2022-02-10 16:26:09 +00:00
|
|
|
namespace ASC.FederatedLogin.LoginProviders;
|
|
|
|
|
|
|
|
[Scope]
|
|
|
|
public class LinkedInLoginProvider : BaseLoginProvider<LinkedInLoginProvider>
|
2019-06-06 13:34:46 +00:00
|
|
|
{
|
2022-02-10 16:26:09 +00:00
|
|
|
public override string AccessTokenUrl => "https://www.linkedin.com/oauth/v2/accessToken";
|
|
|
|
public override string RedirectUri => this["linkedInRedirectUrl"];
|
|
|
|
public override string ClientID => this["linkedInKey"];
|
|
|
|
public override string ClientSecret => this["linkedInSecret"];
|
|
|
|
public override string CodeUrl => "https://www.linkedin.com/oauth/v2/authorization";
|
|
|
|
public override string Scopes => "r_liteprofile r_emailaddress";
|
2022-02-10 15:04:48 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
private const string LinkedInProfileUrl = "https://api.linkedin.com/v2/me";
|
|
|
|
private const string LinkedInEmailUrl = "https://api.linkedin.com/v2/emailAddress?q=members&projection=(elements*(handle~))";
|
2019-06-06 13:34:46 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
public LinkedInLoginProvider() { }
|
2022-02-10 16:22:16 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
public LinkedInLoginProvider(
|
|
|
|
OAuth20TokenHelper oAuth20TokenHelper,
|
|
|
|
TenantManager tenantManager,
|
|
|
|
CoreBaseSettings coreBaseSettings,
|
|
|
|
CoreSettings coreSettings,
|
|
|
|
IConfiguration configuration,
|
|
|
|
ICacheNotify<ConsumerCacheItem> cache,
|
|
|
|
ConsumerFactory consumerFactory,
|
|
|
|
Signature signature,
|
|
|
|
InstanceCrypto instanceCrypto,
|
|
|
|
string name, int order, Dictionary<string, string> props, Dictionary<string, string> additional = null)
|
|
|
|
: base(oAuth20TokenHelper, tenantManager, coreBaseSettings, coreSettings, configuration, cache, consumerFactory, signature, instanceCrypto, name, order, props, additional) { }
|
2019-06-06 13:34:46 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
public override LoginProfile GetLoginProfile(string accessToken)
|
|
|
|
{
|
|
|
|
if (string.IsNullOrEmpty(accessToken))
|
2019-06-06 13:34:46 +00:00
|
|
|
{
|
2022-02-10 16:26:09 +00:00
|
|
|
throw new Exception("Login failed");
|
2019-06-06 13:34:46 +00:00
|
|
|
}
|
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
return RequestProfile(accessToken);
|
|
|
|
}
|
2019-06-06 13:34:46 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
internal LoginProfile ProfileFromLinkedIn(string linkedInProfile)
|
|
|
|
{
|
|
|
|
var jProfile = JObject.Parse(linkedInProfile);
|
|
|
|
if (jProfile == null)
|
|
|
|
{
|
|
|
|
throw new Exception("Failed to correctly process the response");
|
2019-06-06 13:34:46 +00:00
|
|
|
}
|
2020-01-21 13:40:01 +00:00
|
|
|
|
2022-02-11 10:12:25 +00:00
|
|
|
var profile = new LoginProfile(Signature, InstanceCrypto)
|
2020-01-21 13:40:01 +00:00
|
|
|
{
|
2022-02-10 16:26:09 +00:00
|
|
|
Id = jProfile.Value<string>("id"),
|
|
|
|
FirstName = jProfile.Value<string>("localizedFirstName"),
|
|
|
|
LastName = jProfile.Value<string>("localizedLastName"),
|
|
|
|
EMail = jProfile.Value<string>("emailAddress"),
|
|
|
|
Provider = ProviderConstants.LinkedIn,
|
|
|
|
};
|
2020-01-21 13:40:01 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
return profile;
|
|
|
|
}
|
2022-02-10 16:22:16 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
internal static string EmailFromLinkedIn(string linkedInEmail)
|
|
|
|
{
|
|
|
|
var jEmail = JObject.Parse(linkedInEmail);
|
|
|
|
if (jEmail == null)
|
2022-02-10 16:22:16 +00:00
|
|
|
{
|
2022-02-10 16:26:09 +00:00
|
|
|
throw new Exception("Failed to correctly process the response");
|
|
|
|
}
|
2022-02-10 16:22:16 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
return jEmail.SelectToken("elements[0].handle~.emailAddress").ToString();
|
|
|
|
}
|
2022-02-10 16:22:16 +00:00
|
|
|
|
2022-02-10 16:26:09 +00:00
|
|
|
private LoginProfile RequestProfile(string accessToken)
|
|
|
|
{
|
|
|
|
var linkedInProfile = RequestHelper.PerformRequest(LinkedInProfileUrl,
|
|
|
|
headers: new Dictionary<string, string> { { "Authorization", "Bearer " + accessToken } });
|
|
|
|
var loginProfile = ProfileFromLinkedIn(linkedInProfile);
|
|
|
|
|
|
|
|
var linkedInEmail = RequestHelper.PerformRequest(LinkedInEmailUrl, headers: new Dictionary<string, string> { { "Authorization", "Bearer " + accessToken } });
|
|
|
|
loginProfile.EMail = EmailFromLinkedIn(linkedInEmail);
|
|
|
|
|
|
|
|
return loginProfile;
|
2019-06-06 13:34:46 +00:00
|
|
|
}
|
2022-02-10 16:26:09 +00:00
|
|
|
}
|