damienbod
diff --git a/‎content/StsServerIdentity/Config.cs‎
Lines changed: 78 additions & 79 deletions b/‎content/StsServerIdentity/Config.cs‎
Lines changed: 78 additions & 79 deletions
diff --git a/‎content/StsServerIdentity/Extensions.cs‎
Lines changed: 17 additions & 18 deletions b/‎content/StsServerIdentity/Extensions.cs‎
Lines changed: 17 additions & 18 deletions
diff --git a/‎content/StsServerIdentity/IdentityWithAdditionalClaimsProfileService.cs‎
Lines changed: 42 additions & 43 deletions b/‎content/StsServerIdentity/IdentityWithAdditionalClaimsProfileService.cs‎
Lines changed: 42 additions & 43 deletions
@@ -5,94 +5,93 @@
 using Microsoft.Extensions.Configuration;
 using System.Collections.Generic;
 
-namespace StsServerIdentity
+namespace StsServerIdentity;
+
+public class Config
 {
-    public class Config
+    public static IEnumerable<IdentityResource> GetIdentityResources()
     {
-        public static IEnumerable<IdentityResource> GetIdentityResources()
+        return new List<IdentityResource>
         {
-            return new List<IdentityResource>
-            {
-                new IdentityResources.OpenId(),
-                new IdentityResources.Profile(),
-                new IdentityResources.Email()
-            };
-        }
+            new IdentityResources.OpenId(),
+            new IdentityResources.Profile(),
+            new IdentityResources.Email()
+        };
+    }
 
-        public static IEnumerable<ApiScope> GetApiScopes()
+    public static IEnumerable<ApiScope> GetApiScopes()
+    {
+        return new List<ApiScope>
         {
-            return new List<ApiScope>
-            {
-                //new ApiScope("dataEventRecords", "Scope for the dataEventRecords ApiResource"),
-                //new ApiScope("securedFiles",  "Scope for the securedFiles ApiResource")
-            };
-        }
+            //new ApiScope("dataEventRecords", "Scope for the dataEventRecords ApiResource"),
+            //new ApiScope("securedFiles",  "Scope for the securedFiles ApiResource")
+        };
+    }
 
-        public static IEnumerable<ApiResource> GetApiResources()
+    public static IEnumerable<ApiResource> GetApiResources()
+    {
+        return new List<ApiResource>
         {
-            return new List<ApiResource>
-            {
-                //new ApiResource("dataEventRecordsApi")
-                //{
-                //    ApiSecrets =
-                //    {
-                //        new Secret("dataEventRecordsSecret".Sha256())
-                //    },
-                //    Scopes = new List<string> { "dataEventRecords" }
-                //},
-                //new ApiResource("securedFilesApi")
-                //{
-                //    ApiSecrets =
-                //    {
-                //        new Secret("securedFilesSecret".Sha256())
-                //    },
-                //    Scopes = new List<string> { "securedFiles" }
-                //}
-            };
-        }
+            //new ApiResource("dataEventRecordsApi")
+            //{
+            //    ApiSecrets =
+            //    {
+            //        new Secret("dataEventRecordsSecret".Sha256())
+            //    },
+            //    Scopes = new List<string> { "dataEventRecords" }
+            //},
+            //new ApiResource("securedFilesApi")
+            //{
+            //    ApiSecrets =
+            //    {
+            //        new Secret("securedFilesSecret".Sha256())
+            //    },
+            //    Scopes = new List<string> { "securedFiles" }
+            //}
+        };
+    }
 
-        public static IEnumerable<Client> GetClients(IConfigurationSection stsConfig)
-        {
-            // TODO use configs in app
-            //var yourConfig = stsConfig["ClientUrl"];
+    public static IEnumerable<Client> GetClients(IConfigurationSection stsConfig)
+    {
+        // TODO use configs in app
+        //var yourConfig = stsConfig["ClientUrl"];
 
