AzureFunctions.Authentication.LocalhostAuthProvider.AuthenticateIdToken C# (CSharp) Method

LocalhostAuthProvider Class Documentation Datei anzeigen Open project: projectkudu/AzureFunctionsPortal

AuthenticateIdToken() private method

private AuthenticateIdToken ( System.Web.HttpContextBase context, string id_token ) : ClaimsPrincipal
context System.Web.HttpContextBase
id_token string
return System.Security.Claims.ClaimsPrincipal 
        private ClaimsPrincipal AuthenticateIdToken(HttpContextBase context, string id_token)
        {
            var config = OpenIdConfiguration.Current;
            var handler = new JwtSecurityTokenHandler();
            handler.CertificateValidator = X509CertificateValidator.None;
            if (!handler.CanReadToken(id_token))
            {
                throw new InvalidOperationException("No SecurityTokenHandler can authenticate this id_token!");
            }

            var parameters = new TokenValidationParameters();
            parameters.AllowedAudience = SecuritySettings.AADClientId;
            // this is just for Saml
            // paramaters.AudienceUriMode = AudienceUriMode.Always;
            parameters.ValidateIssuer = false;

            var tokens = new List<SecurityToken>();
            foreach (var key in config.IssuerKeys.Keys)
            {
                tokens.AddRange(key.GetSecurityTokens());
            }
            parameters.SigningTokens = tokens;

            // validate
            var principal = (ClaimsPrincipal)handler.ValidateToken(id_token, parameters);

            // verify nonce
            VerifyNonce(principal.FindFirst(NonceClaimType).Value);

            return principal;
        }
LocalhostAuthProvider
AuthenticateIdToken
DecodeCookie
EncodeCookie
GenerateNonce
GetLoginUrl
GetLogoutUrl
PutOnCorrectTenant
ReadOAuthTokenCookie
RemoveSessionCookie
SwitchTenants
TryAuthenticateRequest
VerifyNonce
WriteOAuthTokenCookie