Add Xero provider (#649)

* Xero provider

* Update src/AspNet.Security.OAuth.Xero/AspNet.Security.OAuth.Xero.csproj

Co-authored-by: Martin Costello <[email protected]>

* PR suggestions

Co-authored-by: Martin Costello <[email protected]>

Author: serber

AspNet.Security.OAuth.Providers.sln

@@ -273,6 +273,8 @@ Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "AspNet.Security.OAuth.Trovo
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "AspNet.Security.OAuth.Twitter", "src\AspNet.Security.OAuth.Twitter\AspNet.Security.OAuth.Twitter.csproj", "{82314BA9-8AB2-46B9-AB12-9109619B8331}"
 EndProject
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "AspNet.Security.OAuth.Xero", "src\AspNet.Security.OAuth.Xero\AspNet.Security.OAuth.Xero.csproj", "{1F869094-FAC8-49B5-92A4-706C028CDF93}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -619,6 +621,10 @@ Global
 		{82314BA9-8AB2-46B9-AB12-9109619B8331}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{82314BA9-8AB2-46B9-AB12-9109619B8331}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{82314BA9-8AB2-46B9-AB12-9109619B8331}.Release|Any CPU.Build.0 = Release|Any CPU
+		{1F869094-FAC8-49B5-92A4-706C028CDF93}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{1F869094-FAC8-49B5-92A4-706C028CDF93}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{1F869094-FAC8-49B5-92A4-706C028CDF93}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{1F869094-FAC8-49B5-92A4-706C028CDF93}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -715,6 +721,7 @@ Global
 		{57633BE6-C7AD-4197-A75A-F38A2312A4D9} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 		{DC804C6D-3774-4FA7-8EA6-8C8198995BD6} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 		{82314BA9-8AB2-46B9-AB12-9109619B8331} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
+		{1F869094-FAC8-49B5-92A4-706C028CDF93} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {C7B54DE2-6407-4802-AD9C-CE54BF414C8C}

