diff --git a/.gitignore b/.gitignore
index aba9c594d..ac82da756 100644
--- a/.gitignore
+++ b/.gitignore
@@ -22,4 +22,6 @@ nuget.exe
*DS_Store
*.ncrunchsolution
*.*sdf
-*.ipch
\ No newline at end of file
+*.ipch
+*.sln.ide
+project.lock.json
diff --git a/.travis.yml b/.travis.yml
new file mode 100644
index 000000000..947bf868e
--- /dev/null
+++ b/.travis.yml
@@ -0,0 +1,4 @@
+language: csharp
+sudo: false
+script:
+ - ./build.sh --quiet verify
\ No newline at end of file
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
new file mode 100644
index 000000000..64ff041d5
--- /dev/null
+++ b/CONTRIBUTING.md
@@ -0,0 +1,4 @@
+Contributing
+======
+
+Information on contributing to this repo is in the [Contributing Guide](https://github.com/aspnet/Home/blob/dev/CONTRIBUTING.md) in the Home repo.
diff --git a/LICENSE.txt b/LICENSE.txt
new file mode 100644
index 000000000..0bdc1962b
--- /dev/null
+++ b/LICENSE.txt
@@ -0,0 +1,12 @@
+Copyright (c) .NET Foundation. All rights reserved.
+
+Licensed under the Apache License, Version 2.0 (the "License"); you may not use
+these files except in compliance with the License. You may obtain a copy of the
+License at
+
+http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software distributed
+under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
+CONDITIONS OF ANY KIND, either express or implied. See the License for the
+specific language governing permissions and limitations under the License.
diff --git a/NuGet.Config b/NuGet.Config
index a059188b0..da57d4726 100644
--- a/NuGet.Config
+++ b/NuGet.Config
@@ -2,12 +2,6 @@
-
+
-
-
-
-
-
-
\ No newline at end of file
diff --git a/README.md b/README.md
new file mode 100644
index 000000000..a676d4a87
--- /dev/null
+++ b/README.md
@@ -0,0 +1,6 @@
+ASP.NET Security
+========
+
+ASP.NET Security contains the security and authorization middlewares for ASP.NET 5.
+
+This project is part of ASP.NET 5. You can find samples, documentation and getting started instructions for ASP.NET 5 at the [Home](https://github.com/aspnet/home) repo.
diff --git a/Security.sln b/Security.sln
index 752ce9ab0..8f65fe16b 100644
--- a/Security.sln
+++ b/Security.sln
@@ -1,21 +1,50 @@
Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio 2013
-VisualStudioVersion = 12.0.30411.0
+# Visual Studio 14
+VisualStudioVersion = 14.0.22605.0
MinimumVisualStudioVersion = 10.0.40219.1
Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "src", "src", "{4D2B6A51-2F9F-44F5-8131-EA5CAC053652}"
EndProject
Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "samples", "samples", "{F8C0AA27-F3FB-4286-8E4C-47EF86B539FF}"
EndProject
-Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Security", "src\Microsoft.AspNet.Security\Microsoft.AspNet.Security.kproj", "{0F174C63-1898-4024-9A3C-3FDF5CAE5C68}"
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "CookieSample", "samples\CookieSample\CookieSample.xproj", "{558C2C2A-AED8-49DE-BB60-D5F8AE06C714}"
EndProject
-Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Security.Cookies", "src\Microsoft.AspNet.Security.Cookies\Microsoft.AspNet.Security.Cookies.kproj", "{15F1211B-B695-4A1C-B730-1AC58FC91090}"
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "test", "test", "{7BF11F3A-60B6-4796-B504-579C67FFBA34}"
EndProject
-Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "CookieSample", "samples\CookieSample\CookieSample.kproj", "{558C2C2A-AED8-49DE-BB60-D5F8AE06C714}"
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Solution Items", "Solution Items", "{C40A5A3B-ABA3-4819-9C44-D821E6DA1BA1}"
+ ProjectSection(SolutionItems) = preProject
+ global.json = global.json
+ EndProjectSection
EndProject
-Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "test", "test", "{7BF11F3A-60B6-4796-B504-579C67FFBA34}"
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "SocialSample", "samples\SocialSample\SocialSample.xproj", "{8C73D216-332D-41D8-BFD0-45BC4BC36552}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "CookieSessionSample", "samples\CookieSessionSample\CookieSessionSample.xproj", "{19711880-46DA-4A26-9E0F-9B2E41D27651}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "OpenIdConnectSample", "samples\OpenIdConnectSample\OpenIdConnectSample.xproj", "{BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.Cookies", "src\Microsoft.AspNet.Authentication.Cookies\Microsoft.AspNet.Authentication.Cookies.xproj", "{FC152CC4-054B-457E-8D91-389C5DE3C561}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication", "src\Microsoft.AspNet.Authentication\Microsoft.AspNet.Authentication.xproj", "{2286250A-52C8-4126-9F93-B1E45F0AD078}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.Facebook", "src\Microsoft.AspNet.Authentication.Facebook\Microsoft.AspNet.Authentication.Facebook.xproj", "{EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.Google", "src\Microsoft.AspNet.Authentication.Google\Microsoft.AspNet.Authentication.Google.xproj", "{76579C39-B829-490D-B8BE-1BD35FE8412E}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.OpenIdConnect", "src\Microsoft.AspNet.Authentication.OpenIdConnect\Microsoft.AspNet.Authentication.OpenIdConnect.xproj", "{35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.MicrosoftAccount", "src\Microsoft.AspNet.Authentication.MicrosoftAccount\Microsoft.AspNet.Authentication.MicrosoftAccount.xproj", "{ACB45E19-F520-4D0C-8916-B0CEB9C017FE}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.Twitter", "src\Microsoft.AspNet.Authentication.Twitter\Microsoft.AspNet.Authentication.Twitter.xproj", "{0330FFF6-B4B5-42DD-8C99-26A789569000}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.OAuth", "src\Microsoft.AspNet.Authentication.OAuth\Microsoft.AspNet.Authentication.OAuth.xproj", "{1657C79E-7755-4AEE-9D61-571295B69A30}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.Test", "test\Microsoft.AspNet.Authentication.Test\Microsoft.AspNet.Authentication.Test.xproj", "{8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authentication.OAuthBearer", "src\Microsoft.AspNet.Authentication.OAuthBearer\Microsoft.AspNet.Authentication.OAuthBearer.xproj", "{2755BFE5-7421-4A31-A644-F817DF5CAA98}"
+EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authorization.Test", "test\Microsoft.AspNet.Authorization.Test\Microsoft.AspNet.Authorization.Test.xproj", "{7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}"
EndProject
-Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Security", "test\Microsoft.AspNet.Security.Test\Microsoft.AspNet.Security.kproj", "{8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}"
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "Microsoft.AspNet.Authorization", "src\Microsoft.AspNet.Authorization\Microsoft.AspNet.Authorization.xproj", "{6AB3E514-5894-4131-9399-DC7D5284ADDB}"
EndProject
Global
GlobalSection(SolutionConfigurationPlatforms) = preSolution
@@ -27,54 +56,212 @@ Global
Release|x86 = Release|x86
EndGlobalSection
GlobalSection(ProjectConfigurationPlatforms) = postSolution
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Debug|Any CPU.ActiveCfg = Debug|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Debug|Mixed Platforms.ActiveCfg = Debug|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Debug|Mixed Platforms.Build.0 = Debug|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Debug|x86.ActiveCfg = Debug|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Debug|x86.Build.0 = Debug|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Release|Any CPU.ActiveCfg = Release|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Release|Mixed Platforms.ActiveCfg = Release|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Release|Mixed Platforms.Build.0 = Release|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Release|x86.ActiveCfg = Release|x86
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68}.Release|x86.Build.0 = Release|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Debug|Any CPU.ActiveCfg = Debug|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Debug|Mixed Platforms.ActiveCfg = Debug|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Debug|Mixed Platforms.Build.0 = Debug|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Debug|x86.ActiveCfg = Debug|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Debug|x86.Build.0 = Debug|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Release|Any CPU.ActiveCfg = Release|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Release|Mixed Platforms.ActiveCfg = Release|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Release|Mixed Platforms.Build.0 = Release|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Release|x86.ActiveCfg = Release|x86
- {15F1211B-B695-4A1C-B730-1AC58FC91090}.Release|x86.Build.0 = Release|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|Any CPU.ActiveCfg = Debug|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|Mixed Platforms.ActiveCfg = Debug|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|Mixed Platforms.Build.0 = Debug|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|x86.ActiveCfg = Debug|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|x86.Build.0 = Debug|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|Any CPU.ActiveCfg = Release|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|Mixed Platforms.ActiveCfg = Release|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|Mixed Platforms.Build.0 = Release|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|x86.ActiveCfg = Release|x86
- {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|x86.Build.0 = Release|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|Any CPU.ActiveCfg = Debug|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|Mixed Platforms.ActiveCfg = Debug|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|Mixed Platforms.Build.0 = Debug|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|x86.ActiveCfg = Debug|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|x86.Build.0 = Debug|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|Any CPU.ActiveCfg = Release|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|Mixed Platforms.ActiveCfg = Release|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|Mixed Platforms.Build.0 = Release|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|x86.ActiveCfg = Release|x86
- {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|x86.Build.0 = Release|x86
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|Any CPU.Build.0 = Release|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {558C2C2A-AED8-49DE-BB60-D5F8AE06C714}.Release|x86.ActiveCfg = Release|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Release|Any CPU.Build.0 = Release|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552}.Release|x86.ActiveCfg = Release|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Release|Any CPU.Build.0 = Release|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {19711880-46DA-4A26-9E0F-9B2E41D27651}.Release|x86.ActiveCfg = Release|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Debug|x86.Build.0 = Debug|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Release|Any CPU.Build.0 = Release|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Release|x86.ActiveCfg = Release|Any CPU
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B}.Release|x86.Build.0 = Release|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Debug|x86.Build.0 = Debug|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Release|Any CPU.Build.0 = Release|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Release|x86.ActiveCfg = Release|Any CPU
+ {FC152CC4-054B-457E-8D91-389C5DE3C561}.Release|x86.Build.0 = Release|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Debug|x86.Build.0 = Debug|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Release|Any CPU.Build.0 = Release|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Release|x86.ActiveCfg = Release|Any CPU
+ {2286250A-52C8-4126-9F93-B1E45F0AD078}.Release|x86.Build.0 = Release|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Debug|x86.Build.0 = Debug|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Release|Any CPU.Build.0 = Release|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Release|x86.ActiveCfg = Release|Any CPU
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A}.Release|x86.Build.0 = Release|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Debug|x86.Build.0 = Debug|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Release|Any CPU.Build.0 = Release|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Release|x86.ActiveCfg = Release|Any CPU
+ {76579C39-B829-490D-B8BE-1BD35FE8412E}.Release|x86.Build.0 = Release|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Debug|x86.Build.0 = Debug|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Release|Any CPU.Build.0 = Release|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Release|x86.ActiveCfg = Release|Any CPU
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A}.Release|x86.Build.0 = Release|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Debug|x86.Build.0 = Debug|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Release|Any CPU.Build.0 = Release|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Release|x86.ActiveCfg = Release|Any CPU
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE}.Release|x86.Build.0 = Release|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Debug|x86.Build.0 = Debug|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Release|Any CPU.Build.0 = Release|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Release|x86.ActiveCfg = Release|Any CPU
+ {0330FFF6-B4B5-42DD-8C99-26A789569000}.Release|x86.Build.0 = Release|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Debug|x86.Build.0 = Debug|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Release|Any CPU.Build.0 = Release|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Release|x86.ActiveCfg = Release|Any CPU
+ {1657C79E-7755-4AEE-9D61-571295B69A30}.Release|x86.Build.0 = Release|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Debug|x86.Build.0 = Debug|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|Any CPU.Build.0 = Release|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|x86.ActiveCfg = Release|Any CPU
+ {8DA26CD1-1302-4CFD-9270-9FA1B7C6138B}.Release|x86.Build.0 = Release|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Debug|x86.Build.0 = Debug|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Release|Any CPU.Build.0 = Release|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Release|x86.ActiveCfg = Release|Any CPU
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98}.Release|x86.Build.0 = Release|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Debug|x86.Build.0 = Debug|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Release|Any CPU.Build.0 = Release|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Release|x86.ActiveCfg = Release|Any CPU
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2}.Release|x86.Build.0 = Release|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Debug|Mixed Platforms.ActiveCfg = Debug|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Debug|Mixed Platforms.Build.0 = Debug|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Debug|x86.ActiveCfg = Debug|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Debug|x86.Build.0 = Debug|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Release|Any CPU.Build.0 = Release|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Release|Mixed Platforms.ActiveCfg = Release|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Release|Mixed Platforms.Build.0 = Release|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Release|x86.ActiveCfg = Release|Any CPU
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB}.Release|x86.Build.0 = Release|Any CPU
EndGlobalSection
GlobalSection(SolutionProperties) = preSolution
HideSolutionNode = FALSE
EndGlobalSection
GlobalSection(NestedProjects) = preSolution
- {0F174C63-1898-4024-9A3C-3FDF5CAE5C68} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
- {15F1211B-B695-4A1C-B730-1AC58FC91090} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
{558C2C2A-AED8-49DE-BB60-D5F8AE06C714} = {F8C0AA27-F3FB-4286-8E4C-47EF86B539FF}
+ {8C73D216-332D-41D8-BFD0-45BC4BC36552} = {F8C0AA27-F3FB-4286-8E4C-47EF86B539FF}
+ {19711880-46DA-4A26-9E0F-9B2E41D27651} = {F8C0AA27-F3FB-4286-8E4C-47EF86B539FF}
+ {BEF0F5C3-EF4E-4649-9C49-D5E279A3CA2B} = {F8C0AA27-F3FB-4286-8E4C-47EF86B539FF}
+ {FC152CC4-054B-457E-8D91-389C5DE3C561} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
+ {2286250A-52C8-4126-9F93-B1E45F0AD078} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
+ {EEAAEE68-607B-4E33-AF3E-45C66B4DBA5A} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
+ {76579C39-B829-490D-B8BE-1BD35FE8412E} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
+ {35115D55-B69E-46D4-BB33-C9E9E6EC5E7A} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
+ {ACB45E19-F520-4D0C-8916-B0CEB9C017FE} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
+ {0330FFF6-B4B5-42DD-8C99-26A789569000} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
+ {1657C79E-7755-4AEE-9D61-571295B69A30} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
{8DA26CD1-1302-4CFD-9270-9FA1B7C6138B} = {7BF11F3A-60B6-4796-B504-579C67FFBA34}
+ {2755BFE5-7421-4A31-A644-F817DF5CAA98} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
+ {7AF5AD96-EB6E-4D0E-8ABE-C0B543C0F4C2} = {7BF11F3A-60B6-4796-B504-579C67FFBA34}
+ {6AB3E514-5894-4131-9399-DC7D5284ADDB} = {4D2B6A51-2F9F-44F5-8131-EA5CAC053652}
EndGlobalSection
EndGlobal
diff --git a/appveyor.yml b/appveyor.yml
new file mode 100644
index 000000000..636a7618d
--- /dev/null
+++ b/appveyor.yml
@@ -0,0 +1,7 @@
+init:
+ - git config --global core.autocrlf true
+build_script:
+ - build.cmd --quiet verify
+clone_depth: 1
+test: off
+deploy: off
\ No newline at end of file
diff --git a/build.cmd b/build.cmd
index 903d532df..41025afb2 100644
--- a/build.cmd
+++ b/build.cmd
@@ -18,9 +18,11 @@ copy %CACHED_NUGET% .nuget\nuget.exe > nul
IF EXIST packages\KoreBuild goto run
.nuget\NuGet.exe install KoreBuild -ExcludeVersion -o packages -nocache -pre
.nuget\NuGet.exe install Sake -version 0.2 -o packages -ExcludeVersion
-CALL packages\KoreBuild\build\kvm upgrade -svr50 -x86
-CALL packages\KoreBuild\build\kvm install default -svrc50 -x86
+
+IF "%SKIP_DNX_INSTALL%"=="1" goto run
+CALL packages\KoreBuild\build\dnvm upgrade -runtime CLR -arch x86
+CALL packages\KoreBuild\build\dnvm install default -runtime CoreCLR -arch x86
:run
-CALL packages\KoreBuild\build\kvm use default -svr50 -x86
+CALL packages\KoreBuild\build\dnvm use default -runtime CLR -arch x86
packages\Sake\tools\Sake.exe -I packages\KoreBuild\build -f makefile.shade %*
diff --git a/build.sh b/build.sh
old mode 100644
new mode 100755
index db1e0c3dd..d81164353
--- a/build.sh
+++ b/build.sh
@@ -1,12 +1,12 @@
-#!/bin/sh
+#!/bin/bash
if test `uname` = Darwin; then
cachedir=~/Library/Caches/KBuild
else
- if x$XDG_DATA_HOME = x; then
- cachedir=$HOME/.local/share
+ if [ -z $XDG_DATA_HOME ]; then
+ cachedir=$HOME/.local/share
else
- cachedir=$XDG_DATA_HOME;
+ cachedir=$XDG_DATA_HOME;
fi
fi
mkdir -p $cachedir
@@ -14,12 +14,12 @@ mkdir -p $cachedir
url=https://www.nuget.org/nuget.exe
if test ! -f $cachedir/nuget.exe; then
- wget -o $cachedir/nuget.exe $url 2>/dev/null || curl -o $cachedir/nuget.exe --location $url /dev/null
+ wget -O $cachedir/nuget.exe $url 2>/dev/null || curl -o $cachedir/nuget.exe --location $url /dev/null
fi
if test ! -e .nuget; then
mkdir .nuget
- cp $cachedir/nuget.exe .nuget
+ cp $cachedir/nuget.exe .nuget/nuget.exe
fi
if test ! -d packages/KoreBuild; then
@@ -27,4 +27,13 @@ if test ! -d packages/KoreBuild; then
mono .nuget/nuget.exe install Sake -version 0.2 -o packages -ExcludeVersion
fi
-mono packages/Sake/tools/Sake.exe -I packages/KoreBuild/build -f makefile.shade "$@"
\ No newline at end of file
+if ! type dnvm > /dev/null 2>&1; then
+ source packages/KoreBuild/build/dnvm.sh
+fi
+
+if ! type dnx > /dev/null 2>&1; then
+ dnvm upgrade
+fi
+
+mono packages/Sake/tools/Sake.exe -I packages/KoreBuild/build -f makefile.shade "$@"
+
diff --git a/global.json b/global.json
index 840c36f6a..983ba0401 100644
--- a/global.json
+++ b/global.json
@@ -1,3 +1,3 @@
{
- "sources": ["src"]
-}
\ No newline at end of file
+ "projects": ["src"]
+}
diff --git a/makefile.shade b/makefile.shade
index 6357ea284..562494d14 100644
--- a/makefile.shade
+++ b/makefile.shade
@@ -1,7 +1,7 @@
var VERSION='0.1'
var FULL_VERSION='0.1'
-var AUTHORS='Microsoft'
+var AUTHORS='Microsoft Open Technologies, Inc.'
