options.AuthEndpoint))
             {
                 return await EasyAuthWithAuthMeService.AuthUser(this.Logger, this.Context, this.Options.AuthEndpoint);
             }
             else
             {
-                if (isContextUserNotAuthenticated(this.Context.User))
+                if (IsContextUserNotAuthenticated(this.Context.User))
                 {
                     this.Logger.LogInformation("The identity isn't set by easy auth.");
                 }
                 else
                 {
                     this.Logger.LogInformation("identity already set, skipping middleware");
                 }
+
                 return AuthenticateResult.NoResult();
             }
         }

src/KK.AspNetCore.EasyAuthAuthentication/Schemas.cs

@@ -1,6 +1,6 @@
 namespace KK.AspNetCore.EasyAuthAuthentication
 {
-    public class Schemas
+    internal class Schemas
     {
         public const string AuthMethod = "http://schemas.microsoft.com/claims/authnmethodsreferences";
     }

src/KK.AspNetCore.EasyAuthAuthentication/Services/EasyAuthWithAuthMeService.cs

@@ -1,27 +1,18 @@
-using System;
-using System.Collections.Generic;
-using System.Linq;
-using System.Net;
-using System.Net.Http;
-using System.Security.Claims;
-using System.Security.Principal;
-using System.Threading.Tasks;
-using Microsoft.AspNetCore.Authentication;
-using Microsoft.AspNetCore.Http;
-using Microsoft.Extensions.Logging;
-using Newtonsoft.Json;
-using Newtonsoft.Json.Linq;
-
 namespace KK.AspNetCore.EasyAuthAuthentication.Services
 {
-    public class EasyAuthWithAuthMeService
+    using System;
+    using System.Net;
+    using System.Net.Http;
+    using System.Security.Principal;
+    using System.Threading.Tasks;
+    using Microsoft.AspNetCore.Authentication;
+    using Microsoft.AspNetCore.Http;
+    using Microsoft.Extensions.Logging;
+    using Newtonsoft.Json;
+    using Newtonsoft.Json.Linq;
+
+    internal class EasyAuthWithAuthMeService
     {
-        private string Host { get; }
-        private IRequestCookieCollection Cookies { get; }
-        private IHeaderDictionary Headers { get; }
-        private string AuthEndPoint { get; }
-        private ILogger Logger { get; }
-        private string HttpSchema { get; }
         private EasyAuthWithAuthMeService(
             ILogger logger,
             string httpSchema,
@@ -32,20 +23,32 @@ private EasyAuthWithAuthMeService(
         {
             this.HttpSchema = httpSchema;
             this.Host = host;
-            Cookies = cookies;
-            Headers = headers;
-            AuthEndPoint = authEndPoint;
+            this.Cookies = cookies;
+            this.Headers = headers;
+            this.AuthEndPoint = authEndPoint;
             this.Logger = logger;
         }
 
+        private string Host { get; }
+
+        private IRequestCookieCollection Cookies { get; }
+
+        private IHeaderDictionary Headers { get; }
+
+        private string AuthEndPoint { get; }
+
+        private ILogger Logger { get; }
+
+        private string HttpSchema { get; }
+
         /// <summary>
         /// Use this method to authenticate a user with easy auth.
         /// This will set the `context.User` of your HttpContext.
         /// </summary>
-        /// <param name="logger"></param>
+        /// <param name="logger">An instance of <see cref="ILogger"/>.</param>
         /// <param name="context">The http context with the missing user claim.</param>
-        /// <param name="authEndpoint">The auth endpoint where we find the easy auth json</param>
-        /// <returns></returns>
+        /// <param name="authEndpoint">The auth endpoint where we find the easy auth json.</param>
+        /// <returns>An <see cref="AuthenticateResult" />.</returns>
         public static async Task<AuthenticateResult> AuthUser(ILogger logger, HttpContext context, string authEndpoint)
         {
             try
@@ -146,8 +149,14 @@ private HttpRequestMessage CreateAuthRequest(ref CookieContainer cookieContainer
 
             // fetch value from endpoint
             var authMeEndpoint = string.Empty;
-            if (this.AuthEndPoint.StartsWith("http")) authMeEndpoint = this.AuthEndPoint; // enable pulling from places like storage account private blob container
-            else authMeEndpoint = $"{uriString}/{this.AuthEndPoint}"; // localhost relative path, e.g. wwwroot/.auth/me.json
+            if (this.AuthEndPoint.StartsWith("http"))
+            {
+                authMeEndpoint = this.AuthEndPoint; // enable pulling from places like storage account private blob container
+            }
+            else
+            {
+                authMeEndpoint = $"{uriString}/{this.AuthEndPoint}"; // localhost relative path, e.g. wwwroot/.auth/me.json
+            }
 
             var request = new HttpRequestMessage(HttpMethod.Get, authMeEndpoint);
             foreach (var header in this.Headers)