huahaofeng
/
aspnetcore
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Auth cleanup 

- Rename Security folder -> Authentication
- Change Authenticate to only take one scheme to match other APIs, the
params overload did not make it any cleaner to consume (since it didn't
produce a combined ClaimsPrincipal anyways)
This commit is contained in:
Hao Kung 2015-03-16 14:26:46 -07:00
parent 93deb0b440
commit 08ddbe8531
10 changed files with 27 additions and 43 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
src/Microsoft.AspNet.Http.Core/Authentication/AuthenticateContext.cs
View File

@ -1,6 +1,7 @@
// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved.
// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
using System;
using System.Collections.Generic;
using System.Security.Claims;
using Microsoft.AspNet.Http.Authentication;
@ -10,24 +11,19 @@ namespace Microsoft.AspNet.Http.Core.Authentication
{
public class AuthenticateContext : IAuthenticateContext
{
private List<AuthenticationResult> _results;
private List<string> _accepted;
private AuthenticationResult _result;
private bool _accepted;
public AuthenticateContext([NotNull] IEnumerable<string> authenticationSchemes)
public AuthenticateContext([NotNull] string authenticationScheme)
{
AuthenticationSchemes = authenticationSchemes;
_results = new List<AuthenticationResult>();
_accepted = new List<string>();
AuthenticationScheme = authenticationScheme;
}
public IEnumerable<string> AuthenticationSchemes { get; private set; }
public string AuthenticationScheme { get; private set; }
public IEnumerable<AuthenticationResult> Results
{
get { return _results; }
}
public AuthenticationResult Result { get; set; }
public IEnumerable<string> Accepted
public bool Accepted
{
get { return _accepted; }
}
@ -35,13 +31,13 @@ namespace Microsoft.AspNet.Http.Core.Authentication
public void Authenticated(ClaimsPrincipal principal, IDictionary<string, string> properties, IDictionary<string, object> description)
{
var descrip = new AuthenticationDescription(description);
_accepted.Add(descrip.AuthenticationScheme); // may not match identity.AuthType
_results.Add(new AuthenticationResult(principal, new AuthenticationProperties(properties), descrip));
_accepted = true;
Result = new AuthenticationResult(principal, new AuthenticationProperties(properties), descrip);
}
public void NotAuthenticated(string authenticationScheme, IDictionary<string, string> properties, IDictionary<string, object> description)
public void NotAuthenticated()
{
_accepted.Add(authenticationScheme);
_accepted = true;
}
}
}

23
src/Microsoft.AspNet.Http.Core/DefaultHttpContext.cs
View File

@ -212,44 +212,41 @@ namespace Microsoft.AspNet.Http.Core
return describeContext.Results;
}
public override IEnumerable<AuthenticationResult> Authenticate([NotNull] IEnumerable<string> authenticationSchemes)
public override AuthenticationResult Authenticate([NotNull] string authenticationScheme)
{
var handler = HttpAuthenticationFeature.Handler;
var authenticateContext = new AuthenticateContext(authenticationSchemes);
var authenticateContext = new AuthenticateContext(authenticationScheme);
if (handler != null)
{
handler.Authenticate(authenticateContext);
}
// Verify all types ack'd
IEnumerable<string> leftovers = authenticationSchemes.Except(authenticateContext.Accepted);
if (leftovers.Any())
if (!authenticateContext.Accepted)
{
throw new InvalidOperationException("The following authentication schemes were not accepted: " + string.Join(", ", leftovers));
throw new InvalidOperationException("The following authentication scheme was not accepted: " + authenticationScheme);
}
return authenticateContext.Results;
return authenticateContext.Result;
}
public override async Task<IEnumerable<AuthenticationResult>> AuthenticateAsync([NotNull] IEnumerable<string> authenticationSchemes)
public override async Task<AuthenticationResult> AuthenticateAsync([NotNull] string authenticationScheme)
{
var handler = HttpAuthenticationFeature.Handler;
var authenticateContext = new AuthenticateContext(authenticationSchemes);
var authenticateContext = new AuthenticateContext(authenticationScheme);
if (handler != null)
{
await handler.AuthenticateAsync(authenticateContext);
}
// Verify all types ack'd
IEnumerable<string> leftovers = authenticationSchemes.Except(authenticateContext.Accepted);
if (leftovers.Any())
if (!authenticateContext.Accepted)
{
throw new InvalidOperationException("The following authentication schemes were not accepted: " + string.Join(", ", leftovers));
throw new InvalidOperationException("The following authentication scheme was not accepted: " + authenticationScheme);
}
return authenticateContext.Results;
return authenticateContext.Result;
}
public override Task<WebSocket> AcceptWebSocketAsync(string subProtocol)