use-standard-lifecycle
k-standard-goals
diff --git a/samples/CookieSample/CookieSample.kproj b/samples/CookieSample/CookieSample.kproj
deleted file mode 100644
index 7d88de92e..000000000
--- a/samples/CookieSample/CookieSample.kproj
+++ /dev/null
@@ -1,26 +0,0 @@
-
-
-
- 12.0
- $(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)
-
-
-
- 558c2c2a-aed8-49de-bb60-d5f8ae06c714
- Library
-
-
-
-
-
-
- 2.0
-
-
-
-
-
-
-
-
-
\ No newline at end of file
diff --git a/samples/CookieSample/CookieSample.xproj b/samples/CookieSample/CookieSample.xproj
new file mode 100644
index 000000000..50d06f00e
--- /dev/null
+++ b/samples/CookieSample/CookieSample.xproj
@@ -0,0 +1,18 @@
+
+
+
+ 14.0
+ $(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)
+
+
+
+ 558c2c2a-aed8-49de-bb60-d5f8ae06c714
+ ..\..\artifacts\obj\$(MSBuildProjectName)
+ ..\..\artifacts\bin\$(MSBuildProjectName)\
+
+
+ 2.0
+ 22569
+
+
+
\ No newline at end of file
diff --git a/samples/CookieSample/Properties/launchSettings.json b/samples/CookieSample/Properties/launchSettings.json
new file mode 100644
index 000000000..381ef9b50
--- /dev/null
+++ b/samples/CookieSample/Properties/launchSettings.json
@@ -0,0 +1,21 @@
+{
+ "profiles": {
+ "IIS Express": {
+ "commandName": "IISExpress",
+ "launchBrowser": true,
+ "environmentVariables": {
+ "ASPNET_ENV": "Development"
+ }
+ },
+ "web": {
+ "commandName": "web",
+ "launchBrowser": true,
+ "launchUrl": "http://localhost:12345"
+ },
+ "kestrel": {
+ "commandName": "kestrel",
+ "launchBrowser": true,
+ "launchUrl": "http://localhost:5004"
+ }
+ }
+}
\ No newline at end of file
diff --git a/samples/CookieSample/Startup.cs b/samples/CookieSample/Startup.cs
index 71386c068..6547450e5 100644
--- a/samples/CookieSample/Startup.cs
+++ b/samples/CookieSample/Startup.cs
@@ -1,37 +1,34 @@
-using System;
using System.Security.Claims;
-using Microsoft.AspNet;
-using Microsoft.AspNet.Http;
-using Microsoft.AspNet.Security.Cookies;
-using Microsoft.AspNet.RequestContainer;
+using Microsoft.AspNet.Authentication.Cookies;
using Microsoft.AspNet.Builder;
+using Microsoft.AspNet.Http;
using Microsoft.Framework.DependencyInjection;
-using Microsoft.Framework.DependencyInjection.Fallback;
using Microsoft.Framework.Logging;
namespace CookieSample
{
public class Startup
{
- public void Configuration(IBuilder app)
+ public void ConfigureServices(IServiceCollection services)
{
- app.UseServices(services =>
- {
- // TODO: Move to host.
- services.AddInstance(new NullLoggerFactory());
- });
+ services.AddAuthentication();
+ }
- app.UseCookieAuthentication(new CookieAuthenticationOptions()
- {
+ public void Configure(IApplicationBuilder app, ILoggerFactory loggerfactory)
+ {
+ loggerfactory.AddConsole(LogLevel.Information);
+ app.UseCookieAuthentication(options =>
+ {
+ options.AutomaticAuthentication = true;
});
app.Run(async context =>
{
- if (context.User == null || !context.User.Identity.IsAuthenticated)
+ if (string.IsNullOrEmpty(context.User.Identity.Name))
{
- context.Response.SignIn(new ClaimsIdentity(new[] { new Claim("name", "bob") }, CookieAuthenticationDefaults.AuthenticationType));
-
+ var user = new ClaimsPrincipal(new ClaimsIdentity(new[] { new Claim(ClaimTypes.Name, "bob") }));
+ context.Authentication.SignIn(CookieAuthenticationDefaults.AuthenticationScheme, user);
context.Response.ContentType = "text/plain";
await context.Response.WriteAsync("Hello First timer");
return;
@@ -41,23 +38,5 @@ public void Configuration(IBuilder app)
await context.Response.WriteAsync("Hello old timer");
});
}
-
- // TODO: Temp workaround until the host reliably provides logging.
- // If ILoggerFactory is never guaranteed, move this fallback into Microsoft.Framework.Logging.
- private class NullLoggerFactory : ILoggerFactory
- {
- public ILogger Create(string name)
- {
- return new NullLongger();
- }
- }
-
- private class NullLongger : ILogger
- {
- public bool WriteCore(TraceType eventType, int eventId, object state, Exception exception, Func formatter)
- {
- return false;
- }
- }
}
}
\ No newline at end of file
diff --git a/samples/CookieSample/project.json b/samples/CookieSample/project.json
index 22f33b30b..e69eed0e2 100644
--- a/samples/CookieSample/project.json
+++ b/samples/CookieSample/project.json
@@ -1,38 +1,21 @@
{
- "version": "0.1-alpha-*",
- "dependencies": {
- "Microsoft.AspNet.Http": "0.1-alpha-*",
- "Microsoft.AspNet.Security": "",
- "Microsoft.AspNet.Security.Cookies": "",
- "Microsoft.AspNet.Hosting": "0.1-alpha-*",
- "Microsoft.AspNet.RequestContainer": "0.1-alpha-*",
- "Microsoft.AspNet.PipelineCore": "0.1-alpha-*",
- "Microsoft.AspNet.FeatureModel": "0.1-alpha-*",
- "Microsoft.AspNet.HttpFeature": "0.1-alpha-*",
- "Microsoft.AspNet.Server.WebListener": "0.1-alpha-*",
- "Microsoft.Framework.DependencyInjection": "0.1-alpha-*",
- "Microsoft.Framework.Logging": "0.1-alpha-*"
- },
- "commands": { "web": "Microsoft.AspNet.Hosting server.name=Microsoft.AspNet.Server.WebListener server.urls=http://localhost:12345" },
- "configurations": {
- "net45": {
+ "dependencies": {
+ "Microsoft.AspNet.Authentication.Cookies": "1.0.0-*",
+ "Microsoft.AspNet.DataProtection": "1.0.0-*",
+ "Microsoft.AspNet.Server.WebListener": "1.0.0-*",
+ "Microsoft.AspNet.Server.IIS": "1.0.0-*",
+ "Microsoft.Framework.Logging.Console": "1.0.0-*",
+ "Kestrel": "1.0.0-*"
},
- "k10": {
- "dependencies": {
- "System.Console": "4.0.0.0",
- "System.Collections": "4.0.0.0",
- "System.Diagnostics.Debug": "4.0.10.0",
- "System.Diagnostics.Tools": "4.0.0.0",
- "System.Globalization": "4.0.10.0",
- "System.IO": "4.0.0.0",
- "System.Linq": "4.0.0.0",
- "System.Reflection": "4.0.10.0",
- "System.Resources.ResourceManager": "4.0.0.0",
- "System.Runtime": "4.0.20.0",
- "System.Runtime.Extensions": "4.0.10.0",
- "System.Runtime.InteropServices": "4.0.20.0",
- "System.Threading.Tasks": "4.0.10.0"
- }
- }
- }
-}
\ No newline at end of file
+ "commands": {
+ "web": "Microsoft.AspNet.Hosting server=Microsoft.AspNet.Server.WebListener server.urls=http://localhost:12345",
+ "kestrel": "Microsoft.AspNet.Hosting --server Kestrel --server.urls http://localhost:5004"
+ },
+ "frameworks": {
+ "dnx451": {
+ },
+ "dnxcore50": {
+ }
+ },
+ "webroot":"wwwroot"
+}
diff --git a/samples/CookieSample/wwwroot/.gitkeep b/samples/CookieSample/wwwroot/.gitkeep
new file mode 100644
index 000000000..e69de29bb
diff --git a/samples/CookieSessionSample/CookieSessionSample.xproj b/samples/CookieSessionSample/CookieSessionSample.xproj
new file mode 100644
index 000000000..ec3d4dd5e
--- /dev/null
+++ b/samples/CookieSessionSample/CookieSessionSample.xproj
@@ -0,0 +1,18 @@
+
+
+
+ 14.0
+ $(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)
+
+
+
+ 19711880-46da-4a26-9e0f-9b2e41d27651
+ ..\..\artifacts\obj\$(MSBuildProjectName)
+ ..\..\artifacts\bin\$(MSBuildProjectName)\
+
+
+ 2.0
+ 36505
+
+
+
\ No newline at end of file
diff --git a/samples/CookieSessionSample/MemoryCacheSessionStore.cs b/samples/CookieSessionSample/MemoryCacheSessionStore.cs
new file mode 100644
index 000000000..0ed51dfb2
--- /dev/null
+++ b/samples/CookieSessionSample/MemoryCacheSessionStore.cs
@@ -0,0 +1,56 @@
+using System;
+using System.Threading.Tasks;
+using Microsoft.AspNet.Authentication;
+using Microsoft.AspNet.Authentication.Cookies.Infrastructure;
+using Microsoft.Framework.Caching.Memory;
+
+namespace CookieSessionSample
+{
+ public class MemoryCacheSessionStore : IAuthenticationSessionStore
+ {
+ private const string KeyPrefix = "AuthSessionStore-";
+ private IMemoryCache _cache;
+
+ public MemoryCacheSessionStore()
+ {
+ _cache = new MemoryCache(new MemoryCacheOptions());
+ }
+
+ public async Task StoreAsync(AuthenticationTicket ticket)
+ {
+ var guid = Guid.NewGuid();
+ var key = KeyPrefix + guid.ToString();
+ await RenewAsync(key, ticket);
+ return key;
+ }
+
+ public Task RenewAsync(string key, AuthenticationTicket ticket)
+ {
+ _cache.Set(key, ticket, context =>
+ {
+ var expiresUtc = ticket.Properties.ExpiresUtc;
+ if (expiresUtc.HasValue)
+ {
+ context.SetAbsoluteExpiration(expiresUtc.Value);
+ }
+ context.SetSlidingExpiration(TimeSpan.FromHours(1)); // TODO: configurable.
