Ticket #784 : Persist DataProtection (Admin Website)

Author: habarthierry-hue

src/IdServer/SimpleIdServer.IdServer.Website.Startup/Program.cs

@@ -1,3 +1,5 @@
+using Microsoft.AspNetCore.DataProtection;
+
 var builder = WebApplication.CreateBuilder(args);
 
 // Add services to the container.
@@ -6,12 +8,19 @@
     .AddEnvironmentVariables();
 builder.Services.AddRazorPages();
 builder.Services.AddServerSideBlazor();
+var dataProtectionPath = builder.Configuration["dataProtectionPath"]?.ToString();
 var isRealmEnabled = bool.Parse(builder.Configuration["IsRealmEnabled"]);
 builder.Services.AddSIDWebsite(o =>
 {
     o.IdServerBaseUrl = builder.Configuration["IdServerBaseUrl"];
     o.SCIMUrl = builder.Configuration["ScimBaseUrl"];
     o.IsReamEnabled = isRealmEnabled;
+}, (c) =>
+{
+    if(!string.IsNullOrWhiteSpace(dataProtectionPath))
+    {
+        c.PersistKeysToFileSystem(new DirectoryInfo(dataProtectionPath));
+    }
 });
 bool forceHttps = false;
 var forceHttpsStr = builder.Configuration["forceHttps"];

src/IdServer/SimpleIdServer.IdServer.Website/ServiceCollectionExtensions.cs

@@ -4,6 +4,7 @@
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.AspNetCore.Authentication.Cookies;
 using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.DataProtection;
 using Microsoft.AspNetCore.Http;
 using Microsoft.Extensions.Configuration;
 using Microsoft.IdentityModel.Tokens;
@@ -20,7 +21,7 @@ namespace Microsoft.Extensions.DependencyInjection
 {
     public static class ServiceCollectionExtensions
     {
-        public static IServiceCollection AddSIDWebsite(this IServiceCollection services, Action<IdServerWebsiteOptions>? callbackOptions = null)
+        public static IServiceCollection AddSIDWebsite(this IServiceCollection services, Action<IdServerWebsiteOptions>? callbackOptions = null, Action<IDataProtectionBuilder>? dataProtectionBuilderCallback = null)
         {
             var opts = new IdServerWebsiteOptions();
             if (callbackOptions != null) callbackOptions(opts);
@@ -44,6 +45,8 @@ public static IServiceCollection AddSIDWebsite(this IServiceCollection services,
             services.AddSingleton<IWebsiteHttpClientFactory, WebsiteHttpClientFactory>();
             if (callbackOptions == null) services.Configure<IdServerWebsiteOptions>((o) => { });
             else services.Configure(callbackOptions);
+            var b = services.AddDataProtection();
+            if (dataProtectionBuilderCallback != null) dataProtectionBuilderCallback(b);
             return services;
         }