testauth

Author: Z10yTap0k

.idea/.idea.JwkTest/.idea/.gitignore

@@ -0,0 +1,28 @@
+
+Microsoft Visual Studio Solution File, Format Version 12.00
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "TestApi", "TestApi\TestApi.csproj", "{75BD055F-135A-4C0D-A761-D68ECE3CC7E9}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "ProxyAuth", "ProxyAuth\ProxyAuth.csproj", "{3CB4337B-100E-4DBB-9BB4-46CA2FB9794B}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "TestMvc", "TestMvc\TestMvc.csproj", "{AFD43908-569A-4DD3-8235-88658A819EC9}"
+EndProject
+Global
+	GlobalSection(SolutionConfigurationPlatforms) = preSolution
+		Debug|Any CPU = Debug|Any CPU
+		Release|Any CPU = Release|Any CPU
+	EndGlobalSection
+	GlobalSection(ProjectConfigurationPlatforms) = postSolution
+		{75BD055F-135A-4C0D-A761-D68ECE3CC7E9}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{75BD055F-135A-4C0D-A761-D68ECE3CC7E9}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{75BD055F-135A-4C0D-A761-D68ECE3CC7E9}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{75BD055F-135A-4C0D-A761-D68ECE3CC7E9}.Release|Any CPU.Build.0 = Release|Any CPU
+		{3CB4337B-100E-4DBB-9BB4-46CA2FB9794B}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{3CB4337B-100E-4DBB-9BB4-46CA2FB9794B}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{3CB4337B-100E-4DBB-9BB4-46CA2FB9794B}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{3CB4337B-100E-4DBB-9BB4-46CA2FB9794B}.Release|Any CPU.Build.0 = Release|Any CPU
+		{AFD43908-569A-4DD3-8235-88658A819EC9}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{AFD43908-569A-4DD3-8235-88658A819EC9}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{AFD43908-569A-4DD3-8235-88658A819EC9}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{AFD43908-569A-4DD3-8235-88658A819EC9}.Release|Any CPU.Build.0 = Release|Any CPU
+	EndGlobalSection
+EndGlobal

.idea/.idea.JwkTest/.idea/codeStyles/codeStyleConfig.xml

@@ -0,0 +1,91 @@
+using System;
+using System.Collections.Generic;
+using System.IdentityModel.Tokens.Jwt;
+using System.Linq;
+using System.Security.Claims;
+using System.Security.Cryptography.X509Certificates;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Http;
+using Microsoft.IdentityModel.Tokens;
+using Newtonsoft.Json;
+
+namespace ProxyAuth
+{
+    public class AuthMiddleware : IMiddleware
+    {
+        public async Task InvokeAsync(HttpContext context, RequestDelegate next)
+        {
+            using var store = new X509Store(StoreName.My, StoreLocation.LocalMachine);
+            store.Open(OpenFlags.ReadOnly | OpenFlags.OpenExistingOnly);
+            var certificate2Collection = store.Certificates.Find(X509FindType.FindByIssuerName, "localhost", false);
+
+            var certificate = certificate2Collection[0];
+
+
+            if (!AcceptJson(context.Request.Headers) || !TryGetReturnUrl(context.Request.Query, out var returnUrl))
+            {
+                await next(context);
+                return;
+            }
+
+            var identity = GetIdentity();
+
+            var now = DateTime.UtcNow;
+            var jwt = new JwtSecurityToken(
+                issuer: "proxyauth",
+                audience: "test",
+                notBefore: now,
+                claims: identity.Claims,
+                expires: now.Add(TimeSpan.FromMinutes(30)),
+                signingCredentials: new X509SigningCredentials(certificate)
+            );
+            var encodedJwt = new JwtSecurityTokenHandler().WriteToken(jwt);
+
+            if (!string.IsNullOrEmpty(returnUrl))
+            {
+                context.Response.Cookies.Append("access_token", encodedJwt, new CookieOptions
+                {
+                    HttpOnly = true
+                });
+                context.Response.Redirect(returnUrl);
+                return;
+            }
+
+            var response = JsonConvert.SerializeObject(new { access_token = encodedJwt });
+            context.Response.StatusCode = StatusCodes.Status200OK;
+            context.Response.ContentType = "application/json";
+            context.Response.ContentLength = response.Length;
+            await context.Response.WriteAsync(response);
+        }
+
+        private static bool TryGetReturnUrl(IQueryCollection query, out string returnUrl)
+        {
+            if (!query.TryGetValue("return_url", out var returnUrls))
+            {
+                returnUrl = null;
+                return false;
+            }
+
+            returnUrl = returnUrls.FirstOrDefault();
+            return !string.IsNullOrEmpty(returnUrl);
+        }
+
+        private static bool AcceptJson(IHeaderDictionary headers)
+        {
+            return headers.TryGetValue("Accept", out var values) && values.Any(x => x == "application/json");
+        }
+
+        private ClaimsIdentity GetIdentity()
+        {
+            var claims = new List<Claim>
+            {
+                new Claim(ClaimsIdentity.DefaultNameClaimType, "testapi"),
+                new Claim(ClaimsIdentity.DefaultRoleClaimType, "role")
+            };
+            var claimsIdentity =
+                new ClaimsIdentity(claims, "Token", ClaimsIdentity.DefaultNameClaimType,
+                    ClaimsIdentity.DefaultRoleClaimType);
+            return claimsIdentity;
+        }
+    }
+}

