forked from ubisecure/AspNetCoreSample
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathProgram.cs
More file actions
53 lines (45 loc) · 1.74 KB
/
Program.cs
File metadata and controls
53 lines (45 loc) · 1.74 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
using AspNetCoreSample.Utils;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Authentication.OpenIdConnect;
var builder = WebApplication.CreateBuilder(args);
builder.Services.AddRazorPages();
builder.Services.AddControllersWithViews();
builder.Services.AddAuthentication(options =>
{
options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = OpenIdConnectDefaults.AuthenticationScheme;
})
.AddOpenIdConnect(options =>
{
var oidc = builder.Configuration.GetSection("OpenIDConnect");
var redirectUri = new Uri(oidc.GetValue<string>("redirect_uri") ?? "");
options.Authority = oidc.GetValue<string>("issuer");
options.ClientId = oidc.GetValue<string>("client_id");
options.ClientSecret = oidc.GetValue<string>("client_secret");
options.CallbackPath = redirectUri.AbsolutePath;
options.ResponseType = "code";
options.ResponseMode = "";
options.DisableTelemetry = true;
options.Scope.Clear();
options.Scope.Add("openid");
// workaround for https://github.com/dotnet/aspnetcore/issues/19939
if (!"https".Equals(redirectUri.Scheme) && redirectUri.IsLoopback)
{
options.CorrelationCookie = new CookieBuilderFilter(options.CorrelationCookie);
options.NonceCookie = new CookieBuilderFilter(options.NonceCookie);
}
})
.AddCookie();
var app = builder.Build();
if (app.Environment.IsDevelopment())
{
app.UseDeveloperExceptionPage();
}
app.UseStaticFiles();
app.UseRouting();
app.UseAuthorization();
app.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
app.MapRazorPages();
app.Run();