Ticket #13 : Externalize the Authentication and the Authorization from all the libraries

Author: habarthierry-hue

Directory.Build.props

@@ -1,6 +1,6 @@
 <Project>
     <PropertyGroup>
-        <VersionPrefix>1.0.3</VersionPrefix>
+        <VersionPrefix>1.0.4</VersionPrefix>
         <Authors>SimpleIdServer</Authors>
         <Owners>SimpleIdServer</Owners>
     </PropertyGroup>

SimpleIdServer.OAuth.Host.sln

@@ -1,7 +1,7 @@
 
 Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio 15
-VisualStudioVersion = 15.0.28307.645
+# Visual Studio Version 16
+VisualStudioVersion = 16.0.29503.13
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "02. Startup Layer", "02. Startup Layer", "{68306EFF-55D9-497B-9482-FEB81C485914}"
 EndProject

SimpleIdServer.OpenId.Host.sln

@@ -1,7 +1,7 @@
 
 Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio 15
-VisualStudioVersion = 15.0.28307.645
+# Visual Studio Version 16
+VisualStudioVersion = 16.0.29503.13
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "04. Startup Layer", "04. Startup Layer", "{68306EFF-55D9-497B-9482-FEB81C485914}"
 EndProject

SimpleIdServer.Scim.Host.sln

@@ -1,7 +1,7 @@
 
 Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio 15
-VisualStudioVersion = 15.0.28307.645
+# Visual Studio Version 16
+VisualStudioVersion = 16.0.29503.13
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "01. Core Layer", "01. Core Layer", "{E47E7F9F-C5CA-4459-AF46-F320F155B69E}"
 EndProject
@@ -62,7 +62,6 @@ Global
 		HideSolutionNode = FALSE
 	EndGlobalSection
 	GlobalSection(NestedProjects) = preSolution
-		{E47E7F9F-C5CA-4459-AF46-F320F155B69E} = {011E8E6E-5B36-4E0C-A4AE-FF7B11579380}
 		{4B26792A-6960-4270-92C1-65C4C1FD59F3} = {E47E7F9F-C5CA-4459-AF46-F320F155B69E}
 		{A1C64BA0-42BE-4BF2-B06E-663D7122AD48} = {011E8E6E-5B36-4E0C-A4AE-FF7B11579380}
 		{C3E22928-FC40-47EF-A886-B37B7B96D9B4} = {E5F2ACD7-7D4E-449B-94D3-62F8185E7AAE}

docs/intro/getting-started-with-oauth.rst

@@ -7,9 +7,13 @@ An OAUTH2.0 server can be hosted in ASP.NET CORE project by following the follow
 
 2)	Install the Nuget package **SimpleIdServer.OAuth**.
 
-3)	In the Startup.cs file, insert the following line at the end on the **ConfigureServices** method : **services.AddSIDOAuth()**.
+3)	In the Startup.cs file, insert the following line at the end of the **ConfigureServices** method : **services.AddSIDOAuth()**.
 
-4)	In the Startup.cs file, insert the following line at the end of the **Configure** method : **app.UseSID()**.
+4) 	In the Startup.cs file, use the function **AddAuthentication** to add authentication services for example : *services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme).AddCookie();*
+
+5)  In the Startup.cs file, use the function **AddAuthorization** to add authorization rules for example : *services.AddAuthorization(opts => opts.AddDefaultOAUTHAuthorizationPolicy());*.
+
+6)	In the Startup.cs file, update the **Configure** method to configure the routing engine.
 
 5)	Run the application and verify JSON is returned when you browse the following url : https://localhost:<sslPort>/.well-known/oauth-authorization-server. The application URL and SSL port are defined in the launchSettings.json file located in your application Properties folder.
 

docs/intro/getting-started-with-openid.rst

@@ -19,13 +19,13 @@ For example, login password authentication with Bootstrap4 theme can be installe
 
 3)	In the **Startup.cs** file, insert the following line at the end of **ConfigureServices** method : **services.AddSIDOpenID().AddLoginPasswordAuthentication()**. 
 
-4)	Run the application and browse the URL https://localhost:<sslPort>/authorization?client_id=f3d35cce-de69-45bf-958c-4a8796f8ed37&redirect_uri=http://localhost:8080&response_type=code&scope=openid profile&state=state.
+4)	Run the application and browse the URL https://localhost:<sslPort>/authorization?client_id=umaClient&redirect_uri=https://localhost:60001/signin-oidc&response_type=code&scope=openid profile&state=state.
 
-6)	Authenticate with the credentials : Login : administrator, Password : password
+6)	Authenticate with the credentials : Login : umaUser, Password : password
 
 7)	Confirm the consent.
 
-8)	User agent will be redirected to the callback url http://localhost:8080, the authorization code is passed in the query.
+8)	User agent will be redirected to the callback url https://localhost:60001, the authorization code is passed in the query.
 
