1 write to Options
Microsoft.AspNetCore.Authentication (1)
AuthenticationHandler.cs (1)
155
Options
= OptionsMonitor.Get(Scheme.Name);
316 references to Options
Aspire.Dashboard (2)
Authentication\Connection\ConnectionTypeAuthenticationHandler.cs (2)
25
if (!
Options
.RequiredConnectionTypes.Any(connectionTypeFeature.ConnectionTypes.Contains))
27
return Task.FromResult(AuthenticateResult.Fail($"Connection types '{string.Join(", ",
Options
.RequiredConnectionTypes)}' are not enabled on this connection."));
Microsoft.AspNetCore.Authentication (24)
AuthenticationHandler.cs (10)
99
protected virtual string ClaimsIssuer =>
Options
.ClaimsIssuer ?? Scheme.Name;
157
TimeProvider =
Options
.TimeProvider ?? TimeProvider.System;
171
Events =
Options
.Events;
172
if (
Options
.EventsType != null)
174
Events = Context.RequestServices.GetRequiredService(
Options
.EventsType);
206
var target = scheme ??
Options
.ForwardDefaultSelector?.Invoke(Context) ??
Options
.ForwardDefault;
217
var target = ResolveTarget(
Options
.ForwardAuthenticate);
308
var target = ResolveTarget(
Options
.ForwardChallenge);
323
var target = ResolveTarget(
Options
.ForwardForbid);
RemoteAuthenticationHandler.cs (12)
28
protected string? SignInScheme =>
Options
.SignInScheme;
69
=> Task.FromResult(
Options
.CallbackPath == Request.Path);
116
var errorContext = new RemoteFailureContext(Context, Scheme,
Options
, exception)
146
var ticketContext = new TicketReceivedContext(Context, Scheme,
Options
, ticket)
234
var cookieOptions =
Options
.CorrelationCookie.Build(Context, TimeProvider.GetUtcNow());
238
var cookieName =
Options
.CorrelationCookie.Name + correlationId;
255
Logger.CorrelationPropertyNotFound(
Options
.CorrelationCookie.Name!);
261
var cookieName =
Options
.CorrelationCookie.Name + correlationId;
270
var cookieOptions =
Options
.CorrelationCookie.Build(Context, TimeProvider.GetUtcNow());
291
var context = new AccessDeniedContext(Context, Scheme,
Options
)
293
AccessDeniedPath =
Options
.AccessDeniedPath,
296
ReturnUrlParameter =
Options
.ReturnUrlParameter
SignInAuthenticationHandler.cs (1)
40
var target = ResolveTarget(
Options
.ForwardSignIn);
SignOutAuthenticationHandler.cs (1)
39
var target = ResolveTarget(
Options
.ForwardSignOut);
Microsoft.AspNetCore.Authentication.BearerToken (7)
BearerTokenHandler.cs (7)
27
var messageReceivedContext = new MessageReceivedContext(Context, Scheme,
Options
);
43
var ticket =
Options
.BearerTokenProtector.Unprotect(token);
69
properties.ExpiresUtc = utcNow +
Options
.BearerTokenExpiration;
73
AccessToken =
Options
.BearerTokenProtector.Protect(CreateBearerTicket(user, properties)),
74
ExpiresIn = (long)
Options
.BearerTokenExpiration.TotalSeconds,
75
RefreshToken =
Options
.RefreshTokenProtector.Protect(CreateRefreshTicket(user, utcNow)),
110
ExpiresUtc = utcNow +
Options
.RefreshTokenExpiration
Microsoft.AspNetCore.Authentication.Certificate (22)
CertificateAuthenticationHandler.cs (22)
109
var authenticationFailedContext = new CertificateAuthenticationFailedContext(Context, Scheme,
Options
)
125
!
Options
.AllowedCertificateTypes.HasFlag(CertificateTypes.SelfSigned))
134
!
