src/Umbraco.Web.Common/Extensions/HttpContextExtensions.cs

using System;
using System.Security.Claims;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Http.Features;

namespace Umbraco.Extensions
{
    public static class HttpContextExtensions
    {


        /// <summary>
        /// Runs the authentication process
        /// </summary>
        public static async Task<AuthenticateResult> AuthenticateBackOfficeAsync(this HttpContext httpContext)
        {
            if (httpContext == null)
            {
                return AuthenticateResult.NoResult();
            }

            var result = await httpContext.AuthenticateAsync(Cms.Core.Constants.Security.BackOfficeAuthenticationType);
            return result;
        }

        /// <summary>
        /// Get the value in the request form or query string for the key
        /// </summary>
        public static string GetRequestValue(this HttpContext context, string key)
        {
            HttpRequest request = context.Request;
            if (!request.HasFormContentType)
            {
                return request.Query[key];
            }

            string value = request.Form[key];
            return value ?? request.Query[key];
        }

        public static void SetPrincipalForRequest(this HttpContext context, ClaimsPrincipal principal)
        {
            context.User = principal;
        }


        public static void SetReasonPhrase(this HttpContext httpContext, string reasonPhrase)
        {
            //TODO we should update this behavior, as HTTP2 do not have ReasonPhrase. Could as well be returned in body
            // https://github.com/aspnet/HttpAbstractions/issues/395
            var httpResponseFeature = httpContext.Features.Get<IHttpResponseFeature>();
            if (!(httpResponseFeature is null))
            {
                httpResponseFeature.ReasonPhrase = reasonPhrase;
            }
        }

        /// <summary>
        /// This will return the current back office identity.
        /// </summary>
        /// <param name="http"></param>
        /// <returns>
        /// Returns the current back office identity if an admin is authenticated otherwise null
        /// </returns>
        public static ClaimsIdentity GetCurrentIdentity(this HttpContext http)
        {
            if (http == null) throw new ArgumentNullException(nameof(http));
            if (http.User == null) return null; //there's no user at all so no identity

            // If it's already a UmbracoBackOfficeIdentity
            var backOfficeIdentity = http.User.GetUmbracoIdentity();
            if (backOfficeIdentity != null) return backOfficeIdentity;

            return null;
        }
    }
}
removes unneeded ctor dependency on UmbracoContext 2021-03-04 16:44:09 +11:00			`using System;`
Implements more BackOfficeController and AuthenticationController, some web security and more, gets the back office UI almost rendering 2020-05-25 23:15:32 +10:00			`using System.Security.Claims;`
Added POC of basic auth middleware 2021-08-05 21:42:36 +02:00			`using System.Threading.Tasks;`
			`using Microsoft.AspNetCore.Authentication;`
Netcore: Align namespaces (#9801) * Rename Umbraco.Core namespace to Umbraco.Cms.Core * Move extension methods in core project to Umbraco.Extensions * Move extension methods in core project to Umbraco.Extensions * Rename Umbraco.Examine namespace to Umbraco.Cms.Examine * Move examine extensions to Umbraco.Extensions namespace * Reflect changed namespaces in Builder and fix unit tests * Adjust namespace in Umbraco.ModelsBuilder.Embedded * Adjust namespace in Umbraco.Persistence.SqlCe * Adjust namespace in Umbraco.PublishedCache.NuCache * Align namespaces in Umbraco.Web.BackOffice * Align namespaces in Umbraco.Web.Common * Ensure that SqlCeSupport is still enabled after changing the namespace * Align namespaces in Umbraco.Web.Website * Align namespaces in Umbraco.Web.UI.NetCore * Align namespaces in Umbraco.Tests.Common * Align namespaces in Umbraco.Tests.UnitTests * Align namespaces in Umbraco.Tests.Integration * Fix errors caused by changed namespaces * Fix integration tests * Undo the Umbraco.Examine.Lucene namespace change This breaks integration tests on linux, since the namespace wont exists there because it's only used on windows. * Fix merge * Fix Merge 2021-02-18 11:06:02 +01:00			`using Microsoft.AspNetCore.Http;`
Migrated content controller + related Signed-off-by: Bjarke Berg <mail@bergmania.dk> 2020-06-09 13:48:50 +02:00			`using Microsoft.AspNetCore.Http.Features;`
Implements more BackOfficeController and AuthenticationController, some web security and more, gets the back office UI almost rendering 2020-05-25 23:15:32 +10:00
			`namespace Umbraco.Extensions`
			`{`
			`public static class HttpContextExtensions`
			`{`
Added POC of basic auth middleware 2021-08-05 21:42:36 +02:00

