5 files changed, 263 insertions, 0 deletions
diff --git a/samples/OpenIdProviderWebForms/Code/InMemoryConsumerDescription.cs b/samples/OpenIdProviderWebForms/Code/InMemoryConsumerDescription.cs
new file mode 100644
index 0000000..de4505d
--- /dev/null
+++ b/samples/OpenIdProviderWebForms/Code/InMemoryConsumerDescription.cs
@@ -0,0 +1,31 @@
+//-----------------------------------------------------------------------
+// <copyright file="InMemoryConsumerDescription.cs" company="Andrew Arnott">
+//     Copyright (c) Andrew Arnott. All rights reserved.
+// </copyright>
+//-----------------------------------------------------------------------
+
+namespace OpenIdProviderWebForms.Code {
+	using System;
+	using System.Collections.Generic;
+	using System.Linq;
+	using System.Web;
+	using DotNetOpenAuth.OAuth.ChannelElements;
+
+	public class InMemoryConsumerDescription : IConsumerDescription {
+		#region IConsumerDescription Members
+
+		public string Key { get; set; }
+
+		public string Secret { get; set; }
+
+		public System.Security.Cryptography.X509Certificates.X509Certificate2 Certificate { get; set; }
+
+		public Uri Callback { get; set; }
+
+		public DotNetOpenAuth.OAuth.VerificationCodeFormat VerificationCodeFormat { get; set; }
+
+		public int VerificationCodeLength { get; set; }
+
+		#endregion
+	}
+}
diff --git a/samples/OpenIdProviderWebForms/Code/InMemoryServiceProviderAccessToken.cs b/samples/OpenIdProviderWebForms/Code/InMemoryServiceProviderAccessToken.cs
new file mode 100644
index 0000000..7e26b45
--- /dev/null
+++ b/samples/OpenIdProviderWebForms/Code/InMemoryServiceProviderAccessToken.cs
@@ -0,0 +1,31 @@
+//-----------------------------------------------------------------------
+// <copyright file="InMemoryServiceProviderAccessToken.cs" company="Andrew Arnott">
+//     Copyright (c) Andrew Arnott. All rights reserved.
+// </copyright>
+//-----------------------------------------------------------------------
+
+namespace OpenIdProviderWebForms.Code {
+	using System;
+	using System.Collections.Generic;
+	using System.Linq;
+	using System.Web;
+	using DotNetOpenAuth.OAuth.ChannelElements;
+
+	public class InMemoryServiceProviderAccessToken : IServiceProviderAccessToken {
+		#region IServiceProviderAccessToken Members
+
+		public string Token { get; set; }
+
+		public DateTime? ExpirationDate { get; set; }
+
+		public string Username { get; set; }
+
+		public string[] Roles { get; set; }
+
+		#endregion
+
+		public string Secret { get; set; }
+
+		public string Scope { get; set; }
+	}
+}
diff --git a/samples/OpenIdProviderWebForms/Code/InMemoryServiceProviderRequestToken.cs b/samples/OpenIdProviderWebForms/Code/InMemoryServiceProviderRequestToken.cs
new file mode 100644
index 0000000..9c02427
--- /dev/null
+++ b/samples/OpenIdProviderWebForms/Code/InMemoryServiceProviderRequestToken.cs
@@ -0,0 +1,42 @@
+//-----------------------------------------------------------------------
+// <copyright file="InMemoryServiceProviderRequestToken.cs" company="Andrew Arnott">
+//     Copyright (c) Andrew Arnott. All rights reserved.
+// </copyright>
+//-----------------------------------------------------------------------
+
+namespace OpenIdProviderWebForms.Code {
+	using System;
+	using System.Collections.Generic;
+	using System.Linq;
+	using System.Web;
+	using DotNetOpenAuth.OAuth.ChannelElements;
+
+	public class InMemoryServiceProviderRequestToken : IServiceProviderRequestToken {
+		/// <summary>
+		/// Initializes a new instance of the <see cref="InMemoryServiceProviderRequestToken"/> class.
+		/// </summary>
+		public InMemoryServiceProviderRequestToken() {
+			this.CreatedOn = DateTime.Now;
+		}
+
+		#region IServiceProviderRequestToken Members
+
+		public string Token { get; set; }
+
+		public string ConsumerKey { get; set; }
+
+		public DateTime CreatedOn { get; set; }
+
+		public Uri Callback { get; set; }
+
+		public string VerificationCode { get; set; }
+
+		public Version ConsumerVersion { get; set; }
+
+		#endregion
+
+		public string Secret { get; set; }
+
+		public string Scope { get; set; }
+	}
+}
diff --git a/samples/OpenIdProviderWebForms/Code/InMemoryTokenManager.cs b/samples/OpenIdProviderWebForms/Code/InMemoryTokenManager.cs
new file mode 100644
index 0000000..2433f57
--- /dev/null
+++ b/samples/OpenIdProviderWebForms/Code/InMemoryTokenManager.cs
@@ -0,0 +1,113 @@
+//-----------------------------------------------------------------------
+// <copyright file="InMemoryTokenManager.cs" company="Andrew Arnott">
+//     Copyright (c) Andrew Arnott. All rights reserved.
+// </copyright>
+//-----------------------------------------------------------------------
+
+namespace OpenIdProviderWebForms.Code {
+	using System;
+	using System.Collections.Generic;
+	using System.Linq;
+	using System.Web;
+	using DotNetOpenAuth.OAuth.ChannelElements;
+	using DotNetOpenAuth.OAuth.Messages;
+	using DotNetOpenAuth.OpenId.Extensions.OAuth;
+
+	/// <summary>
+	/// A simple in-memory token manager.  JUST FOR PURPOSES OF KEEPING THE SAMPLE SIMPLE.