Options
.AllowedCertificateTypes.HasFlag(CertificateTypes.Chained))
172
var certificateValidatedContext = new CertificateValidatedContext(Context, Scheme,
Options
)
191
var authenticationChallengedContext = new CertificateChallengeContext(Context, Scheme,
Options
, properties);
207
X509RevocationFlag revocationFlag =
Options
.RevocationFlag;
208
X509RevocationMode revocationMode =
Options
.RevocationMode;
223
if (
Options
.ValidateCertificateUse)
236
if (
Options
.CustomTrustStore != null)
238
chainPolicy.CustomTrustStore.AddRange(
Options
.CustomTrustStore);
241
chainPolicy.TrustMode =
Options
.ChainTrustValidationMode;
244
chainPolicy.ExtraStore.AddRange(
Options
.AdditionalChainCertificates);
246
if (!
Options
.ValidateValidityPeriod)
259
claims.Add(new Claim("issuer", issuer, ClaimValueTypes.String,
Options
.ClaimsIssuer));
262
claims.Add(new Claim(ClaimTypes.Thumbprint, thumbprint, ClaimValueTypes.Base64Binary,
Options
.ClaimsIssuer));
267
claims.Add(new Claim(ClaimTypes.X500DistinguishedName, value, ClaimValueTypes.String,
Options
.ClaimsIssuer));
273
claims.Add(new Claim(ClaimTypes.SerialNumber, value, ClaimValueTypes.String,
Options
.ClaimsIssuer));
279
claims.Add(new Claim(ClaimTypes.Dns, value, ClaimValueTypes.String,
Options
.ClaimsIssuer));
285
claims.Add(new Claim(ClaimTypes.Name, value, ClaimValueTypes.String,
Options
.ClaimsIssuer));
291
claims.Add(new Claim(ClaimTypes.Email, value, ClaimValueTypes.String,
Options
.ClaimsIssuer));
297
claims.Add(new Claim(ClaimTypes.Upn, value, ClaimValueTypes.String,
Options
.ClaimsIssuer));
303
claims.Add(new Claim(ClaimTypes.Uri, value, ClaimValueTypes.String,
Options
.ClaimsIssuer));
Microsoft.AspNetCore.Authentication.Cookies (46)
CookieAuthenticationHandler.cs (46)
99
if (issuedUtc != null && expiresUtc != null &&
Options
.SlidingExpiration && allowRefresh)
104
var eventContext = new CookieSlidingExpirationContext(Context, Scheme,
Options
, ticket, timeElapsed, timeRemaining)
153
var cookie =
Options
.CookieManager.GetRequestCookie(Context,
Options
.Cookie.Name!);
159
var ticket =
Options
.TicketDataFormat.Unprotect(cookie, GetTlsTokenBinding());
165
if (
Options
.SessionStore != null)
173
ticket = await
Options
.SessionStore.RetrieveAsync(claim.Value, Context, Context.RequestAborted);
186
if (
Options
.SessionStore != null)
188
await
Options
.SessionStore.RemoveAsync(_sessionKey!, Context, Context.RequestAborted);
214
var context = new CookieValidatePrincipalContext(Context, Scheme,
Options
, result.Ticket);
232
var cookieOptions =
Options
.Cookie.Build(Context);
263
if (
Options
.SessionStore != null && _sessionKey != null)
265
await
Options
.SessionStore.RenewAsync(_sessionKey, ticket, Context, Context.RequestAborted);
268
new[] { new Claim(SessionIdClaim, _sessionKey, ClaimValueTypes.String,
Options
.ClaimsIssuer) },
273
var cookieValue =
Options
.TicketDataFormat.Protect(ticket, GetTlsTokenBinding());
281
Options
.CookieManager.AppendResponseCookie(
283
Options
.Cookie.Name!,
307
Options
,
325
signInContext.Properties.ExpiresUtc = issuedUtc.Add(
Options
.ExpireTimeSpan);
332
var expiresUtc = signInContext.Properties.ExpiresUtc ?? issuedUtc.Add(
Options
.ExpireTimeSpan);
338
if (
Options
.SessionStore != null)
343
await
Options
.SessionStore.RenewAsync(_sessionKey, ticket, Context, Context.RequestAborted);
347
_sessionKey = await
