Merge pull request #121 from OpenTouryoProject/develop

Release work ( ~ October 1, 2019)

Author: yusukemaegawa

.gitattributes

@@ -0,0 +1,4 @@
+# Windows batch files want to use CRLF by default.
+*.bat text eol=crlf
+
+# Visual Studio files want to use CRLF by default.

mpas_dev.bat

@@ -9,5 +9,6 @@
 @rem 当該フォルダに本バッチファイルをコピーして実行することを想定している。
 
 xcopy /E /Y /I "OpenTouryo\root\programs\CS\Frameworks\Infrastructure\Build_net47" "MultiPurposeAuthSite\root\programs\OpenTouryoAssemblies\Build_net47\"
+xcopy /E /Y /I "OpenTouryo\root\programs\CS\Frameworks\Infrastructure\Build_net48" "MultiPurposeAuthSite\root\programs\OpenTouryoAssemblies\Build_net48\"
 xcopy /E /Y /I "OpenTouryo\root\programs\CS\Frameworks\Infrastructure\Build_netcore20" "MultiPurposeAuthSite\root\programs\OpenTouryoAssemblies\Build_netcore20\"
 xcopy /E /Y /I "OpenTouryo\root\programs\CS\Frameworks\Infrastructure\Build_netcore30" "MultiPurposeAuthSite\root\programs\OpenTouryoAssemblies\Build_netcore30\"

root/files/resource/MultiPurposeAuthSite/Sql/oracle/Create_UserStore.sql

@@ -90,10 +90,10 @@ CREATE TABLE "CustomizedConfirmation"(
     CONSTRAINT "PK.CustomizedConfirmation" PRIMARY KEY ("UserId")
 );
 
-CREATE TABLE "OAuth2Data"(
+CREATE TABLE "Saml2OAuth2Data"(
     "ClientID" NVARCHAR2(256) NOT NULL,      -- PK
     "UnstructuredData" NVARCHAR2(2000) NULL, -- OAuth2 Unstructured Data
-    CONSTRAINT "PK.OAuth2Data" PRIMARY KEY ("ClientID")
+    CONSTRAINT "PK.Saml2OAuth2Data" PRIMARY KEY ("ClientID")
 );
 
 CREATE TABLE "FIDO2Data"(
@@ -109,16 +109,32 @@ CREATE TABLE "OAuth2Revocation"(
     CONSTRAINT "PK.OAuth2Revocation" PRIMARY KEY ("Jti")
 );
 
+CREATE TABLE "IssuedToken"(
+    "Jti" NVARCHAR2(38) NOT NULL,                -- PK, guid
+    "Value" NVARCHAR2(2000) NOT NULL,
+    "ClientID" NVARCHAR2(38) NOT NULL,
+    "Audience" NVARCHAR2(38) NOT NULL,
+    "CreatedDate" DATE NOT NULL,
+    CONSTRAINT "PK.IssuedToken" PRIMARY KEY ("Jti")
+);
+
+CREATE TABLE "RequestObject"(
+    "Urn" NVARCHAR2(38) NOT NULL,                -- PK, guid
+    "Value" NVARCHAR2(2000) NOT NULL,
+    "CreatedDate" DATE NOT NULL,
+    CONSTRAINT "PK.RequestObject" PRIMARY KEY ("Urn")
+);
+
 -- INDEX
 --- UNIQUE INDEX
 ---- Users
-CREATE UNIQUE INDEX "UserNameIndex" ON "Users" ("UserName" ASC);
-ALTER TABLE "Users" ADD CONSTRAINT "NormalizedUserNameIndex" UNIQUE ("NormalizedUserName" ASC);
-ALTER TABLE "Users" ADD CONSTRAINT "NormalizedEmailIndex" UNIQUE ("NormalizedEmail" ASC);
+ALTER TABLE "Users" ADD CONSTRAINT "UserNameIndex" UNIQUE ("UserName");
+ALTER TABLE "Users" ADD CONSTRAINT "NormalizedUserNameIndex" UNIQUE ("NormalizedUserName");
+ALTER TABLE "Users" ADD CONSTRAINT "NormalizedEmailIndex" UNIQUE ("NormalizedEmail");
 ALTER TABLE "Users" ADD CONSTRAINT "ClientIDIndex" UNIQUE ("ClientID");
 ---- Roles
-CREATE UNIQUE INDEX "RoleNameIndex" ON "Roles" ("Name" ASC);
-ALTER TABLE "Roles" ADD CONSTRAINT "NormalizedNameIndex" UNIQUE ("NormalizedName" ASC);
+ALTER TABLE "Roles" ADD CONSTRAINT "RoleNameIndex" UNIQUE ("Name");
+ALTER TABLE "Roles" ADD CONSTRAINT "NormalizedNameIndex" UNIQUE ("NormalizedName");
 
