|
// Licensed to the .NET Foundation under one or more agreements.
// The .NET Foundation licenses this file to you under the MIT license.
using System.Security.Claims;
using System.Text.Json;
namespace Microsoft.AspNetCore.Authentication.OAuth.Claims;
/// <summary>
/// A ClaimAction that selects a top level value from the json user data with the given key name and adds it as a Claim.
/// This no-ops if the key is not found or the value is empty.
/// </summary>
public class JsonKeyClaimAction : ClaimAction
{
/// <summary>
/// Creates a new JsonKeyClaimAction.
/// </summary>
/// <param name="claimType">The value to use for Claim.Type when creating a Claim.</param>
/// <param name="valueType">The value to use for Claim.ValueType when creating a Claim.</param>
/// <param name="jsonKey">The top level key to look for in the json user data.</param>
public JsonKeyClaimAction(string claimType, string valueType, string jsonKey)
: base(claimType, valueType)
{
JsonKey = jsonKey;
}
/// <summary>
/// The top level key to look for in the json user data.
/// </summary>
public string JsonKey { get; }
/// <inheritdoc />
public override void Run(JsonElement userData, ClaimsIdentity identity, string issuer)
{
if (!userData.TryGetProperty(JsonKey, out var value))
{
return;
}
if (value.ValueKind == JsonValueKind.Array)
{
foreach (var v in value.EnumerateArray())
{
AddClaim(v.ToString()!, identity, issuer);
}
}
else if (value.ValueKind == JsonValueKind.Object || value.ValueKind == JsonValueKind.Undefined)
{
// Skip, because they were previously skipped
}
else
{
AddClaim(value.ToString()!, identity, issuer);
}
}
private protected void AddClaim(string value, ClaimsIdentity identity, string issuer)
{
if (!string.IsNullOrEmpty(value))
{
identity.AddClaim(new Claim(ClaimType, value, ValueType, issuer));
}
}
}
|