+
+ return (AuthenticationTicket)context.State;
+ });
+ return Task.FromResult(0);
+ }
+
+ public Task RetrieveAsync(string key)
+ {
+ AuthenticationTicket ticket;
+ _cache.TryGetValue(key, out ticket);
+ return Task.FromResult(ticket);
+ }
+
+ public Task RemoveAsync(string key)
+ {
+ _cache.Remove(key);
+ return Task.FromResult(0);
+ }
+ }
+}
diff --git a/samples/CookieSessionSample/Properties/launchSettings.json b/samples/CookieSessionSample/Properties/launchSettings.json
new file mode 100644
index 000000000..381ef9b50
--- /dev/null
+++ b/samples/CookieSessionSample/Properties/launchSettings.json
@@ -0,0 +1,21 @@
+{
+ "profiles": {
+ "IIS Express": {
+ "commandName": "IISExpress",
+ "launchBrowser": true,
+ "environmentVariables": {
+ "ASPNET_ENV": "Development"
+ }
+ },
+ "web": {
+ "commandName": "web",
+ "launchBrowser": true,
+ "launchUrl": "http://localhost:12345"
+ },
+ "kestrel": {
+ "commandName": "kestrel",
+ "launchBrowser": true,
+ "launchUrl": "http://localhost:5004"
+ }
+ }
+}
\ No newline at end of file
diff --git a/samples/CookieSessionSample/Startup.cs b/samples/CookieSessionSample/Startup.cs
new file mode 100644
index 000000000..f0b1b5219
--- /dev/null
+++ b/samples/CookieSessionSample/Startup.cs
@@ -0,0 +1,50 @@
+using System.Collections.Generic;
+using System.Security.Claims;
+using Microsoft.AspNet.Builder;
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Authentication.Cookies;
+using Microsoft.Framework.DependencyInjection;
+using Microsoft.Framework.Logging;
+
+namespace CookieSessionSample
+{
+ public class Startup
+ {
+ public void ConfigureServices(IServiceCollection services)
+ {
+ services.AddAuthentication();
+ }
+
+ public void Configure(IApplicationBuilder app, ILoggerFactory loggerfactory)
+ {
+ loggerfactory.AddConsole(LogLevel.Information);
+
+ app.UseCookieAuthentication(options =>
+ {
+ options.AutomaticAuthentication = true;
+ options.SessionStore = new MemoryCacheSessionStore();
+ });
+
+ app.Run(async context =>
+ {
+ if (string.IsNullOrEmpty(context.User.Identity.Name))
+ {
+ // Make a large identity
+ var claims = new List(1001);
+ claims.Add(new Claim(ClaimTypes.Name, "bob"));
+ for (int i = 0; i < 1000; i++)
+ {
+ claims.Add(new Claim(ClaimTypes.Role, "SomeRandomGroup" + i, ClaimValueTypes.String, "IssuedByBob", "OriginalIssuerJoe"));
+ }
+ context.Authentication.SignIn(CookieAuthenticationDefaults.AuthenticationScheme, new ClaimsPrincipal(new ClaimsIdentity(claims)));
+ context.Response.ContentType = "text/plain";
+ await context.Response.WriteAsync("Hello First timer");
+ return;
+ }
+
+ context.Response.ContentType = "text/plain";
+ await context.Response.WriteAsync("Hello old timer");
+ });
+ }
+ }
+}
\ No newline at end of file
diff --git a/samples/CookieSessionSample/project.json b/samples/CookieSessionSample/project.json
new file mode 100644
index 000000000..0f481e611
--- /dev/null
+++ b/samples/CookieSessionSample/project.json
@@ -0,0 +1,20 @@
+{
+ "dependencies": {
+ "Microsoft.AspNet.Authentication.Cookies": "1.0.0-*",
+ "Microsoft.AspNet.DataProtection": "1.0.0-*",
+ "Microsoft.AspNet.Server.IIS": "1.0.0-*",
+ "Microsoft.AspNet.Server.WebListener": "1.0.0-*",
+ "Microsoft.Framework.Caching.Memory": "1.0.0-*",
+ "Microsoft.Framework.Logging.Console": "1.0.0-*",
+ "Kestrel": "1.0.0-*"
+ },
+ "commands": {
+ "web": "Microsoft.AspNet.Hosting server=Microsoft.AspNet.Server.WebListener server.urls=http://localhost:12345",
+ "kestrel": "Microsoft.AspNet.Hosting --server Kestrel --server.urls http://localhost:5004"
+ },
+ "frameworks": {
+ "dnx451": { },
+ "dnxcore50": { }
+ },
+ "webroot": "wwwroot"
+}
diff --git a/samples/CookieSessionSample/wwwroot/.gitkeep b/samples/CookieSessionSample/wwwroot/.gitkeep
new file mode 100644
index 000000000..e69de29bb
diff --git a/samples/OpenIdConnectSample/OpenIdConnectSample.xproj b/samples/OpenIdConnectSample/OpenIdConnectSample.xproj
new file mode 100644
index 000000000..1f0879ea4
--- /dev/null
+++ b/samples/OpenIdConnectSample/OpenIdConnectSample.xproj
@@ -0,0 +1,18 @@
+
+
+
+ 14.0
+ $(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)
+
+
+
+ bef0f5c3-ef4e-4649-9c49-d5e279a3ca2b
+ ..\..\artifacts\obj\$(MSBuildProjectName)
+ ..\..\artifacts\bin\$(MSBuildProjectName)\
+
+
+ 2.0
+ 42023
+
+
+
\ No newline at end of file
diff --git a/samples/OpenIdConnectSample/Properties/launchSettings.json b/samples/OpenIdConnectSample/Properties/launchSettings.json
new file mode 100644
index 000000000..d8622657c
--- /dev/null
+++ b/samples/OpenIdConnectSample/Properties/launchSettings.json
@@ -0,0 +1,21 @@
+{
+ "profiles": {
+ "IIS Express": {
+ "commandName": "IISExpress",
+ "launchBrowser": true,
+ "environmentVariables": {
+ "ASPNET_ENV": "Development"
+ }
+ },
+ "kestrel": {
+ "commandName": "kestrel",
+ "launchBrowser": true,
+ "launchUrl": "http://localhost:5004"
+ },
+ "web": {
+ "commandName": "web",
+ "launchBrowser": true,
+ "launchUrl": "http://localhost:12345"
+ }
+ }
+}
\ No newline at end of file
diff --git a/samples/OpenIdConnectSample/Startup.cs b/samples/OpenIdConnectSample/Startup.cs
new file mode 100644
index 000000000..2077d802b
--- /dev/null
+++ b/samples/OpenIdConnectSample/Startup.cs
@@ -0,0 +1,57 @@
+using Microsoft.AspNet.Builder;
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Http.Authentication;
+using Microsoft.AspNet.Authentication;
+using Microsoft.AspNet.Authentication.Cookies;
+using Microsoft.AspNet.Authentication.OpenIdConnect;
+using Microsoft.Framework.DependencyInjection;
+using Microsoft.Framework.Logging;
+
+namespace OpenIdConnectSample
+{
+ public class Startup
+ {
+ public void ConfigureServices(IServiceCollection services)
+ {
+ services.AddAuthentication();
+ services.Configure(options =>
+ {
+ options.SignInScheme = CookieAuthenticationDefaults.AuthenticationScheme;
+ });
+ }
+
+ public void Configure(IApplicationBuilder app, ILoggerFactory loggerfactory)
+ {
+ loggerfactory.AddConsole(LogLevel.Information);
+
+ app.UseCookieAuthentication(options =>
+ {
+ options.AutomaticAuthentication = true;
+ });
+
+ app.UseOpenIdConnectAuthentication(options =>
+ {
+ options.ClientId = "fe78e0b4-6fe7-47e6-812c-fb75cee266a4";
+ options.Authority = "https://login.windows.net/cyrano.onmicrosoft.com";
+ options.RedirectUri = "http://localhost:42023";
+ });
+
+ app.Run(async context =>
+ {
+ if (string.IsNullOrEmpty(context.User.Identity.Name))
+ {
+ context.Authentication.Challenge(OpenIdConnectAuthenticationDefaults.AuthenticationScheme, new AuthenticationProperties { RedirectUri = "/" });
+
+ context.Response.ContentType = "text/plain";
+ await context.Response.WriteAsync("Hello First timer");
+ return;
+ }
+
+ context.Response.ContentType = "text/plain";
+ await context.Response.WriteAsync("Hello Authenticated User");
+ });
+
+
+ }
+ }
+}
diff --git a/samples/OpenIdConnectSample/project.json b/samples/OpenIdConnectSample/project.json
new file mode 100644
index 000000000..815ad8a33
--- /dev/null
+++ b/samples/OpenIdConnectSample/project.json
@@ -0,0 +1,20 @@
+{
+ "dependencies": {
+ "Microsoft.AspNet.Authentication.Cookies": "1.0.0-*",
+ "Microsoft.AspNet.Authentication.OpenIdConnect": "1.0.0-*",
+ "Microsoft.AspNet.DataProtection": "1.0.0-*",
+ "Microsoft.AspNet.Server.IIS": "1.0.0-*",
+ "Microsoft.AspNet.Server.WebListener": "1.0.0-*",
+ "Microsoft.Framework.Logging.Console": "1.0.0-*",
+ "Kestrel": "1.0.0-*"
+ },
+ "frameworks": {
+ "dnx451": { },
+ "dnxcore50": { }
+ },
+ "commands": {
+ "web": "Microsoft.AspNet.Hosting server=Microsoft.AspNet.Server.WebListener server.urls=http://localhost:12345",
+ "kestrel": "Microsoft.AspNet.Hosting --server Kestrel --server.urls http://localhost:5004"
+ },
+ "webroot": "wwwroot"
+}
diff --git a/samples/OpenIdConnectSample/wwwroot/placeholder.html b/samples/OpenIdConnectSample/wwwroot/placeholder.html
new file mode 100644
index 000000000..125a5a8cf
--- /dev/null
+++ b/samples/OpenIdConnectSample/wwwroot/placeholder.html
@@ -0,0 +1,10 @@
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/samples/SocialSample/Properties/launchSettings.json b/samples/SocialSample/Properties/launchSettings.json
new file mode 100644
index 000000000..88e42ba2b
--- /dev/null
+++ b/samples/SocialSample/Properties/launchSettings.json
@@ -0,0 +1,21 @@
+{
+ "profiles": {
+ "IIS Express": {
+ "commandName": "IISExpress",
+ "launchBrowser": true,
+ "environmentVariables": {
+ "ASPNET_ENV": "Development"
+ }
+ },
+ "kestrel": {
+ "commandName": "kestrel",
+ "launchBrowser": true,
+ "launchUrl": "http://localhost:54540/"
+ },
+ "web": {
+ "commandName": "web",
+ "launchBrowser": true,
+ "launchUrl": "http://localhost:54540/"
+ }
+ }
+}
\ No newline at end of file
diff --git a/samples/SocialSample/SocialSample.xproj b/samples/SocialSample/SocialSample.xproj
new file mode 100644
index 000000000..3d2aa528d
--- /dev/null
+++ b/samples/SocialSample/SocialSample.xproj
@@ -0,0 +1,18 @@
+
+
+
+ 14.0
+ $(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)
+
+
+
+ 8c73d216-332d-41d8-bfd0-45bc4bc36552
+ ..\..\artifacts\obj\$(MSBuildProjectName)
+ ..\..\artifacts\bin\$(MSBuildProjectName)\
+
+
+ 2.0
+ 54540
+
+
+
\ No newline at end of file
diff --git a/samples/SocialSample/Startup.cs b/samples/SocialSample/Startup.cs
new file mode 100644
index 000000000..eb6c74563
--- /dev/null
+++ b/samples/SocialSample/Startup.cs
@@ -0,0 +1,246 @@
+using System.Net.Http;
+using System.Net.Http.Headers;
+using System.Security.Claims;
+using Microsoft.AspNet.Authentication;
+using Microsoft.AspNet.Authentication.Cookies;
+using Microsoft.AspNet.Authentication.Google;
+using Microsoft.AspNet.Authentication.MicrosoftAccount;
+using Microsoft.AspNet.Authentication.OAuth;
+using Microsoft.AspNet.Builder;
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Http.Authentication;
+using Microsoft.Framework.DependencyInjection;
+using Microsoft.Framework.Logging;
+using Newtonsoft.Json.Linq;
+
+namespace CookieSample
+{
+ /* Note all servers must use the same address and port because these are pre-registered with the various providers. */
+ public class Startup
+ {
+ public void ConfigureServices(IServiceCollection services)
+ {
+ services.AddAuthentication();
+ services.Configure(options =>
+ {
+ options.SignInScheme = CookieAuthenticationDefaults.AuthenticationScheme;
+ });
+ services.ConfigureClaimsTransformation(p =>
+ {
+ var id = new ClaimsIdentity("xform");
+ id.AddClaim(new Claim("ClaimsTransformation", "TransformAddedClaim"));
+ p.AddIdentity(id);
+ return p;
+ });
+ }
+
+ public void Configure(IApplicationBuilder app, ILoggerFactory loggerfactory)
+ {
+ loggerfactory.AddConsole(LogLevel.Information);
+
+ app.UseCookieAuthentication(options =>
+ {
+ options.AutomaticAuthentication = true;
+ options.LoginPath = new PathString("/login");
+ });
+
+ // https://developers.facebook.com/apps/
+ app.UseFacebookAuthentication(options =>
+ {
+ options.AppId = "569522623154478";
+ options.AppSecret = "a124463c4719c94b4228d9a240e5dc1a";
+ });
+
+ app.UseOAuthAuthentication("Google-AccessToken", options =>
+ {
+ options.ClientId = "560027070069-37ldt4kfuohhu3m495hk2j4pjp92d382.apps.googleusercontent.com";
+ options.ClientSecret = "n2Q-GEw9RQjzcRbU3qhfTj8f";
+ options.CallbackPath = new PathString("/signin-google-token");
+ options.AuthorizationEndpoint = GoogleAuthenticationDefaults.AuthorizationEndpoint;
+ options.TokenEndpoint = GoogleAuthenticationDefaults.TokenEndpoint;
+ options.Scope.Add("openid");
+ options.Scope.Add("profile");
+ options.Scope.Add("email");
+ });
+
+ // https://console.developers.google.com/project
+ app.UseGoogleAuthentication(options =>
+ {
+ options.ClientId = "560027070069-37ldt4kfuohhu3m495hk2j4pjp92d382.apps.googleusercontent.com";
+ options.ClientSecret = "n2Q-GEw9RQjzcRbU3qhfTj8f";
+ });
+
+ // https://apps.twitter.com/
+ app.UseTwitterAuthentication(options =>
+ {
+ options.ConsumerKey = "6XaCTaLbMqfj6ww3zvZ5g";
+ options.ConsumerSecret = "Il2eFzGIrYhz6BWjYhVXBPQSfZuS4xoHpSSyD9PI";
+ });
+
+ /* https://account.live.com/developers/applications
+ The MicrosoftAccount service has restrictions that prevent the use of http://localhost:54540/ for test applications.
+ As such, here is how to change this sample to uses http://mssecsample.localhost.this:54540/ instead.
+
+ Edit the Project.json file and replace http://localhost:54540/ with http://mssecsample.localhost.this:54540/.
+
+ From an admin command console first enter:
+ notepad C:\Windows\System32\drivers\etc\hosts
+ and add this to the file, save, and exit (and reboot?):
+ 127.0.0.1 MsSecSample.localhost.this
+
+ Then you can choose to run the app as admin (see below) or add the following ACL as admin:
+ netsh http add urlacl url=http://mssecsample.localhost.this:54540/ user=[domain\user]
+
+ The sample app can then be run via:
+ dnx . web
+ */
+ app.UseOAuthAuthentication("Microsoft-AccessToken", options =>
+ {
+ options.Caption = "MicrosoftAccount-AccessToken - Requires project changes";
+ options.ClientId = "00000000480FF62E";
+ options.ClientSecret = "bLw2JIvf8Y1TaToipPEqxTVlOeJwCUsr";
+ options.CallbackPath = new PathString("/signin-microsoft-token");
+ options.AuthorizationEndpoint = MicrosoftAccountAuthenticationDefaults.AuthorizationEndpoint;
+ options.TokenEndpoint = MicrosoftAccountAuthenticationDefaults.TokenEndpoint;
+ options.Scope.Add("wl.basic");
+ });
+
+ app.UseMicrosoftAccountAuthentication(options =>
+ {
+ options.Caption = "MicrosoftAccount - Requires project changes";
+ options.ClientId = "00000000480FF62E";
+ options.ClientSecret = "bLw2JIvf8Y1TaToipPEqxTVlOeJwCUsr";
+ });
+
+ // https://github.com/settings/applications/
+ app.UseOAuthAuthentication("GitHub-AccessToken", options =>
+ {
+ options.ClientId = "8c0c5a572abe8fe89588";
+ options.ClientSecret = "e1d95eaf03461d27acd6f49d4fc7bf19d6ac8cda";
+ options.CallbackPath = new PathString("/signin-github-token");
+ options.AuthorizationEndpoint = "https://github.com/login/oauth/authorize";
+ options.TokenEndpoint = "https://github.com/login/oauth/access_token";
+ });
+
+ app.UseOAuthAuthentication("GitHub", options =>
+ {
+ options.ClientId = "49e302895d8b09ea5656";
+ options.ClientSecret = "98f1bf028608901e9df91d64ee61536fe562064b";
+ options.CallbackPath = new PathString("/signin-github");
+ options.AuthorizationEndpoint = "https://github.com/login/oauth/authorize";
+ options.TokenEndpoint = "https://github.com/login/oauth/access_token";
+ options.UserInformationEndpoint = "https://api.github.com/user";
+ options.ClaimsIssuer = "OAuth2-Github";
+ // Retrieving user information is unique to each provider.
+ options.Notifications = new OAuthAuthenticationNotifications()
+ {
+ OnGetUserInformationAsync = async (context) =>
+ {
+ // Get the GitHub user
+ var userRequest = new HttpRequestMessage(HttpMethod.Get, context.Options.UserInformationEndpoint);
+ userRequest.Headers.Authorization = new AuthenticationHeaderValue("Bearer", context.AccessToken);
+ userRequest.Headers.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));
+ var userResponse = await context.Backchannel.SendAsync(userRequest, context.HttpContext.RequestAborted);
+ userResponse.EnsureSuccessStatusCode();
+ var text = await userResponse.Content.ReadAsStringAsync();
+ var user = JObject.Parse(text);
+
+ var identity = new ClaimsIdentity(
+ context.Options.AuthenticationScheme,
+ ClaimsIdentity.DefaultNameClaimType,
+ ClaimsIdentity.DefaultRoleClaimType);
+
+ JToken value;
+ var id = user.TryGetValue("id", out value) ? value.ToString() : null;
+ if (!string.IsNullOrEmpty(id))
+ {
+ identity.AddClaim(new Claim(ClaimTypes.NameIdentifier, id, ClaimValueTypes.String, context.Options.ClaimsIssuer));
+ }
+ var userName = user.TryGetValue("login", out value) ? value.ToString() : null;
+ if (!string.IsNullOrEmpty(userName))
+ {
+ identity.AddClaim(new Claim(ClaimsIdentity.DefaultNameClaimType, userName, ClaimValueTypes.String, context.Options.ClaimsIssuer));
+ }
+ var name = user.TryGetValue("name", out value) ? value.ToString() : null;
+ if (!string.IsNullOrEmpty(name))
+ {
+ identity.AddClaim(new Claim("urn:github:name", name, ClaimValueTypes.String, context.Options.ClaimsIssuer));
+ }
+ var link = user.TryGetValue("url", out value) ? value.ToString() : null;
+ if (!string.IsNullOrEmpty(link))
+ {
+ identity.AddClaim(new Claim("urn:github:url", link, ClaimValueTypes.String, context.Options.ClaimsIssuer));
+ }
+
+ context.Principal = new ClaimsPrincipal(identity);
+ },
+ };
+ });
+
+ // Choose an authentication type
+ app.Map("/login", signoutApp =>
+ {
+ signoutApp.Run(async context =>
+ {
+ var authType = context.Request.Query["authscheme"];
+ if (!string.IsNullOrEmpty(authType))
+ {
+ // By default the client will be redirect back to the URL that issued the challenge (/login?authtype=foo),
+ // send them to the home page instead (/).
