make ISecurityKeyValidator async

Author: pwelter34

samples/Sample.Controllers/Controllers.http

@@ -1,4 +1,4 @@
-@HostAddress = http://localhost:5154
+@HostAddress = https://localhost:7236
 
 ###
 

samples/Sample.Middleware/Middleware.http

@@ -1,4 +1,4 @@
-@HostAddress = http://localhost:5284
+@HostAddress = https://localhost:7006
 
 ###
 
@@ -17,3 +17,9 @@ x-api-key: 01HSGVAH2M5WVQYG4YPT7FNK4K8
 GET {{HostAddress}}/addresses/
 Accept: application/json
 X-API-KEY: 01hsgvah2m5wvqyg4ypt7fnk4k8
+
+###
+
+GET {{HostAddress}}/addresses/
+Accept: application/json
+X-API-KEY: badkey

samples/Sample.MinimalApi/MinimalApi.http

@@ -1,4 +1,4 @@
-@HostAddress = http://localhost:5009
+@HostAddress = https://localhost:7216
 
 ###
 

samples/Sample.MinimalApi/Program.cs

@@ -49,8 +49,11 @@ public static void Main(string[] args)
 
         app.MapGet("/current", (ClaimsPrincipal? principal) =>
             {
-                var p = principal;
-                return WeatherFaker.Instance.Generate(5);
+                return new
+                {
+                    Name = principal?.Identity?.Name,
+                    Data = WeatherFaker.Instance.Generate(5)
+                };
             })
             .WithName("GetCurrentUser")
             .WithOpenApi();

src/AspNetCore.SecurityKey/ApplicationBuilderExtensions.cs

@@ -12,7 +12,7 @@ public static class ApplicationBuilderExtensions
     /// </summary>
     /// <param name="builder">The <see cref="IApplicationBuilder" /> instance this method extends</param>
     /// <returns>
-    /// The <see cref="IApplicationBuilder" /> for requirirng security API keys
+    /// The <see cref="IApplicationBuilder" /> for requiring security API keys
     /// </returns>
     /// <exception cref="System.ArgumentNullException">builder is null</exception>
     public static IApplicationBuilder UseSecurityKey(this IApplicationBuilder builder)

src/AspNetCore.SecurityKey/AuthenticationBuilderExtensions.cs

@@ -37,7 +37,7 @@ public static AuthenticationBuilder AddSecurityKey(this AuthenticationBuilder bu
         => builder.AddSecurityKey(SecurityKeyAuthenticationDefaults.AuthenticationScheme, configureOptions);
 
     /// <summary>
-    /// Adds security api key authentication to <see cref="AuthenticationBuilder"/> using the specified scheme.
+    /// Adds security API key authentication to <see cref="AuthenticationBuilder"/> using the specified scheme.
     /// </summary>
     /// <param name="builder">The <see cref="AuthenticationBuilder"/>.</param>
     /// <param name="authenticationScheme">The authentication scheme.</param>
@@ -47,7 +47,7 @@ public static AuthenticationBuilder AddSecurityKey(this AuthenticationBuilder bu
         => builder.AddSecurityKey(authenticationScheme, displayName: null, configureOptions: configureOptions);
 
     /// <summary>
-    /// Adds security api key authentication to <see cref="AuthenticationBuilder"/> using the specified scheme.
+    /// Adds security API key authentication to <see cref="AuthenticationBuilder"/> using the specified scheme.
     /// </summary>
     /// <param name="builder">The <see cref="AuthenticationBuilder"/>.</param>
     /// <param name="authenticationScheme">The authentication scheme.</param>

src/AspNetCore.SecurityKey/ISecurityKeyValidator.cs

@@ -12,15 +12,14 @@ public interface ISecurityKeyValidator
     /// </summary>
     /// <param name="value">The security API key to validate.</param>
     /// <returns>true if security API key is valid; otherwise false</returns>
-    bool Validate(string? value);
+    ValueTask<bool> Validate(string? value);
 
     /// <summary>
-    /// Validates the specified security API key.
+    /// Authenticate the specified security API key.
     /// </summary>
     /// <param name="value">The security API key to validate.</param>
-    /// <param name="claims">The claims associated with the security API key.</param>
     /// <returns>
-    /// true if security API key is valid; otherwise false
+    /// <see cref="ClaimsIdentity"/> result of the authentication
     /// </returns>
-    bool Validate(string? value, out Claim[] claims);
+    ValueTask<ClaimsIdentity> Authenticate(string? value);
 }

src/AspNetCore.SecurityKey/SecurityKeyAuthenticationHandler.cs

@@ -42,22 +42,21 @@ public SecurityKeyAuthenticationHandler(
 #pragma warning restore CS0618
 
