Added dummy authentication

Author: linkdotnet

LinkDotNet.Blog.Web/Authentication/Auth0/Auth0LoginManager.cs

@@ -25,7 +25,7 @@ public async Task SignInAsync(string redirectUri)
 
         public async Task SignOutAsync(string redirectUri = "/")
         {
-            await httpContext.SignOutAsync("Auth0", new AuthenticationProperties { RedirectUri = "/" });
+            await httpContext.SignOutAsync("Auth0", new AuthenticationProperties { RedirectUri = redirectUri });
             await httpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
         }
     }

LinkDotNet.Blog.Web/Authentication/Dummy/DummyExtensions.cs

@@ -0,0 +1,23 @@
+using Microsoft.AspNetCore.Authentication.Cookies;
+using Microsoft.AspNetCore.Http;
+using Microsoft.Extensions.DependencyInjection;
+
+namespace LinkDotNet.Blog.Web.Authentication.Dummy
+{
+    public static class DummyExtensions
+    {
+        public static void UseDummyAuthentication(this IServiceCollection services)
+        {
+            services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme)
+                .AddCookie(CookieAuthenticationDefaults.AuthenticationScheme,
+                    options =>
+                    {
+                        options.LoginPath = new PathString("/login");
+                    });
+
+            services.AddAuthorization();
+            services.AddHttpContextAccessor();
+            services.AddScoped<ILoginManager, DummyLoginManager>();
+        }
+    }
+}

LinkDotNet.Blog.Web/Authentication/Dummy/DummyLoginManager.cs

@@ -0,0 +1,39 @@
+using System;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.Cookies;
+using Microsoft.AspNetCore.Http;
+
+namespace LinkDotNet.Blog.Web.Authentication.Dummy
+{
+    public class DummyLoginManager : ILoginManager
+    {
+        private readonly HttpContext context;
+
+        public DummyLoginManager(IHttpContextAccessor httpContextAccessor)
+        {
+            context = httpContextAccessor?.HttpContext ?? throw new NotSupportedException("I need HttpContext. Njom njom njom");
+        }
+
+        public async Task SignOutAsync(string redirectUri = "/")
+        {
+            await context.SignOutAsync();
+            context.Response.Redirect(redirectUri);
+        }
+
+        public async Task SignInAsync(string redirectUri)
+        {
+            var claims = new[]
+            {
+                new Claim(ClaimTypes.Name, "Dummy user"),
+                new Claim(ClaimTypes.NameIdentifier, Guid.NewGuid().ToString()),
+            };
+            var identity = new ClaimsIdentity(claims, CookieAuthenticationDefaults.AuthenticationScheme);
+            var principal = new ClaimsPrincipal(identity);
+
+            await context.SignInAsync(principal, null);
+            context.Response.Redirect(redirectUri);
+        }
+    }
+}

LinkDotNet.Blog.Web/Startup.cs

@@ -38,6 +38,10 @@ public void ConfigureServices(IServiceCollection services)
 
             // Here you can setup up your identity provider
             services.UseAuth0Authentication(Configuration);
+            /****************
+             * Possible authentication mechanism:
+             * services.UseDummyAuthentication();
+             */
 
             services.AddBlazoredToast();
             services.AddBlazoredLocalStorage();

Readme.md

@@ -74,9 +74,11 @@ services.UseSqlAsStorageProvider();
 It is only one storage provider at a time allowed. Registering multiple will result in an exception.
 
 ## Authorization
-There is only one mechanism enabled via Auth0. For more information go to: https://auth0.com/docs/applications
+There is only one real mechanism enabled via Auth0. For more information go to: https://auth0.com/docs/applications
 
-The main advantage of Auth0 is the easy configurable dashboard on their website. 
+The main advantage of Auth0 is the easy configurable dashboard on their website.
+
+For testing purposes you can use `services.UseDummyAuthentication();`. This allows every user, who presses Login, to be logged in.
 
 ## Search Engine Optimization (SEO)
 The blog includes some of the most important tags to get indexed by a crawler. Furthermore some aspects of the Open Graph specification are implemented.