add-implicit-flow

f52498b3 · alan.f · 8d6b9e82 · f52498b3 · f52498b3 · f52498b3
Commit f52498b3 authored May 30, 2020 by alan.f
14 changed files
--- a/Authentication.sln
+++ b/Authentication.sln
@@ -17,7 +17,9 @@ Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "ApiOne", "ApiOne\ApiOne.csp
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "ApiTwo", "ApiTwo\ApiTwo.csproj", "{F0813394-EC56-461F-BE36-CE7E229C46B8}"
 EndProject
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "MvcClient", "MvcClient\MvcClient.csproj", "{592538AC-4F87-4642-B9F5-0A94C31262A7}"
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "MvcClient", "MvcClient\MvcClient.csproj", "{592538AC-4F87-4642-B9F5-0A94C31262A7}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "JavascriptClient", "JavascriptClient\JavascriptClient.csproj", "{CD1F92E9-68B8-40DB-B2FB-B4F3060F25FF}"
 EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
@@ -49,6 +51,10 @@ Global
 		{592538AC-4F87-4642-B9F5-0A94C31262A7}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{592538AC-4F87-4642-B9F5-0A94C31262A7}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{592538AC-4F87-4642-B9F5-0A94C31262A7}.Release|Any CPU.Build.0 = Release|Any CPU
+		{CD1F92E9-68B8-40DB-B2FB-B4F3060F25FF}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{CD1F92E9-68B8-40DB-B2FB-B4F3060F25FF}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{CD1F92E9-68B8-40DB-B2FB-B4F3060F25FF}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{CD1F92E9-68B8-40DB-B2FB-B4F3060F25FF}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -60,6 +66,7 @@ Global
 		{E2FD0592-0C76-4D1C-9C3E-5A8FECA85D3E} = {BAE8199D-D3C7-4D71-9A3E-7DC76A54EDDF}
 		{F0813394-EC56-461F-BE36-CE7E229C46B8} = {BAE8199D-D3C7-4D71-9A3E-7DC76A54EDDF}
 		{592538AC-4F87-4642-B9F5-0A94C31262A7} = {BAE8199D-D3C7-4D71-9A3E-7DC76A54EDDF}
+		{CD1F92E9-68B8-40DB-B2FB-B4F3060F25FF} = {BAE8199D-D3C7-4D71-9A3E-7DC76A54EDDF}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {503F7386-5516-4A48-B303-EB2EBBB70E07}

--- a/IdentityServer/Configuration.cs
+++ b/IdentityServer/Configuration.cs
@@ -56,7 +56,20 @@ namespace IdentityServer
                     //AlwaysIncludeUserClaimsInIdToken=true,
                     AllowOfflineAccess=true,
                     RequireConsent=false
-                }
+                },
+                  new Client
+                {
+                     ClientId="client_id_js",
+                     AllowedGrantTypes = GrantTypes.Implicit,
+                     RedirectUris={ "https://localhost:44387/Home/signin" },
+                      AllowedScopes={
+                         IdentityServerConstants.StandardScopes.OpenId,
+                         "ApiOne",
+                     },
+                      AllowAccessTokensViaBrowser=true,
+                      RequireConsent=false
+
+                },
            };
    }
 }
--- a/IdentityServer/Controllers/AuthController.cs
+++ b/IdentityServer/Controllers/AuthController.cs
@@ -33,7 +33,7 @@ namespace IdentityServer.Controllers
            //check if model is exsist
            var result = await _signInManager.PasswordSignInAsync(vm.Username, vm.Password, false, false);

-            if (result.IsNotAllowed)
+            if (result.Succeeded)
            {
                return Redirect(vm.ReturnUrl);
            }
@@ -64,7 +64,6 @@ namespace IdentityServer.Controllers
            if (result.Succeeded)
            {
                await _signInManager.SignInAsync(user, false);
-
                return Redirect(vm.ReturnUrl);
            }


