Annotate Authorization.Core, Authorization.Policy with nullable (#22990)

Contributes to #5680

Author: pranavkm

eng/targets/CSharp.Common.targets

@@ -35,13 +35,14 @@
         The code block that follows sets it up so projects in this repo that target ns2.0 or netfx can compile when Nullable is configured.
         Based on https://github.com/dotnet/runtime/blob/93b6c449d4f31ddd7d573d1d3769e681d5ebceb9/src/libraries/Directory.Build.targets#L215-L222
      -->
-    <When Condition="'$(Nullable)' != '' AND ('$(TargetFramework)' == 'netstandard2.0' OR '$(TargetFrameworkIdentifier)' == '.NETFramework')">
-        <PropertyGroup>
-          <DefineConstants>$(DefineConstants),INTERNAL_NULLABLE_ATTRIBUTES</DefineConstants>
-        </PropertyGroup>
-        <ItemGroup>
-          <Compile Include="$(SharedSourceRoot)Nullable\NullableAttributes.cs" />
-        </ItemGroup>
+    <When Condition="'$(Nullable)' != '' AND ('$(TargetFrameworkIdentifier)' == '.NETStandard' OR '$(TargetFrameworkIdentifier)' == '.NETFramework')">
+      <PropertyGroup>
+        <DefineConstants>$(DefineConstants),INTERNAL_NULLABLE_ATTRIBUTES</DefineConstants>
+        <NoWarn>$(NoWarn);nullable</NoWarn>
+      </PropertyGroup>
+      <ItemGroup>
+        <Compile Include="$(SharedSourceRoot)Nullable\NullableAttributes.cs" />
+      </ItemGroup>
     </When>
   </Choose>
 

src/Security/Authorization/Core/ref/Microsoft.AspNetCore.Authorization.csproj

@@ -3,6 +3,7 @@
   <PropertyGroup>
     <TargetFrameworks>netstandard2.0;$(DefaultNetCoreTargetFramework)</TargetFrameworks>
     <TargetFrameworks Condition="'$(DotNetBuildFromSource)' == 'true'">$(DefaultNetCoreTargetFramework)</TargetFrameworks>
+    <Nullable>annotations</Nullable>
   </PropertyGroup>
   <ItemGroup Condition="'$(TargetFramework)' == 'netstandard2.0'">
     <Compile Include="Microsoft.AspNetCore.Authorization.netstandard2.0.cs" />

src/Security/Authorization/Core/ref/Microsoft.AspNetCore.Authorization.netcoreapp.cs

@@ -1,6 +1,7 @@
 // Copyright (c) .NET Foundation. All rights reserved.
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
 
+using System;
 using System.Collections.Generic;
 using System.Security.Claims;
 
@@ -21,7 +22,7 @@ private AuthorizationFailure() { }
         /// <summary>
         /// Failure was due to these requirements not being met via <see cref="AuthorizationHandlerContext.Succeed(IAuthorizationRequirement)"/>.
         /// </summary>
-        public IEnumerable<IAuthorizationRequirement> FailedRequirements { get; private set; }
+        public IEnumerable<IAuthorizationRequirement> FailedRequirements { get; private set; } = Array.Empty<IAuthorizationRequirement>();
 
         /// <summary>
         /// Return a failure due to <see cref="AuthorizationHandlerContext.Fail"/> being called.
@@ -31,7 +32,6 @@ public static AuthorizationFailure ExplicitFail()
             => new AuthorizationFailure
             {
                 FailCalled = true,
-                FailedRequirements = new IAuthorizationRequirement[0]
             };
 
         /// <summary>

src/Security/Authorization/Core/ref/Microsoft.AspNetCore.Authorization.netstandard2.0.cs

@@ -26,7 +26,7 @@ public class AuthorizationHandlerContext
         public AuthorizationHandlerContext(
             IEnumerable<IAuthorizationRequirement> requirements,
             ClaimsPrincipal user,
-            object resource)
+            object? resource)
         {
             if (requirements == null)
             {
@@ -52,7 +52,7 @@ public AuthorizationHandlerContext(
         /// <summary>
         /// The optional resource to evaluate the <see cref="AuthorizationHandlerContext.Requirements"/> against.
         /// </summary>
-        public virtual object Resource { get; }
+        public virtual object? Resource { get; }
 
