Fix SimpleTokenAuthentication fo ASP.NET Core v1

andresmoschini · andresmoschini · commit bc676f99fbf4 · 2016-09-06T10:49:12.000-03:00
diff --git a/src/MakingSense.AspNetCore.Authentication.SimpleToken/SimpleTokenAppBuilderExtensions.cs b/src/MakingSense.AspNetCore.Authentication.SimpleToken/SimpleTokenAppBuilderExtensions.cs
@@ -3,29 +3,45 @@
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.Framework.Internal;
 using Microsoft.IdentityModel.Tokens;
+using Microsoft.Extensions.Options;
 
 namespace Microsoft.AspNetCore.Builder
 {
 	public static class SimpleTokenAppBuilderExtensions
 	{
-		public static IApplicationBuilder UseSimpleTokenAuthentication([NotNull] this IApplicationBuilder app, Action<SimpleTokenAuthenticationOptions> configureOptions = null, string authenticationScheme = "Bearer")
+		public static IApplicationBuilder UseSimpleTokenAuthentication(this IApplicationBuilder app)
 		{
-			var options = new SimpleTokenAuthenticationOptions()
+			if (app == null)
 			{
-				AuthenticationScheme = authenticationScheme
-			};
+				throw new ArgumentNullException(nameof(app));
+			}
+
+			return UseSimpleTokenAuthentication(app, new SimpleTokenAuthenticationOptions());
+		}
+
+		public static IApplicationBuilder UseSimpleTokenAuthentication(this IApplicationBuilder app, SimpleTokenAuthenticationOptions options)
+		{
+			if (app == null)
+			{
+				throw new ArgumentNullException(nameof(app));
+			}
+
+			if (options == null)
+			{
+				throw new ArgumentNullException(nameof(options));
+			}
 
-			if (configureOptions != null)
+			if (string.IsNullOrEmpty(options.AuthenticationScheme))
 			{
-				configureOptions(options);
+				options.AuthenticationScheme = "Bearer";
 			}
 
 			if (options.SecurityTokenValidatorsFactory == null)
 			{
 				options.SecurityTokenValidatorsFactory = () => app.ApplicationServices.GetServices<ISecurityTokenValidator>();
 			}
 
-			return app.UseMiddleware<SimpleTokenAuthenticationMiddleware>(options);
+			return app.UseMiddleware<SimpleTokenAuthenticationMiddleware>(Options.Create(options));
 		}
 	}
 }
diff --git a/src/MakingSense.AspNetCore.Authentication.SimpleToken/SimpleTokenAuthenticationHandler.cs b/src/MakingSense.AspNetCore.Authentication.SimpleToken/SimpleTokenAuthenticationHandler.cs
@@ -21,8 +21,11 @@ public class SimpleTokenAuthenticationHandler : AuthenticationHandler<SimpleToke
 		/// It does not search in Form-Encoded Body Parameter (http://tools.ietf.org/html/rfc6750#section-2.2).
 		/// </remarks>
 		/// <returns>
-		/// Returns Token if found, null otherwise
+		/// Returns Token if found, null otherwise.
 		/// </returns>
+		/// <exception>
+		/// Throws AuthenticationException when Authentication header is found, but id does not contains valid data format.
+		/// </exception>
 		public static string ExtractToken(HttpRequest request)
 		{
 			var authorizationHeader = (string)request.Headers[HeaderNames.Authorization];
@@ -55,7 +58,6 @@ public static string ExtractToken(HttpRequest request)
 				throw new AuthenticationException("Authorization header exists but does not contains valid information.");
 			}
 
-			// Search in URI Query Parameter (http://tools.ietf.org/html/rfc6750#section-2.3)
 			var tokenFromQuery = (string)request.Query["access_token"] ?? request.Query["api_key"];
 			if (tokenFromQuery != null)
 			{
@@ -73,16 +75,12 @@ public static string ExtractToken(HttpRequest request)
 		/// <returns></returns>
 		protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
 		{
-			// Ugly patch to make this method should to be async in order to allow result caching by caller
-			await DoneTask;
-
-			string token = ExtractToken(Request);
+			var token = ExtractToken(Request);
 
 			// If no token found, no further work possible
 			if (string.IsNullOrEmpty(token))
 			{
-				// Not so nice, but AuthenticateResult.Fail has the same behavior
-				return null;
+				return AuthenticateResult.Skip();
 			}
 
 			var validationParameters = Options.TokenValidationParameters.Clone();
@@ -99,6 +97,9 @@ protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
 				}
 			}
 
