Add an Autodesk provider

hotchkj · kevinchalet · commit 4d5a766b06e4 · 2017-03-07T13:48:41.000+01:00
diff --git a/AspNet.Security.OAuth.Providers.sln b/AspNet.Security.OAuth.Providers.sln
@@ -85,6 +85,8 @@ Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "AspNet.Security.OAuth.Untap
 EndProject
 Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "AspNet.Security.OAuth.MailChimp", "src\AspNet.Security.OAuth.MailChimp\AspNet.Security.OAuth.MailChimp.xproj", "{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}"
 EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "AspNet.Security.OAuth.Autodesk", "src\AspNet.Security.OAuth.Autodesk\AspNet.Security.OAuth.Autodesk.xproj", "{92406BD8-0270-4BF9-B860-D1AE6508DF8C}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -247,6 +249,10 @@ Global
 		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}.Release|Any CPU.Build.0 = Release|Any CPU
+		{92406BD8-0270-4BF9-B860-D1AE6508DF8C}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{92406BD8-0270-4BF9-B860-D1AE6508DF8C}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{92406BD8-0270-4BF9-B860-D1AE6508DF8C}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{92406BD8-0270-4BF9-B860-D1AE6508DF8C}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -291,5 +297,6 @@ Global
 		{F276EB53-7758-4CEE-8013-61BA537B94C6} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 		{C17F7C35-4CAD-408F-9031-44EF1A3CC379} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
+		{92406BD8-0270-4BF9-B860-D1AE6508DF8C} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 	EndGlobalSection
 EndGlobal
diff --git a/samples/Mvc.Client/project.json b/samples/Mvc.Client/project.json
@@ -17,6 +17,7 @@
   "dependencies": {
     "AspNet.Security.OAuth.ArcGIS": { "target": "project" },
     "AspNet.Security.OAuth.Asana": { "target": "project" },
+    "AspNet.Security.OAuth.Autodesk": { "target": "project" },
     "AspNet.Security.OAuth.Automatic": { "target": "project" },
     "AspNet.Security.OAuth.Beam": { "target": "project" },
     "AspNet.Security.OAuth.BattleNet": { "target": "project" },
diff --git a/src/AspNet.Security.OAuth.Autodesk/AspNet.Security.OAuth.Autodesk.xproj b/src/AspNet.Security.OAuth.Autodesk/AspNet.Security.OAuth.Autodesk.xproj
@@ -0,0 +1,18 @@
+﻿<?xml version="1.0" encoding="utf-8"?>
+<Project ToolsVersion="14.0" DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <PropertyGroup>
+    <VisualStudioVersion Condition="'$(VisualStudioVersion)' == ''">14.0</VisualStudioVersion>
+    <VSToolsPath Condition="'$(VSToolsPath)' == ''">$(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)</VSToolsPath>
+  </PropertyGroup>
+  <Import Project="$(VSToolsPath)\DotNet\Microsoft.DotNet.Props" Condition="'$(VSToolsPath)' != ''" />
+  <PropertyGroup Label="Globals">
+    <ProjectGuid>92406bd8-0270-4bf9-b860-d1ae6508df8c</ProjectGuid>
+    <RootNamespace>AspNet.Security.OAuth.Autodesk</RootNamespace>
+    <BaseIntermediateOutputPath Condition="'$(BaseIntermediateOutputPath)'=='' ">.\obj</BaseIntermediateOutputPath>
+    <OutputPath Condition="'$(OutputPath)'=='' ">.\bin\</OutputPath>
+  </PropertyGroup>
+  <PropertyGroup>
+    <SchemaVersion>2.0</SchemaVersion>
+  </PropertyGroup>
+  <Import Project="$(VSToolsPath)\DotNet\Microsoft.DotNet.targets" Condition="'$(VSToolsPath)' != ''" />
+</Project>
diff --git a/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationConstants.cs b/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationConstants.cs
@@ -0,0 +1,37 @@
+﻿/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+namespace AspNet.Security.OAuth.Autodesk
+{
+    /// <summary>
+    /// Constants used by the Autodesk authentication middleware.
+    /// </summary>
+    public static class AutodeskAuthenticationConstants
+    {
+        public static class Claims
+        {
+            /// <summary>
+            /// Name of the claim containing a boolean value indicating
+            /// whether the user's email has been verified.
