Add a MailChimp provider

Author: igors

AspNet.Security.OAuth.Providers.sln

@@ -83,6 +83,8 @@ Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "AspNet.Security.OAuth.Strav
 EndProject
 Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "AspNet.Security.OAuth.Untappd", "src\AspNet.Security.OAuth.Untappd\AspNet.Security.OAuth.Untappd.xproj", "{C17F7C35-4CAD-408F-9031-44EF1A3CC379}"
 EndProject
+Project("{8BB2217D-0F2D-49D1-97BC-3654ED321F3B}") = "AspNet.Security.OAuth.MailChimp", "src\AspNet.Security.OAuth.MailChimp\AspNet.Security.OAuth.MailChimp.xproj", "{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -241,6 +243,10 @@ Global
 		{C17F7C35-4CAD-408F-9031-44EF1A3CC379}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{C17F7C35-4CAD-408F-9031-44EF1A3CC379}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{C17F7C35-4CAD-408F-9031-44EF1A3CC379}.Release|Any CPU.Build.0 = Release|Any CPU
+		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -284,5 +290,6 @@ Global
 		{D0713EFF-8FBA-4145-8E57-5DF1CFBBC0EF} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 		{F276EB53-7758-4CEE-8013-61BA537B94C6} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 		{C17F7C35-4CAD-408F-9031-44EF1A3CC379} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
+		{337B29EB-54B4-43BF-8ADC-A5B3D11538AF} = {C1352FD3-AE8B-43EE-B45B-F6E0B3FBAC6D}
 	EndGlobalSection
 EndGlobal

README.md

@@ -36,6 +36,7 @@ We would love it if you could help contributing to this repository. Please look
 * [Dave Timmins](https://github.com/davetimmins)
 * [Eric Green](https://github.com/ericgreenmix)
 * [Ethan Celletti](https://github.com/Gekctek)
+* [Igor Simovic](https://github.com/igorsimovic)
 * [James Holcomb](https://github.com/jamesholcomb)
 * [Jason Loeffler](https://github.com/jmloeffler)
 * [Jerrie Pelser](https://github.com/jerriep)

samples/Mvc.Client/Startup.cs

@@ -43,7 +43,7 @@ public void Configure(IApplicationBuilder app) {
             app.UseGitHubAuthentication(new GitHubAuthenticationOptions {
                 ClientId = "49e302895d8b09ea5656",
                 ClientSecret = "98f1bf028608901e9df91d64ee61536fe562064b",
-                Scope = {"user:email"}
+                Scope = { "user:email" }
             });
 
             app.UseMvc();

samples/Mvc.Client/project.json

@@ -33,6 +33,7 @@
     "AspNet.Security.OAuth.Imgur": { "target": "project" },
     "AspNet.Security.OAuth.Instagram": { "target": "project" },
     "AspNet.Security.OAuth.LinkedIn": { "target": "project" },
+    "AspNet.Security.OAuth.MailChimp": { "target": "project" },
     "AspNet.Security.OAuth.Myob": { "target": "project" },
     "AspNet.Security.OAuth.Onshape": { "target": "project" },
     "AspNet.Security.OAuth.Paypal": { "target": "project" },

src/AspNet.Security.OAuth.MailChimp/AspNet.Security.OAuth.MailChimp.xproj

@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Project ToolsVersion="14.0" DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <PropertyGroup>
+    <VisualStudioVersion Condition="'$(VisualStudioVersion)' == ''">14.0</VisualStudioVersion>
+    <VSToolsPath Condition="'$(VSToolsPath)' == ''">$(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)</VSToolsPath>
+  </PropertyGroup>
+  <Import Project="$(VSToolsPath)\DotNet\Microsoft.DotNet.Props" Condition="'$(VSToolsPath)' != ''" />
+  <PropertyGroup Label="Globals">
+    <ProjectGuid>337b29eb-54b4-43bf-8adc-a5b3d11538af</ProjectGuid>
+    <RootNamespace>AspNet.Security.OAuth.MailChimp</RootNamespace>
+    <BaseIntermediateOutputPath Condition="'$(BaseIntermediateOutputPath)'=='' ">.\obj</BaseIntermediateOutputPath>
+    <OutputPath Condition="'$(OutputPath)'=='' ">.\bin\</OutputPath>
+  </PropertyGroup>
+  <PropertyGroup>
+    <SchemaVersion>2.0</SchemaVersion>
+  </PropertyGroup>
+  <Import Project="$(VSToolsPath)\DotNet\Microsoft.DotNet.targets" Condition="'$(VSToolsPath)' != ''" />
+</Project>