Options
.SessionStore.StoreAsync(ticket, Context, Context.RequestAborted);
352
new[] { new Claim(SessionIdClaim, _sessionKey, ClaimValueTypes.String,
Options
.ClaimsIssuer) },
353
Options
.ClaimsIssuer));
357
var cookieValue =
Options
.TicketDataFormat.Protect(ticket, GetTlsTokenBinding());
359
Options
.CookieManager.AppendResponseCookie(
361
Options
.Cookie.Name!,
370
Options
);
375
var shouldHonorReturnUrlParameter =
Options
.LoginPath.HasValue && OriginalPath ==
Options
.LoginPath;
391
if (
Options
.SessionStore != null && _sessionKey != null)
393
await
Options
.SessionStore.RemoveAsync(_sessionKey, Context, Context.RequestAborted);
399
Options
,
405
Options
.CookieManager.DeleteCookie(
407
Options
.Cookie.Name!,
411
var shouldHonorReturnUrlParameter =
Options
.LogoutPath.HasValue && OriginalPath ==
Options
.LogoutPath;
434
redirectUri = Request.Query[
Options
.ReturnUrlParameter];
444
new RedirectContext<CookieAuthenticationOptions>(Context, Scheme,
Options
, properties, redirectUri));
462
var accessDeniedUri =
Options
.AccessDeniedPath + QueryString.Create(
Options
.ReturnUrlParameter, returnUrl);
463
var redirectContext = new RedirectContext<CookieAuthenticationOptions>(Context, Scheme,
Options
, properties, BuildRedirectUri(accessDeniedUri));
476
var loginUri =
Options
.LoginPath + QueryString.Create(
Options
.ReturnUrlParameter, redirectUri);
477
var redirectContext = new RedirectContext<CookieAuthenticationOptions>(Context, Scheme,
Options
, properties, BuildRedirectUri(loginUri));
Microsoft.AspNetCore.Authentication.Facebook (6)
FacebookHandler.cs (6)
42
var endpoint = QueryHelpers.AddQueryString(
Options
.UserInformationEndpoint, "access_token", tokens.AccessToken!);
43
if (
Options
.SendAppSecretProof)
47
if (
Options
.Fields.Count > 0)
49
endpoint = QueryHelpers.AddQueryString(endpoint, "fields", string.Join(",",
Options
.Fields));
60
var context = new OAuthCreatingTicketContext(new ClaimsPrincipal(identity), properties, Context, Scheme,
Options
, Backchannel, tokens, payload.RootElement);
69
var key = Encoding.ASCII.GetBytes(
Options
.AppSecret);
Microsoft.AspNetCore.Authentication.Google (6)
GoogleHandler.cs (6)
47
var request = new HttpRequestMessage(HttpMethod.Get,
Options
.UserInformationEndpoint);
58
var context = new OAuthCreatingTicketContext(new ClaimsPrincipal(identity), properties, Context, Scheme,
Options
, Backchannel, tokens, payload.RootElement);
74
SetQueryParam(queryStrings, properties, GoogleChallengeProperties.ScopeKey, FormatScope,
Options
.Scope);
75
SetQueryParam(queryStrings, properties, GoogleChallengeProperties.AccessTypeKey,
Options
.AccessType);
82
queryStrings["state"] =
Options
.StateDataFormat.Protect(properties);
84
return QueryHelpers.AddQueryString(
Options
.AuthorizationEndpoint, queryStrings);
Microsoft.AspNetCore.Authentication.JwtBearer (22)
JwtBearerHandler.cs (22)
62
var messageReceivedContext = new MessageReceivedContext(Context, Scheme,
Options
);
101
if (!
Options
.UseSecurityTokenValidators)
103
foreach (var tokenHandler in
Options
.TokenHandlers)
130
foreach (var validator in
Options
.SecurityTokenValidators)
153
var tokenValidatedContext = new TokenValidatedContext(Context, Scheme,
Options
)
168
if (
Options
.SaveToken)
182
var authenticationFailedContext = new AuthenticationFailedContext(Context, Scheme,
Options
)
196
if (!