--- a/JavascriptClient/Controllers/HomeController.cs
+++ b/JavascriptClient/Controllers/HomeController.cs
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Mvc;
+
+namespace JavascriptClient.Controllers
+{
+    public class HomeController : Controller
+    {
+        public IActionResult Index()
+        {
+            return View();
+        }
+
+        public IActionResult SignIn()
+        {
+            return View();
+        }
+    }
+}
\ No newline at end of file
--- a/JavascriptClient/JavascriptClient.csproj
+++ b/JavascriptClient/JavascriptClient.csproj
+<Project Sdk="Microsoft.NET.Sdk.Web">
+
+  <PropertyGroup>
+    <TargetFramework>netcoreapp3.1</TargetFramework>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <PackageReference Include="Microsoft.VisualStudio.Web.CodeGeneration.Design" Version="3.1.3" />
+  </ItemGroup>
+
+	<ItemGroup>
+		<PackageReference Include="Microsoft.AspNetCore.Mvc.Razor.RuntimeCompilation" Version="3.0.0" />
+	</ItemGroup>
+
+</Project>
--- a/JavascriptClient/Program.cs
+++ b/JavascriptClient/Program.cs
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.Extensions.Configuration;
+using Microsoft.Extensions.Hosting;
+using Microsoft.Extensions.Logging;
+
+namespace JavascriptClient
+{
+    public class Program
+    {
+        public static void Main(string[] args)
+        {
+            CreateHostBuilder(args).Build().Run();
+        }
+
+        public static IHostBuilder CreateHostBuilder(string[] args) =>
+            Host.CreateDefaultBuilder(args)
+                .ConfigureWebHostDefaults(webBuilder =>
+                {
+                    webBuilder.UseStartup<Startup>();
+                });
+    }
+}
--- a/JavascriptClient/Properties/launchSettings.json
+++ b/JavascriptClient/Properties/launchSettings.json
+{
+  "iisSettings": {
+    "windowsAuthentication": false, 
+    "anonymousAuthentication": true, 
+    "iisExpress": {
+      "applicationUrl": "http://localhost:55456",
+      "sslPort": 44387
+    }
+  },
+  "profiles": {
+    "IIS Express": {
+      "commandName": "IISExpress",
+      "launchBrowser": true,
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    },
+    "JavascriptClient": {
+      "commandName": "Project",
+      "launchBrowser": true,
+      "applicationUrl": "https://localhost:5001;http://localhost:5000",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    }
+  }
+}
--- a/JavascriptClient/Startup.cs
+++ b/JavascriptClient/Startup.cs
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.AspNetCore.Http;
+using Microsoft.Extensions.DependencyInjection;
+using Microsoft.Extensions.Hosting;
+
+namespace JavascriptClient
+{
+    public class Startup
+    {
+        public void ConfigureServices(IServiceCollection services)
+        {
+            services.AddControllersWithViews();
+        }
+
+        public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
+        {
+            if (env.IsDevelopment())
+            {
+                app.UseDeveloperExceptionPage();
+            }
+            app.UseStaticFiles();
+            app.UseRouting();
+
+            app.UseEndpoints(endpoints =>
+            {
+                endpoints.MapDefaultControllerRoute();
+            });
+        }
+    }
+}
--- a/JavascriptClient/Views/Home/Index.cshtml
+++ b/JavascriptClient/Views/Home/Index.cshtml
+
+@{
+    ViewData["Title"] = "Index";
+}
+
+<h1>Home Index</h1>
+
+<button onclick="signIn()">SignIn</button>
+
+<script src="~/sign-in.js"></script>
\ No newline at end of file
--- a/JavascriptClient/Views/Home/SignIn.cshtml
+++ b/JavascriptClient/Views/Home/SignIn.cshtml
+<script src="https://cdnjs.cloudflare.com/ajax/libs/oidc-client/1.9.1/oidc-client.min.js"></script>
+
+<script>var userManger = new Oidc.UserManager({
+        userStore: new Oidc.WebStorageStateStore({ store: window.localStorage }),
+        response_mode: "query"
+    });
+
+    userManger.signinCallback().then(res => {
+        console.log(res);
+
+        window.location.href = '/home/index';
+    })</script>
--- a/JavascriptClient/appsettings.Development.json
+++ b/JavascriptClient/appsettings.Development.json
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft": "Warning",
+      "Microsoft.Hosting.Lifetime": "Information"
+    }
+  }
+}
--- a/JavascriptClient/appsettings.json
+++ b/JavascriptClient/appsettings.json
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft": "Warning",
+      "Microsoft.Hosting.Lifetime": "Information"
+    }
+  },
+  "AllowedHosts": "*"
+}
--- a/JavascriptClient/wwwroot/sign-in-callback.js
+++ b/JavascriptClient/wwwroot/sign-in-callback.js
+var extractTokens = function (address) {
+    var returnValue = address.split('#')[1];
+    var values = returnValue.split('&');
+
+    for (var i = 0; i < values.length; i++) {
+        var v = values[i];
+        var kvPair = v.split('=');
+        localStorage.setItem(kvPair[0], kvPair[1]);
+    }
+
+    window.location.href = '/home/index';
+}
+
+
+extractTokens(window.location.href); 
\ No newline at end of file
--- a/JavascriptClient/wwwroot/sign-in.js
+++ b/JavascriptClient/wwwroot/sign-in.js
+var createState = function () {
+    return "SessionValueMakeItABitLongerasdfhjsadoighasdifjdsalkhrfakwelyrosdpiufghasidkgewr";
+};
+
+var createNonce = function () {
+    return "NonceValuedsafliudsayatroiewewryie123";
+};
+
+var signIn = function () {
+    var redirectUri = "https://localhost:44387/Home/SignIn";
+    var responseType = "id_token token";
+    var scope = "openid ApiOne";
+    var authUrl =
+        "/connect/authorize/callback" +
+        "?client_id=client_id_js" +
+        "&redirect_uri=" + encodeURIComponent(redirectUri) +
+        "&response_type=" + encodeURIComponent(responseType) +
+        "&scope=" + encodeURIComponent(scope) +
+        "&nonce=" + createNonce() +
+        "&state=" + createState();
+
+    var returnUrl = encodeURIComponent(authUrl);
+    console.log(returnUrl);
+    window.location.href = "https://localhost:44325/Auth/Login?ReturnUrl=" + returnUrl;
+}
\ No newline at end of file