 --- INDEX
 ---- UserRoles
@@ -141,7 +157,7 @@ ALTER TABLE "UserLogins" ADD CONSTRAINT "FK.UserLogins.Users_UserId" FOREIGN KEY
 ALTER TABLE "UserClaims" ADD CONSTRAINT "FK.UserClaims.Users_UserId" FOREIGN KEY("UserId") REFERENCES "Users" ("Id") ON DELETE CASCADE;
 ---- TotpTokens
 ALTER TABLE "TotpTokens" ADD CONSTRAINT "FK.TotpTokens.Users_UserId" FOREIGN KEY("UserId") REFERENCES "Users" ("Id") ON DELETE CASCADE;
----- OAuth2Data
-ALTER TABLE "OAuth2Data" ADD CONSTRAINT "FK.OAuth2Data.Users_ClientID" FOREIGN KEY("ClientID") REFERENCES "Users" ("ClientID") ON DELETE CASCADE;
+---- Saml2OAuth2Data
+ALTER TABLE "Saml2OAuth2Data" ADD CONSTRAINT "FK.Saml2OAuth2Data.Users_ClientID" FOREIGN KEY("ClientID") REFERENCES "Users" ("ClientID") ON DELETE CASCADE;
 ---- FIDO2Data
-ALTER TABLE "FIDO2Data" ADD CONSTRAINT "FK.FIDO2Data.Users_UserName" FOREIGN KEY("UserName") REFERENCES "Users" ("UserName") ON DELETE CASCADE;
+ALTER TABLE "FIDO2Data" ADD CONSTRAINT "FK.FIDO2Data.Users_UserName" FOREIGN KEY("UserName") REFERENCES "Users" ("UserName") ON DELETE CASCADE;

root/files/resource/MultiPurposeAuthSite/Sql/oracle/Select_UserStore.sql

@@ -7,5 +7,8 @@ SELECT * FROM "TotpTokens";
 SELECT * FROM "AuthenticationCodeDictionary";
 SELECT * FROM "RefreshTokenDictionary";
 SELECT * FROM "CustomizedConfirmation";
-SELECT * FROM "OAuth2Data";
-SELECT * FROM "FIDO2Data";
+SELECT * FROM "Saml2OAuth2Data";
+SELECT * FROM "FIDO2Data";
+SELECT * FROM "OAuth2Revocation";
+SELECT * FROM "IssuedToken";
+SELECT * FROM "RequestObject";

root/files/resource/MultiPurposeAuthSite/Sql/pstgrs/Create_UserStore.sql

@@ -92,10 +92,10 @@ CREATE TABLE CustomizedConfirmation(
     CONSTRAINT PK_CustomizedConfirmation PRIMARY KEY (UserId)
 );
 
-CREATE TABLE OAuth2Data(
+CREATE TABLE Saml2OAuth2Data(
     ClientID varchar(256) NOT NULL,          -- PK
     UnstructuredData varchar(2000) NULL,     -- OAuth2 Unstructured Data
-    CONSTRAINT PK_OAuth2Data PRIMARY KEY (ClientID)
+    CONSTRAINT PK_Saml2OAuth2Data PRIMARY KEY (ClientID)
 );
 
 CREATE TABLE FIDO2Data(
@@ -111,6 +111,22 @@ CREATE TABLE OAuth2Revocation(
     CONSTRAINT PK_OAuth2Revocation PRIMARY KEY (Jti)
 );
 
