Ticket #771 : Add documentation

Author: habarthierry-hue

samples/OpenidFederation/OpenidFederation.sln

@@ -0,0 +1,34 @@
+
+Microsoft Visual Studio Solution File, Format Version 12.00
+# Visual Studio Version 17
+VisualStudioVersion = 17.0.31903.59
+MinimumVisualStudioVersion = 10.0.40219.1
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "src", "src", "{7F9A3D8D-4217-4B6B-A18C-44E1CDC2CF82}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "TaApi", "src\TaApi\TaApi.csproj", "{10C9ADF1-A71F-453D-95EE-8A37E2832D86}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "RpApi", "src\RpApi\RpApi.csproj", "{0EE90864-7273-4218-93C9-412607723BE5}"
+EndProject
+Global
+	GlobalSection(SolutionConfigurationPlatforms) = preSolution
+		Debug|Any CPU = Debug|Any CPU
+		Release|Any CPU = Release|Any CPU
+	EndGlobalSection
+	GlobalSection(SolutionProperties) = preSolution
+		HideSolutionNode = FALSE
+	EndGlobalSection
+	GlobalSection(ProjectConfigurationPlatforms) = postSolution
+		{10C9ADF1-A71F-453D-95EE-8A37E2832D86}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{10C9ADF1-A71F-453D-95EE-8A37E2832D86}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{10C9ADF1-A71F-453D-95EE-8A37E2832D86}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{10C9ADF1-A71F-453D-95EE-8A37E2832D86}.Release|Any CPU.Build.0 = Release|Any CPU
+		{0EE90864-7273-4218-93C9-412607723BE5}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{0EE90864-7273-4218-93C9-412607723BE5}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{0EE90864-7273-4218-93C9-412607723BE5}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{0EE90864-7273-4218-93C9-412607723BE5}.Release|Any CPU.Build.0 = Release|Any CPU
+	EndGlobalSection
+	GlobalSection(NestedProjects) = preSolution
+		{10C9ADF1-A71F-453D-95EE-8A37E2832D86} = {7F9A3D8D-4217-4B6B-A18C-44E1CDC2CF82}
+		{0EE90864-7273-4218-93C9-412607723BE5} = {7F9A3D8D-4217-4B6B-A18C-44E1CDC2CF82}
+	EndGlobalSection
+EndGlobal

samples/OpenidFederation/src/RpApi/Controllers/ClaimsController.cs

@@ -0,0 +1,20 @@
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using RpApi.ViewModels;
+
+namespace RpApi.Controllers
+{
+    public class ClaimsController : Controller
+    {
+        [Authorize]
+        public async Task<IActionResult> Index()
+        {
+            var accessToken = await HttpContext.GetTokenAsync("access_token");
+            return View(new ClaimsViewModel
+            {
+                AccessToken = accessToken
+            });
+        }
+    }
+}

samples/OpenidFederation/src/RpApi/Controllers/HomeController.cs

@@ -0,0 +1,31 @@
+using System.Diagnostics;
+using Microsoft.AspNetCore.Mvc;
+using RpApi.Models;
+
+namespace RpApi.Controllers;
+
+public class HomeController : Controller
+{
+    private readonly ILogger<HomeController> _logger;
+
+    public HomeController(ILogger<HomeController> logger)
+    {
+        _logger = logger;
+    }
+
+    public IActionResult Index()
+    {
+        return View();
+    }
+
+    public IActionResult Privacy()
+    {
+        return View();
+    }
+
+    [ResponseCache(Duration = 0, Location = ResponseCacheLocation.None, NoStore = true)]
+    public IActionResult Error()
+    {
+        return View(new ErrorViewModel { RequestId = Activity.Current?.Id ?? HttpContext.TraceIdentifier });
+    }
+}

samples/OpenidFederation/src/RpApi/Models/ErrorViewModel.cs

@@ -0,0 +1,8 @@
+namespace RpApi.Models;
+
+public class ErrorViewModel
+{
+    public string? RequestId { get; set; }
+
+    public bool ShowRequestId => !string.IsNullOrEmpty(RequestId);
+}