-            return new List<Client>
-            {
-                // example code
-                //new Client
-                //{
-                //    ClientName = "angularclient",
-                //    ClientId = "angularclient",
-                //    AccessTokenType = AccessTokenType.Reference,
-                //    AccessTokenLifetime = 330,// 330 seconds, default 60 minutes
-                //    IdentityTokenLifetime = 30,
-                //    AllowedGrantTypes = GrantTypes.Implicit,
-                //    AllowAccessTokensViaBrowser = true,
-                //    RedirectUris = new List<string>
-                //    {
-                //        "https://localhost:44311",
-                //        "https://localhost:44311/silent-renew.html"
+        return new List<Client>
+        {
+            // example code
+            //new Client
+            //{
+            //    ClientName = "angularclient",
+            //    ClientId = "angularclient",
+            //    AccessTokenType = AccessTokenType.Reference,
+            //    AccessTokenLifetime = 330,// 330 seconds, default 60 minutes
+            //    IdentityTokenLifetime = 30,
+            //    AllowedGrantTypes = GrantTypes.Implicit,
+            //    AllowAccessTokensViaBrowser = true,
+            //    RedirectUris = new List<string>
+            //    {
+            //        "https://localhost:44311",
+            //        "https://localhost:44311/silent-renew.html"
 
-                //    },
-                //    PostLogoutRedirectUris = new List<string>
-                //    {
-                //        "https://localhost:44311/unauthorized",
-                //        "https://localhost:44311"
-                //    },
-                //    AllowedCorsOrigins = new List<string>
-                //    {
-                //        "https://localhost:44311",
-                //        "http://localhost:44311"
-                //    },
-                //    AllowedScopes = new List<string>
-                //    {
-                //        "openid",
-                //        "role",
-                //        "profile",
-                //        "email"
-                //    }
-                //}
-            };
-        }
+            //    },
+            //    PostLogoutRedirectUris = new List<string>
+            //    {
+            //        "https://localhost:44311/unauthorized",
+            //        "https://localhost:44311"
+            //    },
+            //    AllowedCorsOrigins = new List<string>
+            //    {
+            //        "https://localhost:44311",
+            //        "http://localhost:44311"
+            //    },
+            //    AllowedScopes = new List<string>
+            //    {
+            //        "openid",
+            //        "role",
+            //        "profile",
+            //        "email"
+            //    }
+            //}
+        };
     }
 }
@@ -3,26 +3,25 @@
 using Microsoft.AspNetCore.Mvc;
 using StsServerIdentity.Models.AccountViewModels;
 
-namespace StsServerIdentity
+namespace StsServerIdentity;
+
+public static class Extensions
 {
-    public static class Extensions
+    /// <summary>
+    /// Checks if the redirect URI is for a native client.
+    /// </summary>
+    /// <returns></returns>
+    public static bool IsNativeClient(this AuthorizationRequest context)
     {
-        /// <summary>
-        /// Checks if the redirect URI is for a native client.
-        /// </summary>
-        /// <returns></returns>
-        public static bool IsNativeClient(this AuthorizationRequest context)
-        {
-            return !context.RedirectUri.StartsWith("https", StringComparison.Ordinal)
-               && !context.RedirectUri.StartsWith("http", StringComparison.Ordinal);
-        }
+        return !context.RedirectUri.StartsWith("https", StringComparison.Ordinal)
+            && !context.RedirectUri.StartsWith("http", StringComparison.Ordinal);
+    }
 
-        public static IActionResult LoadingPage(this Controller controller, string viewName, string redirectUri)
-        {
-            controller.HttpContext.Response.StatusCode = 200;
-            controller.HttpContext.Response.Headers["Location"] = "";
+    public static IActionResult LoadingPage(this Controller controller, string viewName, string redirectUri)
+    {
+        controller.HttpContext.Response.StatusCode = 200;
+        controller.HttpContext.Response.Headers["Location"] = "";
 
-            return controller.View(viewName, new RedirectViewModel { RedirectUrl = redirectUri });
-        }
+        return controller.View(viewName, new RedirectViewModel { RedirectUrl = redirectUri });
     }
-}
+}
@@ -10,59 +10,58 @@
 using Microsoft.AspNetCore.Identity;
 using IdentityServer4;
 
