Allowed for cycling of symmetric cryptographic keys by replacing the effectively constant byte[] secret with a new ICryptoKeyStore throughout the OAuth 2 and OpenID stacks.

And StyleCop fixes.

1 files changed, 10 insertions, 10 deletions

diff --git a/samples/OAuthAuthorizationServer/Controllers/OAuthController.cs b/samples/OAuthAuthorizationServer/Controllers/OAuthController.cs
index 47c1977..11e7b11 100644
--- a/samples/OAuthAuthorizationServer/Controllers/OAuthController.cs
+++ b/samples/OAuthAuthorizationServer/Controllers/OAuthController.cs
@@ -35,16 +35,6 @@
 #endif

 

 		/// <summary>

-		/// Creates the resource server's encryption service provider with private key.

-		/// </summary>

-		/// <returns>An RSA crypto service provider.</returns>

-		internal static RSACryptoServiceProvider CreateResourceServerEncryptionServiceProvider() {

-			var resourceServerEncryptionServiceProvider = new RSACryptoServiceProvider();

-			resourceServerEncryptionServiceProvider.ImportParameters(ResourceServerEncryptionPublicKey);

-			return resourceServerEncryptionServiceProvider;

-		}

-

-		/// <summary>

 		/// The OAuth 2.0 token endpoint.

 		/// </summary>

 		/// <returns>The response to the Client.</returns>

@@ -133,5 +123,15 @@
 

 			return this.authorizationServer.Channel.PrepareResponse(response).AsActionResult();

 		}

+

+		/// <summary>

+		/// Creates the resource server's encryption service provider with private key.

+		/// </summary>

+		/// <returns>An RSA crypto service provider.</returns>

+		internal static RSACryptoServiceProvider CreateResourceServerEncryptionServiceProvider() {

+			var resourceServerEncryptionServiceProvider = new RSACryptoServiceProvider();

+			resourceServerEncryptionServiceProvider.ImportParameters(ResourceServerEncryptionPublicKey);

+			return resourceServerEncryptionServiceProvider;

+		}

 	}

 }