tsai
/
openiddict-core
mirror of https://github.com/openiddict/openiddict-core.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Simplify the OpenIddictProvider.ProcessSigninResponse() logic

pull/555/head
Kévin Chalet 8 years ago
parent
bc6440ae9e
commit
6b52ed4774
2 changed files with 15 additions and 16 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 6
      src/OpenIddict/OpenIddictProvider.Helpers.cs
  2. 25
      src/OpenIddict/OpenIddictProvider.cs

6
src/OpenIddict/OpenIddictProvider.Helpers.cs
View File

@ -436,6 +436,8 @@ namespace OpenIddict
return true; return true;
} }
var result = true;
foreach (var token in await Tokens.FindByAuthorizationIdAsync(identifier)) foreach (var token in await Tokens.FindByAuthorizationIdAsync(identifier))
{ {
// Don't change the status of the token used in the token request. // Don't change the status of the token used in the token request.
@ -444,10 +446,10 @@ namespace OpenIddict
continue; continue;
} }
await TryRevokeTokenAsync(token); result &= await TryRevokeTokenAsync(token);
} }
return true; return result;
} }
private async Task<bool> TryRedeemTokenAsync([NotNull] TToken token) private async Task<bool> TryRedeemTokenAsync([NotNull] TToken token)

25
src/OpenIddict/OpenIddictProvider.cs
View File

@ -167,11 +167,12 @@ namespace OpenIddict
} }
} }
// When rolling tokens are enabled, revoke all the previously issued tokens associated if (context.Request.IsRefreshTokenGrantType())
// with the authorization if the request is a grant_type=refresh_token request.
if (options.UseRollingTokens && context.Request.IsRefreshTokenGrantType())
{ {
if (!await TryRevokeTokensAsync(context.Ticket)) // When rolling tokens are enabled, revoke all the previously issued tokens associated
// with the authorization if the request is a grant_type=refresh_token request.
// If the operation fails, return an error indicating the token is not valid.
if (options.UseRollingTokens && !await TryRevokeTokensAsync(context.Ticket))
{ {
context.Reject( context.Reject(
error: OpenIdConnectConstants.Errors.InvalidGrant, error: OpenIdConnectConstants.Errors.InvalidGrant,
@ -179,14 +180,13 @@ namespace OpenIddict
return; return;
} }
}
// When rolling tokens are disabled, extend the expiration date // When rolling tokens are disabled, extend the expiration date
// of the existing token instead of returning a new refresh token // of the existing token instead of returning a new refresh token
// with a new expiration date if sliding expiration was not disabled. // with a new expiration date if sliding expiration was not disabled.
else if (options.UseSlidingExpiration && context.Request.IsRefreshTokenGrantType()) // If the operation fails, return an error indicating the token is not valid.
{ if (!options.UseRollingTokens && options.UseSlidingExpiration &&
if (!await TryExtendTokenAsync(token, context.Ticket, options)) !await TryExtendTokenAsync(token, context.Ticket, options))
{ {
context.Reject( context.Reject(
error: OpenIdConnectConstants.Errors.InvalidGrant, error: OpenIdConnectConstants.Errors.InvalidGrant,
@ -194,9 +194,6 @@ namespace OpenIddict
return; return;
} }
// Prevent the OpenID Connect server from returning a new refresh token.
context.IncludeRefreshToken = false;
} }
} }

Write Preview
Loading…
Cancel
Save