     /// <inheritdoc />
-    protected override Task<AuthenticateResult> HandleAuthenticateAsync()
+    protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
     {
         var securityKey = _securityKeyExtractor.GetKey(Context);
+        var identity = await _securityKeyValidator.Authenticate(securityKey);
 
-        if (!_securityKeyValidator.Validate(securityKey, out var claims))
+        if (!identity.IsAuthenticated)
         {
             SecurityKeyLogger.InvalidSecurityKey(Logger, securityKey);
-            return Task.FromResult(AuthenticateResult.Fail("Invalid Security Key"));
+            return AuthenticateResult.Fail("Invalid Security Key");
         }
 
         // create a user claim for the security key
-        var identity = new ClaimsIdentity(claims, SecurityKeyAuthenticationDefaults.AuthenticationScheme);
         var principal = new ClaimsPrincipal(identity);
-
         var ticket = new AuthenticationTicket(principal, Scheme.Name);
 
-        return Task.FromResult(AuthenticateResult.Success(ticket));
+        return AuthenticateResult.Success(ticket);
     }
 }

src/AspNetCore.SecurityKey/SecurityKeyAuthorizationFilter.cs

@@ -1,3 +1,4 @@
+
 using AspNetCore.Extensions.Authentication;
 
 using Microsoft.AspNetCore.Mvc;
@@ -9,8 +10,8 @@ namespace AspNetCore.SecurityKey;
 /// <summary>
 /// A filter that requiring security API key authorization.
 /// </summary>
-/// <seealso cref="Microsoft.AspNetCore.Mvc.Filters.IAuthorizationFilter" />
-public class SecurityKeyAuthorizationFilter : IAuthorizationFilter
+/// <seealso cref="Microsoft.AspNetCore.Mvc.Filters.IAsyncAuthorizationFilter" />
+public class SecurityKeyAuthorizationFilter : IAsyncAuthorizationFilter
 {
     private readonly ISecurityKeyExtractor _securityKeyExtractor;
     private readonly ISecurityKeyValidator _securityKeyValidator;
@@ -33,14 +34,13 @@ public SecurityKeyAuthorizationFilter(
     }
 
     /// <inheritdoc />
-    public void OnAuthorization(AuthorizationFilterContext context)
+    public async Task OnAuthorizationAsync(AuthorizationFilterContext context)
     {
-        if (context is null)
-            throw new ArgumentNullException(nameof(context));
+        ArgumentNullException.ThrowIfNull(context);
 
         var securityKey = _securityKeyExtractor.GetKey(context.HttpContext);
 
-        if (_securityKeyValidator.Validate(securityKey))
+        if (await _securityKeyValidator.Validate(securityKey))
             return;
 
         SecurityKeyLogger.InvalidSecurityKey(_logger, securityKey);

src/AspNetCore.SecurityKey/SecurityKeyEndpointFilter.cs

@@ -13,7 +13,7 @@ public class SecurityKeyEndpointFilter : IEndpointFilter
 {
     private readonly ISecurityKeyExtractor _securityKeyExtractor;
     private readonly ISecurityKeyValidator _securityKeyValidator;
-    private readonly ILogger<SecurityKeyAuthorizationFilter> _logger;
+    private readonly ILogger<SecurityKeyEndpointFilter> _logger;
 
     /// <summary>
     /// Initializes a new instance of the <see cref="SecurityKeyEndpointFilter"/> class.
@@ -24,7 +24,7 @@ public class SecurityKeyEndpointFilter : IEndpointFilter
     public SecurityKeyEndpointFilter(
         ISecurityKeyExtractor securityKeyExtractor,
         ISecurityKeyValidator securityKeyValidator,
-        ILogger<SecurityKeyAuthorizationFilter> logger)
+        ILogger<SecurityKeyEndpointFilter> logger)
     {
         _securityKeyExtractor = securityKeyExtractor ?? throw new ArgumentNullException(nameof(securityKeyExtractor));
         _securityKeyValidator = securityKeyValidator ?? throw new ArgumentNullException(nameof(securityKeyValidator));
@@ -34,12 +34,11 @@ public SecurityKeyEndpointFilter(
     /// <inheritdoc />
     public async ValueTask<object?> InvokeAsync(EndpointFilterInvocationContext context, EndpointFilterDelegate next)
     {
-        if (context is null)
-            throw new ArgumentNullException(nameof(context));
+        ArgumentNullException.ThrowIfNull(context);
 
         var securityKey = _securityKeyExtractor.GetKey(context.HttpContext);
 
-        if (_securityKeyValidator.Validate(securityKey))
+        if (await _securityKeyValidator.Validate(securityKey))
             return await next(context);
 
         SecurityKeyLogger.InvalidSecurityKey(_logger, securityKey);