v14: Merge NewBackOfficeSettings into SecuritySettings. (#15586)

* Merge NewBackOfficeSettings into SecuritySettings. * Apply suggestions from code review Co-authored-by: Kenn Jacobsen <kja@umbraco.dk> * Remove hardcoded callback path --------- Co-authored-by: Kenn Jacobsen <kja@umbraco.dk>
2024-01-17 13:26:09 +01:00
parent 547da0b191
commit 43791c2b33
9 changed files with 47 additions and 59 deletions
--- a/src/Umbraco.Core/Configuration/Models/SecuritySettings.cs
+++ b/src/Umbraco.Core/Configuration/Models/SecuritySettings.cs
@@ -25,6 +25,7 @@ public class SecuritySettings

    internal const int StaticMemberDefaultLockoutTimeInMinutes = 30 * 24 * 60;
    internal const int StaticUserDefaultLockoutTimeInMinutes = 30 * 24 * 60;
+    internal const string StaticAuthorizeCallbackPathName = "/umbraco";

    /// <summary>
    ///     Gets or sets a value indicating whether to keep the user logged in.
@@ -116,4 +117,15 @@ public class SecuritySettings
    /// </summary>
    [DefaultValue(StaticAllowConcurrentLogins)]
    public bool AllowConcurrentLogins { get; set; } = StaticAllowConcurrentLogins;
+
+    /// <summary>
+    ///     Gets or sets a value of the back-office host URI. Use this when running the back-office client and the Management API on different hosts. Leave empty when running both on the same host.
+    /// </summary>
+    public Uri? BackOfficeHost { get; set; }
+
+    /// <summary>
+    ///     The path to use for authorization callback. Will be appended to the BackOfficeHost.
+    /// </summary>
+    [DefaultValue(StaticAuthorizeCallbackPathName)]
+    public string AuthorizeCallbackPathName { get; set; } = StaticAuthorizeCallbackPathName;
 }
--- a/src/Umbraco.Core/Configuration/Models/Validation/SecuritySettingsValidator.cs
+++ b/src/Umbraco.Core/Configuration/Models/Validation/SecuritySettingsValidator.cs
@@ -0,0 +1,24 @@
+using Microsoft.Extensions.Options;
+
+namespace Umbraco.Cms.Core.Configuration.Models.Validation;
+
+public class SecuritySettingsValidator : ConfigurationValidatorBase, IValidateOptions<SecuritySettings>
+{
+    public ValidateOptionsResult Validate(string? name, SecuritySettings options)
+    {
+        if (options.BackOfficeHost != null)
+        {
+            if (options.BackOfficeHost.IsAbsoluteUri == false)
+            {
+                return ValidateOptionsResult.Fail($"{nameof(SecuritySettings.BackOfficeHost)} must be an absolute URL");
+            }
+
+            if (options.BackOfficeHost.PathAndQuery != "/")
+            {
+                return ValidateOptionsResult.Fail($"{nameof(SecuritySettings.BackOfficeHost)} must not have any path or query");
+            }
+        }
+
+        return ValidateOptionsResult.Success;
+    }
+}