diff options
| author | Andrew Arnott <andrewarnott@gmail.com> | 2011-06-16 22:18:59 -0700 |
|---|---|---|
| committer | Andrew Arnott <andrewarnott@gmail.com> | 2011-06-16 22:18:59 -0700 |
| commit | 1f77a2b10ed11ac084d1def41b3c891178b0520b (patch) | |
| tree | 32f4abaaf950a44e37b887227b8c55d837718213 /projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs | |
| parent | 4ad66d2d6aaa6c82ed3606e1c7134aeb960b6890 (diff) | |
| download | DotNetOpenAuth-1f77a2b10ed11ac084d1def41b3c891178b0520b.zip DotNetOpenAuth-1f77a2b10ed11ac084d1def41b3c891178b0520b.tar.gz DotNetOpenAuth-1f77a2b10ed11ac084d1def41b3c891178b0520b.tar.bz2 | |
Access token lifetimes are now controlled by the IAuthorizationServer instance supplied by the host.
It is consistent whether the access token is obtained via implicit grant or from a refresh token.
Diffstat (limited to 'projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs')
| -rw-r--r-- | projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs | 9 |
1 files changed, 5 insertions, 4 deletions
diff --git a/projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs b/projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs index ee727f5..8c3f6fd 100644 --- a/projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs +++ b/projecttemplates/RelyingPartyLogic/OAuthAuthorizationServer.cs @@ -59,11 +59,12 @@ namespace RelyingPartyLogic { /// Creates the access token encryption key. /// </summary> /// <param name="request">The request.</param> - public RSACryptoServiceProvider CreateAccessTokenEncryptionKey(IAccessTokenRequest request) { + public void PrepareAccessToken(IAccessTokenRequest accessTokenRequestMessage, out RSACryptoServiceProvider resourceServerEncryptionKey, out TimeSpan lifetime) { // For this sample, we assume just one resource server. // If this authorization server needs to mint access tokens for more than one resource server, // we'd look at the request message passed to us and decide which public key to return. - return OAuthResourceServer.CreateRSA(); + resourceServerEncryptionKey = OAuthResourceServer.CreateRSA(); + lifetime = TimeSpan.FromHours(1); } /// <summary> @@ -132,7 +133,7 @@ namespace RelyingPartyLogic { // Default to not auto-approving. return false; } - + private bool IsAuthorizationValid(HashSet<string> requestedScopes, string clientIdentifier, DateTime issuedUtc, string username) { var grantedScopeStrings = from auth in Database.DataContext.ClientAuthorizations where @@ -140,7 +141,7 @@ namespace RelyingPartyLogic { auth.CreatedOnUtc <= issuedUtc && (!auth.ExpirationDateUtc.HasValue || auth.ExpirationDateUtc.Value >= DateTime.UtcNow) && auth.User.AuthenticationTokens.Any(token => token.ClaimedIdentifier == username) - select auth.Scope; + select auth.Scope; if (!grantedScopeStrings.Any()) { // No granted authorizations prior to the issuance of this token, so it must have been revoked. |