+ context.Authentication.Challenge(authType, new AuthenticationProperties() { RedirectUri = "/" });
+ return;
+ }
+
+ context.Response.ContentType = "text/html";
+ await context.Response.WriteAsync("");
+ await context.Response.WriteAsync("Choose an authentication scheme:
");
+ foreach (var type in context.Authentication.GetAuthenticationSchemes())
+ {
+ await context.Response.WriteAsync("" + (type.Caption ?? "(suppressed)") + "
");
+ }
+ await context.Response.WriteAsync("");
+ });
+ });
+
+ // Sign-out to remove the user cookie.
+ app.Map("/logout", signoutApp =>
+ {
+ signoutApp.Run(async context =>
+ {
+ context.Authentication.SignOut(CookieAuthenticationDefaults.AuthenticationScheme);
+ context.Response.ContentType = "text/html";
+ await context.Response.WriteAsync("");
+ await context.Response.WriteAsync("You have been logged out. Goodbye " + context.User.Identity.Name + "
");
+ await context.Response.WriteAsync("Home");
+ await context.Response.WriteAsync("");
+ });
+ });
+
+ // Deny anonymous request beyond this point.
+ app.Use(async (context, next) =>
+ {
+ if (string.IsNullOrEmpty(context.User.Identity.Name))
+ {
+ // The cookie middleware will intercept this 401 and redirect to /login
+ context.Authentication.Challenge();
+ return;
+ }
+ await next();
+ });
+
+ // Display user information
+ app.Run(async context =>
+ {
+ context.Response.ContentType = "text/html";
+ await context.Response.WriteAsync("");
+ await context.Response.WriteAsync("Hello " + context.User.Identity.Name + "
");
+ foreach (var claim in context.User.Claims)
+ {
+ await context.Response.WriteAsync(claim.Type + ": " + claim.Value + "
");
+ }
+ await context.Response.WriteAsync("Logout");
+ await context.Response.WriteAsync("");
+ });
+ }
+ }
+}
diff --git a/samples/SocialSample/project.json b/samples/SocialSample/project.json
new file mode 100644
index 000000000..024014140
--- /dev/null
+++ b/samples/SocialSample/project.json
@@ -0,0 +1,25 @@
+{
+ "dependencies": {
+ "Microsoft.AspNet.Authentication.Cookies": "1.0.0-*",
+ "Microsoft.AspNet.Authentication.Facebook": "1.0.0-*",
+ "Microsoft.AspNet.Authentication.Google": "1.0.0-*",
+ "Microsoft.AspNet.Authentication.MicrosoftAccount": "1.0.0-*",
+ "Microsoft.AspNet.Authentication.Twitter": "1.0.0-*",
+ "Microsoft.AspNet.DataProtection": "1.0.0-*",
+ "Microsoft.AspNet.Server.IIS": "1.0.0-*",
+ "Microsoft.AspNet.Server.WebListener": "1.0.0-*",
+ "Microsoft.Framework.Logging.Console": "1.0.0-*",
+ "Kestrel": "1.0.0-*"
+ },
+ "commands": {
+ "web": "Microsoft.AspNet.Hosting server=Microsoft.AspNet.Server.WebListener server.urls=http://localhost:54540",
+ "kestrel": "Microsoft.AspNet.Hosting --server Kestrel --server.urls http://localhost:54540"
+ },
+ "frameworks": {
+ "dnx451": {
+ },
+ "dnxcore50": {
+ }
+ },
+ "webroot": "wwwroot"
+}
diff --git a/samples/SocialSample/wwwroot/.gitkeep b/samples/SocialSample/wwwroot/.gitkeep
new file mode 100644
index 000000000..e69de29bb
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/CookieAppBuilderExtensions.cs b/src/Microsoft.AspNet.Authentication.Cookies/CookieAppBuilderExtensions.cs
new file mode 100644
index 000000000..d865dc4ce
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/CookieAppBuilderExtensions.cs
@@ -0,0 +1,32 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using Microsoft.AspNet.Authentication.Cookies;
+using Microsoft.Framework.Internal;
+using Microsoft.Framework.OptionsModel;
+
+namespace Microsoft.AspNet.Builder
+{
+ ///
+ /// Extension methods provided by the cookies authentication middleware
+ ///
+ public static class CookieAppBuilderExtensions
+ {
+ ///
+ /// Adds a cookie-based authentication middleware to your web application pipeline.
+ ///
+ /// The IApplicationBuilder passed to your configuration method
+ /// Used to configure the options for the middleware
+ /// The name of the options class that controls the middleware behavior, null will use the default options
+ /// The original app parameter
+ public static IApplicationBuilder UseCookieAuthentication([NotNull] this IApplicationBuilder app, Action configureOptions = null, string optionsName = "")
+ {
+ return app.UseMiddleware(
+ new ConfigureOptions(configureOptions ?? (o => { }))
+ {
+ Name = optionsName
+ });
+ }
+ }
+}
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Security.Cookies/CookieAuthenticationDefaults.cs b/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationDefaults.cs
similarity index 83%
rename from src/Microsoft.AspNet.Security.Cookies/CookieAuthenticationDefaults.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationDefaults.cs
index 3ea10afb9..95981a0f0 100644
--- a/src/Microsoft.AspNet.Security.Cookies/CookieAuthenticationDefaults.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationDefaults.cs
@@ -1,9 +1,10 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
using System.Diagnostics.CodeAnalysis;
using Microsoft.AspNet.Http;
-namespace Microsoft.AspNet.Security.Cookies
+namespace Microsoft.AspNet.Authentication.Cookies
{
///
/// Default values related to cookie-based authentication middleware
@@ -11,9 +12,9 @@ namespace Microsoft.AspNet.Security.Cookies
public static class CookieAuthenticationDefaults
{
///
- /// The default value used for CookieAuthenticationOptions.AuthenticationType
+ /// The default value used for CookieAuthenticationOptions.AuthenticationScheme
///
- public const string AuthenticationType = "Cookies";
+ public const string AuthenticationScheme = "Cookies";
///
/// The prefix used to provide a default CookieAuthenticationOptions.CookieName
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationHandler.cs b/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationHandler.cs
new file mode 100644
index 000000000..04852e390
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationHandler.cs
@@ -0,0 +1,404 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+
+using System;
+using System.Linq;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Http.Authentication;
+using Microsoft.Framework.Logging;
+
+namespace Microsoft.AspNet.Authentication.Cookies
+{
+ internal class CookieAuthenticationHandler : AuthenticationHandler
+ {
+ private const string HeaderNameCacheControl = "Cache-Control";
+ private const string HeaderNamePragma = "Pragma";
+ private const string HeaderNameExpires = "Expires";
+ private const string HeaderValueNoCache = "no-cache";
+ private const string HeaderValueMinusOne = "-1";
+ private const string SessionIdClaim = "Microsoft.AspNet.Authentication.Cookies-SessionId";
+
+ private bool _shouldRenew;
+ private DateTimeOffset _renewIssuedUtc;
+ private DateTimeOffset _renewExpiresUtc;
+ private string _sessionKey;
+
+ protected override AuthenticationTicket AuthenticateCore()
+ {
+ return AuthenticateCoreAsync().GetAwaiter().GetResult();
+ }
+
+ protected override async Task AuthenticateCoreAsync()
+ {
+ AuthenticationTicket ticket = null;
+ try
+ {
+ var cookie = Options.CookieManager.GetRequestCookie(Context, Options.CookieName);
+ if (string.IsNullOrWhiteSpace(cookie))
+ {
+ return null;
+ }
+
+ ticket = Options.TicketDataFormat.Unprotect(cookie);
+
+ if (ticket == null)
+ {
+ Logger.LogWarning(@"Unprotect ticket failed");
+ return null;
+ }
+
+ if (Options.SessionStore != null)
+ {
+ var claim = ticket.Principal.Claims.FirstOrDefault(c => c.Type.Equals(SessionIdClaim));
+ if (claim == null)
+ {
+ Logger.LogWarning(@"SessionId missing");
+ return null;
+ }
+ _sessionKey = claim.Value;
+ ticket = await Options.SessionStore.RetrieveAsync(_sessionKey);
+ if (ticket == null)
+ {
+ Logger.LogWarning(@"Identity missing in session store");
+ return null;
+ }
+ }
+
+ var currentUtc = Options.SystemClock.UtcNow;
+ var issuedUtc = ticket.Properties.IssuedUtc;
+ var expiresUtc = ticket.Properties.ExpiresUtc;
+
+ if (expiresUtc != null && expiresUtc.Value < currentUtc)
+ {
+ if (Options.SessionStore != null)
+ {
+ await Options.SessionStore.RemoveAsync(_sessionKey);
+ }
+ return null;
+ }
+
+ var allowRefresh = ticket.Properties.AllowRefresh ?? true;
+ if (issuedUtc != null && expiresUtc != null && Options.SlidingExpiration && allowRefresh)
+ {
+ var timeElapsed = currentUtc.Subtract(issuedUtc.Value);
+ var timeRemaining = expiresUtc.Value.Subtract(currentUtc);
+
+ if (timeRemaining < timeElapsed)
+ {
+ _shouldRenew = true;
+ _renewIssuedUtc = currentUtc;
+ var timeSpan = expiresUtc.Value.Subtract(issuedUtc.Value);
+ _renewExpiresUtc = currentUtc.Add(timeSpan);
+ }
+ }
+
+ var context = new CookieValidatePrincipalContext(Context, ticket, Options);
+
+ await Options.Notifications.ValidatePrincipal(context);
+
+ return new AuthenticationTicket(context.Principal, context.Properties, Options.AuthenticationScheme);
+ }
+ catch (Exception exception)
+ {
+ var exceptionContext = new CookieExceptionContext(Context, Options,
+ CookieExceptionContext.ExceptionLocation.Authenticate, exception, ticket);
+ Options.Notifications.Exception(exceptionContext);
+ if (exceptionContext.Rethrow)
+ {
+ throw;
+ }
+ return exceptionContext.Ticket;
+ }
+ }
+
+ protected override void ApplyResponseGrant()
+ {
+ ApplyResponseGrantAsync().GetAwaiter().GetResult();
+ }
+
+ protected override async Task ApplyResponseGrantAsync()
+ {
+ var signin = SignInContext;
+ var shouldSignin = signin != null;
+ var signout = SignOutContext;
+ var shouldSignout = signout != null;
+
+ if (!(shouldSignin || shouldSignout || _shouldRenew))
+ {
+ return;
+ }
+
+ var model = await AuthenticateAsync();
+ try
+ {
+ var cookieOptions = new CookieOptions
+ {
+ Domain = Options.CookieDomain,
+ HttpOnly = Options.CookieHttpOnly,
+ Path = Options.CookiePath ?? (RequestPathBase.HasValue ? RequestPathBase.ToString() : "/"),
+ };
+ if (Options.CookieSecure == CookieSecureOption.SameAsRequest)
+ {
+ cookieOptions.Secure = Request.IsHttps;
+ }
+ else
+ {
+ cookieOptions.Secure = Options.CookieSecure == CookieSecureOption.Always;
+ }
+
+ if (shouldSignin)
+ {
+ var signInContext = new CookieResponseSignInContext(
+ Context,
+ Options,
+ Options.AuthenticationScheme,
+ signin.Principal,
+ new AuthenticationProperties(signin.Properties),
+ cookieOptions);
+
+ DateTimeOffset issuedUtc;
+ if (signInContext.Properties.IssuedUtc.HasValue)
+ {
+ issuedUtc = signInContext.Properties.IssuedUtc.Value;
+ }
+ else
+ {
+ issuedUtc = Options.SystemClock.UtcNow;
+ signInContext.Properties.IssuedUtc = issuedUtc;
+ }
+
+ if (!signInContext.Properties.ExpiresUtc.HasValue)
+ {
+ signInContext.Properties.ExpiresUtc = issuedUtc.Add(Options.ExpireTimeSpan);
+ }
+
+ Options.Notifications.ResponseSignIn(signInContext);
+
+ if (signInContext.Properties.IsPersistent)
+ {
+ var expiresUtc = signInContext.Properties.ExpiresUtc ?? issuedUtc.Add(Options.ExpireTimeSpan);
+ signInContext.CookieOptions.Expires = expiresUtc.ToUniversalTime().DateTime;
+ }
+
+ model = new AuthenticationTicket(signInContext.Principal, signInContext.Properties, signInContext.AuthenticationScheme);
+ if (Options.SessionStore != null)
+ {
+ if (_sessionKey != null)
+ {
+ await Options.SessionStore.RemoveAsync(_sessionKey);
+ }
+ _sessionKey = await Options.SessionStore.StoreAsync(model);
+ var principal = new ClaimsPrincipal(
+ new ClaimsIdentity(
+ new[] { new Claim(SessionIdClaim, _sessionKey, ClaimValueTypes.String, Options.ClaimsIssuer) },
+ Options.ClaimsIssuer));
+ model = new AuthenticationTicket(principal, null, Options.AuthenticationScheme);
+ }
+ var cookieValue = Options.TicketDataFormat.Protect(model);
+
+ Options.CookieManager.AppendResponseCookie(
+ Context,
+ Options.CookieName,
+ cookieValue,
+ signInContext.CookieOptions);
+
+ var signedInContext = new CookieResponseSignedInContext(
+ Context,
+ Options,
+ Options.AuthenticationScheme,
+ signInContext.Principal,
+ signInContext.Properties);
+
+ Options.Notifications.ResponseSignedIn(signedInContext);
+ }
+ else if (shouldSignout)
+ {
+ if (Options.SessionStore != null && _sessionKey != null)
+ {
+ await Options.SessionStore.RemoveAsync(_sessionKey);
+ }
+
+ var context = new CookieResponseSignOutContext(
+ Context,
+ Options,
+ cookieOptions);
+
+ Options.Notifications.ResponseSignOut(context);
+
+ Options.CookieManager.DeleteCookie(
+ Context,
+ Options.CookieName,
+ context.CookieOptions);
+ }
+ else if (_shouldRenew)
+ {
+ model.Properties.IssuedUtc = _renewIssuedUtc;
+ model.Properties.ExpiresUtc = _renewExpiresUtc;
+
+ if (Options.SessionStore != null && _sessionKey != null)
+ {
+ await Options.SessionStore.RenewAsync(_sessionKey, model);
+ var principal = new ClaimsPrincipal(
+ new ClaimsIdentity(
+ new[] { new Claim(SessionIdClaim, _sessionKey, ClaimValueTypes.String, Options.ClaimsIssuer) },
+ Options.AuthenticationScheme));
+ model = new AuthenticationTicket(principal, null, Options.AuthenticationScheme);
+ }
+
+ var cookieValue = Options.TicketDataFormat.Protect(model);
+
+ if (model.Properties.IsPersistent)
+ {
+ cookieOptions.Expires = _renewExpiresUtc.ToUniversalTime().DateTime;
+ }
+
+ Options.CookieManager.AppendResponseCookie(
+ Context,
+ Options.CookieName,
+ cookieValue,
+ cookieOptions);
+ }
+
+ Response.Headers.Set(
+ HeaderNameCacheControl,
+ HeaderValueNoCache);
+
+ Response.Headers.Set(
+ HeaderNamePragma,
+ HeaderValueNoCache);
+
+ Response.Headers.Set(
+ HeaderNameExpires,
+ HeaderValueMinusOne);
+
+ var shouldLoginRedirect = shouldSignin && Options.LoginPath.HasValue && Request.Path == Options.LoginPath;
+ var shouldLogoutRedirect = shouldSignout && Options.LogoutPath.HasValue && Request.Path == Options.LogoutPath;
+
+ if ((shouldLoginRedirect || shouldLogoutRedirect) && Response.StatusCode == 200)
+ {
+ var query = Request.Query;
+ var redirectUri = query.Get(Options.ReturnUrlParameter);
+ if (!string.IsNullOrWhiteSpace(redirectUri)
+ && IsHostRelative(redirectUri))
+ {
+ var redirectContext = new CookieApplyRedirectContext(Context, Options, redirectUri);
+ Options.Notifications.ApplyRedirect(redirectContext);
+ }
+ }
+ }
+ catch (Exception exception)
+ {
+ var exceptionContext = new CookieExceptionContext(Context, Options,
+ CookieExceptionContext.ExceptionLocation.ApplyResponseGrant, exception, model);
+ Options.Notifications.Exception(exceptionContext);
+ if (exceptionContext.Rethrow)
+ {
+ throw;
+ }
+ }
+ }
+
+ private static bool IsHostRelative(string path)
+ {
+ if (string.IsNullOrEmpty(path))
+ {
+ return false;
+ }
+ if (path.Length == 1)
+ {
+ return path[0] == '/';
+ }
+ return path[0] == '/' && path[1] != '/' && path[1] != '\\';
+ }
+
+ protected override void ApplyResponseChallenge()
+ {
+ if (ShouldConvertChallengeToForbidden())
+ {
+ // Handle 403 by redirecting to AccessDeniedPath if set
+ if (Options.AccessDeniedPath.HasValue)
+ {
+ try
+ {
+ var accessDeniedUri =
+ Request.Scheme +
+ "://" +
+ Request.Host +
+ Request.PathBase +
+ Options.AccessDeniedPath;
+
+ var redirectContext = new CookieApplyRedirectContext(Context, Options, accessDeniedUri);
+ Options.Notifications.ApplyRedirect(redirectContext);
+ }
+ catch (Exception exception)
+ {
+ var exceptionContext = new CookieExceptionContext(Context, Options,
+ CookieExceptionContext.ExceptionLocation.ApplyResponseChallenge, exception, ticket: null);
+ Options.Notifications.Exception(exceptionContext);
+ if (exceptionContext.Rethrow)
+ {
+ throw;
+ }
+ }
+ }
+ else
+ {
+ Response.StatusCode = 403;
+ }
+ return;
+ }
+
+ if (Response.StatusCode != 401 || !Options.LoginPath.HasValue )
+ {
+ return;
+ }
+
+ // Automatic middleware should redirect on 401 even if there wasn't an explicit challenge.
