SecurityConfig.cs | searchcode

/TechEdWebApiDemo/App_Start/SecurityConfig.cs

https://github.com/garchibald/TechEdWebApiDemo
C# | 99 lines | 34 code | 21 blank | 44 comment | 1 complexity | 264393f37c4fd1d4974c4265c7b154db MD5 | raw file

using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;

namespace TechEdWebApiDemo.App_Start
{
    using System.Web.Http;
    using Resources.Security;
    using Thinktecture.IdentityModel.Tokens.Http;

    public class SecurityConfig
    {
        public static void ConfigureGlobal(HttpConfiguration globalConfig)
        {
            globalConfig.MessageHandlers.Add(
                new AuthenticationHandler(CreateConfiguration()));
            globalConfig.Filters.Add(new SecurityExceptionFilter());

        }

        public static AuthenticationConfiguration CreateConfiguration()
        {
            var config = new AuthenticationConfiguration
                             {
                                 DefaultAuthenticationScheme = "Basic",
                                 EnableSessionToken = true
                             };

            config.SessionToken.EndpointAddress = "/api/token";

            #region Basic Authentication

            config.AddBasicAuthentication((userName, password) => userName == password);

            #endregion


            #region Other Methods

            //#region SimpleWebToken
            //config.AddSimpleWebToken(
            //    "http://identity.thinktecture.com/trust",
            //    Constants.Realm,
            //    Constants.IdSrvSymmetricSigningKey,
            //    AuthenticationOptions.ForAuthorizationHeader("IdSrv"));
            //#endregion

            //#region JsonWebToken
            //config.AddJsonWebToken(
            //    "http://selfissued.test",
            //    Constants.Realm,
            //    Constants.IdSrvSymmetricSigningKey,
            //    AuthenticationOptions.ForAuthorizationHeader("JWT"));
            //#endregion

            //#region IdentityServer SAML
            //var idsrvRegistry = new ConfigurationBasedIssuerNameRegistry();
            //idsrvRegistry.AddTrustedIssuer("A1EED7897E55388FCE60FEF1A1EED81FF1CBAEC6", "Thinktecture IdSrv");

            //var idsrvConfig = new SecurityTokenHandlerConfiguration();
            //idsrvConfig.AudienceRestriction.AllowedAudienceUris.Add(new Uri(Constants.Realm));
            //idsrvConfig.IssuerNameRegistry = idsrvRegistry;
            //idsrvConfig.CertificateValidator = X509CertificateValidator.None;

            //config.AddSaml2(idsrvConfig, AuthenticationOptions.ForAuthorizationHeader("IdSrvSaml"));
            //#endregion

            //#region ACS SWT
            //config.AddSimpleWebToken(
            //    "https://" + Constants.ACS + "/",
            //    Constants.Realm,
            //    Constants.AcsSymmetricSigningKey,
            //    AuthenticationOptions.ForAuthorizationHeader("ACS"));
            //#endregion

            //#region AccessKey
            //var handler = new SimpleSecurityTokenHandler("my access key", token =>
            //    {
            //        if (ObfuscatingComparer.IsEqual(token, "accesskey123"))
            //        {
            //            return new ClaimsIdentity(new Claim[]
            //        {
            //            new Claim("customerid", "123")
            //        }, "Custom");
            //        }

            //        return null;
            //    });

            //config.AddAccessKey(handler, AuthenticationOptions.ForQueryString("key"));
            //#endregion

            #endregion

            return config;
        }
    }
}