Options
.UseSecurityTokenValidators)
207
var authenticationFailedContext = new AuthenticationFailedContext(Context, Scheme,
Options
)
232
if (
Options
.RefreshOnIssuerKeyNotFound &&
Options
.ConfigurationManager != null
235
Options
.ConfigurationManager.RequestRefresh();
242
var tokenValidationParameters =
Options
.TokenValidationParameters.Clone();
244
if (
Options
.ConfigurationManager is BaseConfigurationManager baseConfigurationManager)
250
if (
Options
.ConfigurationManager != null)
253
var configuration = await
Options
.ConfigurationManager.GetConfigurationAsync(Context.RequestAborted);
278
var eventContext = new JwtBearerChallengeContext(Context, Scheme,
Options
, properties)
284
if (
Options
.IncludeErrorDetails && eventContext.AuthenticateFailure != null)
302
Response.Headers.Append(HeaderNames.WWWAuthenticate,
Options
.Challenge);
308
var builder = new StringBuilder(
Options
.Challenge);
309
if (
Options
.Challenge.IndexOf(' ') > 0)
351
var forbiddenContext = new ForbiddenContext(Context, Scheme,
Options
);
Microsoft.AspNetCore.Authentication.MicrosoftAccount (7)
MicrosoftAccountHandler.cs (7)
43
var request = new HttpRequestMessage(HttpMethod.Get,
Options
.UserInformationEndpoint);
54
var context = new OAuthCreatingTicketContext(new ClaimsPrincipal(identity), properties, Context, Scheme,
Options
, Backchannel, tokens, payload.RootElement);
66
{ "client_id",
Options
.ClientId },
71
AddQueryString(queryStrings, properties, MicrosoftChallengeProperties.ScopeKey, FormatScope,
Options
.Scope);
79
if (
Options
.UsePkce)
95
var state =
Options
.StateDataFormat.Protect(properties);
98
return QueryHelpers.AddQueryString(
Options
.AuthorizationEndpoint, queryStrings!);
Microsoft.AspNetCore.Authentication.Negotiate (11)
NegotiateHandler.cs (11)
75
if (_requestProcessed ||
Options
.DeferToServer)
132
_negotiateState ??=
Options
.StateFactory.CreateInstance();
202
if (_negotiateState.Protocol == "NTLM" && !
Options
.PersistNtlmCredentials)
215
if (
Options
.PersistKerberosCredentials)
266
var errorContext = new AuthenticationFailedContext(Context, Scheme,
Options
) { Exception = ex };
335
if (
Options
.LdapSettings.EnableLdapClaimResolution)
337
var ldapContext = new LdapContext(Context, Scheme,
Options
,
Options
.LdapSettings)
351
authenticatedContext = new AuthenticatedContext(Context, Scheme,
Options
)
358
authenticatedContext = new AuthenticatedContext(Context, Scheme,
Options
)
384
var eventContext = new ChallengeContext(Context, Scheme,
Options
, properties);
Microsoft.AspNetCore.Authentication.OAuth (16)
OAuthHandler.cs (16)
28
protected HttpClient Backchannel =>
Options
.Backchannel;
69
var properties =
Options
.StateDataFormat.Unprotect(state);
133
var codeExchangeContext = new OAuthCodeExchangeContext(properties, code.ToString(), BuildRedirectUri(
Options
.CallbackPath));
148
if (
Options
.SaveTokens)
202
{ "client_id",
Options
.ClientId },
204
{ "client_secret",
Options
.ClientSecret },
218
var requestMessage = new HttpRequestMessage(HttpMethod.Post,
Options
.TokenEndpoint);
256
var context = new OAuthCreatingTicketContext(new ClaimsPrincipal(identity), properties, Context, Scheme,
Options
, Backchannel, tokens, user.RootElement);
273
var authorizationEndpoint = BuildChallengeUrl(properties, BuildRedirectUri(
Options
.CallbackPath));
275
Context, Scheme,
Options
,
307
{ "client_id",
Options
.ClientId },
313
if (
Options
.UsePkce)
329
parameters["state"] =
Options
.StateDataFormat.Protect(properties);
331
foreach (var additionalParameter in
Options
.AdditionalAuthorizationParameters)
336
return QueryHelpers.AddQueryString(
Options
.AuthorizationEndpoint, parameters!);
353
=> FormatScope(
Options
.Scope);
Microsoft.AspNetCore.Authentication.OpenIdConnect (95)
OpenIdConnectHandler.cs (95)
40
protected HttpClient Backchannel =>
Options
.Backchannel;
91
if (
Options
.RemoteSignOutPath.HasValue &&
Options
.RemoteSignOutPath == Request.Path)
95
else if (
Options
.SignedOutCallbackPath.HasValue &&
Options
.SignedOutCallbackPath == Request.Path)
136
var remoteSignOutContext = new RemoteSignOutContext(Context, Scheme,
Options
, message);
166
var principal = (await Context.AuthenticateAsync(
Options
.SignOutScheme))?.Principal;
205
await Context.SignOutAsync(
Options
.SignOutScheme);
215
var target = ResolveTarget(
Options
.ForwardSignOut);
226
if (_configuration == null &&
Options
.ConfigurationManager != null)
228
_configuration = await
Options
.ConfigurationManager.GetConfigurationAsync(Context.RequestAborted);
233
EnableTelemetryParameters = !