-namespace StsServerIdentity
-{
-    public class IdentityWithAdditionalClaimsProfileService : IProfileService
-    {
-        private readonly IUserClaimsPrincipalFactory<ApplicationUser> _claimsFactory;
-        private readonly UserManager<ApplicationUser> _userManager;
-
-        public IdentityWithAdditionalClaimsProfileService(UserManager<ApplicationUser> userManager, IUserClaimsPrincipalFactory<ApplicationUser> claimsFactory)
-        {
-            _userManager = userManager;
-            _claimsFactory = claimsFactory;
-        }
+namespace StsServerIdentity;
 
-        public async Task GetProfileDataAsync(ProfileDataRequestContext context)
-        {
-            var sub = context.Subject.GetSubjectId();
-
-            var user = await _userManager.FindByIdAsync(sub);
-            var principal = await _claimsFactory.CreateAsync(user);
+public class IdentityWithAdditionalClaimsProfileService : IProfileService
+{
+    private readonly IUserClaimsPrincipalFactory<ApplicationUser> _claimsFactory;
+    private readonly UserManager<ApplicationUser> _userManager;
 
-            var claims = principal.Claims.ToList();
+    public IdentityWithAdditionalClaimsProfileService(UserManager<ApplicationUser> userManager, IUserClaimsPrincipalFactory<ApplicationUser> claimsFactory)
+    {
+        _userManager = userManager;
+        _claimsFactory = claimsFactory;
+    }
 
-            claims = claims.Where(claim => context.RequestedClaimTypes.Contains(claim.Type)).ToList();
-            claims.Add(new Claim(JwtClaimTypes.GivenName, user.UserName));
+    public async Task GetProfileDataAsync(ProfileDataRequestContext context)
+    {
+        var sub = context.Subject.GetSubjectId();
 
-            if (user.IsAdmin)
-            {
-                claims.Add(new Claim(JwtClaimTypes.Role, "admin"));
-            }
-            else
-            {
-                claims.Add(new Claim(JwtClaimTypes.Role, "user"));
-            }
+        var user = await _userManager.FindByIdAsync(sub);
+        var principal = await _claimsFactory.CreateAsync(user);
 
-            if (user.TwoFactorEnabled)
-            {
-                claims.Add(new Claim("amr", "mfa"));
-            }
-            else
-            {
-                claims.Add(new Claim("amr", "pwd")); ;
-            }
+        var claims = principal.Claims.ToList();
 
-            claims.Add(new Claim(IdentityServerConstants.StandardScopes.Email, user.Email));
+        claims = claims.Where(claim => context.RequestedClaimTypes.Contains(claim.Type)).ToList();
+        claims.Add(new Claim(JwtClaimTypes.GivenName, user.UserName));
 
-            context.IssuedClaims = claims;
+        if (user.IsAdmin)
+        {
+            claims.Add(new Claim(JwtClaimTypes.Role, "admin"));
+        }
+        else
+        {
+            claims.Add(new Claim(JwtClaimTypes.Role, "user"));
         }
 
-        public async Task IsActiveAsync(IsActiveContext context)
+        if (user.TwoFactorEnabled)
+        {
+            claims.Add(new Claim("amr", "mfa"));
+        }
+        else
         {
-            var sub = context.Subject.GetSubjectId();
-            var user = await _userManager.FindByIdAsync(sub);
-            context.IsActive = user != null;
+            claims.Add(new Claim("amr", "pwd")); ;
         }
+
+        claims.Add(new Claim(IdentityServerConstants.StandardScopes.Email, user.Email));
+
+        context.IssuedClaims = claims;
+    }
+
+    public async Task IsActiveAsync(IsActiveContext context)
+    {
+        var sub = context.Subject.GetSubjectId();
+        var user = await _userManager.FindByIdAsync(sub);
+        context.IsActive = user != null;
     }
 }