3 files changed, 48 insertions, 1 deletions

diff --git a/samples/OpenIdProviderMvc/Code/AnonymousIdentifierProvider.cs b/samples/OpenIdProviderMvc/Code/AnonymousIdentifierProvider.cs
new file mode 100644
index 0000000..2b9e01c
--- /dev/null
+++ b/samples/OpenIdProviderMvc/Code/AnonymousIdentifierProvider.cs
@@ -0,0 +1,23 @@
+namespace OpenIdProviderMvc.Code {
+	using System;
+	using System.Web.Security;
+	using DotNetOpenAuth.ApplicationBlock.Provider;
+	using DotNetOpenAuth.OpenId;
+	using OpenIdProviderMvc.Models;
+
+	internal class AnonymousIdentifierProvider : AnonymousIdentifierProviderBase {
+		internal AnonymousIdentifierProvider()
+			: base(Util.GetAppPathRootedUri("anon?id=")) {
+		}
+
+		protected override byte[] GetHashSaltForLocalIdentifier(Identifier localIdentifier) {
+			// This is just a sample with no database... a real web app MUST return 
+			// a reasonable salt here and have that salt be persistent for each user.
+			var membership = (ReadOnlyXmlMembershipProvider)Membership.Provider;
+			string username = User.GetUserFromClaimedIdentifier(new Uri(localIdentifier));
+			string salt = membership.GetSalt(username);
+			return Convert.FromBase64String(salt);
+			////return AnonymousIdentifierProviderBase.GetNewSalt(5);
+		}
+	}
+}
diff --git a/samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs b/samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs
index 3da0f8e..cc5a321 100644
--- a/samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs
+++ b/samples/OpenIdProviderMvc/Code/ReadOnlyXmlMembershipProvider.cs
@@ -236,6 +236,11 @@
 			throw new NotSupportedException();
 		}
 
+		internal string GetSalt(string userName) {
+			this.ReadMembershipDataStore();
+			return this.users[userName].Email;
+		}
+
 		// Helper method
 		private void ReadMembershipDataStore() {
 			lock (this) {
@@ -246,11 +251,13 @@
 					XmlNodeList nodes = doc.GetElementsByTagName("User");
 
 					foreach (XmlNode node in nodes) {
+						// Yes, we're misusing some of these fields.  A real app would
+						// have the right fields from a database to use.
 						MembershipUser user = new MembershipUser(
 							Name,                       // Provider name
 							node["UserName"].InnerText, // Username
 							null,                       // providerUserKey
-							null,                       // Email
+							node["Salt"].InnerText,     // Email
 							string.Empty,               // passwordQuestion
 							node["Password"].InnerText, // Comment
 							true,                       // isApproved
diff --git a/samples/OpenIdProviderMvc/Code/Util.cs b/samples/OpenIdProviderMvc/Code/Util.cs
new file mode 100644
index 0000000..6623952
--- /dev/null
+++ b/samples/OpenIdProviderMvc/Code/Util.cs
@@ -0,0 +1,17 @@
+namespace OpenIdProviderMvc.Code {
+	using System;
+	using System.Collections.Generic;
+	using System.Linq;
+	using System.Web;
+
+	internal static class Util {
+		internal static Uri GetAppPathRootedUri(string value) {
+			string appPath = HttpContext.Current.Request.ApplicationPath.ToLowerInvariant();
+			if (!appPath.EndsWith("/")) {
+				appPath += "/";
+			}
+
+			return new Uri(HttpContext.Current.Request.Url, appPath + value);
+		}
+	}
+}