src/AspNet.Security.OAuth.MailChimp/MailChimpAuthenticationDefaults.cs

@@ -0,0 +1,49 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using Microsoft.AspNetCore.Builder;
+
+namespace AspNet.Security.OAuth.MailChimp {
+    /// <summary>
+    /// Default values used by the MailChimp authentication middleware.
+    /// </summary>
+    public static class MailChimpAuthenticationDefaults {
+        /// <summary>
+        /// Default value for <see cref="AuthenticationOptions.AuthenticationScheme"/>.
+        /// </summary>
+        public const string AuthenticationScheme = "MailChimp";
+
+        /// <summary>
+        /// Default value for <see cref="RemoteAuthenticationOptions.DisplayName"/>.
+        /// </summary>
+        public const string DisplayName = "MailChimp";
+
+        /// <summary>
+        /// Default value for <see cref="AuthenticationOptions.ClaimsIssuer"/>.
+        /// </summary>
+        public const string Issuer = "MailChimp";
+
+        /// <summary>
+        /// Default value for <see cref="RemoteAuthenticationOptions.CallbackPath"/>.
+        /// </summary>
+        public const string CallbackPath = "/signin-mailchimp";
+
+        /// <summary>
+        /// Default value for <see cref="OAuthOptions.AuthorizationEndpoint"/>.
+        /// </summary>
+        public const string AuthorizationEndpoint = "https://login.mailchimp.com/oauth2/authorize";
+
+        /// <summary>
+        /// Default value for <see cref="OAuthOptions.TokenEndpoint"/>.
+        /// </summary>
+        public const string TokenEndpoint = "https://login.mailchimp.com/oauth2/token";
+
+        /// <summary>
+        /// Default value for <see cref="OAuthOptions.UserInformationEndpoint"/>.
+        /// </summary>
+        public const string UserInformationEndpoint = "https://login.mailchimp.com/oauth2/metadata";
+    }
+}

src/AspNet.Security.OAuth.MailChimp/MailChimpAuthenticationExtensions.cs

@@ -0,0 +1,62 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using System;
+using AspNet.Security.OAuth.MailChimp;
+using JetBrains.Annotations;
+using Microsoft.Extensions.Options;
+
+namespace Microsoft.AspNetCore.Builder {
+    /// <summary>
+    /// Extension methods to add MailChimp authentication capabilities to an HTTP application pipeline.
+    /// </summary>
+    public static class MailChimpAuthenticationExtensions {
+        /// <summary>
+        /// Adds the <see cref="MailChimpAuthenticationMiddleware"/> middleware to the specified
+        /// <see cref="IApplicationBuilder"/>, which enables MailChimp authentication capabilities.
+        /// </summary>
+        /// <param name="app">The <see cref="IApplicationBuilder"/> to add the middleware to.</param>
+        /// <param name="options">A <see cref="MailChimpAuthenticationOptions"/> that specifies options for the middleware.</param>        
+        /// <returns>A reference to this instance after the operation has completed.</returns>
+        public static IApplicationBuilder UseMailChimpAuthentication(
+            [NotNull] this IApplicationBuilder app,
+            [NotNull] MailChimpAuthenticationOptions options) {
+            if (app == null) {
+                throw new ArgumentNullException(nameof(app));
+            }
+
+            if (options == null) {
+                throw new ArgumentNullException(nameof(options));
+            }
+
+            return app.UseMiddleware<MailChimpAuthenticationMiddleware>(Options.Create(options));
+        }
+
+        /// <summary>
+        /// Adds the <see cref="MailChimpAuthenticationMiddleware"/> middleware to the specified
+        /// <see cref="IApplicationBuilder"/>, which enables MailChimp authentication capabilities.
+        /// </summary>
+        /// <param name="app">The <see cref="IApplicationBuilder"/> to add the middleware to.</param>
+        /// <param name="configuration">An action delegate to configure the provided <see cref="MailChimpAuthenticationOptions"/>.</param>
+        /// <returns>A reference to this instance after the operation has completed.</returns>
+        public static IApplicationBuilder UseMailChimpAuthentication(
+            [NotNull] this IApplicationBuilder app,
+            [NotNull] Action<MailChimpAuthenticationOptions> configuration) {
+            if (app == null) {
+                throw new ArgumentNullException(nameof(app));
+            }
+
+            if (configuration == null) {
+                throw new ArgumentNullException(nameof(configuration));
+            }
+
+            var options = new MailChimpAuthenticationOptions();
+            configuration(options);
+
+            return app.UseMiddleware<MailChimpAuthenticationMiddleware>(Options.Create(options));
+        }
+    }
+}

