1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
|
using System;
using System.Collections;
using System.Configuration;
using System.Data;
using System.Web;
using System.Web.Security;
using System.Web.UI;
using System.Web.UI.HtmlControls;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Collections.Specialized;
using System.Collections.Generic;
using DotNetOpenId.Extensions.AttributeExchange;
using DotNetOpenId.Extensions.SimpleRegistration;
using SregDemandLevel = DotNetOpenId.Extensions.SimpleRegistration.DemandLevel;
using System.Globalization;
public partial class ProviderEndpoint : System.Web.UI.Page {
const string nicknameTypeUri = WellKnownAttributes.Name.Alias;
const string emailTypeUri = WellKnownAttributes.Contact.Email;
IDictionary<string, AttributeValues> storedAttributes {
get {
var atts = (Dictionary<string, AttributeValues>)Application["storedAttributes"];
if (atts == null) {
atts = new Dictionary<string, AttributeValues>();
Application["storedAttributes"] = atts;
}
return atts;
}
}
void respondToExtensions(DotNetOpenId.Provider.IRequest request, TestSupport.Scenarios scenario) {
var sregRequest = request.GetExtension<ClaimsRequest>();
var sregResponse = new ClaimsResponse();
var aeFetchRequest = request.GetExtension<FetchRequest>();
var aeFetchResponse = new FetchResponse();
var aeStoreRequest = request.GetExtension<StoreRequest>();
var aeStoreResponse = new StoreResponse();
switch (scenario) {
case TestSupport.Scenarios.ExtensionFullCooperation:
if (sregRequest != null) {
if (sregRequest.FullName != SregDemandLevel.NoRequest)
sregResponse.FullName = "Andrew Arnott";
if (sregRequest.Email != SregDemandLevel.NoRequest)
sregResponse.Email = "andrewarnott@gmail.com";
}
if (aeFetchRequest != null) {
var att = aeFetchRequest.GetAttribute(nicknameTypeUri);
if (att != null)
aeFetchResponse.AddAttribute(att.Respond("Andrew"));
att = aeFetchRequest.GetAttribute(emailTypeUri);
if (att != null) {
string[] emails = new[] { "a@a.com", "b@b.com" };
string[] subset = new string[Math.Min(emails.Length, att.Count)];
Array.Copy(emails, subset, subset.Length);
aeFetchResponse.AddAttribute(att.Respond(subset));
}
foreach (var att2 in aeFetchRequest.Attributes) {
if (storedAttributes.ContainsKey(att2.TypeUri))
aeFetchResponse.AddAttribute(storedAttributes[att2.TypeUri]);
}
}
break;
case TestSupport.Scenarios.ExtensionPartialCooperation:
if (sregRequest != null) {
if (sregRequest.FullName == SregDemandLevel.Require)
sregResponse.FullName = "Andrew Arnott";
if (sregRequest.Email == SregDemandLevel.Require)
sregResponse.Email = "andrewarnott@gmail.com";
}
if (aeFetchRequest != null) {
var att = aeFetchRequest.GetAttribute(nicknameTypeUri);
if (att != null && att.IsRequired)
aeFetchResponse.AddAttribute(att.Respond("Andrew"));
att = aeFetchRequest.GetAttribute(emailTypeUri);
if (att != null && att.IsRequired) {
string[] emails = new[] { "a@a.com", "b@b.com" };
string[] subset = new string[Math.Min(emails.Length, att.Count)];
Array.Copy(emails, subset, subset.Length);
aeFetchResponse.AddAttribute(att.Respond(subset));
}
foreach (var att2 in aeFetchRequest.Attributes) {
if (att2.IsRequired && storedAttributes.ContainsKey(att2.TypeUri))
aeFetchResponse.AddAttribute(storedAttributes[att2.TypeUri]);
}
}
break;
}
if (aeStoreRequest != null) {
foreach (var att in aeStoreRequest.Attributes) {
storedAttributes[att.TypeUri] = att;
}
aeStoreResponse.Succeeded = true;
}
if (sregRequest != null) request.AddResponseExtension(sregResponse);
if (aeFetchRequest != null) request.AddResponseExtension(aeFetchResponse);
if (aeStoreRequest != null) request.AddResponseExtension(aeStoreResponse);
}
protected void ProviderEndpoint1_AuthenticationChallenge(object sender, DotNetOpenId.Provider.AuthenticationChallengeEventArgs e) {
TestSupport.Scenarios scenario = (TestSupport.Scenarios)Enum.Parse(typeof(TestSupport.Scenarios),
new Uri(e.Request.LocalIdentifier.ToString()).AbsolutePath.TrimStart('/'));
if (!e.Request.IsReturnUrlDiscoverable) {
throw new ArgumentException(string.Format(CultureInfo.CurrentCulture,
"return_to could not be verified using RP discovery realm {0}.", e.Request.Realm));
}
switch (scenario) {
case TestSupport.Scenarios.AutoApproval:
// immediately approve
e.Request.IsAuthenticated = true;
break;
case TestSupport.Scenarios.ApproveOnSetup:
e.Request.IsAuthenticated = !e.Request.Immediate;
break;
case TestSupport.Scenarios.AlwaysDeny:
e.Request.IsAuthenticated = false;
break;
case TestSupport.Scenarios.ExtensionFullCooperation:
case TestSupport.Scenarios.ExtensionPartialCooperation:
respondToExtensions(e.Request, scenario);
e.Request.IsAuthenticated = true;
break;
default:
throw new InvalidOperationException("Unrecognized scenario");
}
e.Request.Response.Send();
}
}
|
