-
Notifications
You must be signed in to change notification settings - Fork 28
/
Copy pathProgram.cs
87 lines (67 loc) · 2.8 KB
/
Program.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
using System.Security.Claims;
using BasicAuthenticationSample.Authentication;
using Microsoft.AspNetCore.Authentication;
using SimpleAuthentication;
using SimpleAuthentication.BasicAuthentication;
var builder = WebApplication.CreateBuilder(args);
// Add services to the container.
builder.Services.AddHttpContextAccessor();
builder.Services.AddProblemDetails();
// Add authentication services.
builder.Services.AddSimpleAuthentication(builder.Configuration);
//builder.Services.AddAuthorizationBuilder()
// .SetDefaultPolicy(new AuthorizationPolicyBuilder()
// .AddAuthenticationSchemes(BasicAuthenticationDefaults.AuthenticationScheme)
// .RequireAuthenticatedUser()
// .Build())
// .SetFallbackPolicy(new AuthorizationPolicyBuilder()
// .AddAuthenticationSchemes(BasicAuthenticationDefaults.AuthenticationScheme)
// .RequireAuthenticatedUser()
// .Build())
// .AddPolicy("Basic", builder => builder.AddAuthenticationSchemes(BasicAuthenticationDefaults.AuthenticationScheme).RequireAuthenticatedUser());
builder.Services.AddTransient<IBasicAuthenticationValidator, CustomBasicAuthenticationValidator>();
// Uncomment the following line if you have multiple authentication schemes and
// you need to determine the authentication scheme at runtime (for example, you don't want to use the default authentication scheme).
//builder.Services.AddSingleton<IAuthenticationSchemeProvider, ApplicationAuthenticationSchemeProvider>();
builder.Services.AddTransient<IClaimsTransformation, ClaimsTransformer>();
// Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
builder.Services.AddEndpointsApiExplorer();
builder.Services.AddSwaggerGen(options =>
{
options.AddSimpleAuthentication(builder.Configuration);
});
var app = builder.Build();
// Configure the HTTP request pipeline.
app.UseHttpsRedirection();
if (!app.Environment.IsDevelopment())
{
app.UseExceptionHandler();
}
app.UseStatusCodePages();
if (app.Environment.IsDevelopment())
{
app.UseSwagger();
app.UseSwaggerUI();
}
app.UseAuthentication();
app.UseAuthorization();
app.MapGet("api/me", (ClaimsPrincipal user) =>
{
return TypedResults.Ok(new User(user.Identity!.Name));
})
.RequireAuthorization()
.WithOpenApi();
app.Run();
public record class User(string? UserName);
public class CustomBasicAuthenticationValidator : IBasicAuthenticationValidator
{
public Task<BasicAuthenticationValidationResult> ValidateAsync(string userName, string password)
{
if (userName == password)
{
var claims = new List<Claim>() { new(ClaimTypes.Role, "User") };
return Task.FromResult(BasicAuthenticationValidationResult.Success(userName, claims));
}
return Task.FromResult(BasicAuthenticationValidationResult.Fail("Invalid user"));
}
}