huahaofeng
/
aspnetcore
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Add Validate(scheme) and use for RemoteSignInScheme not self validation

This commit is contained in:
Hao Kung 2017-10-10 13:51:07 -07:00 committed by Hao Kung
parent e0ad6ed6b9
commit 02cd997e32
6 changed files with 38 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/Microsoft.AspNetCore.Authentication/AuthenticationBuilder.cs
View File

@ -97,10 +97,6 @@ namespace Microsoft.AspNetCore.Authentication
public void PostConfigure(string name, TOptions options) public void PostConfigure(string name, TOptions options)
{ {
options.SignInScheme = options.SignInScheme ?? _authOptions.DefaultSignInScheme ?? _authOptions.DefaultScheme; options.SignInScheme = options.SignInScheme ?? _authOptions.DefaultSignInScheme ?? _authOptions.DefaultScheme;
if (string.Equals(options.SignInScheme, name, StringComparison.Ordinal))
{
throw new InvalidOperationException(Resources.Exception_RemoteSignInSchemeCannotBeSelf);
}
} }
} }
} }

2
src/Microsoft.AspNetCore.Authentication/AuthenticationHandler.cs
View File

@ -87,7 +87,7 @@ namespace Microsoft.AspNetCore.Authentication
Context = context; Context = context;
Options = OptionsMonitor.Get(Scheme.Name) ?? new TOptions(); Options = OptionsMonitor.Get(Scheme.Name) ?? new TOptions();
Options.Validate(); Options.Validate(Scheme.Name);
await InitializeEventsAsync(); await InitializeEventsAsync();
await InitializeHandlerAsync(); await InitializeHandlerAsync();

11
src/Microsoft.AspNetCore.Authentication/AuthenticationSchemeOptions.cs
View File

@ -13,9 +13,14 @@ namespace Microsoft.AspNetCore.Authentication
/// <summary> /// <summary>
/// Check that the options are valid. Should throw an exception if things are not ok. /// Check that the options are valid. Should throw an exception if things are not ok.
/// </summary> /// </summary>
public virtual void Validate() public virtual void Validate() { }
{
} /// <summary>
/// Checks that the options are valid for a specific scheme
/// </summary>
/// <param name="scheme">The scheme being validated.</param>
public virtual void Validate(string scheme)
=> Validate();
/// <summary> /// <summary>
/// Gets or sets the issuer that should be used for any claims that are created /// Gets or sets the issuer that should be used for any claims that are created

13
src/Microsoft.AspNetCore.Authentication/RemoteAuthenticationOptions.cs
View File

@ -32,6 +32,19 @@ namespace Microsoft.AspNetCore.Authentication
}; };
} }
/// <summary>
/// Checks that the options are valid for a specific scheme
/// </summary>
/// <param name="scheme">The scheme being validated.</param>
public override void Validate(string scheme)
{
base.Validate(scheme);
if (string.Equals(scheme, SignInScheme, StringComparison.Ordinal))
{
throw new InvalidOperationException(Resources.Exception_RemoteSignInSchemeCannotBeSelf);
}
}
/// <summary> /// <summary>
/// Check that the options are valid. Should throw an exception if things are not ok. /// Check that the options are valid. Should throw an exception if things are not ok.
/// </summary> /// </summary>

16
test/Microsoft.AspNetCore.Authentication.Test/FacebookTests.cs
View File

@ -29,7 +29,11 @@ namespace Microsoft.AspNetCore.Authentication.Facebook
{ {
var server = CreateServer( var server = CreateServer(
app => { }, app => { },
services => services.AddAuthentication().AddFacebook(o => o.SignInScheme = FacebookDefaults.AuthenticationScheme), services => services.AddAuthentication().AddFacebook(o => {
o.AppId = "whatever";
o.AppSecret = "whatever";
o.SignInScheme = FacebookDefaults.AuthenticationScheme;
}),
context => context =>
{ {
// Gross // Gross
@ -45,7 +49,10 @@ namespace Microsoft.AspNetCore.Authentication.Facebook
{ {
var server = CreateServer( var server = CreateServer(
app => { }, app => { },
services => services.AddAuthentication(o => o.DefaultScheme = FacebookDefaults.AuthenticationScheme).AddFacebook(), services => services.AddAuthentication(o => o.DefaultScheme = FacebookDefaults.AuthenticationScheme).AddFacebook(o => {
o.AppId = "whatever";
o.AppSecret = "whatever";
}),
context => context =>
{ {
// Gross // Gross
@ -61,7 +68,10 @@ namespace Microsoft.AspNetCore.Authentication.Facebook
{ {
var server = CreateServer( var server = CreateServer(
app => { }, app => { },
services => services.AddAuthentication(o => o.DefaultSignInScheme = FacebookDefaults.AuthenticationScheme).AddFacebook(), services => services.AddAuthentication(o => o.DefaultSignInScheme = FacebookDefaults.AuthenticationScheme).AddFacebook(o => {
o.AppId = "whatever";
o.AppSecret = "whatever";
}),
context => context =>
{ {
// Gross // Gross

3
test/Microsoft.AspNetCore.Authentication.Test/OAuthTests.cs
View File

@ -27,6 +27,9 @@ namespace Microsoft.AspNetCore.Authentication.OAuth
o.SignInScheme = "weeblie"; o.SignInScheme = "weeblie";
o.ClientId = "whatever"; o.ClientId = "whatever";
o.ClientSecret = "whatever"; o.ClientSecret = "whatever";
o.CallbackPath = "/whatever";
o.AuthorizationEndpoint = "/whatever";
o.TokenEndpoint = "/whatever";
})); }));
var error = await Assert.ThrowsAsync<InvalidOperationException>(() => server.SendAsync("https://example.com/")); var error = await Assert.ThrowsAsync<InvalidOperationException>(() => server.SendAsync("https://example.com/"));
Assert.Contains("cannot be set to itself", error.Message); Assert.Contains("cannot be set to itself", error.Message);