More auth updates

Author: scottbrady91

IdentityManager2.sln

@@ -1,14 +1,18 @@
 
 Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio 15
-VisualStudioVersion = 15.0.27520.0
+# Visual Studio Version 16
+VisualStudioVersion = 16.0.29519.181
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "src", "src", "{21035206-B373-4994-901B-2C9E882B5852}"
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "IdentityManager2", "src\IdentityManager2\IdentityManager2.csproj", "{E4718661-6384-4378-82C3-56D66F6E060F}"
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Host", "src\Host\Host.csproj", "{D024CAF4-4371-45C5-9728-D06B462CD4B3}"
 EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HostWithLocalAuth", "src\HostWithLocalAuth\HostWithLocalAuth.csproj", "{20FEF10D-D003-48A7-A931-4DEB80796E08}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "Hosts.Shared", "src\Hosts.Shared\Hosts.Shared.csproj", "{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -23,13 +27,23 @@ Global
 		{D024CAF4-4371-45C5-9728-D06B462CD4B3}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{D024CAF4-4371-45C5-9728-D06B462CD4B3}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{D024CAF4-4371-45C5-9728-D06B462CD4B3}.Release|Any CPU.Build.0 = Release|Any CPU
+		{20FEF10D-D003-48A7-A931-4DEB80796E08}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{20FEF10D-D003-48A7-A931-4DEB80796E08}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{20FEF10D-D003-48A7-A931-4DEB80796E08}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{20FEF10D-D003-48A7-A931-4DEB80796E08}.Release|Any CPU.Build.0 = Release|Any CPU
+		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
 	EndGlobalSection
 	GlobalSection(NestedProjects) = preSolution
 		{E4718661-6384-4378-82C3-56D66F6E060F} = {21035206-B373-4994-901B-2C9E882B5852}
 		{D024CAF4-4371-45C5-9728-D06B462CD4B3} = {21035206-B373-4994-901B-2C9E882B5852}
+		{20FEF10D-D003-48A7-A931-4DEB80796E08} = {21035206-B373-4994-901B-2C9E882B5852}
+		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208} = {21035206-B373-4994-901B-2C9E882B5852}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {22A3DD5E-832A-4FFC-B0B9-1A3D07313154}

src/Host/Host.csproj

@@ -5,10 +5,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <!--<PackageReference Include="IdentityServer4" Version="2.4.0" />-->
-  </ItemGroup>
-
-  <ItemGroup>
+    <ProjectReference Include="..\Hosts.Shared\Hosts.Shared.csproj" />
     <ProjectReference Include="..\IdentityManager2\IdentityManager2.csproj" />
   </ItemGroup>
 </Project>

src/Host/Startup.cs

@@ -1,7 +1,7 @@
 using Microsoft.AspNetCore.Builder;
 using Microsoft.Extensions.DependencyInjection;
 using System;
-using Host.InMemory;
+using Hosts.Shared.InMemory;
 using IdentityManager2.Assets;
 using Microsoft.AspNetCore.Http;
 using Microsoft.Extensions.FileProviders;

src/HostWithLocalAuth/Controllers/LoginController.cs

@@ -0,0 +1,64 @@
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using Hosts.Shared.InMemory;
+using IdentityManager2;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Mvc;
+
+namespace HostWithLocalAuth
+{
+    public class LoginController : Controller
+    {
+        private readonly ICollection<InMemoryUser> users;
+
+        public LoginController(ICollection<InMemoryUser> users)
+        {
+            this.users = users ?? throw new ArgumentNullException(nameof(users));
+        }
+
+        [HttpGet("login")]
+        public IActionResult Login(string returnUrl)
+        {
+            return View(new LoginModel {ReturnUrl = returnUrl});
+        }
+
+        [HttpPost("login")]
+        [ValidateAntiForgeryToken]
+        public async Task<IActionResult> Login(LoginModel model)
+        {
+            var user = users.FirstOrDefault(x => x.Username == model.Username && x.Password == model.Password);
+
+            if (user != null)
+            {
+                var claims = new List<Claim>
+                {
+                    new Claim("sub", user.Subject),
+                    new Claim("name", user.Username)
+                };
+
+                foreach (var role in user.Claims.Where(x => x.Type == IdentityManagerConstants.ClaimTypes.Role))
+                {
+                    claims.Add(new Claim(IdentityManagerConstants.ClaimTypes.Role, role.Value));
+                }
+
+                await HttpContext.SignInAsync("cookie", new ClaimsPrincipal(new ClaimsIdentity(claims, "cookie")));
+
+                if (Url.IsLocalUrl(model.ReturnUrl)) return LocalRedirect(model.ReturnUrl);
+                return LocalRedirect("~/");
+            }
+
+            ModelState.AddModelError("", "Invalid username or password");
+            return View(model);
+        }
+    }
+
+    public class LoginModel
+    {
+        public string Username { get; set; }
+        public string Password { get; set; }
+        public string ReturnUrl { get; set; }
+    }
+}

