Update to .NET 10

Author: AB-xdev

.gitignore

@@ -364,10 +364,6 @@ obj
 # Docker
 .docker
 
-# UI
-src/Pages
-src/wwwroot
-
 # Runtime data
 keys
 tempkey.jwk

CHANGELOG.md

@@ -1,3 +1,8 @@
+# 1.2.0
+* Updated dependencies
+  * Updated ``Duende.IdentityServer`` to ``7.4``
+* Updated to .NET 10
+
 # 1.1.3
 * Updated dependencies
 

renovate.json5

@@ -8,7 +8,7 @@
       "datasources": [
         "docker"
       ],
-      "allowedVersions": "<9"
+      "allowedVersions": "<11"
     },
     {
       "description": "Stick with .NET LTS",
@@ -21,7 +21,7 @@
       "datasources": [
         "nuget"
       ],
-      "allowedVersions": "<9"
+      "allowedVersions": "<11"
     },
     {
       "description": "Group aspnetcore",

src/.dockerignore

@@ -1,9 +1,6 @@
 bin/
 obj/
 
-Pages
-wwwroot
-
 keys/
 tempkey.jwk
 

src/Dockerfile

@@ -1,26 +1,23 @@
 # Stage 1: Build
-FROM --platform=$BUILDPLATFORM mcr.microsoft.com/dotnet/sdk:8.0-alpine AS source
+FROM --platform=$BUILDPLATFORM mcr.microsoft.com/dotnet/sdk:10.0-alpine AS source
 ARG TARGETARCH
 ARG target="Release"
 
 RUN apk add --no-cache unzip curl bash
 
 WORKDIR /src
 
-COPY ./getui.sh ./getui.sh
-RUN ./getui.sh
-
 COPY ./OpenIdConnectServerMock.csproj ./OpenIdConnectServerMock.csproj
 RUN dotnet restore -a $TARGETARCH
 
 COPY . .
 
-RUN dotnet publish -a $TARGETARCH -c $target -o obj/docker/publish
+RUN dotnet publish -a $TARGETARCH -c $target --property:PublishDir=obj/docker/publish
 
 RUN cp -r /src/obj/docker/publish /OpenIdConnectServerMock
 
 # Stage 2: Release
-FROM mcr.microsoft.com/dotnet/aspnet:8.0-alpine AS release
+FROM mcr.microsoft.com/dotnet/aspnet:10.0-alpine AS release
 ARG target="Release"
 
 RUN apk add --no-cache curl
@@ -34,7 +31,7 @@ ENV ASPNETCORE_ENVIRONMENT=Development
 EXPOSE 80
 EXPOSE 443
 
-HEALTHCHECK --start-period=2s --interval=1s --timeout=100ms --retries=10 \
+HEALTHCHECK --start-period=2s --interval=5s --timeout=1s --retries=10 \
       CMD curl -k --location https://localhost/health || exit 1
 
 ENTRYPOINT ["dotnet", "OpenIdConnectServerMock.dll" ]

src/OpenIdConnectServerMock.csproj

@@ -1,14 +1,14 @@
 <Project Sdk="Microsoft.NET.Sdk.Web">
 
   <PropertyGroup>
-    <TargetFramework>net8.0</TargetFramework>
+    <TargetFramework>net10.0</TargetFramework>
     <Nullable>enable</Nullable>
     <ImplicitUsings>enable</ImplicitUsings>
     <GenerateEmbeddedFilesManifest>true</GenerateEmbeddedFilesManifest>
 
     <IsPackable>true</IsPackable>
     <Description>Configurable mock server with OpenId Connect functionality</Description>
-    <VersionPrefix>1.1.4-SNAPSHOT</VersionPrefix>
+    <VersionPrefix>1.2.0-SNAPSHOT</VersionPrefix>
     <PackageProjectUrl>https://github.com/xdev-software/oidc-server-mock</PackageProjectUrl>
     <PackageLicenseExpression>Apache-2.0</PackageLicenseExpression>
     <PackageTags>OIDC</PackageTags>
@@ -26,10 +26,10 @@
   </ItemGroup>
 
   <ItemGroup>
-    <PackageReference Include="Duende.IdentityServer" Version="7.3.2" />
-    <PackageReference Include="Microsoft.AspNetCore.Mvc.NewtonsoftJson" Version="8.0.23" />
-    <PackageReference Include="Microsoft.Extensions.FileProviders.Embedded" Version="8.0.23" />
-    <PackageReference Include="Serilog.AspNetCore" Version="8.0.3" />
+    <PackageReference Include="Duende.IdentityServer" Version="7.4.4" />
+    <PackageReference Include="Microsoft.AspNetCore.Mvc.NewtonsoftJson" Version="10.0.2" />
+    <PackageReference Include="Microsoft.Extensions.FileProviders.Embedded" Version="10.0.2" />
+    <PackageReference Include="Serilog.AspNetCore" Version="10.0.0" />
     <PackageReference Include="YamlDotNet" Version="16.3.0" />
   </ItemGroup>
 

src/Pages/Account/AccessDenied.cshtml

@@ -0,0 +1,10 @@
+@page
+@model IdentityServerHost.Pages.Account.AccessDeniedModel
+@{
+}
+<div class="row">
+    <div class="col">
+        <h1>Access Denied</h1>
+        <p>You do not have permission to access that resource.</p>
+    </div>
+</div>