+CREATE TABLE IssuedToken(
+    Jti varchar(38) NOT NULL,                -- PK, guid
+    Value varchar(2000) NOT NULL,
+    ClientID varchar(38) NOT NULL,
+    Audience varchar(38) NOT NULL,
+    CreatedDate timestamp NOT NULL,
+    CONSTRAINT PK_IssuedToken PRIMARY KEY (Jti)
+);
+
+CREATE TABLE RequestObject(
+    Urn varchar(38) NOT NULL,                -- PK, guid
+    Value varchar(2000) NOT NULL,
+    CreatedDate timestamp NOT NULL,
+    CONSTRAINT PK_RequestObject PRIMARY KEY (Urn)
+);
+
 -- INDEX
 ---- Users
 CREATE UNIQUE INDEX UserNameIndex ON Users (UserName);
@@ -140,7 +156,7 @@ ALTER TABLE UserLogins ADD CONSTRAINT FK_UserLogins_Users_UserId FOREIGN KEY(Use
 ALTER TABLE UserClaims ADD CONSTRAINT FK_UserClaims_Users_UserId FOREIGN KEY(UserId) REFERENCES Users (Id) ON DELETE CASCADE;
 ---- TotpTokens
 ALTER TABLE TotpTokens ADD CONSTRAINT FK_TotpTokens_Users_UserId FOREIGN KEY(UserId) REFERENCES Users (Id) ON DELETE CASCADE;
----- OAuth2Data
-ALTER TABLE OAuth2Data ADD CONSTRAINT FK_OAuth2Data_Users_ClientID FOREIGN KEY(ClientID) REFERENCES Users (ClientID) ON DELETE CASCADE;
+---- Saml2OAuth2Data
+ALTER TABLE Saml2OAuth2Data ADD CONSTRAINT FK_Saml2OAuth2Data_Users_ClientID FOREIGN KEY(ClientID) REFERENCES Users (ClientID) ON DELETE CASCADE;
 ---- FIDO2Data
 ALTER TABLE FIDO2Data ADD CONSTRAINT FK_FIDO2Data_Users_UserName FOREIGN KEY(UserName) REFERENCES Users (UserName) ON DELETE CASCADE;

root/files/resource/MultiPurposeAuthSite/Sql/pstgrs/Select_UserStore.sql

@@ -5,7 +5,10 @@ SELECT * FROM "userlogins"
 SELECT * FROM "userclaims"
 SELECT * FROM "totptokens"
 SELECT * FROM "authenticationcodedictionary"
-SELECT * FROM "refreshTokendictionary"
+SELECT * FROM "refreshtokendictionary"
 SELECT * FROM "customizedconfirmation"
-SELECT * FROM "oauth2data"
-SELECT * FROM "fido2data"
+SELECT * FROM "saml2oauth2data"
+SELECT * FROM "fido2data"
+SELECT * FROM "oauth2revocation"
+SELECT * FROM "issuedtoken"
+SELECT * FROM "requestobject"

root/files/resource/MultiPurposeAuthSite/Sql/sqlserver/Create_UserStore.sql

@@ -116,10 +116,10 @@ CREATE TABLE [CustomizedConfirmation](
         WITH (PAD_INDEX = OFF, STATISTICS_NORECOMPUTE = OFF, IGNORE_DUP_KEY = OFF, ALLOW_ROW_LOCKS = ON, ALLOW_PAGE_LOCKS = ON) ON [PRIMARY]
 ) ON [PRIMARY]
 
-CREATE TABLE [OAuth2Data](
+CREATE TABLE [Saml2OAuth2Data](
     [ClientID] [nvarchar](256) NOT NULL,     -- PK
     [UnstructuredData] [nvarchar](max) NULL, -- OAuth2 Unstructured Data
-    CONSTRAINT [PK.OAuth2Data] PRIMARY KEY NONCLUSTERED ([ClientID] ASC)
+    CONSTRAINT [PK.Saml2OAuth2Data] PRIMARY KEY NONCLUSTERED ([ClientID] ASC)
         WITH (PAD_INDEX = OFF, STATISTICS_NORECOMPUTE = OFF, IGNORE_DUP_KEY = OFF, ALLOW_ROW_LOCKS = ON, ALLOW_PAGE_LOCKS = ON) ON [PRIMARY]
 ) ON [PRIMARY]
 
@@ -138,6 +138,23 @@ CREATE TABLE [OAuth2Revocation](
         WITH (PAD_INDEX = OFF, STATISTICS_NORECOMPUTE = OFF, IGNORE_DUP_KEY = OFF, ALLOW_ROW_LOCKS = ON, ALLOW_PAGE_LOCKS = ON) ON [PRIMARY]
 ) ON [PRIMARY]
 
