samples/OAuthConsumer/SampleWcf.aspx.cs


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118

using System;
using System.Collections.Generic;
using System.Globalization;
using System.Linq;
using System.Net;
using System.ServiceModel;
using System.ServiceModel.Channels;
using System.ServiceModel.Security;
using System.Web.UI.WebControls;
using DotNetOpenAuth;
using DotNetOpenAuth.Messaging;
using DotNetOpenAuth.OAuth;
using DotNetOpenAuth.OAuth.ChannelElements;
using SampleServiceProvider;

/// <summary>
/// Sample consumer of our Service Provider sample's WCF service.
/// </summary>
public partial class SampleWcf : System.Web.UI.Page {
	protected void Page_Load(object sender, EventArgs e) {
		if (!IsPostBack) {
			if (Session["WcfTokenManager"] != null) {
				WebConsumer consumer = this.CreateConsumer();
				var accessTokenMessage = consumer.ProcessUserAuthorization();
				if (accessTokenMessage != null) {
					Session["WcfAccessToken"] = accessTokenMessage.AccessToken;
					authorizationLabel.Text = "Authorized!  Access token: " + accessTokenMessage.AccessToken;
				}
			}
		}
	}

	protected void getAuthorizationButton_Click(object sender, EventArgs e) {
		WebConsumer consumer = this.CreateConsumer();
		UriBuilder callback = new UriBuilder(Request.Url);
		callback.Query = null;
		string[] scopes = (from item in scopeList.Items.OfType<ListItem>()
		                   where item.Selected
		                   select item.Value).ToArray();
		string scope = string.Join("|", scopes);
		var requestParams = new Dictionary<string, string> {
			{ "scope", scope },
		};
		var response = consumer.PrepareRequestUserAuthorization(callback.Uri, requestParams, null);
		consumer.Channel.Send(response);
	}

	protected void getNameButton_Click(object sender, EventArgs e) {
		try {
			nameLabel.Text = CallService(client => client.GetName());
		} catch (SecurityAccessDeniedException) {
			nameLabel.Text = "Access denied!";
		}
	}

	protected void getAgeButton_Click(object sender, EventArgs e) {
		try {
			int? age = CallService(client => client.GetAge());
			ageLabel.Text = age.HasValue ? age.Value.ToString(CultureInfo.CurrentCulture) : "not available";
		} catch (SecurityAccessDeniedException) {
			ageLabel.Text = "Access denied!";
		}
	}

	protected void getFavoriteSites_Click(object sender, EventArgs e) {
		try {
			string[] favoriteSites = CallService(client => client.GetFavoriteSites());
			favoriteSitesLabel.Text = string.Join(", ", favoriteSites);
		} catch (SecurityAccessDeniedException) {
			favoriteSitesLabel.Text = "Access denied!";
		}
	}

	private T CallService<T>(Func<DataApiClient, T> predicate) {
		DataApiClient client = new DataApiClient();
		var serviceEndpoint = new MessageReceivingEndpoint(client.Endpoint.Address.Uri, HttpDeliveryMethods.AuthorizationHeaderRequest | HttpDeliveryMethods.PostRequest);
		var accessToken = Session["WcfAccessToken"] as string;
		if (accessToken == null) {
			throw new InvalidOperationException("No access token!");
		}
		WebConsumer consumer = this.CreateConsumer();
		WebRequest httpRequest = consumer.PrepareAuthorizedRequest(serviceEndpoint, accessToken);

		HttpRequestMessageProperty httpDetails = new HttpRequestMessageProperty();
		httpDetails.Headers[HttpRequestHeader.Authorization] = httpRequest.Headers[HttpRequestHeader.Authorization];
		using (OperationContextScope scope = new OperationContextScope(client.InnerChannel)) {
			OperationContext.Current.OutgoingMessageProperties[HttpRequestMessageProperty.Name] = httpDetails;
			return predicate(client);
		}
	}

	private WebConsumer CreateConsumer() {
		string consumerKey = "sampleconsumer";
		string consumerSecret = "samplesecret";
		var tokenManager = Session["WcfTokenManager"] as InMemoryTokenManager;
		if (tokenManager == null) {
			tokenManager = new InMemoryTokenManager(consumerKey, consumerSecret);
			Session["WcfTokenManager"] = tokenManager;
		}
		MessageReceivingEndpoint oauthEndpoint = new MessageReceivingEndpoint(
			new Uri("http://localhost:65169/ServiceProvider/OAuth.ashx"),
			HttpDeliveryMethods.PostRequest);
		WebConsumer consumer = new WebConsumer(
			new ServiceProviderDescription {
				RequestTokenEndpoint = oauthEndpoint,
				UserAuthorizationEndpoint = oauthEndpoint,
				AccessTokenEndpoint = oauthEndpoint,
				TamperProtectionElements = new DotNetOpenAuth.Messaging.ITamperProtectionChannelBindingElement[] {
					new HmacSha1SigningBindingElement(),
				},
			},
			tokenManager) {
				ConsumerKey = consumerKey,
			};

		return consumer;
	}
}