src/Pages/Account/AccessDenied.cshtml.cs

@@ -0,0 +1,10 @@
+using Microsoft.AspNetCore.Mvc.RazorPages;
+
+namespace IdentityServerHost.Pages.Account;
+
+public class AccessDeniedModel : PageModel
+{
+    public void OnGet()
+    {
+    }
+}

src/Pages/Account/Create/Index.cshtml

@@ -0,0 +1,40 @@
+@page
+@model IdentityServerHost.Pages.Create.Index
+
+<div class="login-page">
+    <div class="lead">
+        <h1>Create Account</h1>
+    </div>
+
+    <partial name="_ValidationSummary" />
+
+    <div class="row">
+
+        <div class="col-sm-6">
+            <form asp-page="/Account/Create/Index">
+                <input type="hidden" asp-for="Input.ReturnUrl" />
+
+                <div class="form-group">
+                    <label asp-for="Input.Username"></label>
+                    <input class="form-control" placeholder="Username" asp-for="Input.Username" autofocus>
+                </div>
+                <div class="form-group">
+                    <label asp-for="Input.Password"></label>
+                    <input type="password" class="form-control" placeholder="Password" asp-for="Input.Password" autocomplete="off">
+                </div>
+                <div class="form-group">
+                    <label asp-for="Input.Name"></label>
+                    <input type="text" class="form-control" placeholder="Name" asp-for="Input.Name">
+                </div>
+                <div class="form-group">
+                    <label asp-for="Input.Email"></label>
+                    <input type="email" class="form-control" placeholder="Email" asp-for="Input.Email" >
+                </div>
+
+                <button class="btn btn-primary" name="Input.Button" value="create">Create</button>
+                <button class="btn btn-secondary" name="Input.Button" value="cancel">Cancel</button>
+            </form>
+        </div>
+        
+    </div>
+</div>

src/Pages/Account/Create/Index.cshtml.cs

@@ -0,0 +1,120 @@
+using Duende.IdentityServer;
+using Duende.IdentityServer.Events;
+using Duende.IdentityServer.Models;
+using Duende.IdentityServer.Services;
+using Duende.IdentityServer.Stores;
+using Duende.IdentityServer.Test;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.RazorPages;
+
+namespace IdentityServerHost.Pages.Create;
+
+[SecurityHeaders]
+[AllowAnonymous]
+public class Index : PageModel
+{
+    private readonly TestUserStore _users;
+    private readonly IIdentityServerInteractionService _interaction;
+
+    [BindProperty]
+    public InputModel Input { get; set; }
+        
+    public Index(
+        IIdentityServerInteractionService interaction,
+        TestUserStore users = null)
+    {
+        // this is where you would plug in your own custom identity management library (e.g. ASP.NET Identity)
+        _users = users ?? throw new Exception("Please call 'AddTestUsers(TestUsers.Users)' on the IIdentityServerBuilder in Startup or remove the TestUserStore from the AccountController.");
+            
+        _interaction = interaction;
+    }
+
+    public IActionResult OnGet(string returnUrl)
+    {
+        Input = new InputModel { ReturnUrl = returnUrl };
+        return Page();
+    }
+        
+    public async Task<IActionResult> OnPost()
+    {
+        // check if we are in the context of an authorization request
+        var context = await _interaction.GetAuthorizationContextAsync(Input.ReturnUrl);
+
+        // the user clicked the "cancel" button
+        if (Input.Button != "create")
+        {
+            if (context != null)
+            {
+                // if the user cancels, send a result back into IdentityServer as if they 
+                // denied the consent (even if this client does not require consent).
+                // this will send back an access denied OIDC error response to the client.
+                await _interaction.DenyAuthorizationAsync(context, AuthorizationError.AccessDenied);
+
+                // we can trust model.ReturnUrl since GetAuthorizationContextAsync returned non-null
+                if (context.IsNativeClient())
+                {
+                    // The client is native, so this change in how to
+                    // return the response is for better UX for the end user.
+                    return this.LoadingPage(Input.ReturnUrl);
+                }
+
+                return Redirect(Input.ReturnUrl);
+            }
+            else
+            {
+                // since we don't have a valid context, then we just go back to the home page
+                return Redirect("~/");
+            }
+        }
+
+        if (_users.FindByUsername(Input.Username) != null)
+        {
+            ModelState.AddModelError("Input.Username", "Invalid username");
+        }
+
+        if (ModelState.IsValid)
+        {
+            var user = _users.CreateUser(Input.Username, Input.Password, Input.Name, Input.Email);
+
+            // issue authentication cookie with subject ID and username
+            var isuser = new IdentityServerUser(user.SubjectId)
+            {
+                DisplayName = user.Username
+            };
+
+            await HttpContext.SignInAsync(isuser);
+
+            if (context != null)
+            {
+                if (context.IsNativeClient())
+                {
+                    // The client is native, so this change in how to
+                    // return the response is for better UX for the end user.
+                    return this.LoadingPage(Input.ReturnUrl);
+                }
+
+                // we can trust model.ReturnUrl since GetAuthorizationContextAsync returned non-null
+                return Redirect(Input.ReturnUrl);
+            }
+
+            // request for a local page
+            if (Url.IsLocalUrl(Input.ReturnUrl))
+            {
+                return Redirect(Input.ReturnUrl);
+            }
+            else if (string.IsNullOrEmpty(Input.ReturnUrl))
+            {
+                return Redirect("~/");
+            }
+            else
+            {
+                // user might have clicked on a malicious link - should be logged
+                throw new Exception("invalid return URL");
+            }
+        }
+
+        return Page();
+    }
+}