using System;
using Microsoft.Owin;
using Microsoft.Owin.Security;
using Umbraco.Core;
using Umbraco.Core.Composing;
using Umbraco.Core.Exceptions;
namespace Umbraco.Web.Security
{
public static class AuthenticationOptionsExtensions
{
///
/// When trying to implement an Azure AD B2C provider or other OAuth provider that requires a customized Challenge Result in order to work then
/// this must be used.
///
///
///
///
/// See: http://issues.umbraco.org/issue/U4-7353
///
public static void SetSignInChallengeResultCallback(
this AuthenticationOptions authOptions,
Func authProperties)
{
authOptions.Description.Properties["ChallengeResultCallback"] = authProperties;
}
public static AuthenticationProperties GetSignInChallengeResult(this AuthenticationDescription authenticationDescription, IOwinContext ctx)
{
if (authenticationDescription.Properties.ContainsKey("ChallengeResultCallback") == false) return null;
var cb = authenticationDescription.Properties["ChallengeResultCallback"] as Func;
if (cb == null) return null;
return cb(ctx);
}
///
/// Used during the External authentication process to assign external sign-in options
/// that are used by the Umbraco authentication process.
///
///
///
public static void SetExternalSignInAutoLinkOptions(
this AuthenticationOptions authOptions,
ExternalSignInAutoLinkOptions options)
{
authOptions.Description.Properties["ExternalSignInAutoLinkOptions"] = options;
}
///
/// Used during the External authentication process to retrieve external sign-in options
/// that have been set with SetExternalAuthenticationOptions
///
///
public static ExternalSignInAutoLinkOptions GetExternalAuthenticationOptions(this AuthenticationDescription authenticationDescription)
{
if (authenticationDescription.Properties.ContainsKey("ExternalSignInAutoLinkOptions") == false) return null;
var options = authenticationDescription.Properties["ExternalSignInAutoLinkOptions"] as ExternalSignInAutoLinkOptions;
return options;
}
///
/// Configures the properties of the authentication description instance for use with Umbraco back office
///
///
///
///
///
/// This is important if the identity provider is to be able to authenticate when upgrading Umbraco. We will try to extract this from
/// any options passed in via reflection since none of the default OWIN providers inherit from a base class but so far all of them have a consistent
/// name for the 'CallbackPath' property which is of type PathString. So we'll try to extract it if it's not found or supplied.
///
/// If a value is extracted or supplied, this will be added to an internal list which the UmbracoModule will use to allow the request to pass
/// through without redirecting to the installer.
///
public static void ForUmbracoBackOffice(this AuthenticationOptions options, string style, string icon, string callbackPath = null)
{
if (string.IsNullOrEmpty(options.AuthenticationType)) throw new ArgumentNullOrEmptyException("options.AuthenticationType");
//Ensure the prefix is set
if (options.AuthenticationType.StartsWith(Constants.Security.BackOfficeExternalAuthenticationTypePrefix) == false)
{
options.AuthenticationType = Constants.Security.BackOfficeExternalAuthenticationTypePrefix + options.AuthenticationType;
}
options.Description.Properties["SocialStyle"] = style;
options.Description.Properties["SocialIcon"] = icon;
//flag for use in back office
options.Description.Properties["UmbracoBackOffice"] = true;
if (callbackPath.IsNullOrWhiteSpace())
{
try
{
//try to get it with reflection
var prop = options.GetType().GetProperty("CallbackPath");
if (prop != null && TypeHelper.IsTypeAssignableFrom(prop.PropertyType))
{
//get the value
var path = (PathString) prop.GetValue(options);
if (path.HasValue)
{
UmbracoModule.ReservedPaths.TryAdd(path.ToString());
}
}
}
catch (System.Exception ex)
{
Current.Logger.Error(typeof (AuthenticationOptionsExtensions), ex, "Could not read AuthenticationOptions properties");
}
}
else
{
UmbracoModule.ReservedPaths.TryAdd(callbackPath);
}
}
}
}