/*
* Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
* See https://github.com/openiddict/openiddict-core for more information concerning
* the license and the contributors participating to this project.
*/
using System;
using AspNet.Security.OAuth.Validation;
using JetBrains.Annotations;
using Microsoft.AspNetCore.Authentication;
using Microsoft.Extensions.DependencyInjection.Extensions;
using Microsoft.Extensions.Options;
using OpenIddict.Validation;
namespace Microsoft.Extensions.DependencyInjection
{
public static class OpenIddictValidationExtensions
{
///
/// Registers the OpenIddict token validation services in the DI container.
/// Note: the validation handler only works with the default token format
/// or reference tokens and cannot be used with JWT tokens. To validate
/// JWT tokens, use the JWT bearer handler shipping with ASP.NET Core.
///
/// The services builder used by OpenIddict to register new services.
/// This extension can be safely called multiple times.
/// The .
public static OpenIddictValidationBuilder AddValidation([NotNull] this OpenIddictBuilder builder)
{
if (builder == null)
{
throw new ArgumentNullException(nameof(builder));
}
builder.Services.AddAuthentication();
builder.Services.AddOptions();
builder.Services.TryAddScoped();
builder.Services.TryAddScoped();
builder.Services.TryAddScoped();
// Note: TryAddEnumerable() is used here to ensure the initializer is only registered once.
builder.Services.TryAddEnumerable(new[]
{
ServiceDescriptor.Singleton, OpenIddictValidationInitializer>(),
ServiceDescriptor.Singleton, OAuthValidationInitializer>()
});
// Register the OpenIddict validation handler in the authentication options,
// so it can be discovered by the default authentication handler provider.
builder.Services.Configure(options =>
{
// Note: this method is guaranteed to be idempotent. To prevent multiple schemes from being
// registered (which would result in an exception being thrown), a manual check is made here.
if (options.SchemeMap.ContainsKey(OpenIddictValidationDefaults.AuthenticationScheme))
{
return;
}
options.AddScheme(OpenIddictValidationDefaults.AuthenticationScheme, scheme =>
{
scheme.HandlerType = typeof(OpenIddictValidationHandler);
});
});
return new OpenIddictValidationBuilder(builder.Services);
}
///
/// Registers the OpenIddict token validation services in the DI container.
/// Note: the validation handler only works with the default token format
/// or reference tokens and cannot be used with JWT tokens. To validate
/// JWT tokens, use the JWT bearer handler shipping with ASP.NET Core.
///
/// The services builder used by OpenIddict to register new services.
/// The configuration delegate used to configure the validation services.
/// This extension can be safely called multiple times.
/// The .
public static OpenIddictBuilder AddValidation(
[NotNull] this OpenIddictBuilder builder,
[NotNull] Action configuration)
{
if (builder == null)
{
throw new ArgumentNullException(nameof(builder));
}
if (configuration == null)
{
throw new ArgumentNullException(nameof(configuration));
}
configuration(builder.AddValidation());
return builder;
}
}
}