using System; using Microsoft.AspNet.Builder; using Microsoft.AspNet.Diagnostics; using Microsoft.AspNet.Diagnostics.Entity; using Microsoft.AspNet.Identity; using Microsoft.AspNet.Security; using Microsoft.Framework.Cache.Memory; using Microsoft.Framework.ConfigurationModel; using Microsoft.Framework.DependencyInjection; using Microsoft.Framework.Logging; using Microsoft.Framework.Logging.Console; using MusicStore.Mocks.Common; using MusicStore.Mocks.OpenIdConnect; using MusicStore.Models; namespace MusicStore { public class StartupOpenIdConnectTesting { public StartupOpenIdConnectTesting() { //Below code demonstrates usage of multiple configuration sources. For instance a setting say 'setting1' is found in both the registered sources, //then the later source will win. By this way a Local config can be overridden by a different setting while deployed remotely. Configuration = new Configuration() .AddJsonFile("config.json") .AddEnvironmentVariables(); //All environment variables in the process's context flow in as configuration values. } public IConfiguration Configuration { get; private set; } public void ConfigureServices(IServiceCollection services) { //Sql client not available on mono var useInMemoryStore = Type.GetType("Mono.Runtime") != null; // Add EF services to the services container if (useInMemoryStore) { services.AddEntityFramework(Configuration) .AddInMemoryStore() .AddDbContext(); } else { services.AddEntityFramework(Configuration) .AddSqlServer() .AddDbContext(); } // Add Identity services to the services container services.AddIdentity(Configuration) .AddEntityFrameworkStores() .AddDefaultTokenProviders() .AddMessageProvider() .AddMessageProvider(); // Add MVC services to the services container services.AddMvc(); //Add all SignalR related services to IoC. services.AddSignalR(); //Add InMemoryCache services.AddSingleton(); // Add session related services. services.AddCachingServices(); services.AddSessionServices(); // Configure Auth services.Configure(options => { options.AddPolicy("ManageStore", new AuthorizationPolicyBuilder().RequiresClaim("ManageStore", "Allowed").Build()); }); } public void Configure(IApplicationBuilder app, ILoggerFactory loggerFactory) { loggerFactory.AddConsole(); //Display custom error page in production when error occurs //During development use the ErrorPage middleware to display error information in the browser app.UseErrorPage(ErrorPageOptions.ShowAll); app.UseDatabaseErrorPage(DatabaseErrorPageOptions.ShowAll); // Add the runtime information page that can be used by developers // to see what packages are used by the application // default path is: /runtimeinfo app.UseRuntimeInfoPage(); // Configure Session. app.UseSession(); //Configure SignalR app.UseSignalR(); // Add static files to the request pipeline app.UseStaticFiles(); // Add cookie-based authentication to the request pipeline app.UseIdentity(); // Create an Azure Active directory application and copy paste the following // https://github.com/aspnet/Security/issues/113 app.UseOpenIdConnectAuthentication(options => { options.Authority = "https://login.windows.net/[tenantName].onmicrosoft.com"; options.ClientId = "c99497aa-3ee2-4707-b8a8-c33f51323fef"; options.BackchannelHttpHandler = new OpenIdConnectBackChannelHttpHandler(); options.StateDataFormat = new CustomStateDataFormat(); options.TokenValidationParameters.ValidateLifetime = false; options.ProtocolValidator.RequireNonce = false; }); // Add MVC to the request pipeline app.UseMvc(routes => { routes.MapRoute( name: "areaRoute", template: "{area:exists}/{controller}/{action}", defaults: new { action = "Index" }); routes.MapRoute( name: "default", template: "{controller}/{action}/{id?}", defaults: new { controller = "Home", action = "Index" }); routes.MapRoute( name: "api", template: "{controller}/{id?}"); }); //Populates the MusicStore sample data SampleData.InitializeMusicStoreDatabaseAsync(app.ApplicationServices).Wait(); } } }