+ if (ChallengeContext == null && !Options.AutomaticAuthentication)
+ {
+ return;
+ }
+
+ var loginUri = string.Empty;
+ if (ChallengeContext != null)
+ {
+ loginUri = new AuthenticationProperties(ChallengeContext.Properties).RedirectUri;
+ }
+
+ try
+ {
+ if (string.IsNullOrWhiteSpace(loginUri))
+ {
+ var currentUri =
+ Request.PathBase +
+ Request.Path +
+ Request.QueryString;
+
+ loginUri =
+ Request.Scheme +
+ "://" +
+ Request.Host +
+ Request.PathBase +
+ Options.LoginPath +
+ QueryString.Create(Options.ReturnUrlParameter, currentUri);
+ }
+
+ var redirectContext = new CookieApplyRedirectContext(Context, Options, loginUri);
+ Options.Notifications.ApplyRedirect(redirectContext);
+ }
+ catch (Exception exception)
+ {
+ var exceptionContext = new CookieExceptionContext(Context, Options,
+ CookieExceptionContext.ExceptionLocation.ApplyResponseChallenge, exception, ticket: null);
+ Options.Notifications.Exception(exceptionContext);
+ if (exceptionContext.Rethrow)
+ {
+ throw;
+ }
+ }
+ }
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationMiddleware.cs b/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationMiddleware.cs
new file mode 100644
index 000000000..70cafe854
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationMiddleware.cs
@@ -0,0 +1,52 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using Microsoft.AspNet.Authentication.Cookies.Infrastructure;
+using Microsoft.AspNet.Authentication.DataHandler;
+using Microsoft.AspNet.Builder;
+using Microsoft.AspNet.DataProtection;
+using Microsoft.Framework.Internal;
+using Microsoft.Framework.Logging;
+using Microsoft.Framework.OptionsModel;
+using Microsoft.Framework.WebEncoders;
+
+namespace Microsoft.AspNet.Authentication.Cookies
+{
+ public class CookieAuthenticationMiddleware : AuthenticationMiddleware
+ {
+ public CookieAuthenticationMiddleware(
+ [NotNull] RequestDelegate next,
+ [NotNull] IDataProtectionProvider dataProtectionProvider,
+ [NotNull] ILoggerFactory loggerFactory,
+ [NotNull] IUrlEncoder urlEncoder,
+ [NotNull] IOptions options,
+ ConfigureOptions configureOptions)
+ : base(next, options, loggerFactory, urlEncoder, configureOptions)
+ {
+ if (Options.Notifications == null)
+ {
+ Options.Notifications = new CookieAuthenticationNotifications();
+ }
+ if (String.IsNullOrEmpty(Options.CookieName))
+ {
+ Options.CookieName = CookieAuthenticationDefaults.CookiePrefix + Options.AuthenticationScheme;
+ }
+ if (Options.TicketDataFormat == null)
+ {
+ var dataProtector = dataProtectionProvider.CreateProtector(
+ typeof(CookieAuthenticationMiddleware).FullName, Options.AuthenticationScheme, "v2");
+ Options.TicketDataFormat = new TicketDataFormat(dataProtector);
+ }
+ if (Options.CookieManager == null)
+ {
+ Options.CookieManager = new ChunkingCookieManager(urlEncoder);
+ }
+ }
+
+ protected override AuthenticationHandler CreateHandler()
+ {
+ return new CookieAuthenticationHandler();
+ }
+ }
+}
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Security.Cookies/CookieAuthenticationOptions.cs b/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationOptions.cs
similarity index 79%
rename from src/Microsoft.AspNet.Security.Cookies/CookieAuthenticationOptions.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationOptions.cs
index 3fa5cb5e8..52660955c 100644
--- a/src/Microsoft.AspNet.Security.Cookies/CookieAuthenticationOptions.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/CookieAuthenticationOptions.cs
@@ -1,11 +1,13 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
using System;
using System.Diagnostics.CodeAnalysis;
using Microsoft.AspNet.Http;
-using Microsoft.AspNet.Security.Infrastructure;
+using Microsoft.AspNet.Authentication.Cookies.Infrastructure;
+using Microsoft.Framework.Internal;
-namespace Microsoft.AspNet.Security.Cookies
+namespace Microsoft.AspNet.Authentication.Cookies
{
///
/// Contains the options used by the CookiesAuthenticationMiddleware
@@ -18,10 +20,9 @@ public class CookieAuthenticationOptions : AuthenticationOptions
/// Create an instance of the options initialized with the default values
///
public CookieAuthenticationOptions()
- : base(CookieAuthenticationDefaults.AuthenticationType)
{
+ AuthenticationScheme = CookieAuthenticationDefaults.AuthenticationScheme;
ReturnUrlParameter = CookieAuthenticationDefaults.ReturnUrlParameter;
- CookiePath = "/";
ExpireTimeSpan = TimeSpan.FromDays(14);
SlidingExpiration = true;
CookieHttpOnly = true;
@@ -32,18 +33,15 @@ public CookieAuthenticationOptions()
///
/// Determines the cookie name used to persist the identity. The default value is ".AspNet.Cookies".
- /// This value should be changed if you change the name of the AuthenticationType, especially if your
+ /// This value should be changed if you change the name of the AuthenticationScheme, especially if your
/// system uses the cookie authentication middleware multiple times.
///
public string CookieName
{
get { return _cookieName; }
+ [param: NotNull]
set
{
- if (value == null)
- {
- throw new ArgumentNullException("value");
- }
_cookieName = value;
}
}
@@ -104,6 +102,15 @@ public string CookieName
[SuppressMessage("Microsoft.Naming", "CA1726:UsePreferredTerms", MessageId = "Logout", Justification = "By design")]
public PathString LogoutPath { get; set; }
+ ///
+ /// The AccessDeniedPath property informs the middleware that it should change an outgoing 403 Forbidden status
+ /// code into a 302 redirection onto the given path.
+ ///
+ /// If the AccessDeniedPath is null or empty, the middleware will not look for 403 Forbidden status codes, and it will
+ /// not redirect
+ ///
+ public PathString AccessDeniedPath { get; set; }
+
///
/// The ReturnUrlParameter determines the name of the query string parameter which is appended by the middleware
/// when a 401 Unauthorized status code is changed to a 302 redirect onto the login path. This is also the query
@@ -123,7 +130,7 @@ public string CookieName
///
/// The TicketDataFormat is used to protect and unprotect the identity and other properties which are stored in the
/// cookie value. If it is not provided a default data handler is created using the data protection service contained
- /// in the IAppBuilder.Properties. The default data protection service is based on machine key when running on ASP.NET,
+ /// in the IApplicationBuilder.Properties. The default data protection service is based on machine key when running on ASP.NET,
/// and on DPAPI when running in a different process.
///
public ISecureDataFormat TicketDataFormat { get; set; }
@@ -133,5 +140,18 @@ public string CookieName
/// used which calls DateTimeOffset.UtcNow. This is typically not replaced except for unit testing.
///
public ISystemClock SystemClock { get; set; }
+
+ ///
+ /// The component used to get cookies from the request or set them on the response.
+ ///
+ /// ChunkingCookieManager will be used by default.
+ ///
+ public ICookieManager CookieManager { get; set; }
+
+ ///
+ /// An optional container in which to store the identity across requests. When used, only a session identifier is sent
+ /// to the client. This can be used to mitigate potential problems with very large identities.
+ ///
+ public IAuthenticationSessionStore SessionStore { get; set; }
}
}
diff --git a/src/Microsoft.AspNet.Security.Cookies/CookieSecureOption.cs b/src/Microsoft.AspNet.Authentication.Cookies/CookieSecureOption.cs
similarity index 87%
rename from src/Microsoft.AspNet.Security.Cookies/CookieSecureOption.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/CookieSecureOption.cs
index 19efae749..83d34d0ae 100644
--- a/src/Microsoft.AspNet.Security.Cookies/CookieSecureOption.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/CookieSecureOption.cs
@@ -1,6 +1,8 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
-namespace Microsoft.AspNet.Security.Cookies
+
+namespace Microsoft.AspNet.Authentication.Cookies
{
///
/// Determines how the identity cookie's security property is set.
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/CookieServiceCollectionExtensions.cs b/src/Microsoft.AspNet.Authentication.Cookies/CookieServiceCollectionExtensions.cs
new file mode 100644
index 000000000..c55cb9d5f
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/CookieServiceCollectionExtensions.cs
@@ -0,0 +1,36 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using Microsoft.AspNet.Authentication.Cookies;
+using Microsoft.Framework.Configuration;
+using Microsoft.Framework.Internal;
+
+namespace Microsoft.Framework.DependencyInjection
+{
+ ///
+ /// Extension methods provided by the cookies authentication middleware
+ ///
+ public static class CookieServiceCollectionExtensions
+ {
+ public static IServiceCollection ConfigureCookieAuthentication([NotNull] this IServiceCollection services, [NotNull] Action configure)
+ {
+ return services.ConfigureCookieAuthentication(configure, optionsName: "");
+ }
+
+ public static IServiceCollection ConfigureCookieAuthentication([NotNull] this IServiceCollection services, [NotNull] Action configure, string optionsName)
+ {
+ return services.Configure(configure, optionsName);
+ }
+
+ public static IServiceCollection ConfigureCookieAuthentication([NotNull] this IServiceCollection services, [NotNull] IConfiguration config)
+ {
+ return services.ConfigureCookieAuthentication(config, optionsName: "");
+ }
+
+ public static IServiceCollection ConfigureCookieAuthentication([NotNull] this IServiceCollection services, [NotNull] IConfiguration config, string optionsName)
+ {
+ return services.Configure(config, optionsName);
+ }
+ }
+}
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/ChunkingCookieManager.cs b/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/ChunkingCookieManager.cs
new file mode 100644
index 000000000..62ab42dd2
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/ChunkingCookieManager.cs
@@ -0,0 +1,283 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using System.Collections.Generic;
+using System.Globalization;
+using System.Linq;
+using Microsoft.AspNet.Http;
+using Microsoft.Framework.Internal;
+using Microsoft.Framework.WebEncoders;
+using Microsoft.Net.Http.Headers;
+
+namespace Microsoft.AspNet.Authentication.Cookies.Infrastructure
+{
+ ///
+ /// This handles cookies that are limited by per cookie length. It breaks down long cookies for responses, and reassembles them
+ /// from requests.
+ ///
+ public class ChunkingCookieManager : ICookieManager
+ {
+ public ChunkingCookieManager(IUrlEncoder urlEncoder)
+ {
+ // Lowest common denominator. Safari has the lowest known limit (4093), and we leave little extra just in case.
+ // See http://browsercookielimits.x64.me/.
+ ChunkSize = 4090;
+ ThrowForPartialCookies = true;
+ Encoder = urlEncoder ?? UrlEncoder.Default;
+ }
+
+ ///
+ /// The maximum size of cookie to send back to the client. If a cookie exceeds this size it will be broken down into multiple
+ /// cookies. Set this value to null to disable this behavior. The default is 4090 characters, which is supported by all
+ /// common browsers.
+ ///
+ /// Note that browsers may also have limits on the total size of all cookies per domain, and on the number of cookies per domain.
+ ///
+ public int? ChunkSize { get; set; }
+
+ ///
+ /// Throw if not all chunks of a cookie are available on a request for re-assembly.
+ ///
+ public bool ThrowForPartialCookies { get; set; }
+
+ private IUrlEncoder Encoder { get; set; }
+
+ // Parse the "chunks:XX" to determine how many chunks there should be.
+ private static int ParseChunksCount(string value)
+ {
+ if (value != null && value.StartsWith("chunks:", StringComparison.Ordinal))
+ {
+ var chunksCountString = value.Substring("chunks:".Length);
+ int chunksCount;
+ if (int.TryParse(chunksCountString, NumberStyles.None, CultureInfo.InvariantCulture, out chunksCount))
+ {
+ return chunksCount;
+ }
+ }
+ return 0;
+ }
+
+ ///
+ /// Get the reassembled cookie. Non chunked cookies are returned normally.
+ /// Cookies with missing chunks just have their "chunks:XX" header returned.
+ ///
+ ///
+ ///
+ /// The reassembled cookie, if any, or null.
+ public string GetRequestCookie([NotNull] HttpContext context, [NotNull] string key)
+ {
+ var requestCookies = context.Request.Cookies;
+ var value = requestCookies[key];
+ var chunksCount = ParseChunksCount(value);
+ if (chunksCount > 0)
+ {
+ var quoted = false;
+ var chunks = new string[chunksCount];
+ for (var chunkId = 1; chunkId <= chunksCount; chunkId++)
+ {
+ var chunk = requestCookies[key + "C" + chunkId.ToString(CultureInfo.InvariantCulture)];
+ if (chunk == null)
+ {
+ if (ThrowForPartialCookies)
+ {
+ var totalSize = 0;
+ for (int i = 0; i < chunkId - 1; i++)
+ {
+ totalSize += chunks[i].Length;
+ }
+ throw new FormatException(
+ string.Format(CultureInfo.CurrentCulture, Resources.Exception_ImcompleteChunkedCookie, chunkId - 1, chunksCount, totalSize));
+ }
+ // Missing chunk, abort by returning the original cookie value. It may have been a false positive?
+ return value;
+ }
+ if (IsQuoted(chunk))
+ {
+ // Note: Since we assume these cookies were generated by our code, then we can assume that if one cookie has quotes then they all do.
+ quoted = true;
+ chunk = RemoveQuotes(chunk);
+ }
+ chunks[chunkId - 1] = chunk;
+ }
+ var merged = string.Join(string.Empty, chunks);
+ if (quoted)
+ {
+ merged = Quote(merged);
+ }
+ return merged;
+ }
+ return value;
+ }
+
+ ///
+ /// Appends a new response cookie to the Set-Cookie header. If the cookie is larger than the given size limit
+ /// then it will be broken down into multiple cookies as follows:
+ /// Set-Cookie: CookieName=chunks:3; path=/
+ /// Set-Cookie: CookieNameC1=Segment1; path=/
+ /// Set-Cookie: CookieNameC2=Segment2; path=/
+ /// Set-Cookie: CookieNameC3=Segment3; path=/
+ ///
+ ///
+ ///
+ ///
+ ///
+ public void AppendResponseCookie([NotNull] HttpContext context, [NotNull] string key, string value, [NotNull] CookieOptions options)
+ {
+ var escapedKey = Encoder.UrlEncode(key);
+
+ var template = new SetCookieHeaderValue(escapedKey)
+ {
+ Domain = options.Domain,
+ Expires = options.Expires,
+ HttpOnly = options.HttpOnly,
+ Path = options.Path,
+ Secure = options.Secure,
+ };
+
+ var templateLength = template.ToString().Length;
+
+ value = value ?? string.Empty;
+ var quoted = false;
+ if (IsQuoted(value))
+ {
+ quoted = true;
+ value = RemoveQuotes(value);
+ }
+ var escapedValue = Encoder.UrlEncode(value);
+
+ // Normal cookie
+ var responseHeaders = context.Response.Headers;
+ if (!ChunkSize.HasValue || ChunkSize.Value > templateLength + escapedValue.Length + (quoted ? 2 : 0))
+ {
+ template.Value = quoted ? Quote(escapedValue) : escapedValue;
+ responseHeaders.AppendValues(Constants.Headers.SetCookie, template.ToString());
+ }
+ else if (ChunkSize.Value < templateLength + (quoted ? 2 : 0) + 10)
+ {
+ // 10 is the minimum data we want to put in an individual cookie, including the cookie chunk identifier "CXX".