.idea/.idea.JwkTest/.idea/encodings.xml

@@ -0,0 +1,17 @@
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.Extensions.Hosting;
+
+namespace ProxyAuth
+{
+    public class Program
+    {
+        public static void Main(string[] args)
+        {
+            CreateHostBuilder(args).Build().Run();
+        }
+
+        public static IHostBuilder CreateHostBuilder(string[] args) =>
+            Host.CreateDefaultBuilder(args)
+                .ConfigureWebHostDefaults(webBuilder => { webBuilder.UseStartup<Startup>(); });
+    }
+}

.idea/.idea.JwkTest/.idea/indexLayout.xml

@@ -0,0 +1,30 @@
+{
+  "$schema": "http://json.schemastore.org/launchsettings.json",
+  "iisSettings": {
+    "windowsAuthentication": false,
+    "anonymousAuthentication": true,
+    "iisExpress": {
+      "applicationUrl": "http://localhost:43432",
+      "sslPort": 44365
+    }
+  },
+  "profiles": {
+    "IIS Express": {
+      "commandName": "IISExpress",
+      "launchBrowser": true,
+      "launchUrl": "weatherforecast",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    },
+    "ProxyAuth": {
+      "commandName": "Project",
+      "launchBrowser": true,
+      "launchUrl": "weatherforecast",
+      "applicationUrl": "https://localhost:5001;http://localhost:5000",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    }
+  }
+}

.idea/.idea.JwkTest/.idea/misc.xml

@@ -0,0 +1,19 @@
+<Project Sdk="Microsoft.NET.Sdk.Web">
+
+    <PropertyGroup>
+        <TargetFramework>netcoreapp3.1</TargetFramework>
+    </PropertyGroup>
+
+    <ItemGroup>
+      <Content Update="appsettings.Development.json">
+        <DependentUpon>appsettings.json</DependentUpon>
+      </Content>
+    </ItemGroup>
+
+    <ItemGroup>
+      <PackageReference Include="Newtonsoft.Json" Version="10.0.1" />
+      <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="6.8.0" />
+    </ItemGroup>
+
+
+</Project>

.idea/.idea.JwkTest/riderModule.iml

@@ -0,0 +1,35 @@
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.Extensions.Configuration;
+using Microsoft.Extensions.DependencyInjection;
+using Microsoft.Extensions.Hosting;
+
+namespace ProxyAuth
+{
+    public class Startup
+    {
+        public Startup(IConfiguration configuration)
+        {
+            Configuration = configuration;
+        }
+
+        public IConfiguration Configuration { get; }
+
+        // This method gets called by the runtime. Use this method to add services to the container.
+        public void ConfigureServices(IServiceCollection services)
+        {
+            services.AddScoped<AuthMiddleware>();
+        }
+
+        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
+        public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
+        {
+            if (env.IsDevelopment())
+            {
+                app.UseDeveloperExceptionPage();
+            }
+
+            app.UseMiddleware<AuthMiddleware>();
+        }
+    }
+}

JwkTest.sln

@@ -0,0 +1,9 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Debug",
+      "Microsoft": "Debug",
+      "Microsoft.Hosting.Lifetime": "Debug"
+    }
+  }
+}

ProxyAuth/AuthMiddleware.cs

@@ -0,0 +1,10 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft": "Warning",
+      "Microsoft.Hosting.Lifetime": "Information"
+    }
+  },
+  "AllowedHosts": "*"
+}

ProxyAuth/Program.cs

@@ -0,0 +1,53 @@
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.Extensions.Logging;
+
+namespace TestApi.Controllers
+{
+    [ApiController]
+    [Route("[controller]")]
+    public class TestController : ControllerBase
+    {
+        private static readonly string[] Summaries =
+        {
+            "Freezing", "Bracing", "Chilly", "Cool", "Mild", "Warm", "Balmy", "Hot", "Sweltering", "Scorching"
+        };
+
+        private readonly ILogger<TestController> _logger;
+
+        public TestController(ILogger<TestController> logger)
+        {
+            _logger = logger;
+        }
+
+        [Authorize]
+        [Route("GetLogin")]
+        public IActionResult GetLogin()
+        {
+            return Ok($"Ваш логин: {User.Identity.Name}");
+        }
+
+        [Authorize(Roles = "role")]
+        [Route("getrole")]
+        public IActionResult GetRole()
+        {
+            return Ok("Ваша роль: role");
+        }
+
+        [HttpGet]
+        public IEnumerable<WeatherForecast> Get()
+        {
+            var rng = new Random();
+            return Enumerable.Range(1, 5).Select(index => new WeatherForecast
+                {
+                    Date = DateTime.Now.AddDays(index),
+                    TemperatureC = rng.Next(-20, 55),
+                    Summary = Summaries[rng.Next(Summaries.Length)]
+                })
+                .ToArray();
+        }
+    }
+}

ProxyAuth/Properties/launchSettings.json

@@ -0,0 +1,17 @@
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.Extensions.Hosting;
+
+namespace TestApi
+{
+    public class Program
+    {
+        public static void Main(string[] args)
+        {
+            CreateHostBuilder(args).Build().Run();
+        }
+
+        private static IHostBuilder CreateHostBuilder(string[] args) =>
+            Host.CreateDefaultBuilder(args)
+                .ConfigureWebHostDefaults(webBuilder => { webBuilder.UseStartup<Startup>(); });
+    }
+}