         /// <summary>
         /// Gets the requirements that have not yet been marked as succeeded.
@@ -95,4 +95,4 @@ public virtual void Succeed(IAuthorizationRequirement requirement)
             _pendingRequirements.Remove(requirement);
         }
     }
-}
+}

src/Security/Authorization/Core/src/AuthorizationFailure.cs

@@ -11,7 +11,7 @@ namespace Microsoft.AspNetCore.Authorization
     /// </summary>
     public class AuthorizationOptions
     {
-        private IDictionary<string, AuthorizationPolicy> PolicyMap { get; } = new Dictionary<string, AuthorizationPolicy>(StringComparer.OrdinalIgnoreCase);
+        private Dictionary<string, AuthorizationPolicy> PolicyMap { get; } = new Dictionary<string, AuthorizationPolicy>(StringComparer.OrdinalIgnoreCase);
 
         /// <summary>
         /// Determines whether authentication handlers should be invoked after a failure.
@@ -35,7 +35,7 @@ public class AuthorizationOptions
         /// effect unless you have the AuthorizationMiddleware in your pipeline. It is not used in any way by the 
         /// default <see cref="IAuthorizationService"/>.
         /// </summary>
-        public AuthorizationPolicy FallbackPolicy { get; set; }
+        public AuthorizationPolicy? FallbackPolicy { get; set; }
 
         /// <summary>
         /// Add an authorization policy with the provided name.
@@ -84,14 +84,19 @@ public void AddPolicy(string name, Action<AuthorizationPolicyBuilder> configureP
         /// </summary>
         /// <param name="name">The name of the policy to return.</param>
         /// <returns>The policy for the specified name, or null if a policy with the name does not exist.</returns>
-        public AuthorizationPolicy GetPolicy(string name)
+        public AuthorizationPolicy? GetPolicy(string name)
         {
             if (name == null)
             {
                 throw new ArgumentNullException(nameof(name));
             }
 
-            return PolicyMap.ContainsKey(name) ? PolicyMap[name] : null;
+            if (PolicyMap.TryGetValue(name, out var value))
+            {
+                return value;
+            }
+
+            return null;
         }
     }
 }

src/Security/Authorization/Core/src/AuthorizationHandlerContext.cs

@@ -108,7 +108,7 @@ public static AuthorizationPolicy Combine(IEnumerable<AuthorizationPolicy> polic
         /// A new <see cref="AuthorizationPolicy"/> which represents the combination of the
         /// authorization policies provided by the specified <paramref name="policyProvider"/>.
         /// </returns>
-        public static async Task<AuthorizationPolicy> CombineAsync(IAuthorizationPolicyProvider policyProvider, IEnumerable<IAuthorizeData> authorizeData)
+        public static async Task<AuthorizationPolicy?> CombineAsync(IAuthorizationPolicyProvider policyProvider, IEnumerable<IAuthorizeData> authorizeData)
         {
             if (policyProvider == null)
             {
@@ -127,7 +127,7 @@ public static async Task<AuthorizationPolicy> CombineAsync(IAuthorizationPolicyP
                 skipEnumeratingData = dataList.Count == 0;
             }
 
-            AuthorizationPolicyBuilder policyBuilder = null;
+            AuthorizationPolicyBuilder? policyBuilder = null;
             if (!skipEnumeratingData)
             {
                 foreach (var authorizeDatum in authorizeData)

src/Security/Authorization/Core/src/AuthorizationOptions.cs

@@ -2,6 +2,7 @@
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
 
 using System.Collections.Generic;
+using System.Diagnostics.CodeAnalysis;
 using System.Security.Claims;
 
 namespace Microsoft.AspNetCore.Authorization
@@ -21,7 +22,7 @@ private AuthorizationResult() { }
         /// <summary>
         /// Contains information about why authorization failed.
         /// </summary>
-        public AuthorizationFailure Failure { get; private set; }
+        public AuthorizationFailure? Failure { get; private set; }
 
         /// <summary>
         /// Returns a successful result.

src/Security/Authorization/Core/src/AuthorizationPolicy.cs

@@ -51,11 +51,7 @@ public static IServiceCollection AddAuthorizationCore(this IServiceCollection se
                 throw new ArgumentNullException(nameof(services));
             }
 
-            if (configure != null)
-            {
-                services.Configure(configure);
-            }
-
+            services.Configure(configure);
             return services.AddAuthorizationCore();
         }
     }