595ee242aa
* Move magical route to management api * Move auth around * Remove "New" cookies, as they are no longer needed * Move all installer related * Remove BackOfficeServerVariables.cs and trees * Move webhooks to management api * Remove remainting controllers * Remove last services * Move preview to management api * Remove mroe extensions * Remove tours * Remove old Auth handlers * Remove server variables entirely * Remove old backoffice controller * Remove controllers namespace entirely * Move rest of preview * move last services * Move language file extension * Remove old backoffice entirely (Backoffice and Web.UI projects) * Clean up unused security classes * Fix up installer route * Remove obsolete tests * Fix up DI in integration test * Add missing property mapping * Move core mapping into core * Add composers to integration test * remove identity * Fix up DI * Outcomment failing test :) * Fix up remaining test * Update mapper * Remove the actual project files * Remove backoffice cs proj * Remove old backoffice from yml * Run belissima before login * Remove caching * Refactor file paths * Remove belle from static assets * Dont refer to old project in templates * update gitignore * Add missing files * Remove install view as its no longer used * Fix up failing test * Remove outcommented code * Update submodule to latest * fix build --------- Co-authored-by: Bjarke Berg <mail@bergmania.dk>
89 lines
3.8 KiB
C#
89 lines
3.8 KiB
C#
using Microsoft.AspNetCore.Builder;
|
|
using Microsoft.Extensions.DependencyInjection;
|
|
using Umbraco.Cms.Api.Common.DependencyInjection;
|
|
using Umbraco.Cms.Api.Management.Handlers;
|
|
using Umbraco.Cms.Core;
|
|
using Umbraco.Cms.Core.DependencyInjection;
|
|
using Umbraco.Cms.Api.Management.Middleware;
|
|
using Umbraco.Cms.Api.Management.Security;
|
|
using Umbraco.Cms.Core.Notifications;
|
|
using Umbraco.Cms.Infrastructure.Security;
|
|
using Umbraco.Cms.Web.Common.ApplicationBuilder;
|
|
|
|
namespace Umbraco.Cms.Api.Management.DependencyInjection;
|
|
|
|
public static class BackOfficeAuthBuilderExtensions
|
|
{
|
|
public static IUmbracoBuilder AddBackOfficeAuthentication(this IUmbracoBuilder builder)
|
|
{
|
|
builder
|
|
.AddAuthentication()
|
|
.AddUmbracoOpenIddict()
|
|
.AddBackOfficeLogin();
|
|
|
|
return builder;
|
|
}
|
|
|
|
public static IUmbracoBuilder AddTokenRevocation(this IUmbracoBuilder builder)
|
|
{
|
|
builder.AddNotificationAsyncHandler<UserSavingNotification, RevokeUserAuthenticationTokensNotificationHandler>();
|
|
builder.AddNotificationAsyncHandler<UserSavedNotification, RevokeUserAuthenticationTokensNotificationHandler>();
|
|
builder.AddNotificationAsyncHandler<UserDeletedNotification, RevokeUserAuthenticationTokensNotificationHandler>();
|
|
builder.AddNotificationAsyncHandler<UserGroupDeletingNotification, RevokeUserAuthenticationTokensNotificationHandler>();
|
|
builder.AddNotificationAsyncHandler<UserGroupDeletedNotification, RevokeUserAuthenticationTokensNotificationHandler>();
|
|
|
|
return builder;
|
|
}
|
|
|
|
private static IUmbracoBuilder AddAuthentication(this IUmbracoBuilder builder)
|
|
{
|
|
builder.Services.AddAuthentication();
|
|
builder.AddAuthorizationPolicies();
|
|
|
|
builder.Services.AddTransient<IBackOfficeApplicationManager, BackOfficeApplicationManager>();
|
|
builder.Services.AddSingleton<BackOfficeAuthorizationInitializationMiddleware>();
|
|
builder.Services.Configure<UmbracoPipelineOptions>(options => options.AddFilter(new BackofficePipelineFilter("Backoffice")));
|
|
|
|
return builder;
|
|
}
|
|
|
|
private static IUmbracoBuilder AddBackOfficeLogin(this IUmbracoBuilder builder)
|
|
{
|
|
builder.Services
|
|
.AddAuthentication()
|
|
// Add our custom schemes which are cookie handlers
|
|
.AddCookie(Constants.Security.BackOfficeAuthenticationType, options =>
|
|
{
|
|
options.LoginPath = "/umbraco/login";
|
|
options.Cookie.Name = Constants.Security.BackOfficeAuthenticationType;
|
|
})
|
|
.AddCookie(Constants.Security.BackOfficeExternalAuthenticationType, o =>
|
|
{
|
|
o.Cookie.Name = Constants.Security.BackOfficeExternalAuthenticationType;
|
|
o.ExpireTimeSpan = TimeSpan.FromMinutes(5);
|
|
})
|
|
|
|
// Although we don't natively support this, we add it anyways so that if end-users implement the required logic
|
|
// they don't have to worry about manually adding this scheme or modifying the sign in manager
|
|
.AddCookie(Constants.Security.BackOfficeTwoFactorAuthenticationType, options =>
|
|
{
|
|
options.Cookie.Name = Constants.Security.BackOfficeTwoFactorAuthenticationType;
|
|
options.ExpireTimeSpan = TimeSpan.FromMinutes(5);
|
|
})
|
|
.AddCookie(Constants.Security.BackOfficeTwoFactorRememberMeAuthenticationType, o =>
|
|
{
|
|
o.Cookie.Name = Constants.Security.BackOfficeTwoFactorRememberMeAuthenticationType;
|
|
o.ExpireTimeSpan = TimeSpan.FromMinutes(5);
|
|
});
|
|
|
|
return builder;
|
|
}
|
|
}
|
|
|
|
internal class BackofficePipelineFilter : UmbracoPipelineFilter
|
|
{
|
|
public BackofficePipelineFilter(string name)
|
|
: base(name)
|
|
=> PrePipeline = builder => builder.UseMiddleware<BackOfficeAuthorizationInitializationMiddleware>();
|
|
}
|