samples/OpenidFederation/src/RpApi/Program.cs

@@ -0,0 +1,102 @@
+using Microsoft.IdentityModel.Tokens;
+using SimpleIdServer.IdServer.Domains;
+using SimpleIdServer.OpenidFederation.Domains;
+using SimpleIdServer.OpenidFederation.Store.EF;
+using System.Security.Cryptography;
+
+var builder = WebApplication.CreateBuilder(args);
+var signatureCredentials = new SigningCredentials(new RsaSecurityKey(RSA.Create()) { KeyId = "raId" }, SecurityAlgorithms.RsaSha256);
+
+var jsonWebKey = signatureCredentials.SerializePublicJWK();
+jsonWebKey.Alg = SecurityAlgorithms.RsaSha256;
+jsonWebKey.Use = "sig";
+
+builder.Services.AddDistributedMemoryCache();
+builder.Services.AddRpFederation(r =>
+{
+    r.Client = new SimpleIdServer.IdServer.Domains.Client
+    {
+        ClientId = "http://localhost:7001",
+        RedirectionUrls = new List<string>
+        {
+            "http://localhost:7001/signin-oidc"
+        },
+        ClientRegistrationTypesSupported = new List<string>
+        {
+            "automatic"
+        },
+        RequestObjectSigningAlg = SecurityAlgorithms.RsaSha256,
+        Scopes = new List<Scope>
+        {
+            new Scope
+            {
+                Name = "openid"
+            },
+            new Scope
+            {
+                Name = "profile"
+            }
+        },
+        ResponseTypes = new List<string>
+        {
+            "code"
+        },
+        GrantTypes = new List<string>
+        {
+            "authorization_code"
+        },
+        TokenEndPointAuthMethod = "private_key_jwt"
+    };
+    r.Client.Add(jsonWebKey.Kid, jsonWebKey, "sig", SecurityKeyTypes.RSA);
+    r.SigningCredentials = signatureCredentials;
+});
+builder.Services.AddOpenidFederationStore();
+builder.Services.AddControllersWithViews();
+builder.Services.AddAuthentication(options =>
+{
+    options.DefaultScheme = "Cookies";
+    options.DefaultChallengeScheme = "sid";
+})
+    .AddCookie("Cookies")
+    .AddCustomOpenIdConnect("sid", options =>
+    {
+
+        options.SignInScheme = "Cookies";
+        options.ResponseType = "code";
+        options.Authority = "https://localhost:5001/master";
+        options.RequireHttpsMetadata = false;
+        options.ClientId = "http://localhost:7001";
+        options.GetClaimsFromUserInfoEndpoint = true;
+        options.SaveTokens = true;
+        options.UseFederationAutomaticRegistration(signatureCredentials);
+    });
+
+var app = builder.Build();
+AddTrustedEntities(app.Services);
+app.UseHttpsRedirection();
+app.UseStaticFiles();
+app.UseRouting();
+app.UseAuthorization();
+app.MapControllerRoute(
+    name: "default",
+    pattern: "{controller=Home}/{action=Index}/{id?}");
+
+app.Run();
+static void AddTrustedEntities(IServiceProvider services)
+{
+    using (var scope = services.CreateScope())
+    {
+        var dbContext = scope.ServiceProvider.GetRequiredService<OpenidFederationDbContext>();
+        dbContext.FederationEntities.AddRange(new List<FederationEntity>
+        {
+            new FederationEntity
+            {
+                Id = Guid.NewGuid().ToString(),
+                Sub = "http://localhost:7000",
+                Realm = string.Empty,
+                IsSubordinate = false
+            }
+        });
+        dbContext.SaveChanges();
+    }
+}

samples/OpenidFederation/src/RpApi/Properties/launchSettings.json

@@ -0,0 +1,38 @@
+{
+  "$schema": "http://json.schemastore.org/launchsettings.json",
+  "iisSettings": {
+    "windowsAuthentication": false,
+    "anonymousAuthentication": true,
+    "iisExpress": {
+      "applicationUrl": "http://localhost:65068",
+      "sslPort": 44355
+    }
+  },
+  "profiles": {
+    "http": {
+      "commandName": "Project",
+      "dotnetRunMessages": true,
+      "launchBrowser": true,
+      "applicationUrl": "http://localhost:5272",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    },
+    "https": {
+      "commandName": "Project",
+      "dotnetRunMessages": true,
+      "launchBrowser": true,
+      "applicationUrl": "https://localhost:7200;http://localhost:5272",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    },
+    "IIS Express": {
+      "commandName": "IISExpress",
+      "launchBrowser": true,
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    }
+  }
+}

samples/OpenidFederation/src/RpApi/RpApi.csproj

@@ -0,0 +1,15 @@
+<Project Sdk="Microsoft.NET.Sdk.Web">
+
+  <PropertyGroup>
+    <TargetFramework>net8.0</TargetFramework>
+    <Nullable>enable</Nullable>
+    <ImplicitUsings>enable</ImplicitUsings>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <PackageReference Include="SimpleIdServer.OpenIdConnect" Version="5.0.*-*" />
+    <PackageReference Include="SimpleIdServer.OpenidFederation.Store.EF" Version="5.0.*-*" />
+    <PackageReference Include="SimpleIdServer.Rp.Federation" Version="5.0.*-*" />
+  </ItemGroup>
+
+</Project>

samples/OpenidFederation/src/RpApi/ViewModels/ClaimsViewModel.cs

@@ -0,0 +1,7 @@
+namespace RpApi.ViewModels
+{
+    public class ClaimsViewModel
+    {
+        public string AccessToken { get; set; }
+    }
+}

samples/OpenidFederation/src/RpApi/Views/Claims/Index.cshtml

@@ -0,0 +1,13 @@
+@model RpApi.ViewModels.ClaimsViewModel
+
+<ul>
+    @foreach (var claim in User.Claims)
+    {
+        <li>@claim.Type : @claim.Value</li>
+    }
+</ul>
+
+<div>
+    <h3>Access token</h3>
+    <p>@Model.AccessToken</p>
+</div>

samples/OpenidFederation/src/RpApi/Views/Home/Index.cshtml

@@ -0,0 +1,8 @@
+@{
+    ViewData["Title"] = "Home Page";
+}
+
+<div class="text-center">
+    <h1 class="display-4">Welcome</h1>
+    <p>Learn about <a href="https://learn.microsoft.com/aspnet/core">building Web apps with ASP.NET Core</a>.</p>
+</div>