+ // No room for data, we can't chunk the options and name
+ throw new InvalidOperationException(Resources.Exception_CookieLimitTooSmall);
+ }
+ else
+ {
+ // Break the cookie down into multiple cookies.
+ // Key = CookieName, value = "Segment1Segment2Segment2"
+ // Set-Cookie: CookieName=chunks:3; path=/
+ // Set-Cookie: CookieNameC1="Segment1"; path=/
+ // Set-Cookie: CookieNameC2="Segment2"; path=/
+ // Set-Cookie: CookieNameC3="Segment3"; path=/
+ var dataSizePerCookie = ChunkSize.Value - templateLength - (quoted ? 2 : 0) - 3; // Budget 3 chars for the chunkid.
+ var cookieChunkCount = (int)Math.Ceiling(escapedValue.Length * 1.0 / dataSizePerCookie);
+
+ template.Value = "chunks:" + cookieChunkCount.ToString(CultureInfo.InvariantCulture);
+ responseHeaders.AppendValues(Constants.Headers.SetCookie, template.ToString());
+
+ var chunks = new string[cookieChunkCount];
+ var offset = 0;
+ for (var chunkId = 1; chunkId <= cookieChunkCount; chunkId++)
+ {
+ var remainingLength = escapedValue.Length - offset;
+ var length = Math.Min(dataSizePerCookie, remainingLength);
+ var segment = escapedValue.Substring(offset, length);
+ offset += length;
+
+ template.Name = escapedKey + "C" + chunkId.ToString(CultureInfo.InvariantCulture);
+ template.Value = quoted ? Quote(segment) : segment;
+ chunks[chunkId - 1] = template.ToString();
+ }
+ responseHeaders.AppendValues(Constants.Headers.SetCookie, chunks);
+ }
+ }
+
+ ///
+ /// Deletes the cookie with the given key by setting an expired state. If a matching chunked cookie exists on
+ /// the request, delete each chunk.
+ ///
+ ///
+ ///
+ ///
+ public void DeleteCookie([NotNull] HttpContext context, [NotNull] string key, [NotNull] CookieOptions options)
+ {
+ var escapedKey = Encoder.UrlEncode(key);
+ var keys = new List();
+ keys.Add(escapedKey + "=");
+
+ var requestCookie = context.Request.Cookies[key];
+ var chunks = ParseChunksCount(requestCookie);
+ if (chunks > 0)
+ {
+ for (int i = 1; i <= chunks + 1; i++)
+ {
+ var subkey = escapedKey + "C" + i.ToString(CultureInfo.InvariantCulture);
+ keys.Add(subkey + "=");
+ }
+ }
+
+ var domainHasValue = !string.IsNullOrEmpty(options.Domain);
+ var pathHasValue = !string.IsNullOrEmpty(options.Path);
+
+ Func rejectPredicate;
+ Func predicate = value => keys.Any(k => value.StartsWith(k, StringComparison.OrdinalIgnoreCase));
+ if (domainHasValue)
+ {
+ rejectPredicate = value => predicate(value) && value.IndexOf("domain=" + options.Domain, StringComparison.OrdinalIgnoreCase) != -1;
+ }
+ else if (pathHasValue)
+ {
+ rejectPredicate = value => predicate(value) && value.IndexOf("path=" + options.Path, StringComparison.OrdinalIgnoreCase) != -1;
+ }
+ else
+ {
+ rejectPredicate = value => predicate(value);
+ }
+
+ var responseHeaders = context.Response.Headers;
+ var existingValues = responseHeaders.GetValues(Constants.Headers.SetCookie);
+ if (existingValues != null)
+ {
+ responseHeaders.SetValues(Constants.Headers.SetCookie, existingValues.Where(value => !rejectPredicate(value)).ToArray());
+ }
+
+ AppendResponseCookie(
+ context,
+ key,
+ string.Empty,
+ new CookieOptions()
+ {
+ Path = options.Path,
+ Domain = options.Domain,
+ Expires = new DateTime(1970, 1, 1, 0, 0, 0, DateTimeKind.Utc),
+ });
+
+ for (int i = 1; i <= chunks; i++)
+ {
+ AppendResponseCookie(
+ context,
+ key + "C" + i.ToString(CultureInfo.InvariantCulture),
+ string.Empty,
+ new CookieOptions()
+ {
+ Path = options.Path,
+ Domain = options.Domain,
+ Expires = new DateTime(1970, 1, 1, 0, 0, 0, DateTimeKind.Utc),
+ });
+ }
+ }
+
+ private static bool IsQuoted([NotNull] string value)
+ {
+ return value.Length >= 2 && value[0] == '"' && value[value.Length - 1] == '"';
+ }
+
+ private static string RemoveQuotes([NotNull] string value)
+ {
+ return value.Substring(1, value.Length - 2);
+ }
+
+ private static string Quote([NotNull] string value)
+ {
+ return '"' + value + '"';
+ }
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/Constants.cs b/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/Constants.cs
new file mode 100644
index 000000000..6865cea0f
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/Constants.cs
@@ -0,0 +1,13 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+namespace Microsoft.AspNet.Authentication.Cookies.Infrastructure
+{
+ internal static class Constants
+ {
+ internal static class Headers
+ {
+ internal const string SetCookie = "Set-Cookie";
+ }
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/IAuthenticationSessionStore.cs b/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/IAuthenticationSessionStore.cs
new file mode 100644
index 000000000..6b2886d0a
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/IAuthenticationSessionStore.cs
@@ -0,0 +1,43 @@
+// Copyright (c) .NET Foundation. All rights reserved. See License.txt in the project root for license information.
+
+using System.Threading.Tasks;
+
+namespace Microsoft.AspNet.Authentication.Cookies.Infrastructure
+{
+ ///
+ /// This provides an abstract storage mechanic to preserve identity information on the server
+ /// while only sending a simple identifier key to the client. This is most commonly used to mitigate
+ /// issues with serializing large identities into cookies.
+ ///
+ public interface IAuthenticationSessionStore
+ {
+ ///
+ /// Store the identity ticket and return the associated key.
+ ///
+ /// The identity information to store.
+ /// The key that can be used to retrieve the identity later.
+ Task StoreAsync(AuthenticationTicket ticket);
+
+ ///
+ /// Tells the store that the given identity should be updated.
+ ///
+ ///
+ ///
+ ///
+ Task RenewAsync(string key, AuthenticationTicket ticket);
+
+ ///
+ /// Retrieves an identity from the store for the given key.
+ ///
+ /// The key associated with the identity.
+ /// The identity associated with the given key, or if not found.
+ Task RetrieveAsync(string key);
+
+ ///
+ /// Remove the identity associated with the given key.
+ ///
+ /// The key associated with the identity.
+ ///
+ Task RemoveAsync(string key);
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/ICookieManager.cs b/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/ICookieManager.cs
new file mode 100644
index 000000000..cffde3869
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Infrastructure/ICookieManager.cs
@@ -0,0 +1,39 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using Microsoft.AspNet.Http;
+
+namespace Microsoft.AspNet.Authentication.Cookies.Infrastructure
+{
+ ///
+ /// This is used by the CookieAuthenticationMiddleware to process request and response cookies.
+ /// It is abstracted from the normal cookie APIs to allow for complex operations like chunking.
+ ///
+ public interface ICookieManager
+ {
+ ///
+ /// Retrieve a cookie of the given name from the request.
+ ///
+ ///
+ ///
+ ///
+ string GetRequestCookie(HttpContext context, string key);
+
+ ///
+ /// Append the given cookie to the response.
+ ///
+ ///
+ ///
+ ///
+ ///
+ void AppendResponseCookie(HttpContext context, string key, string value, CookieOptions options);
+
+ ///
+ /// Append a delete cookie to the response.
+ ///
+ ///
+ ///
+ ///
+ void DeleteCookie(HttpContext context, string key, CookieOptions options);
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Microsoft.AspNet.Authentication.Cookies.xproj b/src/Microsoft.AspNet.Authentication.Cookies/Microsoft.AspNet.Authentication.Cookies.xproj
new file mode 100644
index 000000000..bc93d6322
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Microsoft.AspNet.Authentication.Cookies.xproj
@@ -0,0 +1,17 @@
+
+
+
+ 14.0
+ $(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)
+
+
+
+ fc152cc4-054b-457e-8d91-389c5de3c561
+ ..\..\artifacts\obj\$(MSBuildProjectName)
+ ..\..\artifacts\bin\$(MSBuildProjectName)\
+
+
+ 2.0
+
+
+
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Security.Cookies/Notifications/CookieApplyRedirectContext.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieApplyRedirectContext.cs
similarity index 78%
rename from src/Microsoft.AspNet.Security.Cookies/Notifications/CookieApplyRedirectContext.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieApplyRedirectContext.cs
index 9d0aca22c..9083ed817 100644
--- a/src/Microsoft.AspNet.Security.Cookies/Notifications/CookieApplyRedirectContext.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieApplyRedirectContext.cs
@@ -1,10 +1,11 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
using System.Diagnostics.CodeAnalysis;
using Microsoft.AspNet.Http;
-using Microsoft.AspNet.Security.Notifications;
+using Microsoft.AspNet.Authentication.Notifications;
-namespace Microsoft.AspNet.Security.Cookies
+namespace Microsoft.AspNet.Authentication.Cookies
{
///
/// Context passed when a Challenge, SignIn, or SignOut causes a redirect in the cookie middleware
@@ -14,7 +15,7 @@ public class CookieApplyRedirectContext : BaseContext
/// Creates a new context object.
///
- /// The OWIN request context
+ /// The HTTP request context
/// The cookie middleware options
/// The initial redirect URI
[SuppressMessage("Microsoft.Design", "CA1054:UriParametersShouldNotBeStrings", MessageId = "2#", Justification = "Represents header value")]
diff --git a/src/Microsoft.AspNet.Security.Cookies/Notifications/CookieAuthenticationNotifications.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieAuthenticationNotifications.cs
similarity index 58%
rename from src/Microsoft.AspNet.Security.Cookies/Notifications/CookieAuthenticationNotifications.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieAuthenticationNotifications.cs
index f3496bbc7..0c875b208 100644
--- a/src/Microsoft.AspNet.Security.Cookies/Notifications/CookieAuthenticationNotifications.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieAuthenticationNotifications.cs
@@ -1,9 +1,10 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
using System;
using System.Threading.Tasks;
-namespace Microsoft.AspNet.Security.Cookies
+namespace Microsoft.AspNet.Authentication.Cookies
{
///
/// This default implementation of the ICookieAuthenticationNotifications may be used if the
@@ -17,22 +18,29 @@ public class CookieAuthenticationNotifications : ICookieAuthenticationNotificati
///
public CookieAuthenticationNotifications()
{
- OnValidateIdentity = context => Task.FromResult(0);
+ OnValidatePrincipal = context => Task.FromResult(0);
OnResponseSignIn = context => { };
+ OnResponseSignedIn = context => { };
OnResponseSignOut = context => { };
OnApplyRedirect = DefaultBehavior.ApplyRedirect;
+ OnException = context => { };
}
///
/// A delegate assigned to this property will be invoked when the related method is called
///
- public Func OnValidateIdentity { get; set; }
+ public Func OnValidatePrincipal { get; set; }
///
/// A delegate assigned to this property will be invoked when the related method is called
///
public Action OnResponseSignIn { get; set; }
+ ///
+ /// A delegate assigned to this property will be invoked when the related method is called
+ ///
+ public Action OnResponseSignedIn { get; set; }
+
///
/// A delegate assigned to this property will be invoked when the related method is called
///
@@ -43,14 +51,19 @@ public CookieAuthenticationNotifications()
///
public Action OnApplyRedirect { get; set; }
+ ///
+ /// A delegate assigned to this property will be invoked when the related method is called
+ ///
+ public Action OnException { get; set; }
+
///
/// Implements the interface method by invoking the related delegate method
///
///
///
- public virtual Task ValidateIdentity(CookieValidateIdentityContext context)
+ public virtual Task ValidatePrincipal(CookieValidatePrincipalContext context)
{
- return OnValidateIdentity.Invoke(context);
+ return OnValidatePrincipal.Invoke(context);
}
///
@@ -62,6 +75,15 @@ public virtual void ResponseSignIn(CookieResponseSignInContext context)
OnResponseSignIn.Invoke(context);
}
+ ///
+ /// Implements the interface method by invoking the related delegate method
+ ///
+ ///
+ public virtual void ResponseSignedIn(CookieResponseSignedInContext context)
+ {
+ OnResponseSignedIn.Invoke(context);
+ }
+
///
/// Implements the interface method by invoking the related delegate method
///
@@ -72,12 +94,21 @@ public virtual void ResponseSignOut(CookieResponseSignOutContext context)
}
///
- /// Called when a Challenge, SignIn, or SignOut causes a redirect in the cookie middleware
+ /// Implements the interface method by invoking the related delegate method
///
/// Contains information about the event
- public void ApplyRedirect(CookieApplyRedirectContext context)
+ public virtual void ApplyRedirect(CookieApplyRedirectContext context)
{
OnApplyRedirect.Invoke(context);
}
+
+ ///
+ /// Implements the interface method by invoking the related delegate method
+ ///
+ /// Contains information about the event
+ public virtual void Exception(CookieExceptionContext context)
+ {
+ OnException.Invoke(context);
+ }
}
-}
+}
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieExceptionContext.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieExceptionContext.cs
new file mode 100644
index 000000000..0d51f95d4
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieExceptionContext.cs
@@ -0,0 +1,83 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using System.Diagnostics.CodeAnalysis;
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Authentication.Notifications;
+
+namespace Microsoft.AspNet.Authentication.Cookies
+{
+ ///
+ /// Context object passed to the ICookieAuthenticationProvider method Exception.
+ ///
+ public class CookieExceptionContext : BaseContext
+ {
+ ///
+ /// Creates a new instance of the context object.
+ ///
+ /// The HTTP request context
+ /// The middleware options
+ /// The location of the exception
+ /// The exception thrown.
+ /// The current ticket, if any.
+ public CookieExceptionContext(
+ HttpContext context,
+ CookieAuthenticationOptions options,
+ ExceptionLocation location,
+ Exception exception,
+ AuthenticationTicket ticket)
+ : base(context, options)
+ {
+ Location = location;
+ Exception = exception;
+ Rethrow = true;
+ Ticket = ticket;
+ }
+
+ ///
+ /// The code paths where exceptions may be reported.
+ ///
+ [SuppressMessage("Microsoft.Design", "CA1034:NestedTypesShouldNotBeVisible", Scope = "type",
+ Target = "Microsoft.Owin.Security.Cookies.CookieExceptionContext+ExceptionLocation", Justification = "It is a directly related option.")]
+ public enum ExceptionLocation
+ {
+ ///
+ /// The exception was reported in the Authenticate code path.
+ ///
+ Authenticate,
+
+ ///
+ /// The exception was reported in the ApplyResponseGrant code path, during sign-in, sign-out, or refresh.
+ ///
+ ApplyResponseGrant,
+
+ ///
+ /// The exception was reported in the ApplyResponseChallenge code path, during redirect generation.
+ ///
+ ApplyResponseChallenge,
+ }
+
+ ///
+ /// The code path the exception occurred in.
+ ///
+ public ExceptionLocation Location { get; private set; }
+
+ ///
+ /// The exception thrown.
+ ///
+ public Exception Exception { get; private set; }
+
+ ///
+ /// True if the exception should be re-thrown (default), false if it should be suppressed.
+ ///
+ public bool Rethrow { get; set; }
+
+ ///
+ /// The current authentication ticket, if any.
+ /// In the AuthenticateAsync code path, if the given exception is not re-thrown then this ticket
+ /// will be returned to the application. The ticket may be replaced if needed.