+            /// </summary>
+            public const string EmailVerified = "urn:autodesk:emailverified";
+
+            /// <summary>
+            /// Name of the claim containing a boolean value indicating
+            /// whether the user has enabled two factor authentication.
+            /// </summary>
+            public const string TwoFactorEnabled = "urn:autodesk:twofactorenabled";
+        }
+
+        public static class Scopes
+        {
+            /// <summary>
+            /// Name of the OAuth2 scope used for reading Autodesk user profile.
+            /// </summary>
+            public const string UserProfileRead = "user-profile:read";
+        }
+    }
+}
diff --git a/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationDefaults.cs b/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationDefaults.cs
@@ -0,0 +1,51 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using Microsoft.AspNetCore.Builder;
+
+namespace AspNet.Security.OAuth.Autodesk
+{
+    /// <summary>
+    /// Default values used by the Autodesk authentication middleware.
+    /// </summary>
+    public static class AutodeskAuthenticationDefaults
+    {
+        /// <summary>
+        /// Default value for <see cref="AuthenticationOptions.AuthenticationScheme"/>.
+        /// </summary>
+        public const string AuthenticationScheme = "Autodesk";
+
+        /// <summary>
+        /// Default value for <see cref="RemoteAuthenticationOptions.DisplayName"/>.
+        /// </summary>
+        public const string DisplayName = "Autodesk";
+
+        /// <summary>
+        /// Default value for <see cref="AuthenticationOptions.ClaimsIssuer"/>.
+        /// </summary>
+        public const string Issuer = "Autodesk";
+
+        /// <summary>
+        /// Default value for <see cref="RemoteAuthenticationOptions.CallbackPath"/>.
+        /// </summary>
+        public const string CallbackPath = "/signin-autodesk";
+
+        /// <summary>
+        /// Default value for <see cref="OAuthOptions.AuthorizationEndpoint"/>.
+        /// </summary>
+        public const string AuthorizationEndpoint = "https://developer.api.autodesk.com/authentication/v1/authorize";
+
+        /// <summary>
+        /// Default value for <see cref="OAuthOptions.TokenEndpoint"/>.
+        /// </summary>
+        public const string TokenEndpoint = "https://developer.api.autodesk.com/authentication/v1/gettoken";
+
+        /// <summary>
+        /// Default value for <see cref="OAuthOptions.UserInformationEndpoint"/>.
+        /// </summary>
+        public const string UserInformationEndpoint = "https://developer.api.autodesk.com/userprofile/v1/users/@me";
+    }
+}
diff --git a/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationExtensions.cs b/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationExtensions.cs
@@ -0,0 +1,70 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using System;
+using AspNet.Security.OAuth.Autodesk;
+using JetBrains.Annotations;
+using Microsoft.Extensions.Options;
+
+namespace Microsoft.AspNetCore.Builder
+{
+    /// <summary>
+    /// Extension methods to add Autodesk authentication capabilities to an HTTP application pipeline.
+    /// </summary>
+    public static class AutodeskAuthenticationExtensions
+    {
+        /// <summary>
+        /// Adds the <see cref="AutodeskAuthenticationMiddleware"/> middleware to the specified
+        /// <see cref="IApplicationBuilder"/>, which enables Autodesk authentication capabilities.
+        /// </summary>
+        /// <param name="app">The <see cref="IApplicationBuilder"/> to add the middleware to.</param>
+        /// <param name="options">A <see cref="AutodeskAuthenticationOptions"/> that specifies options for the middleware.</param>        
+        /// <returns>A reference to this instance after the operation has completed.</returns>
+        public static IApplicationBuilder UseAutodeskAuthentication(
+            [NotNull] this IApplicationBuilder app,
+            [NotNull] AutodeskAuthenticationOptions options)
+        {
+            if (app == null)
+            {
+                throw new ArgumentNullException(nameof(app));
+            }
+
+            if (options == null)
+            {
+                throw new ArgumentNullException(nameof(options));
+            }
+
+            return app.UseMiddleware<AutodeskAuthenticationMiddleware>(Options.Create(options));
+        }
+
+        /// <summary>
+        /// Adds the <see cref="AutodeskAuthenticationMiddleware"/> middleware to the specified
+        /// <see cref="IApplicationBuilder"/>, which enables Autodesk authentication capabilities.
