Minor refactoring

martincostello · martincostello · commit a8c2f71990cb · 2021-10-09T14:07:25.000+01:00
Update comment.
Update XML documentation.
Remove throw.
diff --git a/src/AspNet.Security.OAuth.Keycloak/KeycloakAuthenticationOptions.cs b/src/AspNet.Security.OAuth.Keycloak/KeycloakAuthenticationOptions.cs
@@ -38,7 +38,7 @@ public KeycloakAuthenticationOptions()
         }
 
         /// <summary>
-        /// Gets or sets the value for Keycloak client's access type.
+        /// Gets or sets the value for the Keycloak client's access type.
         /// </summary>
         public KeycloakAuthenticationAccessType AccessType { get; set; }
 
@@ -62,20 +62,17 @@ public override void Validate()
         {
             try
             {
-                // HACK
-                // We want all of the base validation except for ClientSecret,
+                // HACK We want all of the base validation except for ClientSecret,
                 // so rather than re-implement it all, catch the exception thrown
                 // for that being null and only throw if we aren't using public access type.
                 // This does mean that three checks have to be re-implemented
                 // because the won't be validated if the ClientSecret validation fails.
                 base.Validate();
             }
-            catch (ArgumentException ex) when (ex.ParamName == nameof(ClientSecret))
+            catch (ArgumentException ex) when (ex.ParamName == nameof(ClientSecret) && AccessType == KeycloakAuthenticationAccessType.Public)
             {
-                if (AccessType != KeycloakAuthenticationAccessType.Public)
-                {
-                    throw;
-                }
+                // No client secret is required for a public key.
+                // See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers/issues/610.
             }
 
             if (string.IsNullOrEmpty(AuthorizationEndpoint))

Original file line number	Diff line number	Diff line change
`@@ -38,7 +38,7 @@ public KeycloakAuthenticationOptions()`
`38`	`38`	`}`
`39`	`39`
`40`	`40`	`/// <summary>`
`41`		`- /// Gets or sets the value for Keycloak client's access type.`
	`41`	`+ /// Gets or sets the value for the Keycloak client's access type.`
`42`	`42`	`/// </summary>`
`43`	`43`	`public KeycloakAuthenticationAccessType AccessType { get; set; }`
`44`	`44`
`@@ -62,20 +62,17 @@ public override void Validate()`
`62`	`62`	`{`
`63`	`63`	`try`
`64`	`64`	`{`
`65`		`- // HACK`
`66`		`- // We want all of the base validation except for ClientSecret,`
	`65`	`+ // HACK We want all of the base validation except for ClientSecret,`
`67`	`66`	`// so rather than re-implement it all, catch the exception thrown`
`68`	`67`	`// for that being null and only throw if we aren't using public access type.`
`69`	`68`	`// This does mean that three checks have to be re-implemented`
`70`	`69`	`// because the won't be validated if the ClientSecret validation fails.`
`71`	`70`	`base.Validate();`
`72`	`71`	`}`
`73`		`- catch (ArgumentException ex) when (ex.ParamName == nameof(ClientSecret))`
	`72`	`+ catch (ArgumentException ex) when (ex.ParamName == nameof(ClientSecret) && AccessType == KeycloakAuthenticationAccessType.Public)`
`74`	`73`	`{`
`75`		`- if (AccessType != KeycloakAuthenticationAccessType.Public)`
`76`		`- {`
`77`		`- throw;`
`78`		`- }`
	`74`	`+ // No client secret is required for a public key.`
	`75`	`+ // See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers/issues/610.`
`79`	`76`	`}`
`80`	`77`
`81`	`78`	`if (string.IsNullOrEmpty(AuthorizationEndpoint))`