Applied token configuration via appsettings

marcusca10 · marcusca10 · commit 1cb35369d1b4 · 2020-02-24T00:08:07.000+01:00
diff --git a/Microsoft.SCIM.WebHostSample/Controllers/TokenController.cs b/Microsoft.SCIM.WebHostSample/Controllers/TokenController.cs
@@ -1,4 +1,5 @@
 ﻿using Microsoft.AspNetCore.Mvc;
+using Microsoft.Extensions.Configuration;
 using Microsoft.IdentityModel.Tokens;
 using System;
 using System.Collections.Generic;
@@ -11,26 +12,32 @@ namespace Microsoft.SCIM.WebHostSample.Controllers
 {
     // Controller for generating a bearer token for authorization during testing.
     // This is not meant to replace proper Oauth for authentication purposes.
-    [Route(ServiceConstants.RouteToken)]
+    [Route("scim/token")]
     [ApiController]
-    public class KeyController : ControllerBase
+    public class TokenController : ControllerBase
     {
-        private const int TokenLifetimeInMins = 120;
+        private readonly IConfiguration _configuration;
+        //private const int TokenLifetimeInMins = 120;
 
-        private static string GenerateJSONWebToken()
+        public TokenController(IConfiguration Configuration)
+        {
+            _configuration = Configuration;
+        }
+
+        private string GenerateJSONWebToken()
         {
             SymmetricSecurityKey securityKey =
-                new SymmetricSecurityKey(Encoding.UTF8.GetBytes(ServiceConstants.TokenIssuer));
+                new SymmetricSecurityKey(Encoding.UTF8.GetBytes(this._configuration["Token:IssuerSigningKey"]));
             SigningCredentials credentials =
                 new SigningCredentials(securityKey, SecurityAlgorithms.HmacSha256);
 
             DateTime startTime = DateTime.UtcNow;
-            DateTime expiryTime = startTime.AddMinutes(KeyController.TokenLifetimeInMins);
+            DateTime expiryTime = startTime.AddMinutes(double.Parse(this._configuration["Token:TokenLifetimeInMins"]));
 
             JwtSecurityToken token =
                 new JwtSecurityToken(
-                    ServiceConstants.TokenIssuer,
-                    ServiceConstants.TokenAudience,
+                    this._configuration["Token:TokenIssuer"],
+                    this._configuration["Token:TokenAudience"],
                     null,
                     notBefore: startTime,
                     expires: expiryTime,
@@ -43,7 +50,7 @@ private static string GenerateJSONWebToken()
         [HttpGet]
         public ActionResult Get()
         {
-            string tokenString = KeyController.GenerateJSONWebToken();
+            string tokenString = this.GenerateJSONWebToken();
             return this.Ok(new { token = tokenString });
         }
 
diff --git a/Microsoft.SCIM.WebHostSample/Startup.cs b/Microsoft.SCIM.WebHostSample/Startup.cs
@@ -8,6 +8,7 @@
 using Microsoft.AspNetCore.Hosting;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Routing;
+using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.Extensions.Hosting;
 using Microsoft.IdentityModel.Tokens;
@@ -17,11 +18,15 @@ namespace Microsoft.SCIM.WebHostSample
 {
     public class Startup
     {
+        private readonly IConfiguration _configuration;
+
         public IMonitor MonitoringBehavior { get; set; }
         public IProvider ProviderBehavior { get; set; }
 
-        public Startup()
+        public Startup(IConfiguration configuration)
         {
+            this._configuration = configuration;
+
             this.MonitoringBehavior = new ConsoleMonitor();
             this.ProviderBehavior = new InMemoryProvider();
         }
@@ -45,9 +50,9 @@ public void ConfigureServices(IServiceCollection services)
                             ValidateAudience = false,
                             ValidateLifetime = false,
                             ValidateIssuerSigningKey = false,
-                            ValidIssuer = ServiceConstants.TokenIssuer,
-                            ValidAudience = ServiceConstants.TokenAudience,
-                            IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(ServiceConstants.TokenIssuer))
+                            ValidIssuer = this._configuration["Token:TokenIssuer"],
+                            ValidAudience = this._configuration["Token:TokenAudience"],
+                            IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(this._configuration["Token:IssuerSigningKey"]))
                         };
                 });
 
diff --git a/Microsoft.SCIM.WebHostSample/appsettings.Development.json b/Microsoft.SCIM.WebHostSample/appsettings.Development.json
@@ -5,5 +5,11 @@
       "Microsoft": "Warning",
       "Microsoft.Hosting.Lifetime": "Information"
     }
+  },
+  "Token": {
+    "TokenAudience": "Microsoft.Security.Bearer",
+    "TokenIssuer": "Microsoft.Security.Bearer",
+    "IssuerSigningKey": "A1B2C3D4E5F6A1B2C3D4E5F6",
+    "TokenLifetimeInMins": "120"
   }
 }
diff --git a/Microsoft.SystemForCrossDomainIdentityManagement/Service/ServiceConstants.cs b/Microsoft.SystemForCrossDomainIdentityManagement/Service/ServiceConstants.cs
@@ -7,20 +7,20 @@ namespace Microsoft.SCIM
     public static class ServiceConstants
     {
         public const string PathSegmentResourceTypes = "ResourceTypes";
-        public const string PathSegmentToken = "token";
+        //public const string PathSegmentToken = "token";
         public const string PathSegmentSchemas = "Schemas";
         public const string PathSegmentServiceProviderConfiguration = "ServiceProviderConfig";
 
         public const string RouteGroups = SchemaConstants.PathInterface + ServiceConstants.SeparatorSegments + ProtocolConstants.PathGroups;
         public const string RouteResourceTypes = SchemaConstants.PathInterface + ServiceConstants.SeparatorSegments + ServiceConstants.PathSegmentResourceTypes;
         public const string RouteSchemas = SchemaConstants.PathInterface + ServiceConstants.SeparatorSegments + ServiceConstants.PathSegmentSchemas;
         public const string RouteServiceConfiguration = SchemaConstants.PathInterface + ServiceConstants.SeparatorSegments + ServiceConstants.PathSegmentServiceProviderConfiguration;
-        public const string RouteToken = SchemaConstants.PathInterface + ServiceConstants.SeparatorSegments + ServiceConstants.PathSegmentToken;
+        //public const string RouteToken = SchemaConstants.PathInterface + ServiceConstants.SeparatorSegments + ServiceConstants.PathSegmentToken;
         public const string RouteUsers = SchemaConstants.PathInterface + ServiceConstants.SeparatorSegments + ProtocolConstants.PathUsers;
 
         public const string SeparatorSegments = "/";
 
-        public const string TokenAudience = "Microsoft.Security.Bearer";
-        public const string TokenIssuer = "Microsoft.Security.Bearer";
+        //public const string TokenAudience = "Microsoft.Security.Bearer";
+        //public const string TokenIssuer = "Microsoft.Security.Bearer";
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -5,5 +5,11 @@`
`5`	`5`	`"Microsoft": "Warning",`
`6`	`6`	`"Microsoft.Hosting.Lifetime": "Information"`
`7`	`7`	`}`
	`8`	`+ },`
	`9`	`+ "Token": {`
	`10`	`+ "TokenAudience": "Microsoft.Security.Bearer",`
	`11`	`+ "TokenIssuer": "Microsoft.Security.Bearer",`
	`12`	`+ "IssuerSigningKey": "A1B2C3D4E5F6A1B2C3D4E5F6",`
	`13`	`+ "TokenLifetimeInMins": "120"`
`8`	`14`	`}`
`9`	`15`	`}`