 OPENID server is similar to OAUTH2.0 server, in fact by default clients, scopes, users and JSON Web Keys are stored in memory.
 OPENID introduces the concept of **Authentication Context Class Reference** (ACR), default values can be overridden like this::

docs/intro/getting-started-with-scim.rst

@@ -7,13 +7,15 @@ A system for Cross-domain Identity Management (SCIM2.0) can be hosted in ASP.NET
 
 2)	Install the Nuget package **SimpleIdServer.Scim**.
 
-3)	In the Startup.cs file, insert the following line at the end on the **ConfigureServices** method : **services.AddSIDScim()**.
+3)	In the Startup.cs file, insert the following line at the end of the **ConfigureServices** method : **services.AddSIDScim()**.
 
-4) 	In the Startup.cs file, use the function **AddAuthentication** returned by **AddSIDScim()** to add authentication services and use the authentication scheme **SCIMConstants.AuthenticationScheme** for example : *services.AddSIDScim().AddAuthentication(s => s.AddCookie(SCIMConstants.AuthenticationScheme));*
+4) 	In the Startup.cs file, use the function **AddAuthentication** to add authentication services and use the authentication scheme **SCIMConstants.AuthenticationScheme** for example : *services.AddAuthentication(SCIMConstants.AuthenticationScheme).AddCookie(SCIMConstants.AuthenticationScheme);*
 
-5)	In the Startup.cs file, insert the following line at the end of the **Configure** method : **app.UseSID()**.
+5)  In the Startup.cs file, use the function **AddAuthorization** to add authorization rules for example : *services.AddAuthorization(opts => opts.AddDefaultSCIMAuthorizationPolicy());*.
 
-6)	Run the application and verify JSON is returned when you browse the following url : https://localhost:<sslPort>/Schemas.
+6)	In the Startup.cs file, update the **Configure** method to configure the routing engine.
+
+7)	Run the application and verify JSON is returned when you browse the following url : https://localhost:<sslPort>/Schemas.
 
 By default SCIM schemas are stored in memory, default values can be overridden like this::
 

samples/ProtectAPIFromUndesirableClients/src/ProtectAPIFromUndesirableClients.OAuth/ProtectAPIFromUndesirableClients.OAuth.csproj

@@ -5,7 +5,7 @@
   </PropertyGroup>
   <ItemGroup>
     <PackageReference Include="Microsoft.AspNetCore.App" />
-    <PackageReference Include="SimpleIdServer.OAuth" Version="1.0.3" />
+    <PackageReference Include="SimpleIdServer.OAuth" Version="1.0.4" />
   </ItemGroup>
   <ItemGroup>
     <None Update="oauth_key.txt">

samples/ProtectAPIFromUndesirableClients/src/ProtectAPIFromUndesirableClients.OAuth/Startup.cs

@@ -1,5 +1,6 @@
 // Copyright (c) SimpleIdServer. All rights reserved.
 // Licensed under the Apache License, Version 2.0. See LICENSE in the project root for license information.
+using Microsoft.AspNetCore.Authentication.Cookies;
 using Microsoft.AspNetCore.Builder;
 using Microsoft.AspNetCore.Hosting;
 using Microsoft.Extensions.DependencyInjection;
@@ -37,6 +38,9 @@ public void ConfigureServices(IServiceCollection services)
                 }).SetAlg(rsa, "RS256").Build();
             }
 
+            services.AddMvc();
+            services.AddAuthorization(opts => opts.AddDefaultOAUTHAuthorizationPolicy());
+            services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme).AddCookie();
             services.AddSIDOAuth()
 				.AddScopes(DefaultConfiguration.Scopes)
                 .AddClients(DefaultConfiguration.Clients)
@@ -45,7 +49,8 @@ public void ConfigureServices(IServiceCollection services)
 
         public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory)
         {
-            app.UseSID();
+            app.UseAuthentication();
+            app.UseMvc();
         }
     }
 }

samples/ProtectAPIFromUndesirableUsers/src/ProtectAPIFromUndesirableUsers.OpenId/ProtectAPIFromUndesirableUsers.OpenId.csproj

@@ -5,8 +5,8 @@
   </PropertyGroup>
   <ItemGroup>
     <PackageReference Include="Microsoft.AspNetCore.App" />
-    <PackageReference Include="SimpleIdServer.OpenID.Bootstrap4" Version="1.0.3" />
-    <PackageReference Include="SimpleIdServer.UI.Authenticate.LoginPassword.Bootstrap4" Version="1.0.3" />
+    <PackageReference Include="SimpleIdServer.OpenID.Bootstrap4" Version="1.0.4" />
+    <PackageReference Include="SimpleIdServer.UI.Authenticate.LoginPassword.Bootstrap4" Version="1.0.4" />
   </ItemGroup>
   <ItemGroup>
     <Compile Update="Resources\Global.Designer.cs">