+			// Ugly patch to make this method should to be async in order to allow result caching by caller
+			await DoneTask;
+
 			// Not so nice, but AuthenticateResult.Fail does not allow us to show the error
 			throw new AuthenticationException("Authorization token has been detected but it cannot be read.");
 		}
diff --git a/src/MakingSense.AspNetCore.Authentication.SimpleToken/SimpleTokenAuthenticationMiddleware.cs b/src/MakingSense.AspNetCore.Authentication.SimpleToken/SimpleTokenAuthenticationMiddleware.cs
@@ -23,11 +23,41 @@ public class SimpleTokenAuthenticationMiddleware : AuthenticationMiddleware<Simp
 		/// </summary>
 		public SimpleTokenAuthenticationMiddleware(
 			[NotNull] RequestDelegate next,
-			[NotNull] IOptions<SimpleTokenAuthenticationOptions> options,
 			[NotNull] ILoggerFactory loggerFactory,
-			[NotNull] UrlEncoder encoder)
+			[NotNull] UrlEncoder encoder,
+			[NotNull] IOptions<SimpleTokenAuthenticationOptions> options)
 			: base(next, options, loggerFactory, encoder)
 		{
+			if (next == null)
+			{
+				throw new ArgumentNullException(nameof(next));
+			}
+
+			if (loggerFactory == null)
+			{
+				throw new ArgumentNullException(nameof(loggerFactory));
+			}
+
+			if (encoder == null)
+			{
+				throw new ArgumentNullException(nameof(encoder));
+			}
+
+			if (options == null)
+			{
+				throw new ArgumentNullException(nameof(options));
+			}
+
+
+			if (string.IsNullOrEmpty(Options.AuthenticationScheme))
+			{
+				throw new ArgumentException(nameof(Options.AuthenticationScheme));
+			}
+
+			if (Options.SecurityTokenValidatorsFactory == null)
+			{
+				throw new ArgumentException(nameof(Options.SecurityTokenValidatorsFactory));
+			}
 		}
 
 		/// <summary>
diff --git a/src/MakingSense.AspNetCore.Authentication.SimpleToken/SimpleTokenAuthenticationOptions.cs b/src/MakingSense.AspNetCore.Authentication.SimpleToken/SimpleTokenAuthenticationOptions.cs
@@ -23,11 +23,6 @@ public class SimpleTokenAuthenticationOptions : AuthenticationOptions
 		/// <exception cref="ArgumentNullException">if 'value' is null.</exception>
 		public TokenValidationParameters TokenValidationParameters { get; [param: NotNull] set; } = new TokenValidationParameters();
 
-		/// <summary>
-		/// Gets or sets the challenge to put in the "WWW-Authenticate" header.
-		/// </summary>
-		public string Challenge { get; set; } = "Bearer";
-
 		/// <summary>
 		/// Creates an instance of SimpleToken authentication options with default values.
 		/// </summary>

