Fixes for step 4:

Tiago Brenck · Tiago Brenck · commit f23b270dc7ab · 2019-09-03T12:20:46.000-07:00
- Removed DefaultMapInboundClaims
- Removed miss configuration on WebApiServiceCollectionExtensions
- Added token cache for web api
diff --git a/4-WebApp-your-API/Client/Startup.cs b/4-WebApp-your-API/Client/Startup.cs
@@ -40,7 +40,7 @@ public void ConfigureServices(IServiceCollection services)
             // By default, the claims mapping will map claim names in the old format to accommodate older SAML applications.
             // 'http://schemas.microsoft.com/ws/2008/06/identity/claims/role' instead of 'roles'
             // This flag ensures that the ClaimsIdentity claims collection will be built from the claims in the token
-            JwtSecurityTokenHandler.DefaultMapInboundClaims = false;
+            //JwtSecurityTokenHandler.DefaultMapInboundClaims = false;
 
             // Token acquisition service based on MSAL.NET
             // and chosen token cache implementation
diff --git a/4-WebApp-your-API/TodoListService/Startup.cs b/4-WebApp-your-API/TodoListService/Startup.cs
@@ -51,13 +51,10 @@ public void ConfigureServices(IServiceCollection services)
             // By default, the claims mapping will map claim names in the old format to accommodate older SAML applications.
             // 'http://schemas.microsoft.com/ws/2008/06/identity/claims/role' instead of 'roles'
             // This flag ensures that the ClaimsIdentity claims collection will be built from the claims in the token
-            JwtSecurityTokenHandler.DefaultMapInboundClaims = false;
+            //JwtSecurityTokenHandler.DefaultMapInboundClaims = false;
 
-            services.AddProtectedWebApi(Configuration);
-            services.Configure<JwtBearerOptions>(AzureADDefaults.JwtBearerAuthenticationScheme, options =>
-            {
-                options.TokenValidationParameters.NameClaimType = "name";
-            });
+            services.AddProtectedWebApi(Configuration)
+                .AddInMemoryTokenCaches();
 
             services.AddMvc().SetCompatibilityVersion(CompatibilityVersion.Version_2_2);
         }
diff --git a/Microsoft.Identity.Web/WebApiServiceCollectionExtensions.cs b/Microsoft.Identity.Web/WebApiServiceCollectionExtensions.cs
@@ -41,7 +41,7 @@ public static IServiceCollection AddProtectedWebApi(
             string configSectionName = "AzureAD",
             bool subscribeToJwtBearerMiddlewareDiagnosticsEvents = false)
         {
-            services.Configure<AzureADOptions>(options => configuration.Bind(configSectionName, options));
+            //services.Configure<AzureADOptions>(options => configuration.Bind(configSectionName, options));
             services.AddAuthentication(AzureADDefaults.JwtBearerAuthenticationScheme)
                     .AddAzureADBearer(options => configuration.Bind(configSectionName, options));
 

Original file line number	Diff line number	Diff line change
`@@ -41,7 +41,7 @@ public static IServiceCollection AddProtectedWebApi(`
`41`	`41`	`string configSectionName = "AzureAD",`
`42`	`42`	`bool subscribeToJwtBearerMiddlewareDiagnosticsEvents = false)`
`43`	`43`	`{`
`44`		`- services.Configure<AzureADOptions>(options => configuration.Bind(configSectionName, options));`
	`44`	`+ //services.Configure<AzureADOptions>(options => configuration.Bind(configSectionName, options));`
`45`	`45`	`services.AddAuthentication(AzureADDefaults.JwtBearerAuthenticationScheme)`
`46`	`46`	`.AddAzureADBearer(options => configuration.Bind(configSectionName, options));`
`47`	`47`