src/HostWithLocalAuth/HostWithLocalAuth.csproj

@@ -0,0 +1,12 @@
+<Project Sdk="Microsoft.NET.Sdk.Web">
+
+  <PropertyGroup>
+    <TargetFramework>netcoreapp3.1</TargetFramework>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <ProjectReference Include="..\Hosts.Shared\Hosts.Shared.csproj" />
+    <ProjectReference Include="..\IdentityManager2\IdentityManager2.csproj" />
+  </ItemGroup>
+
+</Project>

src/HostWithLocalAuth/Program.cs

@@ -0,0 +1,20 @@
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.Extensions.Hosting;
+
+namespace HostWithLocalAuth
+{
+    public class Program
+    {
+        public static void Main(string[] args)
+        {
+            CreateHostBuilder(args).Build().Run();
+        }
+
+        public static IHostBuilder CreateHostBuilder(string[] args) =>
+            Host.CreateDefaultBuilder(args)
+                .ConfigureWebHostDefaults(webBuilder =>
+                {
+                    webBuilder.UseStartup<Startup>();
+                });
+    }
+}

src/HostWithLocalAuth/Properties/launchSettings.json

@@ -0,0 +1,27 @@
+{
+  "iisSettings": {
+    "windowsAuthentication": false, 
+    "anonymousAuthentication": true, 
+    "iisExpress": {
+      "applicationUrl": "http://localhost:60759",
+      "sslPort": 0
+    }
+  },
+  "profiles": {
+    "IIS Express": {
+      "commandName": "IISExpress",
+      "launchBrowser": true,
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    },
+    "HostWithLocalAuth": {
+      "commandName": "Project",
+      "launchBrowser": true,
+      "applicationUrl": "http://localhost:5000",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    }
+  }
+}

src/HostWithLocalAuth/Startup.cs

@@ -0,0 +1,58 @@
+using System;
+using Hosts.Shared.InMemory;
+using IdentityManager2.Assets;
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Http;
+using Microsoft.Extensions.DependencyInjection;
+using Microsoft.Extensions.FileProviders;
+
+namespace HostWithLocalAuth
+{
+    public class Startup
+    {
+        public void ConfigureServices(IServiceCollection services)
+        {
+            // In-memory IdentityManagerService (demo only)
+            services.AddIdentityManager(options =>
+                {
+                    options.SecurityConfiguration.HostAuthenticationType = "cookie";
+                    options.SecurityConfiguration.HostChallengeType = "cookie";
+                })
+                .AddIdentityMangerService<InMemoryIdentityManagerService>();
+
+            var rand = new Random();
+            services.AddSingleton(x => Users.Get(rand.Next(5000, 20000)));
+            services.AddSingleton(x => Roles.Get(rand.Next(15)));
+
+            services.AddAuthentication("cookie")
+                .AddCookie("cookie", options =>
+                {
+                    options.LoginPath = "/login";
+                });
+        }
+
+        public void Configure(IApplicationBuilder app)
+        {
+            app.UseDeveloperExceptionPage();
+
+            app.UseRouting();
+
+            app.UseStaticFiles();
+
+            app.UseAuthentication();
+            app.UseAuthorization();
+
+            app.UseFileServer(new FileServerOptions
+            {
+                RequestPath = new PathString("/assets"),
+                FileProvider = new EmbeddedFileProvider(typeof(EmbeddedHtmlResult).Assembly, "IdentityManager2.Assets")
+            });
+
+            app.UseEndpoints(x =>
+            {
+                //x.MapIdentityManager("/idm");
+                x.MapDefaultControllerRoute();
+            });
+        }
+    }
+}

src/HostWithLocalAuth/Views/Login/Login.cshtml

@@ -0,0 +1,25 @@
+@model HostWithLocalAuth.LoginModel
+
+@{
+    Layout = null;
+}
+
+<!DOCTYPE html>
+
+<html>
+<head>
+    <title>title</title>
+</head>
+<body>
+<div>
+    <form asp-action="Login" method="post">
+        <input asp-for="ReturnUrl" type="hidden"/>
+        <h2>Username</h2>
+        <input asp-for="Username"/>
+        <h2>Password</h2>
+        <input asp-for="Password"/>
+        <button type="submit">Submit</button>
+    </form>
+</div>
+</body>
+</html>

src/HostWithLocalAuth/Views/_ViewImports.cshtml

@@ -0,0 +1 @@
+@addTagHelper *, Microsoft.AspNetCore.Mvc.TagHelpers