Fix filtering JWT validation values

cnblogs-dudu · cnblogs-dudu · commit 5b02884afa70 · 2022-11-19T18:22:04.000+08:00
diff --git a/src/IdentityServer4/src/Validation/Default/JwtRequestValidator.cs b/src/IdentityServer4/src/Validation/Default/JwtRequestValidator.cs
@@ -11,6 +11,7 @@
 using IdentityServer4.Configuration;
 using IdentityServer4.Extensions;
 using IdentityServer4.Models;
+using Microsoft.AspNetCore.DataProtection.KeyManagement;
 using Microsoft.AspNetCore.Http;
 using Microsoft.Extensions.Logging;
 using Microsoft.IdentityModel.Tokens;
@@ -26,7 +27,7 @@ public class JwtRequestValidator
     {
         private readonly string _audienceUri;
         private readonly IHttpContextAccessor _httpContextAccessor;
-        
+
         /// <summary>
         /// JWT handler
         /// </summary>
@@ -55,7 +56,7 @@ protected string AudienceUri
         /// The logger
         /// </summary>
         protected readonly ILogger Logger;
-        
+
         /// <summary>
         /// The optione
         /// </summary>
@@ -67,7 +68,7 @@ protected string AudienceUri
         public JwtRequestValidator(IHttpContextAccessor contextAccessor, IdentityServerOptions options, ILogger<JwtRequestValidator> logger)
         {
             _httpContextAccessor = contextAccessor;
-            
+
             Options = options;
             Logger = logger;
         }
@@ -181,8 +182,8 @@ protected virtual Task<JwtSecurityToken> ValidateJwtAsync(string jwtTokenString,
             }
 
             Handler.ValidateToken(jwtTokenString, tokenValidationParameters, out var token);
-            
-            return Task.FromResult((JwtSecurityToken)token);
+
+            return Task.FromResult((JwtSecurityToken) token);
         }
 
         /// <summary>
@@ -200,17 +201,18 @@ protected virtual Task<Dictionary<string, string>> ProcessPayloadAsync(JwtSecuri
                 {
                     var value = token.Payload[key];
 
-                    switch (value)
+                    if (value is string)
+                    {
+                        payload.Add(key, value.ToString());
+                    }
+                    else
                     {
-                        case string s:
-                            payload.Add(key, s);
-                            break;
-                        case JObject jobj:
-                            payload.Add(key, jobj.ToString(Formatting.None));
-                            break;
-                        case JArray jarr:
-                            payload.Add(key, jarr.ToString(Formatting.None));
-                            break;
+                        var valueType = value.GetType();
+                        if (valueType.Name == "JObject" || // Microsoft.IdentityModel.Json.Linq.JObject
+                            valueType.Name == "JArray")    // Microsoft.IdentityModel.Json.Linq.JArray
+                        {
+                            payload.Add(key, value.ToString());
+                        }
                     }
                 }
             }