Options
.DisableTelemetry,
237
PostLogoutRedirectUri = BuildRedirectUriIfRelative(
Options
.SignedOutCallbackPath)
243
properties.RedirectUri = BuildRedirectUriIfRelative(
Options
.SignedOutRedirectUri);
252
message.IdTokenHint = await Context.GetTokenAsync(
Options
.SignOutScheme, OpenIdConnectParameterNames.IdToken);
254
var redirectContext = new RedirectContext(Context, Scheme,
Options
, properties)
273
message.State =
Options
.StateDataFormat.Protect(properties);
280
if (
Options
.AuthenticationMethod == OpenIdConnectRedirectBehavior.RedirectGet)
290
else if (
Options
.AuthenticationMethod == OpenIdConnectRedirectBehavior.FormPost)
307
throw new NotImplementedException($"An unsupported authentication method has been configured: {
Options
.AuthenticationMethod}");
327
properties =
Options
.StateDataFormat.Unprotect(message.State);
330
var signOut = new RemoteSignOutContext(Context, Scheme,
Options
, message)
398
if (_configuration == null &&
Options
.ConfigurationManager != null)
400
_configuration = await
Options
.ConfigurationManager.GetConfigurationAsync(Context.RequestAborted);
405
ClientId =
Options
.ClientId,
406
EnableTelemetryParameters = !
Options
.DisableTelemetry,
408
RedirectUri = BuildRedirectUri(
Options
.CallbackPath),
409
Resource =
Options
.Resource,
410
ResponseType =
Options
.ResponseType,
411
Prompt = properties.GetParameter<string>(OpenIdConnectParameterNames.Prompt) ??
Options
.Prompt,
412
Scope = string.Join(" ", properties.GetParameter<ICollection<string>>(OpenIdConnectParameterNames.Scope) ??
Options
.Scope),
416
if (
Options
.UsePkce &&
Options
.ResponseType == OpenIdConnectResponseType.Code)
434
var maxAge = properties.GetParameter<TimeSpan?>(OpenIdConnectParameterNames.MaxAge) ??
Options
.MaxAge;
444
if (!string.Equals(
Options
.ResponseType, OpenIdConnectResponseType.Code, StringComparison.Ordinal) ||
445
!string.Equals(
Options
.ResponseMode, OpenIdConnectResponseMode.Query, StringComparison.Ordinal))
447
message.ResponseMode =
Options
.ResponseMode;
450
if (
Options
.ProtocolValidator.RequireNonce)
452
message.Nonce =
Options
.ProtocolValidator.GenerateNonce();
458
foreach (var additionalParameter in
Options
.AdditionalAuthorizationParameters)
463
var redirectContext = new RedirectContext(Context, Scheme,
Options
, properties)
485
message.State =
Options
.StateDataFormat.Protect(properties);
495
switch (
Options
.PushedAuthorizationBehavior)
526
if (
Options
.AuthenticationMethod == OpenIdConnectRedirectBehavior.RedirectGet)
537
else if (
Options
.AuthenticationMethod == OpenIdConnectRedirectBehavior.FormPost)
554
throw new NotImplementedException($"An unsupported authentication method has been configured: {
Options
.AuthenticationMethod}");
563
var context = new PushedAuthorizationContext(Context, Scheme,
Options
, parRequest, properties);
574
if (!string.IsNullOrEmpty(
Options
.ClientSecret))
576
parRequest.Parameters.Add(OpenIdConnectParameterNames.ClientSecret,
Options
.ClientSecret);
605
authorizeRequest.Parameters.Add("client_id",
Options
.ClientId);
652
if (
Options
.SkipUnrecognizedRequests)
677
if (
Options
.SkipUnrecognizedRequests)
705
if (
Options
.SkipUnrecognizedRequests)
718
if (
Options
.SkipUnrecognizedRequests)
753
if (_configuration == null &&
Options
.ConfigurationManager != null)
756
_configuration = await
Options
.ConfigurationManager.GetConfigurationAsync(Context.RequestAborted);
764
var validationParameters =
Options
.TokenValidationParameters.Clone();
771
if (!