+ ///
+ public AuthenticationTicket Ticket { get; set; }
+ }
+}
diff --git a/src/Microsoft.AspNet.Security.Cookies/Notifications/CookieResponseSignInContext.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignInContext.cs
similarity index 65%
rename from src/Microsoft.AspNet.Security.Cookies/Notifications/CookieResponseSignInContext.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignInContext.cs
index 375c85181..f894231ae 100644
--- a/src/Microsoft.AspNet.Security.Cookies/Notifications/CookieResponseSignInContext.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignInContext.cs
@@ -1,11 +1,12 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
using System.Security.Claims;
using Microsoft.AspNet.Http;
-using Microsoft.AspNet.Http.Security;
-using Microsoft.AspNet.Security.Notifications;
+using Microsoft.AspNet.Http.Authentication;
+using Microsoft.AspNet.Authentication.Notifications;
-namespace Microsoft.AspNet.Security.Cookies
+namespace Microsoft.AspNet.Authentication.Cookies
{
///
/// Context object passed to the ICookieAuthenticationProvider method ResponseSignIn.
@@ -15,37 +16,37 @@ public class CookieResponseSignInContext : BaseContext
/// Creates a new instance of the context object.
///
- /// The OWIN request context
+ /// The HTTP request context
/// The middleware options
- /// Initializes AuthenticationType property
- /// Initializes Identity property
+ /// Initializes AuthenticationScheme property
+ /// Initializes Principal property
/// Initializes Extra property
/// Initializes options for the authentication cookie.
public CookieResponseSignInContext(
HttpContext context,
CookieAuthenticationOptions options,
- string authenticationType,
- ClaimsIdentity identity,
+ string authenticationScheme,
+ ClaimsPrincipal principal,
AuthenticationProperties properties,
CookieOptions cookieOptions)
: base(context, options)
{
- AuthenticationType = authenticationType;
- Identity = identity;
+ AuthenticationScheme = authenticationScheme;
+ Principal = principal;
Properties = properties;
CookieOptions = cookieOptions;
}
///
- /// The name of the AuthenticationType creating a cookie
+ /// The name of the AuthenticationScheme creating a cookie
///
- public string AuthenticationType { get; private set; }
+ public string AuthenticationScheme { get; private set; }
///
/// Contains the claims about to be converted into the outgoing cookie.
/// May be replaced or altered during the ResponseSignIn call.
///
- public ClaimsIdentity Identity { get; set; }
+ public ClaimsPrincipal Principal { get; set; }
///
/// Contains the extra data about to be contained in the outgoing cookie.
diff --git a/src/Microsoft.AspNet.Security.Cookies/Notifications/CookieResponseSignOutContext.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignOutContext.cs
similarity index 72%
rename from src/Microsoft.AspNet.Security.Cookies/Notifications/CookieResponseSignOutContext.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignOutContext.cs
index 7dbd45137..260a31ad9 100644
--- a/src/Microsoft.AspNet.Security.Cookies/Notifications/CookieResponseSignOutContext.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignOutContext.cs
@@ -1,9 +1,10 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
using Microsoft.AspNet.Http;
-using Microsoft.AspNet.Security.Notifications;
+using Microsoft.AspNet.Authentication.Notifications;
-namespace Microsoft.AspNet.Security.Cookies
+namespace Microsoft.AspNet.Authentication.Cookies
{
///
/// Context object passed to the ICookieAuthenticationProvider method ResponseSignOut
@@ -24,7 +25,7 @@ public CookieResponseSignOutContext(HttpContext context, CookieAuthenticationOpt
///
/// The options for creating the outgoing cookie.
- /// May be replace or altered during the ResponseSignIn call.
+ /// May be replace or altered during the ResponseSignOut call.
///
public CookieOptions CookieOptions
{
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignedInContext.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignedInContext.cs
new file mode 100644
index 000000000..df88fef98
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieResponseSignedInContext.cs
@@ -0,0 +1,52 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System.Security.Claims;
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Http.Authentication;
+using Microsoft.AspNet.Authentication.Notifications;
+
+namespace Microsoft.AspNet.Authentication.Cookies
+{
+ ///
+ /// Context object passed to the ICookieAuthenticationNotifications method ResponseSignedIn.
+ ///
+ public class CookieResponseSignedInContext : BaseContext
+ {
+ ///
+ /// Creates a new instance of the context object.
+ ///
+ /// The HTTP request context
+ /// The middleware options
+ /// Initializes AuthenticationScheme property
+ /// Initializes Principal property
+ /// Initializes Properties property
+ public CookieResponseSignedInContext(
+ HttpContext context,
+ CookieAuthenticationOptions options,
+ string authenticationScheme,
+ ClaimsPrincipal principal,
+ AuthenticationProperties properties)
+ : base(context, options)
+ {
+ AuthenticationScheme = authenticationScheme;
+ Principal = principal;
+ Properties = properties;
+ }
+
+ ///
+ /// The name of the AuthenticationScheme creating a cookie
+ ///
+ public string AuthenticationScheme { get; private set; }
+
+ ///
+ /// Contains the claims that were converted into the outgoing cookie.
+ ///
+ public ClaimsPrincipal Principal { get; private set; }
+
+ ///
+ /// Contains the extra data that was contained in the outgoing cookie.
+ ///
+ public AuthenticationProperties Properties { get; private set; }
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieValidateIdentityContext.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieValidateIdentityContext.cs
new file mode 100644
index 000000000..ec795c468
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/CookieValidateIdentityContext.cs
@@ -0,0 +1,61 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System.Security.Claims;
+using System.Security.Principal;
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Http.Authentication;
+using Microsoft.AspNet.Authentication.Notifications;
+using Microsoft.Framework.Internal;
+
+namespace Microsoft.AspNet.Authentication.Cookies
+{
+ ///
+ /// Context object passed to the ICookieAuthenticationProvider method ValidatePrincipal.
+ ///
+ public class CookieValidatePrincipalContext : BaseContext
+ {
+ ///
+ /// Creates a new instance of the context object.
+ ///
+ ///
+ /// Contains the initial values for identity and extra data
+ ///
+ public CookieValidatePrincipalContext([NotNull] HttpContext context, [NotNull] AuthenticationTicket ticket, [NotNull] CookieAuthenticationOptions options)
+ : base(context, options)
+ {
+ Principal = ticket.Principal;
+ Properties = ticket.Properties;
+ }
+
+ ///
+ /// Contains the claims principal arriving with the request. May be altered to change the
+ /// details of the authenticated user.
+ ///
+ public ClaimsPrincipal Principal { get; private set; }
+
+ ///
+ /// Contains the extra meta-data arriving with the request ticket. May be altered.
+ ///
+ public AuthenticationProperties Properties { get; private set; }
+
+ ///
+ /// Called to replace the claims principal. The supplied principal will replace the value of the
+ /// Principal property, which determines the identity of the authenticated request.
+ ///
+ /// The identity used as the replacement
+ public void ReplacePrincipal(IPrincipal principal)
+ {
+ Principal = new ClaimsPrincipal(principal);
+ }
+
+ ///
+ /// Called to reject the incoming principal. This may be done if the application has determined the
+ /// account is no longer active, and the request should be treated as if it was anonymous.
+ ///
+ public void RejectPrincipal()
+ {
+ Principal = null;
+ }
+ }
+}
diff --git a/src/Microsoft.AspNet.Security.Cookies/Notifications/DefaultBehavior.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/DefaultBehavior.cs
similarity index 78%
rename from src/Microsoft.AspNet.Security.Cookies/Notifications/DefaultBehavior.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/Notifications/DefaultBehavior.cs
index 98b7da1c8..9807bbdf4 100644
--- a/src/Microsoft.AspNet.Security.Cookies/Notifications/DefaultBehavior.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/DefaultBehavior.cs
@@ -1,10 +1,12 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
using System;
using Microsoft.AspNet.Http;
using Newtonsoft.Json;
-namespace Microsoft.AspNet.Security.Cookies
+namespace Microsoft.AspNet.Authentication.Cookies
{
internal static class DefaultBehavior
{
@@ -12,7 +14,7 @@ internal static class DefaultBehavior
{
if (IsAjaxRequest(context.Request))
{
- string jsonResponse = JsonConvert.SerializeObject(new
+ var jsonResponse = JsonConvert.SerializeObject(new
{
status = context.Response.StatusCode,
headers = new
@@ -32,7 +34,7 @@ internal static class DefaultBehavior
private static bool IsAjaxRequest(HttpRequest request)
{
- IReadableStringCollection query = request.Query;
+ var query = request.Query;
if (query != null)
{
if (query["X-Requested-With"] == "XMLHttpRequest")
@@ -41,7 +43,7 @@ private static bool IsAjaxRequest(HttpRequest request)
}
}
- IHeaderDictionary headers = request.Headers;
+ var headers = request.Headers;
if (headers != null)
{
if (headers["X-Requested-With"] == "XMLHttpRequest")
diff --git a/src/Microsoft.AspNet.Security.Cookies/Notifications/ICookieAuthenticationNotifications.cs b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/ICookieAuthenticationNotifications.cs
similarity index 56%
rename from src/Microsoft.AspNet.Security.Cookies/Notifications/ICookieAuthenticationNotifications.cs
rename to src/Microsoft.AspNet.Authentication.Cookies/Notifications/ICookieAuthenticationNotifications.cs
index c9c07d227..3364207af 100644
--- a/src/Microsoft.AspNet.Security.Cookies/Notifications/ICookieAuthenticationNotifications.cs
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Notifications/ICookieAuthenticationNotifications.cs
@@ -1,8 +1,10 @@
-// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
using System.Threading.Tasks;
-namespace Microsoft.AspNet.Security.Cookies
+namespace Microsoft.AspNet.Authentication.Cookies
{
///
/// Specifies callback methods which the invokes to enable developer control over the authentication process. />
@@ -10,12 +12,12 @@ namespace Microsoft.AspNet.Security.Cookies
public interface ICookieAuthenticationNotifications
{
///
- /// Called each time a request identity has been validated by the middleware. By implementing this method the
- /// application may alter or reject the identity which has arrived with the request.
+ /// Called each time a request principal has been validated by the middleware. By implementing this method the
+ /// application may alter or reject the principal which has arrived with the request.
///
/// Contains information about the login session as well as the user .
/// A representing the completed operation.
- Task ValidateIdentity(CookieValidateIdentityContext context);
+ Task ValidatePrincipal(CookieValidatePrincipalContext context);
///
/// Called when an endpoint has provided sign in information before it is converted into a cookie. By
@@ -24,6 +26,12 @@ public interface ICookieAuthenticationNotifications
/// Contains information about the login session as well as the user .
void ResponseSignIn(CookieResponseSignInContext context);
+ ///
+ /// Called when an endpoint has provided sign in information after it is converted into a cookie.
+ ///
+ /// Contains information about the login session as well as the user .
+ void ResponseSignedIn(CookieResponseSignedInContext context);
+
///
/// Called when a Challenge, SignIn, or SignOut causes a redirect in the cookie middleware
///
@@ -31,9 +39,15 @@ public interface ICookieAuthenticationNotifications
void ApplyRedirect(CookieApplyRedirectContext context);
///
- ///
+ /// Called during the sign-out flow to augment the cookie cleanup process.
///
/// Contains information about the login session as well as information about the authentication cookie.
void ResponseSignOut(CookieResponseSignOutContext context);
+
+ ///
+ /// Called when an exception occurs during request or response processing.
+ ///
+ /// Contains information about the exception that occurred
+ void Exception(CookieExceptionContext context);
}
}
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Properties/AssemblyInfo.cs b/src/Microsoft.AspNet.Authentication.Cookies/Properties/AssemblyInfo.cs
new file mode 100644
index 000000000..025a94598
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Properties/AssemblyInfo.cs
@@ -0,0 +1,6 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System.Reflection;
+
+[assembly: AssemblyMetadata("Serviceable", "True")]
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Resources.Designer.cs b/src/Microsoft.AspNet.Authentication.Cookies/Resources.Designer.cs
new file mode 100644
index 000000000..ef0e62fb4
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Resources.Designer.cs
@@ -0,0 +1,85 @@
+//------------------------------------------------------------------------------
+//
+// This code was generated by a tool.
+// Runtime Version:4.0.30319.34003
+//
+// Changes to this file may cause incorrect behavior and will be lost if
+// the code is regenerated.
+//
+//------------------------------------------------------------------------------
+
+namespace Microsoft.AspNet.Authentication.Cookies {
+ using System;
+
+
+ ///
+ /// A strongly-typed resource class, for looking up localized strings, etc.
+ ///
+ // This class was auto-generated by the StronglyTypedResourceBuilder
+ // class via a tool like ResGen or Visual Studio.
+ // To add or remove a member, edit your .ResX file then rerun ResGen
+ // with the /str option, or rebuild your VS project.
+ [global::System.CodeDom.Compiler.GeneratedCodeAttribute("System.Resources.Tools.StronglyTypedResourceBuilder", "4.0.0.0")]
+ [global::System.Diagnostics.DebuggerNonUserCodeAttribute()]
+ [global::System.Runtime.CompilerServices.CompilerGeneratedAttribute()]
+ internal class Resources {
+
+ private static global::System.Resources.ResourceManager resourceMan;
+
+ private static global::System.Globalization.CultureInfo resourceCulture;
+
+ [global::System.Diagnostics.CodeAnalysis.SuppressMessageAttribute("Microsoft.Performance", "CA1811:AvoidUncalledPrivateCode")]
+ internal Resources() {
+ }
+
+ ///
+ /// Returns the cached ResourceManager instance used by this class.
+ ///
+ [global::System.ComponentModel.EditorBrowsableAttribute(global::System.ComponentModel.EditorBrowsableState.Advanced)]
+ internal static global::System.Resources.ResourceManager ResourceManager {
+ get {
+ if (object.ReferenceEquals(resourceMan, null)) {
+ global::System.Resources.ResourceManager temp = new global::System.Resources.ResourceManager("Microsoft.AspNet.Authentication.Cookies.Resources", System.Reflection.IntrospectionExtensions.GetTypeInfo(typeof(Resources)).Assembly);
+ resourceMan = temp;
+ }
+ return resourceMan;
+ }
+ }
+
+ ///
+ /// Overrides the current thread's CurrentUICulture property for all
+ /// resource lookups using this strongly typed resource class.
+ ///
+ [global::System.ComponentModel.EditorBrowsableAttribute(global::System.ComponentModel.EditorBrowsableState.Advanced)]
+ internal static global::System.Globalization.CultureInfo Culture {
+ get {
+ return resourceCulture;
+ }
+ set {
+ resourceCulture = value;
+ }
+ }
+
+ ///
+ /// Looks up a localized string similar to The cookie key and options are larger than ChunksSize, leaving no room for data..
+ ///
+ internal static string Exception_CookieLimitTooSmall
+ {
+ get
+ {
+ return ResourceManager.GetString("Exception_CookieLimitTooSmall", resourceCulture);
+ }
+ }
+
+ ///
+ /// Looks up a localized string similar to The chunked cookie is incomplete. Only {0} of the expected {1} chunks were found, totaling {2} characters. A client size limit may have been exceeded..
+ ///
+ internal static string Exception_ImcompleteChunkedCookie
+ {
+ get
+ {
+ return ResourceManager.GetString("Exception_ImcompleteChunkedCookie", resourceCulture);
+ }
+ }
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/Resources.resx b/src/Microsoft.AspNet.Authentication.Cookies/Resources.resx
new file mode 100644
index 000000000..71debecfa
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/Resources.resx
@@ -0,0 +1,126 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ text/microsoft-resx
+
+
+ 2.0
+
+
+ System.Resources.ResXResourceReader, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
+
+
+ System.Resources.ResXResourceWriter, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
+
+
+ The cookie key and options are larger than ChunksSize, leaving no room for data.
+
+
+ The chunked cookie is incomplete. Only {0} of the expected {1} chunks were found, totaling {2} characters. A client size limit may have been exceeded.
+
+
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Cookies/project.json b/src/Microsoft.AspNet.Authentication.Cookies/project.json
new file mode 100644
index 000000000..28127904d
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Cookies/project.json
@@ -0,0 +1,14 @@
+{
+ "version": "1.0.0-*",
+ "description": "ASP.NET middleware that enables an application to use cookie based authentication, similar to ASP.NET's forms authentication.",
+ "dependencies": {
+ "Microsoft.AspNet.Authentication": "1.0.0-*",
+ "Microsoft.Framework.NotNullAttribute.Sources": { "type": "build", "version": "1.0.0-*" },
+ "Microsoft.Framework.WebEncoders": "1.0.0-*",
+ "Newtonsoft.Json": "6.0.6"
+ },
+ "frameworks": {
+ "dnx451": { },
+ "dnxcore50": { }
+ }
+}
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/FacebookAppBuilderExtensions.cs b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAppBuilderExtensions.cs
new file mode 100644
index 000000000..24e1e0726
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAppBuilderExtensions.cs
@@ -0,0 +1,30 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using Microsoft.AspNet.Authentication.Facebook;
+using Microsoft.Framework.Internal;
+using Microsoft.Framework.OptionsModel;
+
+namespace Microsoft.AspNet.Builder
+{
+ ///
+ /// Extension methods for using .