			`/// <summary>`
			`/// Runs the authentication process`
			`/// </summary>`
			`public static async Task<AuthenticateResult> AuthenticateBackOfficeAsync(this HttpContext httpContext)`
			`{`
			`if (httpContext == null)`
			`{`
			`return AuthenticateResult.NoResult();`
			`}`

			`var result = await httpContext.AuthenticateAsync(Cms.Core.Constants.Security.BackOfficeAuthenticationType);`
			`return result;`
			`}`

removes unneeded ctor dependency on UmbracoContext 2021-03-04 16:44:09 +11:00			`/// <summary>`
			`/// Get the value in the request form or query string for the key`
			`/// </summary>`
			`public static string GetRequestValue(this HttpContext context, string key)`
			`{`
			`HttpRequest request = context.Request;`
			`if (!request.HasFormContentType)`
			`{`
			`return request.Query[key];`
			`}`

			`string value = request.Form[key];`
			`return value ?? request.Query[key];`
			`}`

Implements more BackOfficeController and AuthenticationController, some web security and more, gets the back office UI almost rendering 2020-05-25 23:15:32 +10:00			`public static void SetPrincipalForRequest(this HttpContext context, ClaimsPrincipal principal)`
			`{`
			`context.User = principal;`
			`}`

Migrated content controller + related Signed-off-by: Bjarke Berg <mail@bergmania.dk> 2020-06-09 13:48:50 +02:00
			`public static void SetReasonPhrase(this HttpContext httpContext, string reasonPhrase)`
			`{`
			`//TODO we should update this behavior, as HTTP2 do not have ReasonPhrase. Could as well be returned in body`
			`// https://github.com/aspnet/HttpAbstractions/issues/395`
			`var httpResponseFeature = httpContext.Features.Get<IHttpResponseFeature>();`
			`if (!(httpResponseFeature is null))`
			`{`
			`httpResponseFeature.ReasonPhrase = reasonPhrase;`
			`}`
			`}`

Implements more BackOfficeController and AuthenticationController, some web security and more, gets the back office UI almost rendering 2020-05-25 23:15:32 +10:00			`/// <summary>`
			`/// This will return the current back office identity.`
			`/// </summary>`
Migrated content controller + related Signed-off-by: Bjarke Berg <mail@bergmania.dk> 2020-06-09 13:48:50 +02:00			`/// <param name="http"></param>`
Implements more BackOfficeController and AuthenticationController, some web security and more, gets the back office UI almost rendering 2020-05-25 23:15:32 +10:00			`/// <returns>`
			`/// Returns the current back office identity if an admin is authenticated otherwise null`
			`/// </returns>`
Remove usage of FromClaimsIdentity 2021-02-17 11:50:19 +01:00			`public static ClaimsIdentity GetCurrentIdentity(this HttpContext http)`
Implements more BackOfficeController and AuthenticationController, some web security and more, gets the back office UI almost rendering 2020-05-25 23:15:32 +10:00			`{`
			`if (http == null) throw new ArgumentNullException(nameof(http));`
			`if (http.User == null) return null; //there's no user at all so no identity`

			`// If it's already a UmbracoBackOfficeIdentity`
			`var backOfficeIdentity = http.User.GetUmbracoIdentity();`
			`if (backOfficeIdentity != null) return backOfficeIdentity;`

			`return null;`
			`}`
			`}`
			`}`