diff options
Diffstat (limited to 'samples/RelyingPartyMvc/Controllers/UserController.cs')
| -rw-r--r-- | samples/RelyingPartyMvc/Controllers/UserController.cs | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/samples/RelyingPartyMvc/Controllers/UserController.cs b/samples/RelyingPartyMvc/Controllers/UserController.cs new file mode 100644 index 0000000..c6b8479 --- /dev/null +++ b/samples/RelyingPartyMvc/Controllers/UserController.cs @@ -0,0 +1,60 @@ +namespace RelyingPartyMvc.Controllers { + using System; + using System.Collections.Generic; + using System.Linq; + using System.Web; + using System.Web.Mvc; + using System.Web.Security; + using DotNetOpenAuth.OpenId; + using DotNetOpenAuth.OpenId.RelyingParty; + + public class UserController : Controller { + public ActionResult Index() { + if (!User.Identity.IsAuthenticated) { + Response.Redirect("/User/Login?ReturnUrl=Index"); + } + + return View("Index"); + } + + public ActionResult Logout() { + FormsAuthentication.SignOut(); + return Redirect("/Home"); + } + + public ActionResult Login() { + // Stage 1: display login form to user + return View("Login"); + } + + public ActionResult Authenticate() { + var openid = new OpenIdRelyingParty(); + var response = openid.GetResponse(); + if (response == null) { + // Stage 2: user submitting Identifier + Identifier id; + if (Identifier.TryParse(Request.Form["openid_identifier"], out id)) { + openid.CreateRequest(Request.Form["openid_identifier"]).RedirectToProvider(); + } else { + ViewData["Message"] = "Invalid identifier"; + return View("Login"); + } + } else { + // Stage 3: OpenID Provider sending assertion response + switch (response.Status) { + case AuthenticationStatus.Authenticated: + Session["FriendlyIdentifier"] = response.FriendlyIdentifierForDisplay; + FormsAuthentication.RedirectFromLoginPage(response.ClaimedIdentifier, false); + break; + case AuthenticationStatus.Canceled: + ViewData["Message"] = "Canceled at provider"; + return View("Login"); + case AuthenticationStatus.Failed: + ViewData["Message"] = response.Exception.Message; + return View("Login"); + } + } + return new EmptyResult(); + } + } +} |