tsai
/
squidex
mirror of https://github.com/Squidex/squidex.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Fix client identification.

pull/724/head
Sebastian 5 years ago
parent
75bfc37d2b
commit
1d518d4847
8 changed files with 17 additions and 38 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 1
      backend/src/Squidex.Domain.Apps.Entities.MongoDb/Contents/Operations/QueryAsStream.cs
  2. 1
      backend/src/Squidex.Domain.Apps.Entities/Contents/Queries/ContentQueryService.cs
  3. 1
      backend/src/Squidex.Domain.Apps.Entities/Schemas/ISchemasHash.cs
  4. 14
      backend/src/Squidex.Infrastructure/Security/Extensions.cs
  5. 6
      backend/src/Squidex/Areas/IdentityServer/Config/ApplicationExtensions.cs
  6. 25
      backend/src/Squidex/Areas/IdentityServer/Controllers/Connect/ConnectController.cs
  7. 1
      backend/tests/Squidex.Domain.Apps.Entities.Tests/Schemas/MongoDb/SchemasHashTests.cs
  8. 6
      backend/tests/Squidex.Infrastructure.Tests/Security/ExtensionsTests.cs

1
backend/src/Squidex.Domain.Apps.Entities.MongoDb/Contents/Operations/QueryAsStream.cs
View File

@ -8,7 +8,6 @@
using System.Collections.Generic;
using System.Runtime.CompilerServices;
using System.Threading;
using System.Threading.Tasks;
using MongoDB.Driver;
using Squidex.Domain.Apps.Entities.Contents;
using Squidex.Infrastructure;

1
backend/src/Squidex.Domain.Apps.Entities/Contents/Queries/ContentQueryService.cs
View File

@ -17,6 +17,7 @@ using Squidex.Infrastructure.Security;
using Squidex.Infrastructure.Translations;
using Squidex.Log;
using Squidex.Shared;
using Squidex.Shared.Identity;
namespace Squidex.Domain.Apps.Entities.Contents.Queries
{

1
backend/src/Squidex.Domain.Apps.Entities/Schemas/ISchemasHash.cs
View File

@ -9,7 +9,6 @@ using System.Collections.Generic;
using System.Threading.Tasks;
using NodaTime;
using Squidex.Domain.Apps.Entities.Apps;
using Squidex.Infrastructure;
namespace Squidex.Domain.Apps.Entities.Schemas
{

14
backend/src/Squidex.Infrastructure/Security/Extensions.cs
View File

@ -16,17 +16,18 @@ namespace Squidex.Infrastructure.Security
public static RefToken? Token(this ClaimsPrincipal principal)
{
var subjectId = principal.OpenIdSubject();
var subjectName = principal.OpenIdName();
var clientId = principal.OpenIdClientId();
if (!string.IsNullOrWhiteSpace(clientId) && (string.Equals(clientId, subjectId, StringComparison.Ordinal) || string.IsNullOrWhiteSpace(subjectId)))
if (!string.IsNullOrWhiteSpace(subjectId) && !string.IsNullOrWhiteSpace(subjectName))
{
return RefToken.Client(clientId);
return RefToken.User(subjectId);
}
if (!string.IsNullOrWhiteSpace(subjectId))
if (!string.IsNullOrWhiteSpace(clientId))
{
return RefToken.User(subjectId);
return RefToken.Client(clientId);
}
return null;
@ -57,11 +58,6 @@ namespace Squidex.Infrastructure.Security
return principal.Claims.FirstOrDefault(x => x.Type == OpenIdClaims.Name)?.Value;
}
public static string? OpenIdNickName(this ClaimsPrincipal principal)
{
return principal.Claims.FirstOrDefault(x => x.Type == OpenIdClaims.NickName)?.Value;
}
public static string? OpenIdEmail(this ClaimsPrincipal principal)
{
return principal.Claims.FirstOrDefault(x => x.Type == OpenIdClaims.Email)?.Value;

6
backend/src/Squidex/Areas/IdentityServer/Config/ApplicationExtensions.cs
View File

@ -10,6 +10,7 @@ using System.Linq;
using System.Security.Claims;
using System.Text.Json;
using OpenIddict.Abstractions;
using Squidex.Infrastructure.Security;
using Squidex.Shared;
using Squidex.Shared.Identity;
using Squidex.Shared.Users;
@ -50,6 +51,11 @@ namespace Squidex.Areas.IdentityServer.Config
{
foreach (var claimValue in values)
{
if (key == SquidexClaimTypes.DisplayName)
{
yield return new Claim(OpenIdClaims.Name, claimValue);
}
yield return new Claim(key, claimValue);
}
}

25
backend/src/Squidex/Areas/IdentityServer/Controllers/Connect/ConnectController.cs
View File

@ -184,19 +184,11 @@ namespace Notifo.Areas.Account.Controllers
var principal = new ClaimsPrincipal(identity);
var clientId = request.ClientId;
var clientName = await applicationManager.GetDisplayNameAsync(application);
if (clientId != null)
if (request.ClientId != null)
{
identity.AddClaim(Claims.Subject, clientId,
Destinations.AccessToken, Destinations.IdentityToken);
}
if (clientName != null)
{
identity.AddClaim(Claims.Name, clientName,
Destinations.AccessToken, Destinations.IdentityToken);
identity.AddClaim(Claims.Subject, request.ClientId,
Destinations.AccessToken,
Destinations.IdentityToken);
}
var properties = await applicationManager.GetPropertiesAsync(application);
@ -228,7 +220,7 @@ namespace Notifo.Areas.Account.Controllers
{
switch (claim.Type)
{
case SquidexClaimTypes.DisplayName when principal.HasScope(Scopes.Profile):
case SquidexClaimTypes.DisplayName:
yield return Destinations.IdentityToken;
yield break;
@ -274,13 +266,6 @@ namespace Notifo.Areas.Account.Controllers
}
yield break;
case "AspNet.Identity.SecurityStamp":
yield break;
default:
yield return Destinations.AccessToken;
yield break;
}
}
}

1
backend/tests/Squidex.Domain.Apps.Entities.Tests/Schemas/MongoDb/SchemasHashTests.cs
View File

@ -9,7 +9,6 @@ using System.Threading.Tasks;
using FakeItEasy;
using NodaTime;
using Squidex.Domain.Apps.Entities.Apps;
using Squidex.Domain.Apps.Events.Apps;
using Squidex.Domain.Apps.Events.Schemas;
using Squidex.Infrastructure;
using Squidex.Infrastructure.EventSourcing;

6
backend/tests/Squidex.Infrastructure.Tests/Security/ExtensionsTests.cs
View File

@ -37,12 +37,6 @@ namespace Squidex.Infrastructure.Security
TestClaimExtension(OpenIdClaims.Name, x => x.OpenIdName());
}
[Fact]
public void Should_retrieve_nickname()
{
TestClaimExtension(OpenIdClaims.NickName, x => x.OpenIdNickName());
}
[Fact]
public void Should_retrieve_email()
{

Write Preview
Loading…
Cancel
Save