README.md

@@ -193,6 +193,7 @@ If a provider you're looking for does not exist, consider making a PR to add one
 | Weixin (WeChat) | [![NuGet](https://buildstats.info/nuget/AspNet.Security.OAuth.Weixin?includePreReleases=false)](https://www.nuget.org/packages/AspNet.Security.OAuth.Weixin/ "Download AspNet.Security.OAuth.Weixin from NuGet.org") | [![MyGet](https://buildstats.info/myget/aspnet-contrib/AspNet.Security.OAuth.Weixin?includePreReleases=true)](https://www.myget.org/feed/aspnet-contrib/package/nuget/AspNet.Security.OAuth.Weixin "Download AspNet.Security.OAuth.Weixin from MyGet.org") | [Documentation](https://open.wechat.com/cgi-bin/newreadtemplate?t=overseas_open/docs/web/login/login "WeChat developer documentation") |
 | WordPress | [![NuGet](https://buildstats.info/nuget/AspNet.Security.OAuth.WordPress?includePreReleases=false)](https://www.nuget.org/packages/AspNet.Security.OAuth.WordPress/ "Download AspNet.Security.OAuth.WordPress from NuGet.org") | [![MyGet](https://buildstats.info/myget/aspnet-contrib/AspNet.Security.OAuth.WordPress?includePreReleases=true)](https://www.myget.org/feed/aspnet-contrib/package/nuget/AspNet.Security.OAuth.WordPress "Download AspNet.Security.OAuth.WordPress from MyGet.org") | [Documentation](https://developer.wordpress.com/docs/oauth2/ "WordPress developer documentation") |
 | WorkWeixin (WeCom) | [![NuGet](https://buildstats.info/nuget/AspNet.Security.OAuth.WorkWeixin?includePreReleases=false)](https://www.nuget.org/packages/AspNet.Security.OAuth.WorkWeixin/ "Download AspNet.Security.OAuth.WorkWeixin from NuGet.org") | [![MyGet](https://buildstats.info/myget/aspnet-contrib/AspNet.Security.OAuth.WorkWeixin?includePreReleases=true)](https://www.myget.org/feed/aspnet-contrib/package/nuget/AspNet.Security.OAuth.WorkWeixin "Download AspNet.Security.OAuth.WorkWeixin from MyGet.org") | [Documentation](https://open.work.weixin.qq.com/api/doc/ "WorkWeixin developer documentation") |
+| Xero | [![NuGet](https://buildstats.info/nuget/AspNet.Security.OAuth.Xero?includePreReleases=false)](https://www.nuget.org/packages/AspNet.Security.OAuth.Xero/ "Download AspNet.Security.OAuth.Xero from NuGet.org") | [![MyGet](https://buildstats.info/myget/aspnet-contrib/AspNet.Security.OAuth.Xero?includePreReleases=true)](https://www.myget.org/feed/aspnet-contrib/package/nuget/AspNet.Security.OAuth.Xero "Download AspNet.Security.OAuth.Xero from MyGet.org") | [Documentation](https://developer.xero.com/documentation/guides/oauth2/sign-in/ "Xero developer documentation") |
 | Yahoo | [![NuGet](https://buildstats.info/nuget/AspNet.Security.OAuth.Yahoo?includePreReleases=false)](https://www.nuget.org/packages/AspNet.Security.OAuth.Yahoo/ "Download AspNet.Security.OAuth.Yahoo from NuGet.org") | [![MyGet](https://buildstats.info/myget/aspnet-contrib/AspNet.Security.OAuth.Yahoo?includePreReleases=true)](https://www.myget.org/feed/aspnet-contrib/package/nuget/AspNet.Security.OAuth.Yahoo "Download AspNet.Security.OAuth.Yahoo from MyGet.org") | [Documentation](https://developer.yahoo.com/oauth2/guide/ "Yahoo developer documentation") |
 | Yammer | [![NuGet](https://buildstats.info/nuget/AspNet.Security.OAuth.Yammer?includePreReleases=false)](https://www.nuget.org/packages/AspNet.Security.OAuth.Yammer/ "Download AspNet.Security.OAuth.Yammer from NuGet.org") | [![MyGet](https://buildstats.info/myget/aspnet-contrib/AspNet.Security.OAuth.Yammer?includePreReleases=true)](https://www.myget.org/feed/aspnet-contrib/package/nuget/AspNet.Security.OAuth.Yammer "Download AspNet.Security.OAuth.Yammer from MyGet.org") | [Documentation](https://developer.yammer.com/docs/oauth-2 "Yammer developer documentation") |
 | Yandex | [![NuGet](https://buildstats.info/nuget/AspNet.Security.OAuth.Yandex?includePreReleases=false)](https://www.nuget.org/packages/AspNet.Security.OAuth.Yandex/ "Download AspNet.Security.OAuth.Yandex from NuGet.org") | [![MyGet](https://buildstats.info/myget/aspnet-contrib/AspNet.Security.OAuth.Yandex?includePreReleases=true)](https://www.myget.org/feed/aspnet-contrib/package/nuget/AspNet.Security.OAuth.Yandex "Download AspNet.Security.OAuth.Yandex from MyGet.org") | [Documentation](https://tech.yandex.com/oauth/ "Yandex developer documentation") |

docs/README.md

@@ -71,3 +71,4 @@ covered by the section above.
 | Vkontakte | _Optional_ | [Documentation](vkontakte.md "Vkontakte provider documentation") |
 | Weibo | _Optional_ | [Documentation](weibo.md "Weibo provider documentation") |
 | WorkWeixin (WeCom) | _Optional_ | [Documentation](workweixin.md "WorkWeixin provider documentation") |
+| Xero | _Optional_ | [Documentation](xero.md "Xero provider documentation") |