Options
.UseSecurityTokenValidator)
800
Options
.ProtocolValidator.ValidateAuthenticationResponse(new OpenIdConnectProtocolValidationContext()
802
ClientId =
Options
.ClientId,
852
if (!
Options
.UseSecurityTokenValidator)
897
Options
.ProtocolValidator.ValidateTokenResponse(new OpenIdConnectProtocolValidationContext()
899
ClientId =
Options
.ClientId,
907
if (
Options
.SaveTokens)
912
if (
Options
.GetClaimsFromUserInfoEndpoint)
921
foreach (var action in
Options
.ClaimActions)
935
if (
Options
.RefreshOnIssuerKeyNotFound && exception is SecurityTokenSignatureKeyNotFoundException)
937
if (
Options
.ConfigurationManager != null)
940
Options
.ConfigurationManager.RequestRefresh();
959
properties =
Options
.StateDataFormat.Unprotect(message.State);
1093
Options
.ProtocolValidator.ValidateUserInfoResponse(new OpenIdConnectProtocolValidationContext()
1101
foreach (var action in
Options
.ClaimActions)
1164
var cookieOptions =
Options
.NonceCookie.Build(Context, TimeProvider.GetUtcNow());
1168
Options
.NonceCookie.Name +
Options
.StringDataFormat.Protect(nonce),
1189
if (
Options
.NonceCookie.Name is string name && nonceKey.StartsWith(name, StringComparison.Ordinal))
1193
var nonceDecodedValue =
Options
.StringDataFormat.Unprotect(nonceKey.Substring(
Options
.NonceCookie.Name.Length, nonceKey.Length -
Options
.NonceCookie.Name.Length));
1196
var cookieOptions =
Options
.NonceCookie.Build(Context, TimeProvider.GetUtcNow());
1214
var context = new MessageReceivedContext(Context, Scheme,
Options
, properties)
1237
var context = new TokenValidatedContext(Context, Scheme,
Options
, user, properties)
1267
ClientId =
Options
.ClientId,
1268
ClientSecret =
Options
.ClientSecret,
1271
EnableTelemetryParameters = !
Options
.DisableTelemetry,
1282
var context = new AuthorizationCodeReceivedContext(Context, Scheme,
Options
, properties)
1314
var context = new TokenResponseReceivedContext(Context, Scheme,
Options
, user, properties)
1340
var context = new UserInformationReceivedContext(Context, Scheme,
Options
, principal, properties)
1364
var context = new AuthenticationFailedContext(Context, Scheme,
Options
)
1390
if (!