+        /// </summary>
+        /// <param name="app">The <see cref="IApplicationBuilder"/> to add the middleware to.</param>
+        /// <param name="configuration">An action delegate to configure the provided <see cref="AutodeskAuthenticationOptions"/>.</param>
+        /// <returns>A reference to this instance after the operation has completed.</returns>
+        public static IApplicationBuilder UseAutodeskAuthentication(
+            [NotNull] this IApplicationBuilder app,
+            [NotNull] Action<AutodeskAuthenticationOptions> configuration)
+        {
+            if (app == null)
+            {
+                throw new ArgumentNullException(nameof(app));
+            }
+
+            if (configuration == null)
+            {
+                throw new ArgumentNullException(nameof(configuration));
+            }
+
+            var options = new AutodeskAuthenticationOptions();
+            configuration(options);
+
+            return app.UseMiddleware<AutodeskAuthenticationMiddleware>(Options.Create(options));
+        }
+    }
+}
diff --git a/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationHandler.cs b/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationHandler.cs
@@ -0,0 +1,56 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using System.Net.Http;
+using System.Net.Http.Headers;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using AspNet.Security.OAuth.Extensions;
+using JetBrains.Annotations;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.OAuth;
+using Microsoft.AspNetCore.Http.Authentication;
+using Newtonsoft.Json.Linq;
+
+namespace AspNet.Security.OAuth.Autodesk
+{
+    public class AutodeskAuthenticationHandler : OAuthHandler<AutodeskAuthenticationOptions>
+    {
+        public AutodeskAuthenticationHandler([NotNull] HttpClient client)
+            : base(client)
+        {
+        }
+
+        protected override async Task<AuthenticationTicket> CreateTicketAsync([NotNull] ClaimsIdentity identity,
+            [NotNull] AuthenticationProperties properties, [NotNull] OAuthTokenResponse tokens)
+        {
+            var request = new HttpRequestMessage(HttpMethod.Get, Options.UserInformationEndpoint);
+            request.Headers.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));
+            request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", tokens.AccessToken);
+
+            var response = await Backchannel.SendAsync(request, HttpCompletionOption.ResponseHeadersRead, Context.RequestAborted);
+            response.EnsureSuccessStatusCode();
+
+            var payload = JObject.Parse(await response.Content.ReadAsStringAsync());
+
+            identity.AddOptionalClaim(ClaimTypes.NameIdentifier, AutodeskAuthenticationHelper.GetUserId(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim(ClaimTypes.Name, AutodeskAuthenticationHelper.GetUserName(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim(ClaimTypes.GivenName, AutodeskAuthenticationHelper.GetFirstName(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim(ClaimTypes.Surname, AutodeskAuthenticationHelper.GetLastName(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim(ClaimTypes.Email, AutodeskAuthenticationHelper.GetEmailAddress(payload), ClaimValueTypes.Email, Options.ClaimsIssuer)
+                    .AddOptionalClaim(AutodeskAuthenticationConstants.Claims.EmailVerified, AutodeskAuthenticationHelper.GetEmailVerified(payload), ClaimValueTypes.Boolean, Options.ClaimsIssuer)
+                    .AddOptionalClaim(AutodeskAuthenticationConstants.Claims.TwoFactorEnabled, AutodeskAuthenticationHelper.GetTwoFactorEnabled(payload), ClaimValueTypes.Boolean, Options.ClaimsIssuer);
+            
+            var principal = new ClaimsPrincipal(identity);
+            var ticket = new AuthenticationTicket(principal, properties, Options.AuthenticationScheme);
+
+            var context = new OAuthCreatingTicketContext(ticket, Context, Options, Backchannel, tokens, payload);
+            await Options.Events.CreatingTicket(context);
+
+            return context.Ticket;
+        }
+    }
+}
diff --git a/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationHelper.cs b/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationHelper.cs
@@ -0,0 +1,52 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using Newtonsoft.Json.Linq;
+
+namespace AspNet.Security.OAuth.Autodesk
+{
+    /// <summary>
+    /// Contains static methods that allow to extract user's information from a <see cref="JObject"/>
+    /// instance retrieved from Autodesk after a successful authentication process.
+    /// </summary>
+    public static class AutodeskAuthenticationHelper
+    {
+        /// <summary>
+        /// Gets the unique user identifier corresponding to the authenticated user.