src/AspNet.Security.OAuth.MailChimp/MailChimpAuthenticationHandler.cs

@@ -0,0 +1,64 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using System.Net.Http;
+using System.Net.Http.Headers;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using AspNet.Security.OAuth.Extensions;
+using JetBrains.Annotations;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.OAuth;
+using Microsoft.AspNetCore.Http.Authentication;
+using Microsoft.Extensions.Logging;
+using Newtonsoft.Json.Linq;
+
+namespace AspNet.Security.OAuth.MailChimp {
+    public class MailChimpAuthenticationHandler : OAuthHandler<MailChimpAuthenticationOptions> {
+        public MailChimpAuthenticationHandler([NotNull] HttpClient client)
+            : base(client) {
+        }
+
+        protected override async Task<AuthenticationTicket> CreateTicketAsync([NotNull] ClaimsIdentity identity,
+            [NotNull] AuthenticationProperties properties, [NotNull] OAuthTokenResponse tokens) {
+            var request = new HttpRequestMessage(HttpMethod.Get, Options.UserInformationEndpoint);
+            request.Headers.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));
+            request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", tokens.AccessToken);
+
+            var response = await Backchannel.SendAsync(request, HttpCompletionOption.ResponseHeadersRead, Context.RequestAborted);
+            if (!response.IsSuccessStatusCode) {
+                Logger.LogError("An error occurred when retrieving the user profile: the remote server " +
+                                "returned a {Status} response with the following payload: {Headers} {Body}.",
+                                /* Status: */ response.StatusCode,
+                                /* Headers: */ response.Headers.ToString(),
+                                /* Body: */ await response.Content.ReadAsStringAsync());
+
+                throw new HttpRequestException("An error occurred when retrieving the user profile.");
+            }
+
+            var payload = JObject.Parse(await response.Content.ReadAsStringAsync());
+
+            identity.AddOptionalClaim(ClaimTypes.NameIdentifier, MailChimpAuthenticationHelper.GetIdentifier(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim(ClaimTypes.Name, MailChimpAuthenticationHelper.GetName(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim(ClaimTypes.Email, MailChimpAuthenticationHelper.GetEmail(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim(ClaimTypes.Role, MailChimpAuthenticationHelper.GetRole(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim("urn:mailchimp:dc", MailChimpAuthenticationHelper.GetDataCenter(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim("urn:mailchimp:account_name", MailChimpAuthenticationHelper.GetAccountName(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim("urn:mailchimp:login_id", MailChimpAuthenticationHelper.GetLoginId(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim("urn:mailchimp:login_email", MailChimpAuthenticationHelper.GetLoginEmail(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim("urn:mailchimp:login_url", MailChimpAuthenticationHelper.GetLoginUrl(payload), Options.ClaimsIssuer)
+                    .AddOptionalClaim("urn:mailchimp:api_endpoint", MailChimpAuthenticationHelper.GetApiEndPoint(payload), Options.ClaimsIssuer);
+            
+            var principal = new ClaimsPrincipal(identity);
+            var ticket = new AuthenticationTicket(principal, properties, Options.AuthenticationScheme);
+
+            var context = new OAuthCreatingTicketContext(ticket, Context, Options, Backchannel, tokens, payload);
+            await Options.Events.CreatingTicket(context);
+
+            return context.Ticket;
+        }
+    }
+}

