summaryrefslogtreecommitdiffstats
path: root/samples/OpenIdProviderMvc/Code
diff options
context:
space:
mode:
Diffstat (limited to 'samples/OpenIdProviderMvc/Code')
-rw-r--r--samples/OpenIdProviderMvc/Code/AnonymousIdentifierProvider.cs43
-rw-r--r--samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs9
2 files changed, 51 insertions, 1 deletions
diff --git a/samples/OpenIdProviderMvc/Code/AnonymousIdentifierProvider.cs b/samples/OpenIdProviderMvc/Code/AnonymousIdentifierProvider.cs
new file mode 100644
index 0000000..9ead7c1
--- /dev/null
+++ b/samples/OpenIdProviderMvc/Code/AnonymousIdentifierProvider.cs
@@ -0,0 +1,43 @@
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Web;
+using DotNetOpenAuth.OpenId.Provider;
+using DotNetOpenAuth.OpenId;
+using System.Web.Security;
+using OpenIdProviderMvc.Models;
+
+namespace OpenIdProviderMvc.Code {
+ internal class AnonymousIdentifierProvider : AnonymousIdentifierProviderBase {
+ internal AnonymousIdentifierProvider()
+ : base(GetIdentifierBase("anon")) {
+ }
+
+ protected override byte[] GetHashSaltForLocalIdentifier(Identifier localIdentifier) {
+ // This is just a sample with no database... a real web app MUST return
+ // a reasonable salt here and have that salt be persistent for each user.
+ var membership = (ReadOnlyXmlMembershipProvider)Membership.Provider;
+ string username = User.GetUserFromClaimedIdentifier(new Uri(localIdentifier));
+ string salt = membership.GetSalt(username);
+ return Convert.FromBase64String(salt);
+ ////return AnonymousIdentifierProviderBase.GetNewSalt(5);
+ }
+
+ private static Uri GetIdentifierBase(string subPath) {
+ if (HttpContext.Current == null) {
+ throw new InvalidOperationException();
+ }
+
+ if (String.IsNullOrEmpty(subPath)) {
+ throw new ArgumentNullException("subPath");
+ }
+
+ string appPath = HttpContext.Current.Request.ApplicationPath;
+ if (!appPath.EndsWith("/")) {
+ appPath += "/";
+ }
+
+ return new Uri(HttpContext.Current.Request.Url, appPath + subPath + "/");
+ }
+ }
+}
diff --git a/samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs b/samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs
index 3da0f8e..cc5a321 100644
--- a/samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs
+++ b/samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs
@@ -236,6 +236,11 @@
throw new NotSupportedException();
}
+ internal string GetSalt(string userName) {
+ this.ReadMembershipDataStore();
+ return this.users[userName].Email;
+ }
+
// Helper method
private void ReadMembershipDataStore() {
lock (this) {
@@ -246,11 +251,13 @@
XmlNodeList nodes = doc.GetElementsByTagName("User");
foreach (XmlNode node in nodes) {
+ // Yes, we're misusing some of these fields. A real app would
+ // have the right fields from a database to use.
MembershipUser user = new MembershipUser(
Name, // Provider name
node["UserName"].InnerText, // Username
null, // providerUserKey
- null, // Email
+ node["Salt"].InnerText, // Email
string.Empty, // passwordQuestion
node["Password"].InnerText, // Comment
true, // isApproved
generated by cgit v1.1 at 2025-05-29 00:53:40 +0000