+        /// </summary>
+        public static string GetUserId(JObject user) => user.Value<string>("userId");
+
+        /// <summary>
+        /// Gets the username corresponding to the authenticated user (e.g. John Doe or john.doe)
+        /// </summary>
+        public static string GetUserName(JObject user) => user.Value<string>("userName");
+
+        /// <summary>
+        /// Gets the email address associated with the authenticated user (e.g. john.doe@autodesk.com)
+        /// </summary>
+        public static string GetEmailAddress(JObject user) => user.Value<string>("emailId");
+
+        /// <summary>
+        /// Gets the first name of the authenticated user (e.g. John)
+        /// </summary>
+        public static string GetFirstName(JObject user) => user.Value<string>("firstName");
+
+        /// <summary>
+        /// Gets the last name of the authenticated user (e.g. Doe)
+        /// </summary>
+        public static string GetLastName(JObject user) => user.Value<string>("lastName");
+
+        /// <summary>
+        /// Gets a boolean value indicating whether or not the user's email address has been verified.
+        /// </summary>
+        public static string GetEmailVerified(JObject user) => user.Value<string>("emailVerified");
+
+        /// <summary>
+        /// Gets a boolean value indicating whether or not the user has enabled two-factor authentication.
+        /// </summary>
+        public static string GetTwoFactorEnabled(JObject user) => user.Value<string>("2FaEnabled");
+    }
+}
diff --git a/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationMiddleware.cs b/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationMiddleware.cs
@@ -0,0 +1,36 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using System.Text.Encodings.Web;
+using JetBrains.Annotations;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.OAuth;
+using Microsoft.AspNetCore.DataProtection;
+using Microsoft.AspNetCore.Http;
+using Microsoft.Extensions.Logging;
+using Microsoft.Extensions.Options;
+
+namespace AspNet.Security.OAuth.Autodesk
+{
+    public class AutodeskAuthenticationMiddleware : OAuthMiddleware<AutodeskAuthenticationOptions>
+    {
+        public AutodeskAuthenticationMiddleware(
+            [NotNull] RequestDelegate next,
+            [NotNull] IDataProtectionProvider dataProtectionProvider,
+            [NotNull] ILoggerFactory loggerFactory,
+            [NotNull] UrlEncoder encoder,
+            [NotNull] IOptions<SharedAuthenticationOptions> sharedOptions,
+            [NotNull] IOptions<AutodeskAuthenticationOptions> options)
+            : base(next, dataProtectionProvider, loggerFactory, encoder, sharedOptions, options)
+        {
+        }
+
+        protected override AuthenticationHandler<AutodeskAuthenticationOptions> CreateHandler()
+        {
+            return new AutodeskAuthenticationHandler(Backchannel);
+        }
+    }
+}
diff --git a/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationOptions.cs b/src/AspNet.Security.OAuth.Autodesk/AutodeskAuthenticationOptions.cs
@@ -0,0 +1,32 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Http;
+
+namespace AspNet.Security.OAuth.Autodesk
+{
+    /// <summary>
+    /// Defines a set of options used by <see cref="AutodeskAuthenticationHandler"/>.
+    /// </summary>
+    public class AutodeskAuthenticationOptions : OAuthOptions
+    {
+        public AutodeskAuthenticationOptions()
+        {
+            AuthenticationScheme = AutodeskAuthenticationDefaults.AuthenticationScheme;
+            DisplayName = AutodeskAuthenticationDefaults.DisplayName;
+            ClaimsIssuer = AutodeskAuthenticationDefaults.Issuer;
+
+            CallbackPath = new PathString(AutodeskAuthenticationDefaults.CallbackPath);
+
+            AuthorizationEndpoint = AutodeskAuthenticationDefaults.AuthorizationEndpoint;
+            TokenEndpoint = AutodeskAuthenticationDefaults.TokenEndpoint;
+            UserInformationEndpoint = AutodeskAuthenticationDefaults.UserInformationEndpoint;
+
+            Scope.Add(AutodeskAuthenticationConstants.Scopes.UserProfileRead);
+        }
+    }
+}
diff --git a/src/AspNet.Security.OAuth.Autodesk/project.json b/src/AspNet.Security.OAuth.Autodesk/project.json
diff --git a/src/AspNet.Security.OAuth.Extensions/ClaimsExtensions.cs b/src/AspNet.Security.OAuth.Extensions/ClaimsExtensions.cs