docs/xero.md

@@ -0,0 +1,28 @@
+# Integrating the Xero Provider
+
+## Example
+
+```csharp
+services.AddAuthentication(options => /* Auth configuration */)
+        .AddXero(options =>
+        {
+            options.ClientId = "my-client-id";
+            options.ClientSecret = "my-client-secret";
+
+            // Optionally specify additional scopes, if needed
+            options.Scope.Add("profile");
+            options.Scope.Add("email");
+        });
+```
+
+## Required Additional Settings
+
+_None._
+
+## Optional Settings
+
+| Property Name | Property Type | Description | Default Value |
+|:--|:--|:--|:--|
+| `ConfigurationManager` | `IConfigurationManager<OpenIdConnectConfiguration>?` | The configuration manager to use for the OpenId configuration. | `null` |
+| `SecurityTokenHandler` | `JsonWebTokenHandler?` | The JSON Web Token handler to use. | `null` |
+| `TokenValidationParameters` | `TokenValidationParameters` | The JSON Web Token validation parameter to use. | `new TokenValidationParameters()` |

src/AspNet.Security.OAuth.Xero/AspNet.Security.OAuth.Xero.csproj

@@ -0,0 +1,25 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+  <PropertyGroup>
+    <PackageValidationBaselineVersion>6.0.4</PackageValidationBaselineVersion>
+    <TargetFrameworks>$(DefaultNetCoreTargetFramework)</TargetFrameworks>
+  </PropertyGroup>
+
+  <!-- TODO Remove once published to NuGet.org -->
+  <PropertyGroup>
+    <DisablePackageBaselineValidation>true</DisablePackageBaselineValidation>
+  </PropertyGroup>
+
+  <PropertyGroup>
+    <Description>ASP.NET Core security middleware enabling Xero authentication.</Description>
+    <Authors>Albert Zakiev</Authors>
+    <PackageTags>xero;aspnetcore;authentication;oauth;security</PackageTags>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <FrameworkReference Include="Microsoft.AspNetCore.App" />
+    <PackageReference Include="JetBrains.Annotations" PrivateAssets="All" />
+    <PackageReference Include="Microsoft.IdentityModel.Protocols.OpenIdConnect" />
+  </ItemGroup>
+
+</Project>

src/AspNet.Security.OAuth.Xero/XeroAuthenticationConstants.cs

@@ -0,0 +1,26 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+namespace AspNet.Security.OAuth.Xero;
+
+/// <summary>
+/// Contains constants specific to the <see cref="XeroAuthenticationHandler"/>.
+/// </summary>
+public static class XeroAuthenticationConstants
+{
+    public static class ClaimNames
+    {
+        /// <summary>
+        /// Unique user identifier.
+        /// </summary>
+        public const string UserId = "xero_userid";
+
+        /// <summary>
+        /// User email address.
+        /// </summary>
+        public const string Email = "email";
+    }
+}

src/AspNet.Security.OAuth.Xero/XeroAuthenticationDefaults.cs

@@ -0,0 +1,48 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+namespace AspNet.Security.OAuth.Xero;
+
+/// <summary>
+/// Default values used by the Xero authentication middleware.
+/// </summary>
+public static class XeroAuthenticationDefaults
+{
+    /// <summary>
+    /// Default value for <see cref="AuthenticationScheme.Name"/>.
+    /// </summary>
+    public const string AuthenticationScheme = "Xero";
+
+    /// <summary>
+    /// Default value for <see cref="RemoteAuthenticationOptions.CallbackPath"/>.
+    /// </summary>
+    public static readonly string CallbackPath = "/signin-xero";
+
+    /// <summary>
+    /// Default value for <see cref="AuthenticationScheme.DisplayName"/>.
+    /// </summary>
+    public static readonly string DisplayName = "Xero";
+
+    /// <summary>
+    /// A format string used to construct <see cref="AuthenticationSchemeOptions.ClaimsIssuer"/>.
+    /// </summary>
+    public static readonly string ClaimsIssuer = "https://identity.xero.com";
+
+    /// <summary>
+    /// A format string used to populate OAuth authorize endpoint.
+    /// </summary>
+    public static readonly string AuthorizeEndpoint = "https://login.xero.com/identity/connect/authorize";
+
+    /// <summary>
+    /// A format string used to populate OAuth token endpoint.
+    /// </summary>
+    public static readonly string TokenEndpoint = "https://identity.xero.com/connect/token";
+
+    /// <summary>
+    /// A format string used to construct well-known configuration endpoint.
+    /// </summary>
+    public static readonly string MetadataEndpoint = "https://identity.xero.com/.well-known/openid-configuration";
+}

