-
Notifications
You must be signed in to change notification settings - Fork 0
/
HasScopeHandler.cs
28 lines (24 loc) · 1.02 KB
/
HasScopeHandler.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
using System;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Authorization;
namespace Vega
{
public class HasScopeHandler : AuthorizationHandler<HasScopeRequirement>
{
protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, HasScopeRequirement requirement)
{
// If user does not have the scope claim, get out of here.
if (!context.User.HasClaim(c => c.Type == "scope" && c.Issuer == requirement.Issuer))
return Task.CompletedTask;
// Split the scopes string into an array
var scopes = context.User.FindFirst(c => c.Type == "scope" && c.Issuer == requirement.Issuer)
?.Value
.Split(' ');
// Succeed if the scope array contains the required scope
if ((scopes ?? Array.Empty<string>()).Any(s => s == requirement.Scope))
context.Succeed(requirement);
return Task.CompletedTask;
}
}
}