Options
.SecurityTokenValidator.CanReadToken(idToken))
1407
var principal =
Options
.SecurityTokenValidator.ValidateToken(idToken, validationParameters, out SecurityToken validatedToken);
1425
if (
Options
.UseTokenLifetime)
1446
if (
Options
.ConfigurationManager is BaseConfigurationManager baseConfigurationManager)
1459
var validationResult = await
Options
.TokenHandler.ValidateTokenAsync(idToken, validationParameters);
1480
if (
Options
.UseTokenLifetime)
Microsoft.AspNetCore.Authentication.Twitter (16)
TwitterHandler.cs (16)
25
private HttpClient Backchannel =>
Options
.Backchannel;
61
var protectedRequestToken = Request.Cookies[
Options
.StateCookie.Name!];
63
var requestToken =
Options
.StateDataFormat.Unprotect(protectedRequestToken);
101
var cookieOptions =
Options
.StateCookie.Build(Context, TimeProvider.GetUtcNow());
103
Response.Cookies.Delete(
Options
.StateCookie.Name!, cookieOptions);
117
if (
Options
.RetrieveUserDetails)
128
if (
Options
.SaveTokens)
152
foreach (var action in
Options
.ClaimActions)
157
var context = new TwitterCreatingTicketContext(Context, Scheme,
Options
, new ClaimsPrincipal(identity), properties, token.UserId, token.ScreenName, token.Token, token.TokenSecret, user);
172
var requestToken = await ObtainRequestTokenAsync(BuildRedirectUri(
Options
.CallbackPath), properties);
175
var cookieOptions =
Options
.StateCookie.Build(Context, TimeProvider.GetUtcNow());
178
Response.Cookies.Append(
Options
.StateCookie.Name!,
Options
.StateDataFormat.Protect(requestToken), cookieOptions);
180
var redirectContext = new RedirectContext<TwitterOptions>(Context, Scheme,
Options
, properties, twitterAuthenticationEndpoint);
188
{ "oauth_consumer_key",
Options
.ConsumerKey! },
231
var signature = ComputeSignature(
Options
.ConsumerSecret!, accessToken?.TokenSecret, stringBuilder.ToString());
Microsoft.AspNetCore.Authentication.WsFederation (36)
WsFederationHandler.cs (36)
70
if (
Options
.RemoteSignOutPath.HasValue &&
Options
.RemoteSignOutPath == Request.Path && HttpMethods.IsGet(Request.Method)
89
_configuration = await
Options
.ConfigurationManager.GetConfigurationAsync(Context.RequestAborted);
101
Wtrealm =
Options
.Wtrealm,
105
if (!string.IsNullOrEmpty(
Options
.Wreply))
107
wsFederationMessage.Wreply =
Options
.Wreply;
111
wsFederationMessage.Wreply = BuildRedirectUri(
Options
.CallbackPath);
116
var redirectContext = new RedirectContext(Context, Scheme,
Options
, properties)
134
wsFederationMessage.Wctx = Uri.EscapeDataString(
Options
.StateDataFormat.Protect(properties));
170
if (
Options
.SkipUnrecognizedRequests)
185
properties =
Options
.StateDataFormat.Unprotect(state);
189
if (!
Options
.AllowUnsolicitedLogins)
201
var messageReceivedContext = new MessageReceivedContext(Context, Scheme,
Options
, properties)
233
var securityTokenReceivedContext = new SecurityTokenReceivedContext(Context, Scheme,
Options
, properties)
248
if (!
Options
.UseSecurityTokenHandlers)
250
foreach (var tokenHandler in
Options
.TokenHandlers)
281
foreach (var validator in
Options
.SecurityTokenHandlers)
317
if (
Options
.UseTokenLifetime && validatedToken != null)
333
var securityTokenValidatedContext = new SecurityTokenValidatedContext(Context, Scheme,
Options
, principal, properties)
356
var authenticationFailedContext = new AuthenticationFailedContext(Context, Scheme,
Options
)
375
var tokenValidationParameters =
Options
.TokenValidationParameters.Clone();
377
if (
Options
.ConfigurationManager is BaseConfigurationManager baseConfigurationManager)
383
if (
Options
.ConfigurationManager != null)
386
_configuration = await
Options
.ConfigurationManager.GetConfigurationAsync(Context.RequestAborted);
401
if (
Options
.RefreshOnIssuerKeyNotFound && exception is SecurityTokenSignatureKeyNotFoundException)
403
Options
.ConfigurationManager.RequestRefresh();
413
var target = ResolveTarget(
Options
.ForwardSignOut);
422
_configuration = await
Options
.ConfigurationManager.GetConfigurationAsync(Context.RequestAborted);
428
Wtrealm =
Options
.Wtrealm,
440
else if (!string.IsNullOrEmpty(
Options
.SignOutWreply))
442
wsFederationMessage.Wreply = BuildRedirectUriIfRelative(
Options
.SignOutWreply);
444
else if (!string.IsNullOrEmpty(
Options
.Wreply))
446
wsFederationMessage.Wreply = BuildRedirectUriIfRelative(
Options
.Wreply);
449
var redirectContext = new RedirectContext(Context, Scheme,
Options
, properties)
477
var remoteSignOutContext = new RemoteSignOutContext(Context, Scheme,
Options
, message);
496
await Context.SignOutAsync(
Options
.SignOutScheme);