src/AspNet.Security.OAuth.Xero/XeroAuthenticationExtensions.cs

@@ -0,0 +1,71 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using AspNet.Security.OAuth.Xero;
+using Microsoft.Extensions.DependencyInjection.Extensions;
+using Microsoft.Extensions.Options;
+
+namespace Microsoft.Extensions.DependencyInjection;
+
+/// <summary>
+/// Extension methods to add Xero authentication capabilities to an HTTP application pipeline.
+/// </summary>
+public static class XeroAuthenticationExtensions
+{
+    /// <summary>
+    /// Adds <see cref="XeroAuthenticationHandler"/> to the specified
+    /// <see cref="AuthenticationBuilder"/>, which enables Xero authentication capabilities.
+    /// </summary>
+    /// <param name="builder">The <see cref="AuthenticationBuilder"/> to add the middleware to.</param>
+    /// <returns>A reference to this instance after the operation has completed.</returns>
+    public static AuthenticationBuilder AddXero([NotNull] this AuthenticationBuilder builder)
+        => builder.AddXero(XeroAuthenticationDefaults.AuthenticationScheme, _ => { });
+
+    /// <summary>
+    /// Adds <see cref="XeroAuthenticationHandler"/> to the specified
+    /// <see cref="AuthenticationBuilder"/>, which enables Xero authentication capabilities.
+    /// </summary>
+    /// <param name="builder">The <see cref="AuthenticationBuilder"/> to add the middleware to.</param>
+    /// <param name="configuration">The delegate used to configure the OAuth 2.0 options.</param>
+    /// <returns>A reference to this instance after the operation has completed.</returns>
+    public static AuthenticationBuilder AddXero(
+        [NotNull] this AuthenticationBuilder builder,
+        [NotNull] Action<XeroAuthenticationOptions> configuration)
+        => builder.AddXero(XeroAuthenticationDefaults.AuthenticationScheme, configuration);
+
+    /// <summary>
+    /// Adds <see cref="XeroAuthenticationHandler"/> to the specified
+    /// <see cref="AuthenticationBuilder"/>, which enables Xero authentication capabilities.
+    /// </summary>
+    /// <param name="builder">The authentication builder.</param>
+    /// <param name="authenticationScheme">The authentication scheme associated with this instance.</param>
+    /// <param name="configuration">The delegate used to configure the Xero options.</param>
+    /// <returns>The <see cref="AuthenticationBuilder"/>.</returns>
+    public static AuthenticationBuilder AddXero(
+        [NotNull] this AuthenticationBuilder builder,
+        [NotNull] string authenticationScheme,
+        [NotNull] Action<XeroAuthenticationOptions> configuration)
+        => builder.AddXero(authenticationScheme, XeroAuthenticationDefaults.DisplayName, configuration);
+
+    /// <summary>
+    /// Adds <see cref="XeroAuthenticationHandler"/> to the specified
+    /// <see cref="AuthenticationBuilder"/>, which enables Xero authentication capabilities.
+    /// </summary>
+    /// <param name="builder">The authentication builder.</param>
+    /// <param name="authenticationScheme">The authentication scheme associated with this instance.</param>
+    /// <param name="displayName">The optional display name associated with this instance.</param>
+    /// <param name="configuration">The delegate used to configure the Xero options.</param>
+    /// <returns>The <see cref="AuthenticationBuilder"/>.</returns>
+    public static AuthenticationBuilder AddXero(
+        [NotNull] this AuthenticationBuilder builder,
+        [NotNull] string authenticationScheme,
+        [NotNull] string displayName,
+        [NotNull] Action<XeroAuthenticationOptions> configuration)
+    {
+        builder.Services.TryAddSingleton<IPostConfigureOptions<XeroAuthenticationOptions>, XeroAuthenticationPostConfigureOptions>();
+        return builder.AddOAuth<XeroAuthenticationOptions, XeroAuthenticationHandler>(authenticationScheme, displayName, configuration);
+    }
+}