4
src/Microsoft.AspNet.Http.Interfaces/Security/IAuthenticateContext.cs → src/Microsoft.AspNet.Http.Interfaces/Authentication/IAuthenticateContext.cs
View File

@ -8,10 +8,10 @@ namespace Microsoft.AspNet.Http.Authentication
{
public interface IAuthenticateContext
{
IEnumerable<string> AuthenticationSchemes { get; }
string AuthenticationScheme { get; }
void Authenticated(ClaimsPrincipal principal, IDictionary<string, string> properties, IDictionary<string, object> description);
void NotAuthenticated(string authenticationScheme, IDictionary<string, string> properties, IDictionary<string, object> description);
void NotAuthenticated();
}
}

0
src/Microsoft.AspNet.Http.Interfaces/Security/IAuthenticationHandler.cs → src/Microsoft.AspNet.Http.Interfaces/Authentication/IAuthenticationHandler.cs
View File

0
src/Microsoft.AspNet.Http.Interfaces/Security/IChallengeContext.cs → src/Microsoft.AspNet.Http.Interfaces/Authentication/IChallengeContext.cs
View File

0
src/Microsoft.AspNet.Http.Interfaces/Security/IDescribeSchemesContext.cs → src/Microsoft.AspNet.Http.Interfaces/Authentication/IDescribeSchemesContext.cs
View File

1
src/Microsoft.AspNet.Http.Interfaces/Security/IHttpAuthenticationFeature.cs → src/Microsoft.AspNet.Http.Interfaces/Authentication/IHttpAuthenticationFeature.cs
View File

@ -8,6 +8,7 @@ namespace Microsoft.AspNet.Http.Authentication
public interface IHttpAuthenticationFeature
{
ClaimsPrincipal User { get; set; }
IAuthenticationHandler Handler { get; set; }
}
}

0
src/Microsoft.AspNet.Http.Interfaces/Security/ISignInContext.cs → src/Microsoft.AspNet.Http.Interfaces/Authentication/ISignInContext.cs
View File

0
src/Microsoft.AspNet.Http.Interfaces/Security/ISignOutContext.cs → src/Microsoft.AspNet.Http.Interfaces/Authentication/ISignOutContext.cs
View File

14
src/Microsoft.AspNet.Http/HttpContext.cs
View File

@ -54,19 +54,9 @@ namespace Microsoft.AspNet.Http
public abstract IEnumerable<AuthenticationDescription> GetAuthenticationSchemes();
public virtual AuthenticationResult Authenticate(string authenticationScheme)
{
return Authenticate(new[] { authenticationScheme }).SingleOrDefault();
}
public abstract AuthenticationResult Authenticate(string authenticationScheme);
public abstract IEnumerable<AuthenticationResult> Authenticate(IEnumerable<string> authenticationSchemes);
public virtual async Task<AuthenticationResult> AuthenticateAsync(string authenticationScheme)
{
return (await AuthenticateAsync(new[] { authenticationScheme })).SingleOrDefault();
}
public abstract Task<IEnumerable<AuthenticationResult>> AuthenticateAsync(IEnumerable<string> authenticationSchemes);
public abstract Task<AuthenticationResult> AuthenticateAsync(string authenticationScheme);
public virtual Task<WebSocket> AcceptWebSocketAsync()
{