Added test host with IdentityServer4

Author: scottbrady91

IdentityManager2.sln

@@ -15,6 +15,8 @@ Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Hosts.Shared", "src\Hosts\H
 EndProject
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Hosts", "Hosts", "{59FA21EB-3472-4E3D-BDF0-AD32DCFA6035}"
 EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "Hosts.IdentityServerAuthentication", "src\Hosts\Host.IdentityServerAuthentication\Hosts.IdentityServerAuthentication.csproj", "{BAACD397-A69F-4F9B-A178-39D734CA78CC}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -37,6 +39,10 @@ Global
 		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208}.Release|Any CPU.Build.0 = Release|Any CPU
+		{BAACD397-A69F-4F9B-A178-39D734CA78CC}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{BAACD397-A69F-4F9B-A178-39D734CA78CC}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{BAACD397-A69F-4F9B-A178-39D734CA78CC}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{BAACD397-A69F-4F9B-A178-39D734CA78CC}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -47,6 +53,7 @@ Global
 		{20FEF10D-D003-48A7-A931-4DEB80796E08} = {59FA21EB-3472-4E3D-BDF0-AD32DCFA6035}
 		{BE7A2243-B7D0-4D32-92F6-0DD4C8DA8208} = {59FA21EB-3472-4E3D-BDF0-AD32DCFA6035}
 		{59FA21EB-3472-4E3D-BDF0-AD32DCFA6035} = {21035206-B373-4994-901B-2C9E882B5852}
+		{BAACD397-A69F-4F9B-A178-39D734CA78CC} = {59FA21EB-3472-4E3D-BDF0-AD32DCFA6035}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {22A3DD5E-832A-4FFC-B0B9-1A3D07313154}

src/Hosts/Host.IdentityServerAuthentication/Hosts.IdentityServerAuthentication.csproj

@@ -0,0 +1,15 @@
+<Project Sdk="Microsoft.NET.Sdk.Web">
+
+  <PropertyGroup>
+    <TargetFramework>netcoreapp3.1</TargetFramework>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <PackageReference Include="IdentityServer4" Version="3.1.0-preview.1.4" />
+  </ItemGroup>
+
+  <ItemGroup>
+    <ProjectReference Include="..\Hosts.Shared\Hosts.Shared.csproj" />
+  </ItemGroup>
+
+</Project>

src/Hosts/Host.IdentityServerAuthentication/Program.cs

@@ -0,0 +1,16 @@
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.Extensions.Hosting;
+
+namespace Hosts.IdentityServerAuthentication
+{
+    public class Program
+    {
+        public static void Main(string[] args)
+        {
+            CreateHostBuilder(args).Build().Run();
+        }
+
+        public static IHostBuilder CreateHostBuilder(string[] args) =>
+            Host.CreateDefaultBuilder(args).ConfigureWebHostDefaults(webBuilder => webBuilder.UseStartup<Startup>());
+    }
+}

src/Hosts/Host.IdentityServerAuthentication/Properties/launchSettings.json

@@ -0,0 +1,12 @@
+{
+  "profiles": {
+    "Host.IdentityServerAuthentication": {
+      "commandName": "Project",
+      "launchBrowser": true,
+      "applicationUrl": "http://localhost:5000",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    }
+  }
+}

src/Hosts/Host.IdentityServerAuthentication/Startup.cs

@@ -0,0 +1,122 @@
+using System;
+using System.Collections.Generic;
+using System.IdentityModel.Tokens.Jwt;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using Hosts.Shared.InMemory;
+using IdentityManager2.Configuration;
+using IdentityServer4;
+using IdentityServer4.Models;
+using IdentityServer4.Test;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.OpenIdConnect;
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Routing;
+using Microsoft.Extensions.DependencyInjection;
+
+namespace Hosts.IdentityServerAuthentication
+{
+    public class Startup
+    {
+        public void ConfigureServices(IServiceCollection services)
+        {
+            // In-memory IdentityManagerService (demo only)
+            services.AddIdentityManager(opt =>
+                    opt.SecurityConfiguration =
+                        new SecurityConfiguration
+                        {
+                            HostAuthenticationType = "cookie",
+                            HostChallengeType = "oidc"
+                        })
+                .AddIdentityMangerService<InMemoryIdentityManagerService>();
+
+            var admin = new TestUser
+            {
+                SubjectId = "123",
+                Username = "scott",
+                Password = "scott",
+                Claims = {new Claim("role", "IdentityManagerAdministrator")}
+            };
+
+            var client = new Client
+            {
+                ClientId = "identitymanager2",
+                ClientName = "IdentityManager2",
+                AllowedGrantTypes = GrantTypes.Implicit,
+                RedirectUris = {"http://localhost:5000/idm/signin-oidc"},
+                AllowedScopes = {"openid", "profile", "roles"},
+                RequireConsent = false
+            };
+
+            var roles = new IdentityResource("roles", new List<string> {"role"});
+
+            services.AddIdentityServer()
+                .AddTestUsers(new List<TestUser> {admin})
+                .AddInMemoryIdentityResources(new List<IdentityResource> {new IdentityResources.OpenId(), new IdentityResources.Profile(), roles})
+                .AddInMemoryApiResources(new List<ApiResource>())
+                .AddInMemoryClients(new List<Client> {client})
+                .AddDeveloperSigningCredential(false);
+
+            JwtSecurityTokenHandler.DefaultInboundClaimTypeMap.Clear();
+
+            services.AddAuthentication()
+                .AddCookie("cookie")
+                .AddOpenIdConnect("oidc", opt =>
+                {
+                    opt.Authority = "http://localhost:5000/auth";
+                    opt.ClientId = "identitymanager2";
+
+                    // default: openid & profile
+                    opt.Scope.Add("roles");
+
+                    opt.RequireHttpsMetadata = false; // dev only
+                    opt.SignInScheme = "cookie";
+                    opt.CallbackPath = "/signin-oidc";
+
+                    opt.Events = new OpenIdConnectEvents
+                    {
+                        OnTokenValidated = context => Task.CompletedTask
+                    };
+                });
+
+            var rand = new Random();
+            services.AddSingleton(x => Users.Get(rand.Next(5000, 20000)));
+            services.AddSingleton(x => Roles.Get(rand.Next(15)));
+        }
+
+        public void Configure(IApplicationBuilder app)
+        {
+            app.UseDeveloperExceptionPage();
+
+            app.Map("/auth", auth =>
+            {
+                auth.UseIdentityServer();
+
+                // Force authentication
+                auth.Map("/account/login",
+                    login => login.Use(async (context, func) =>
+                    {
+                        await context.SignInAsync(IdentityServerConstants.DefaultCookieAuthenticationScheme,
+                            new ClaimsPrincipal(new ClaimsIdentity(new List<Claim> {new Claim("sub", "123")}, IdentityServerConstants.DefaultCookieAuthenticationScheme)));
+                        context.Response.Redirect(context.Request.Query["returnUrl"]);
+                    }));
+            });
+            
+            app.Map("/idm", idm =>
+            {
+                idm.UseRouting();
+
+                idm.UseAuthentication();
+                idm.UseAuthorization();
+
+                idm.UseIdentityManager();
+
+                idm.UseEndpoints(x =>
+                {
+                    x.MapDefaultControllerRoute();
+                });
+            });
+
+        }
+    }
+}