bill

2017-06-08 00:26:29 +02:00
parent 3fc9e9be84
commit 5189be288b
144 changed files with 10575 additions and 1528 deletions
--- a/Yavsc/AuthorizationServer/AuthServer/Tokens/TicketDataFormatTokenValidator.cs
+++ b/Yavsc/AuthorizationServer/AuthServer/Tokens/TicketDataFormatTokenValidator.cs
@ -0,0 +1,93 @@
+using Microsoft.AspNet.Authentication;
+using Microsoft.AspNet.DataProtection;
+using System;
+using System.IdentityModel.Tokens;
+using System.Security.Claims;
+using System.Text.RegularExpressions;
+using Yavsc.Auth;
+using Yavsc;
+
+namespace OAuth.AspNet.Tokens
+{
+
+    public class TicketDataFormatTokenValidator : ISecurityTokenValidator
+    {
+        #region Constructors
+
+        public TicketDataFormatTokenValidator() : this(null) { }
+
+        public TicketDataFormatTokenValidator(IDataProtectionProvider dataProtectionProvider)
+        {
+            if (dataProtectionProvider == null)
+            {
+                dataProtectionProvider = new MonoDataProtectionProvider(Constants.ApplicationName)
+                .CreateProtector(Constants.KeyProtectorPurpose);
+            }
+            _ticketDataFormat = new TicketDataFormat(dataProtectionProvider.CreateProtector("Access_Token", "v1"));
+        }
+
+        #endregion
+
+        #region non-Public Members
+
+        private TicketDataFormat _ticketDataFormat;
+
+        private const string _serializationRegex = @"^[A-Za-z0-9-_]*$";
+
+        private int _maximumTokenSizeInBytes = TokenValidationParameters.DefaultMaximumTokenSizeInBytes;
+
+        #endregion
+
+        #region Public Members
+
+        public bool CanValidateToken
+        {
+            get
+            {
+                return true;
+            }
+        }
+
+        public int MaximumTokenSizeInBytes
+        {
+            get
+            {
+                return _maximumTokenSizeInBytes;
+            }
+
+            set
+            {
+                if (value < 1)
+                    throw new ArgumentOutOfRangeException(nameof(MaximumTokenSizeInBytes), "Negative or zero-sized tokens are invalid.");
+
+                _maximumTokenSizeInBytes = value;
+            }
+        }
+
+        public bool CanReadToken(string securityToken)
+        {
+            if (string.IsNullOrWhiteSpace(securityToken))
+                throw new ArgumentException("Security token has no value.", nameof(securityToken));
+
+            if (securityToken.Length * 2 > this.MaximumTokenSizeInBytes)
+                return false;
+
+            if (Regex.IsMatch(securityToken, _serializationRegex))
+                return true;
+
+            return false;
+        }
+
+        public ClaimsPrincipal ValidateToken(string securityToken, TokenValidationParameters validationParameters, out SecurityToken validatedToken)
+        {
+            AuthenticationTicket ticket = _ticketDataFormat.Unprotect(securityToken);
+
+            validatedToken = null;
+
+            return ticket?.Principal;
+        }
+
+        #endregion
+    }
+
+}