+	/// </summary>
+	/// <remarks>
+	/// This is merely a sample app.  A real web app SHOULD NEVER store a memory-only
+	/// token manager in application.  It should be an IServiceProviderTokenManager
+	/// implementation that is bound to a database.
+	/// </remarks>
+	public class InMemoryTokenManager : IServiceProviderTokenManager, IOpenIdOAuthTokenManager, ICombinedOpenIdProviderTokenManager {
+		private Dictionary<string, InMemoryServiceProviderRequestToken> requestTokens = new Dictionary<string, InMemoryServiceProviderRequestToken>();
+		private Dictionary<string, InMemoryServiceProviderAccessToken> accessTokens = new Dictionary<string, InMemoryServiceProviderAccessToken>();
+
+		/// <summary>
+		/// Initializes a new instance of the <see cref="InMemoryTokenManager"/> class.
+		/// </summary>
+		internal InMemoryTokenManager() {
+		}
+
+		#region IServiceProviderTokenManager Members
+
+		public IConsumerDescription GetConsumer(string consumerKey) {
+			return new InMemoryConsumerDescription {
+				Key = consumerKey,
+				Secret = "some crazy secret",
+			};
+		}
+
+		public IServiceProviderRequestToken GetRequestToken(string token) {
+			return this.requestTokens[token];
+		}
+
+		public IServiceProviderAccessToken GetAccessToken(string token) {
+			throw new NotImplementedException();
+		}
+
+		#endregion
+
+		#region ITokenManager Members
+
+		public string GetTokenSecret(string token) {
+			if (this.requestTokens.ContainsKey(token)) {
+				return this.requestTokens[token].Secret;
+			} else {
+				return this.accessTokens[token].Secret;
+			}
+		}
+
+		public void StoreNewRequestToken(DotNetOpenAuth.OAuth.Messages.UnauthorizedTokenRequest request, DotNetOpenAuth.OAuth.Messages.ITokenSecretContainingMessage response) {
+			throw new NotImplementedException();
+		}
+
+		public bool IsRequestTokenAuthorized(string requestToken) {
+			// In OpenID+OAuth scenarios, request tokens are always authorized.
+			return true;
+		}
+
+		public void ExpireRequestTokenAndStoreNewAccessToken(string consumerKey, string requestToken, string accessToken, string accessTokenSecret) {
+			this.requestTokens.Remove(requestToken);
+			this.accessTokens[accessToken] = new InMemoryServiceProviderAccessToken {
+				Token = accessToken,
+				Secret = accessTokenSecret,
+			};
+		}
+
+		public TokenType GetTokenType(string token) {
+			if (this.requestTokens.ContainsKey(token)) {
+				return TokenType.RequestToken;
+			} else if (this.accessTokens.ContainsKey(token)) {
+				return TokenType.AccessToken;
+			} else {
+				return TokenType.InvalidToken;
+			}
+		}
+
+		#endregion
+
+		#region IOpenIdOAuthTokenManager Members
+
+		public void StoreOpenIdAuthorizedRequestToken(string consumerKey, AuthorizationApprovedResponse authorization) {
+			this.requestTokens[authorization.RequestToken] = new InMemoryServiceProviderRequestToken {
+				Token = authorization.RequestToken,
+				Scope = authorization.Scope,
+				ConsumerVersion = authorization.Version,
+			};
+		}
+
+		#endregion
+
+		#region ICombinedOpenIdProviderTokenManager Members
+
+		public string GetConsumerKey(DotNetOpenAuth.OpenId.Realm realm) {
+			// We just use the realm as the consumer key, like Google does.
+			return realm;
+		}
+
+		#endregion
+	}
+}
diff --git a/samples/OpenIdProviderWebForms/Code/OAuthHybrid.cs b/samples/OpenIdProviderWebForms/Code/OAuthHybrid.cs
new file mode 100644
index 0000000..cc4beff
--- /dev/null
+++ b/samples/OpenIdProviderWebForms/Code/OAuthHybrid.cs
@@ -0,0 +1,46 @@
+//-----------------------------------------------------------------------
+// <copyright file="OAuthHybrid.cs" company="Andrew Arnott">
+//     Copyright (c) Andrew Arnott. All rights reserved.
+// </copyright>
+//-----------------------------------------------------------------------
+
+namespace OpenIdProviderWebForms.Code {
+	using System;
+	using System.Collections.Generic;
+	using System.Linq;
+	using System.Web;
+	using DotNetOpenAuth.Messaging;
+	using DotNetOpenAuth.OAuth;
+	using DotNetOpenAuth.OAuth.ChannelElements;
+
+	internal class OAuthHybrid {
+		/// <summary>
+		/// Initializes static members of the <see cref="OAuthHybrid"/> class.
+		/// </summary>
+		static OAuthHybrid() {
+			ServiceProvider = new ServiceProvider(GetServiceDescription(), TokenManager);
+		}
+
+		internal static IServiceProviderTokenManager TokenManager {
+			get {
+				// This is merely a sample app.  A real web app SHOULD NEVER store a memory-only
+				// token manager in application.  It should be an IServiceProviderTokenManager
+				// implementation that is bound to a database.
+				var tokenManager = (IServiceProviderTokenManager)HttpContext.Current.Application["TokenManager"];
+				if (tokenManager == null) {
+					HttpContext.Current.Application["TokenManager"] = tokenManager = new InMemoryTokenManager();
+				}
+
+				return tokenManager;
+			}
+		}
+
+		internal static ServiceProvider ServiceProvider { get; private set; }
+
+		internal static ServiceProviderDescription GetServiceDescription() {
+			return new ServiceProviderDescription {
+				TamperProtectionElements = new ITamperProtectionChannelBindingElement[] { new HmacSha1SigningBindingElement() },
+			};
+		}
+	}
+}