Original file line number	Diff line number	Diff line change
`@@ -3,29 +3,45 @@`
`3`	`3`	`using Microsoft.Extensions.DependencyInjection;`
`4`	`4`	`using Microsoft.Framework.Internal;`
`5`	`5`	`using Microsoft.IdentityModel.Tokens;`
	`6`	`+using Microsoft.Extensions.Options;`
`6`	`7`
`7`	`8`	`namespace Microsoft.AspNetCore.Builder`
`8`	`9`	`{`
`9`	`10`	`public static class SimpleTokenAppBuilderExtensions`
`10`	`11`	`{`
`11`		`- public static IApplicationBuilder UseSimpleTokenAuthentication([NotNull] this IApplicationBuilder app, Action<SimpleTokenAuthenticationOptions> configureOptions = null, string authenticationScheme = "Bearer")`
	`12`	`+ public static IApplicationBuilder UseSimpleTokenAuthentication(this IApplicationBuilder app)`
`12`	`13`	`{`
`13`		`- var options = new SimpleTokenAuthenticationOptions()`
	`14`	`+ if (app == null)`
`14`	`15`	`{`
`15`		`- AuthenticationScheme = authenticationScheme`
`16`		`- };`
	`16`	`+ throw new ArgumentNullException(nameof(app));`
	`17`	`+ }`
	`18`	`+`
	`19`	`+ return UseSimpleTokenAuthentication(app, new SimpleTokenAuthenticationOptions());`
	`20`	`+ }`
	`21`	`+`
	`22`	`+ public static IApplicationBuilder UseSimpleTokenAuthentication(this IApplicationBuilder app, SimpleTokenAuthenticationOptions options)`
	`23`	`+ {`
	`24`	`+ if (app == null)`
	`25`	`+ {`
	`26`	`+ throw new ArgumentNullException(nameof(app));`
	`27`	`+ }`
	`28`	`+`
	`29`	`+ if (options == null)`
	`30`	`+ {`
	`31`	`+ throw new ArgumentNullException(nameof(options));`
	`32`	`+ }`
`17`	`33`
`18`		`- if (configureOptions != null)`
	`34`	`+ if (string.IsNullOrEmpty(options.AuthenticationScheme))`
`19`	`35`	`{`
`20`		`- configureOptions(options);`
	`36`	`+ options.AuthenticationScheme = "Bearer";`
`21`	`37`	`}`
`22`	`38`
`23`	`39`	`if (options.SecurityTokenValidatorsFactory == null)`
`24`	`40`	`{`
`25`	`41`	`options.SecurityTokenValidatorsFactory = () => app.ApplicationServices.GetServices<ISecurityTokenValidator>();`
`26`	`42`	`}`
`27`	`43`
`28`		`- return app.UseMiddleware<SimpleTokenAuthenticationMiddleware>(options);`
	`44`	`+ return app.UseMiddleware<SimpleTokenAuthenticationMiddleware>(Options.Create(options));`
`29`	`45`	`}`
`30`	`46`	`}`
`31`	`47`	`}`
Original file line number	Diff line number	Diff line change
`@@ -21,8 +21,11 @@ public class SimpleTokenAuthenticationHandler : AuthenticationHandler<SimpleToke`
`21`	`21`	`/// It does not search in Form-Encoded Body Parameter (http://tools.ietf.org/html/rfc6750#section-2.2).`
`22`	`22`	`/// </remarks>`
`23`	`23`	`/// <returns>`
`24`		`- /// Returns Token if found, null otherwise`
	`24`	`+ /// Returns Token if found, null otherwise.`
`25`	`25`	`/// </returns>`
	`26`	`+ /// <exception>`
	`27`	`+ /// Throws AuthenticationException when Authentication header is found, but id does not contains valid data format.`
	`28`	`+ /// </exception>`
`26`	`29`	`public static string ExtractToken(HttpRequest request)`
`27`	`30`	`{`
`28`	`31`	`var authorizationHeader = (string)request.Headers[HeaderNames.Authorization];`
`@@ -55,7 +58,6 @@ public static string ExtractToken(HttpRequest request)`
`55`	`58`	`throw new AuthenticationException("Authorization header exists but does not contains valid information.");`
`56`	`59`	`}`
`57`	`60`
`58`		`- // Search in URI Query Parameter (http://tools.ietf.org/html/rfc6750#section-2.3)`
`59`	`61`	`var tokenFromQuery = (string)request.Query["access_token"] ?? request.Query["api_key"];`
`60`	`62`	`if (tokenFromQuery != null)`
`61`	`63`	`{`
`@@ -73,16 +75,12 @@ public static string ExtractToken(HttpRequest request)`
`73`	`75`	`/// <returns></returns>`
`74`	`76`	`protected override async Task<AuthenticateResult> HandleAuthenticateAsync()`
`75`	`77`	`{`
`76`		`- // Ugly patch to make this method should to be async in order to allow result caching by caller`
`77`		`- await DoneTask;`
`78`		`-`
`79`		`- string token = ExtractToken(Request);`
	`78`	`+ var token = ExtractToken(Request);`
`80`	`79`
`81`	`80`	`// If no token found, no further work possible`
`82`	`81`	`if (string.IsNullOrEmpty(token))`
`83`	`82`	`{`
`84`		`- // Not so nice, but AuthenticateResult.Fail has the same behavior`
`85`		`- return null;`
	`83`	`+ return AuthenticateResult.Skip();`
`86`	`84`	`}`
`87`	`85`
`88`	`86`	`var validationParameters = Options.TokenValidationParameters.Clone();`
`@@ -99,6 +97,9 @@ protected override async Task<AuthenticateResult> HandleAuthenticateAsync()`
`99`	`97`	`}`
`100`	`98`	`}`
`101`	`99`
	`100`	`+ // Ugly patch to make this method should to be async in order to allow result caching by caller`
	`101`	`+ await DoneTask;`
	`102`	`+`
`102`	`103`	`// Not so nice, but AuthenticateResult.Fail does not allow us to show the error`
`103`	`104`	`throw new AuthenticationException("Authorization token has been detected but it cannot be read.");`
`104`	`105`	`}`