src/AspNet.Security.OAuth.MailChimp/MailChimpAuthenticationHelper.cs

@@ -0,0 +1,70 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using JetBrains.Annotations;
+using Newtonsoft.Json.Linq;
+
+namespace AspNet.Security.OAuth.MailChimp {
+    /// <summary>
+    /// Contains static methods that allow to extract user's information from a <see cref="JObject"/>
+    /// instance retrieved from MailChimp after a successful authentication process.
+    /// </summary>
+    public static class MailChimpAuthenticationHelper {
+        /// <summary>
+        /// Gets the identifier corresponding to the authenticated user.
+        /// </summary>
+        public static string GetIdentifier([NotNull] JObject payload) => payload.Value<string>("user_id");
+
+        /// <summary>
+        /// Gets the data center corresponding to the authenticated user.
+        /// </summary>
+        public static string GetDataCenter([NotNull] JObject payload) => payload.Value<string>("dc");
+
+        /// <summary>
+        /// Gets the account name corresponding to the authenticated user.
+        /// </summary>
+        public static string GetAccountName([NotNull] JObject payload) => payload.Value<string>("accountname");
+
+        /// <summary>
+        /// Gets the role corresponding to the authenticated user.
+        /// </summary>
+        public static string GetRole(JObject payload) => payload.Value<string>("role");
+
+        /// <summary>
+        /// Gets the email address corresponding to the authenticated user.
+        /// </summary>
+        public static string GetEmail([NotNull] JObject payload) => payload.Value<JObject>("login")
+                                                                          ?.Value<string>("email");
+
+        /// <summary>
+        /// Gets the login id corresponding to the authenticated user.
+        /// </summary>
+        public static string GetLoginId([NotNull] JObject payload) => payload.Value<JObject>("login")
+                                                                            ?.Value<string>("login_id");
+        
+        /// <summary>
+        /// Gets the name corresponding to the authenticated user.
+        /// </summary>
+        public static string GetName([NotNull] JObject payload) => payload.Value<JObject>("login")
+                                                                         ?.Value<string>("login_name");
+
+        /// <summary>
+        /// Gets the login email address corresponding to the authenticated user.
+        /// </summary>
+        public static string GetLoginEmail([NotNull] JObject payload) => payload.Value<JObject>("login")
+                                                                               ?.Value<string>("login_email");
+
+        /// <summary>
+        /// Gets the login url address corresponding to the authenticated user.
+        /// </summary>
+        public static string GetLoginUrl([NotNull] JObject payload) => payload.Value<string>("login_url");
+
+        /// <summary>
+        /// Gets the api endpoint address corresponding to the authenticated user.
+        /// </summary>
+        public static string GetApiEndPoint([NotNull] JObject payload) => payload.Value<string>("api_endpoint");
+    }
+}

src/AspNet.Security.OAuth.MailChimp/MailChimpAuthenticationMiddleware.cs

@@ -0,0 +1,32 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
+ * See https://github.com/aspnet-contrib/AspNet.Security.OAuth.Providers
+ * for more information concerning the license and the contributors participating to this project.
+ */
+
+using System.Text.Encodings.Web;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.OAuth;
+using Microsoft.AspNetCore.DataProtection;
+using Microsoft.AspNetCore.Http;
+using Microsoft.Extensions.Logging;
+using Microsoft.Extensions.Options;
+using JetBrains.Annotations;
+
+namespace AspNet.Security.OAuth.MailChimp {
+    public class MailChimpAuthenticationMiddleware : OAuthMiddleware<MailChimpAuthenticationOptions> {
+        public MailChimpAuthenticationMiddleware(
+            [NotNull] RequestDelegate next,
+            [NotNull] IDataProtectionProvider dataProtectionProvider,
+            [NotNull] ILoggerFactory loggerFactory,
+            [NotNull] UrlEncoder encoder,
+            [NotNull] IOptions<SharedAuthenticationOptions> sharedOptions,
+            [NotNull] IOptions<MailChimpAuthenticationOptions> options)
+            : base(next, dataProtectionProvider, loggerFactory, encoder, sharedOptions, options) {
+        }
+
+        protected override AuthenticationHandler<MailChimpAuthenticationOptions> CreateHandler() {
+            return new MailChimpAuthenticationHandler(Backchannel);
+        }
+    }
+}