+ ///
+ public static class FacebookAppBuilderExtensions
+ {
+ ///
+ /// Authenticate users using Facebook.
+ ///
+ /// The passed to the configure method.
+ /// The updated .
+ public static IApplicationBuilder UseFacebookAuthentication([NotNull] this IApplicationBuilder app, Action configureOptions = null, string optionsName = "")
+ {
+ return app.UseMiddleware(
+ new ConfigureOptions(configureOptions ?? (o => { }))
+ {
+ Name = optionsName
+ });
+ }
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationDefaults.cs b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationDefaults.cs
new file mode 100644
index 000000000..54d48cbc5
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationDefaults.cs
@@ -0,0 +1,16 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+namespace Microsoft.AspNet.Authentication.Facebook
+{
+ public static class FacebookAuthenticationDefaults
+ {
+ public const string AuthenticationScheme = "Facebook";
+
+ public const string AuthorizationEndpoint = "https://www.facebook.com/v2.2/dialog/oauth";
+
+ public const string TokenEndpoint = "https://graph.facebook.com/v2.2/oauth/access_token";
+
+ public const string UserInformationEndpoint = "https://graph.facebook.com/v2.2/me";
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationHandler.cs b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationHandler.cs
new file mode 100644
index 000000000..291956409
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationHandler.cs
@@ -0,0 +1,126 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using System.Globalization;
+using System.Net.Http;
+using System.Security.Claims;
+using System.Security.Cryptography;
+using System.Text;
+using System.Threading.Tasks;
+using Microsoft.AspNet.Authentication.OAuth;
+using Microsoft.AspNet.Http.Authentication;
+using Microsoft.AspNet.Http.Extensions;
+using Microsoft.AspNet.Http.Internal;
+using Microsoft.AspNet.WebUtilities;
+using Newtonsoft.Json.Linq;
+
+namespace Microsoft.AspNet.Authentication.Facebook
+{
+ internal class FacebookAuthenticationHandler : OAuthAuthenticationHandler
+ {
+ public FacebookAuthenticationHandler(HttpClient httpClient)
+ : base(httpClient)
+ {
+ }
+
+ protected override async Task ExchangeCodeAsync(string code, string redirectUri)
+ {
+ var queryBuilder = new QueryBuilder()
+ {
+ { "grant_type", "authorization_code" },
+ { "code", code },
+ { "redirect_uri", redirectUri },
+ { "client_id", Options.AppId },
+ { "client_secret", Options.AppSecret },
+ };
+
+ var tokenResponse = await Backchannel.GetAsync(Options.TokenEndpoint + queryBuilder.ToString(), Context.RequestAborted);
+ tokenResponse.EnsureSuccessStatusCode();
+ var oauthTokenResponse = await tokenResponse.Content.ReadAsStringAsync();
+
+ var form = new FormCollection(FormReader.ReadForm(oauthTokenResponse));
+ var response = new JObject();
+ foreach (string key in form.Keys)
+ {
+ response.Add(string.Equals(key, "expires", StringComparison.OrdinalIgnoreCase) ? "expires_in" : key, form[key]);
+ }
+ // The refresh token is not available.
+ return new TokenResponse(response);
+ }
+
+ protected override async Task GetUserInformationAsync(AuthenticationProperties properties, TokenResponse tokens)
+ {
+ var graphAddress = Options.UserInformationEndpoint + "?access_token=" + UrlEncoder.UrlEncode(tokens.AccessToken);
+ if (Options.SendAppSecretProof)
+ {
+ graphAddress += "&appsecret_proof=" + GenerateAppSecretProof(tokens.AccessToken);
+ }
+
+ var graphResponse = await Backchannel.GetAsync(graphAddress, Context.RequestAborted);
+ graphResponse.EnsureSuccessStatusCode();
+ var text = await graphResponse.Content.ReadAsStringAsync();
+ var user = JObject.Parse(text);
+
+ var context = new FacebookAuthenticatedContext(Context, Options, user, tokens);
+ var identity = new ClaimsIdentity(
+ Options.ClaimsIssuer,
+ ClaimsIdentity.DefaultNameClaimType,
+ ClaimsIdentity.DefaultRoleClaimType);
+ if (!string.IsNullOrEmpty(context.Id))
+ {
+ identity.AddClaim(new Claim(ClaimTypes.NameIdentifier, context.Id, ClaimValueTypes.String, Options.ClaimsIssuer));
+ }
+ if (!string.IsNullOrEmpty(context.UserName))
+ {
+ identity.AddClaim(new Claim(ClaimsIdentity.DefaultNameClaimType, context.UserName, ClaimValueTypes.String, Options.ClaimsIssuer));
+ }
+ if (!string.IsNullOrEmpty(context.Email))
+ {
+ identity.AddClaim(new Claim(ClaimTypes.Email, context.Email, ClaimValueTypes.String, Options.ClaimsIssuer));
+ }
+ if (!string.IsNullOrEmpty(context.Name))
+ {
+ identity.AddClaim(new Claim("urn:facebook:name", context.Name, ClaimValueTypes.String, Options.ClaimsIssuer));
+
+ // Many Facebook accounts do not set the UserName field. Fall back to the Name field instead.
+ if (string.IsNullOrEmpty(context.UserName))
+ {
+ identity.AddClaim(new Claim(ClaimsIdentity.DefaultNameClaimType, context.Name, ClaimValueTypes.String, Options.ClaimsIssuer));
+ }
+ }
+ if (!string.IsNullOrEmpty(context.Link))
+ {
+ identity.AddClaim(new Claim("urn:facebook:link", context.Link, ClaimValueTypes.String, Options.ClaimsIssuer));
+ }
+ context.Properties = properties;
+ context.Principal = new ClaimsPrincipal(identity);
+
+ await Options.Notifications.Authenticated(context);
+
+ return new AuthenticationTicket(context.Principal, context.Properties, context.Options.AuthenticationScheme);
+ }
+
+ private string GenerateAppSecretProof(string accessToken)
+ {
+ using (var algorithm = new HMACSHA256(Encoding.ASCII.GetBytes(Options.AppSecret)))
+ {
+ var hash = algorithm.ComputeHash(Encoding.ASCII.GetBytes(accessToken));
+ var builder = new StringBuilder();
+ for (int i = 0; i < hash.Length; i++)
+ {
+ builder.Append(hash[i].ToString("x2", CultureInfo.InvariantCulture));
+ }
+ return builder.ToString();
+ }
+ }
+
+ protected override string FormatScope()
+ {
+ // Facebook deviates from the OAuth spec here. They require comma separated instead of space separated.
+ // https://developers.facebook.com/docs/reference/dialogs/oauth
+ // http://tools.ietf.org/html/rfc6749#section-3.3
+ return string.Join(",", Options.Scope);
+ }
+ }
+}
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationMiddleware.cs b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationMiddleware.cs
new file mode 100644
index 000000000..4eab19ddb
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationMiddleware.cs
@@ -0,0 +1,62 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using System.Globalization;
+using Microsoft.AspNet.Authentication.OAuth;
+using Microsoft.AspNet.Builder;
+using Microsoft.AspNet.DataProtection;
+using Microsoft.Framework.Internal;
+using Microsoft.Framework.Logging;
+using Microsoft.Framework.OptionsModel;
+using Microsoft.Framework.WebEncoders;
+
+namespace Microsoft.AspNet.Authentication.Facebook
+{
+ ///
+ /// An ASP.NET middleware for authenticating users using Facebook.
+ ///
+ public class FacebookAuthenticationMiddleware : OAuthAuthenticationMiddleware
+ {
+ ///
+ /// Initializes a new .
+ ///
+ /// The next middleware in the application pipeline to invoke.
+ ///
+ ///
+ /// Configuration options for the middleware.
+ public FacebookAuthenticationMiddleware(
+ [NotNull] RequestDelegate next,
+ [NotNull] IDataProtectionProvider dataProtectionProvider,
+ [NotNull] ILoggerFactory loggerFactory,
+ [NotNull] IUrlEncoder encoder,
+ [NotNull] IOptions externalOptions,
+ [NotNull] IOptions options,
+ ConfigureOptions configureOptions = null)
+ : base(next, dataProtectionProvider, loggerFactory, encoder, externalOptions, options, configureOptions)
+ {
+ if (string.IsNullOrWhiteSpace(Options.AppId))
+ {
+ throw new ArgumentException(string.Format(CultureInfo.CurrentCulture, Resources.Exception_OptionMustBeProvided, nameof(Options.AppId)));
+ }
+ if (string.IsNullOrWhiteSpace(Options.AppSecret))
+ {
+ throw new ArgumentException(string.Format(CultureInfo.CurrentCulture, Resources.Exception_OptionMustBeProvided, nameof(Options.AppSecret)));
+ }
+
+ if (Options.Notifications == null)
+ {
+ Options.Notifications = new FacebookAuthenticationNotifications();
+ }
+ }
+
+ ///
+ /// Provides the object for processing authentication-related requests.
+ ///
+ /// An configured with the supplied to the constructor.
+ protected override AuthenticationHandler CreateHandler()
+ {
+ return new FacebookAuthenticationHandler(Backchannel);
+ }
+ }
+}
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationOptions.cs b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationOptions.cs
new file mode 100644
index 000000000..c7ba48aab
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/FacebookAuthenticationOptions.cs
@@ -0,0 +1,54 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Authentication.OAuth;
+
+namespace Microsoft.AspNet.Authentication.Facebook
+{
+ ///
+ /// Configuration options for .
+ ///
+ public class FacebookAuthenticationOptions : OAuthAuthenticationOptions
+ {
+ ///
+ /// Initializes a new .
+ ///
+ public FacebookAuthenticationOptions()
+ {
+ AuthenticationScheme = FacebookAuthenticationDefaults.AuthenticationScheme;
+ Caption = AuthenticationScheme;
+ CallbackPath = new PathString("/signin-facebook");
+ SendAppSecretProof = true;
+ AuthorizationEndpoint = FacebookAuthenticationDefaults.AuthorizationEndpoint;
+ TokenEndpoint = FacebookAuthenticationDefaults.TokenEndpoint;
+ UserInformationEndpoint = FacebookAuthenticationDefaults.UserInformationEndpoint;
+ }
+
+ // Facebook uses a non-standard term for this field.
+ ///
+ /// Gets or sets the Facebook-assigned appId.
+ ///
+ public string AppId
+ {
+ get { return ClientId; }
+ set { ClientId = value; }
+ }
+
+ // Facebook uses a non-standard term for this field.
+ ///
+ /// Gets or sets the Facebook-assigned app secret.
+ ///
+ public string AppSecret
+ {
+ get { return ClientSecret; }
+ set { ClientSecret = value; }
+ }
+
+ ///
+ /// Gets or sets if the appsecret_proof should be generated and sent with Facebook API calls.
+ /// This is enabled by default.
+ ///
+ public bool SendAppSecretProof { get; set; }
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/FacebookServiceCollectionExtensions.cs b/src/Microsoft.AspNet.Authentication.Facebook/FacebookServiceCollectionExtensions.cs
new file mode 100644
index 000000000..911dd18b8
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/FacebookServiceCollectionExtensions.cs
@@ -0,0 +1,36 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using Microsoft.AspNet.Authentication.Facebook;
+using Microsoft.Framework.Configuration;
+using Microsoft.Framework.Internal;
+
+namespace Microsoft.Framework.DependencyInjection
+{
+ ///
+ /// Extension methods for using .
+ ///
+ public static class FacebookServiceCollectionExtensions
+ {
+ public static IServiceCollection ConfigureFacebookAuthentication([NotNull] this IServiceCollection services, [NotNull] Action configure)
+ {
+ return services.ConfigureFacebookAuthentication(configure, optionsName: "");
+ }
+
+ public static IServiceCollection ConfigureFacebookAuthentication([NotNull] this IServiceCollection services, [NotNull] Action configure, string optionsName)
+ {
+ return services.Configure(configure, optionsName);
+ }
+
+ public static IServiceCollection ConfigureFacebookAuthentication([NotNull] this IServiceCollection services, [NotNull] IConfiguration config)
+ {
+ return services.ConfigureFacebookAuthentication(config, optionsName: "");
+ }
+
+ public static IServiceCollection ConfigureFacebookAuthentication([NotNull] this IServiceCollection services, [NotNull] IConfiguration config, string optionsName)
+ {
+ return services.Configure(config, optionsName);
+ }
+ }
+}
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/Microsoft.AspNet.Authentication.Facebook.xproj b/src/Microsoft.AspNet.Authentication.Facebook/Microsoft.AspNet.Authentication.Facebook.xproj
new file mode 100644
index 000000000..68ee50c4b
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/Microsoft.AspNet.Authentication.Facebook.xproj
@@ -0,0 +1,17 @@
+
+
+
+ 14.0
+ $(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)
+
+
+
+ eeaaee68-607b-4e33-af3e-45c66b4dba5a
+ ..\..\artifacts\obj\$(MSBuildProjectName)
+ ..\..\artifacts\bin\$(MSBuildProjectName)\
+
+
+ 2.0
+
+
+
\ No newline at end of file
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/Notifications/FacebookAuthenticatedContext.cs b/src/Microsoft.AspNet.Authentication.Facebook/Notifications/FacebookAuthenticatedContext.cs
new file mode 100644
index 000000000..321b78f8b
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/Notifications/FacebookAuthenticatedContext.cs
@@ -0,0 +1,62 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using Microsoft.AspNet.Http;
+using Microsoft.AspNet.Authentication.OAuth;
+using Newtonsoft.Json.Linq;
+
+namespace Microsoft.AspNet.Authentication.Facebook
+{
+ ///
+ /// Contains information about the login session as well as the user .
+ ///
+ public class FacebookAuthenticatedContext : OAuthAuthenticatedContext
+ {
+ ///
+ /// Initializes a new .
+ ///
+ /// The HTTP environment.
+ /// The JSON-serialized user.
+ /// The Facebook Access token.
+ public FacebookAuthenticatedContext(HttpContext context, OAuthAuthenticationOptions options, JObject user, TokenResponse tokens)
+ : base(context, options, user, tokens)
+ {
+ Id = TryGetValue(user, "id");
+ Name = TryGetValue(user, "name");
+ Link = TryGetValue(user, "link");
+ UserName = TryGetValue(user, "username");
+ Email = TryGetValue(user, "email");
+ }
+
+ ///
+ /// Gets the Facebook user ID.
+ ///
+ public string Id { get; private set; }
+
+ ///
+ /// Gets the user's name.
+ ///
+ public string Name { get; private set; }
+
+ ///
+ /// Gets the user's link.
+ ///
+ public string Link { get; private set; }
+
+ ///
+ /// Gets the Facebook username.
+ ///
+ public string UserName { get; private set; }
+
+ ///
+ /// Gets the Facebook email.
+ ///
+ public string Email { get; private set; }
+
+ private static string TryGetValue(JObject user, string propertyName)
+ {
+ JToken value;
+ return user.TryGetValue(propertyName, out value) ? value.ToString() : null;
+ }
+ }
+}
diff --git a/src/Microsoft.AspNet.Authentication.Facebook/Notifications/FacebookAuthenticationNotifications.cs b/src/Microsoft.AspNet.Authentication.Facebook/Notifications/FacebookAuthenticationNotifications.cs
new file mode 100644
index 000000000..acee5b54e
--- /dev/null
+++ b/src/Microsoft.AspNet.Authentication.Facebook/Notifications/FacebookAuthenticationNotifications.cs
@@ -0,0 +1,38 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using System.Threading.Tasks;
+using Microsoft.AspNet.Authentication.OAuth;
+
+namespace Microsoft.AspNet.Authentication.Facebook
+{
+ ///
+ /// The default implementation.
+ ///
+ public class FacebookAuthenticationNotifications : OAuthAuthenticationNotifications, IFacebookAuthenticationNotifications
+ {
+ ///
+ /// Initializes a new .
+ ///
+ public FacebookAuthenticationNotifications()
+ {
+ OnAuthenticated = context => Task.FromResult