+CREATE TABLE [IssuedToken](
+    [Jti] [nvarchar](38) NOT NULL,            -- PK, guid
+    [Value] [nvarchar](max) NULL,             -- IssuedToken
+    [ClientID] [nvarchar](38) NOT NULL,
+    [Audience] [nvarchar](38) NOT NULL,
+    [CreatedDate] [smalldatetime] NOT NULL,
+    CONSTRAINT [PK.IssuedToken] PRIMARY KEY NONCLUSTERED ([Jti] ASC)
+        WITH (PAD_INDEX = OFF, STATISTICS_NORECOMPUTE = OFF, IGNORE_DUP_KEY = OFF, ALLOW_ROW_LOCKS = ON, ALLOW_PAGE_LOCKS = ON) ON [PRIMARY]
+) ON [PRIMARY]
+
+CREATE TABLE [RequestObject](
+    [Urn] [nvarchar](38) NOT NULL,            -- PK, guid
+    [Value] [nvarchar](max) NULL,             -- RequestObject
+    [CreatedDate] [smalldatetime] NOT NULL,
+    CONSTRAINT [PK.RequestObject] PRIMARY KEY NONCLUSTERED ([Urn] ASC)
+        WITH (PAD_INDEX = OFF, STATISTICS_NORECOMPUTE = OFF, IGNORE_DUP_KEY = OFF, ALLOW_ROW_LOCKS = ON, ALLOW_PAGE_LOCKS = ON) ON [PRIMARY]
+) ON [PRIMARY]
 
 -- INDEX
 ---- Users
@@ -168,7 +185,7 @@ ALTER TABLE [UserLogins] WITH CHECK ADD CONSTRAINT [FK.UserLogins.Users_UserId]
 ALTER TABLE [UserClaims] WITH CHECK ADD CONSTRAINT [FK.UserClaims.Users_UserId] FOREIGN KEY([UserId]) REFERENCES [Users] ([Id]) ON DELETE CASCADE
 ---- TotpTokens
 ALTER TABLE [TotpTokens] WITH CHECK ADD CONSTRAINT [FK.TotpTokens.Users_UserId] FOREIGN KEY([UserId]) REFERENCES [Users] ([Id]) ON DELETE CASCADE
----- OAuth2Data
-ALTER TABLE [OAuth2Data] WITH CHECK ADD CONSTRAINT [FK.OAuth2Data.Users_ClientID] FOREIGN KEY([ClientID]) REFERENCES [Users] ([ClientID]) ON DELETE CASCADE
+---- Saml2OAuth2Data
+ALTER TABLE [Saml2OAuth2Data] WITH CHECK ADD CONSTRAINT [FK.Saml2OAuth2Data.Users_ClientID] FOREIGN KEY([ClientID]) REFERENCES [Users] ([ClientID]) ON DELETE CASCADE
 ---- FIDO2Data
 ALTER TABLE [FIDO2Data] WITH CHECK ADD CONSTRAINT [FK.FIDO2Data.Users_UserName] FOREIGN KEY([UserName]) REFERENCES [Users] ([UserName]) ON DELETE CASCADE

root/files/resource/MultiPurposeAuthSite/Sql/sqlserver/Select_UserStore.sql

@@ -10,5 +10,8 @@ SELECT * FROM [TotpTokens]
 SELECT * FROM [AuthenticationCodeDictionary]
 SELECT * FROM [RefreshTokenDictionary]
 SELECT * FROM [CustomizedConfirmation]
-SELECT * FROM [OAuth2Data]
-SELECT * FROM [FIDO2Data]
+SELECT * FROM [Saml2OAuth2Data]
+SELECT * FROM [FIDO2Data]
+SELECT * FROM [OAuth2Revocation]
+SELECT * FROM [IssuedToken]
+SELECT * FROM [RequestObject]

root/files/resource/X509/GenECDsaCertByOpenSSL.bat

@@ -1,5 +1,16 @@
 openssl ecparam -list_curves
+
 openssl ecparam -out private-key.pem -name prime256v1 -genkey
 openssl req -new -key private-key.pem > csr.csr
 openssl x509 -in csr.csr -days 365000 -req -signkey private-key.pem > _SHA256ECDSA.cer
 openssl pkcs12 -export -inkey private-key.pem -in _SHA256ECDSA.cer > _SHA256ECDSA.pfx
+
+openssl ecparam -out private-key.pem -name secp384r1 -genkey
+openssl req -new -key private-key.pem > csr.csr
+openssl x509 -in csr.csr -days 365000 -req -signkey private-key.pem > _SHA384ECDSA.cer
+openssl pkcs12 -export -inkey private-key.pem -in _SHA384ECDSA.cer > _SHA384ECDSA.pfx
+
+openssl ecparam -out private-key.pem -name secp521r1 -genkey
+openssl req -new -key private-key.pem > csr.csr
+openssl x509 -in csr.csr -days 365000 -req -signkey private-key.pem > _SHA521ECDSA.cer
+openssl pkcs12 -export -inkey private-key.pem -in _SHA521ECDSA.cer > _SHA521ECDSA.pfx

root/files/resource/X509/SHA384ECDSA.cer

@@ -0,0 +1,12 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----