pavelbannov
320a1f2250
# Conflicts: # common/ASC.Api.Core/Core/BaseStartup.cs # common/ASC.Common/Caching/AscCache.cs # common/ASC.Common/Data/StreamExtension.cs # common/ASC.Common/Utils/RandomString.cs # common/ASC.Core.Common/Billing/CouponManager.cs # common/ASC.Core.Common/Billing/License/LicenseReader.cs # common/ASC.Core.Common/Core/UserGroupRef.cs # common/ASC.Core.Common/Data/DbTenantService.cs # common/ASC.Core.Common/Notify/Jabber/JabberServiceClientWcf.cs # common/ASC.Core.Common/Notify/Telegram/Dao/CachedTelegramDao.cs # common/ASC.Data.Backup.Core/Core/DbHelper.cs # common/ASC.Data.Backup.Core/Storage/BackupRepository.cs # common/ASC.Data.Backup.Core/Tasks/Data/TableInfo.cs # common/ASC.Data.Storage/BaseStorage.cs # common/ASC.Data.Storage/DiscStorage/DiscDataStore.cs # common/ASC.Data.Storage/GoogleCloud/GoogleCloudStorage.cs # common/ASC.Data.Storage/RackspaceCloud/RackspaceCloudStorage.cs # common/ASC.Data.Storage/S3/S3Storage.cs # common/ASC.Notify.Textile/JabberStyler.cs # common/ASC.Textile/Blocks/GlyphBlockModifier.cs # common/ASC.Textile/States/TableRowFormatterState.cs # common/services/ASC.ApiSystem/Classes/CommonMethods.cs # common/services/ASC.ApiSystem/Controllers/PortalController.cs # common/services/ASC.ClearEvents/Program.cs # common/services/ASC.TelegramService/Startup.cs # common/services/ASC.UrlShortener.Svc/Program.cs # products/ASC.Files/Core/Core/Entries/File.cs # products/ASC.Files/Core/Core/Entries/FileEntry.cs # products/ASC.Files/Core/Core/Entries/FileHelper.cs # products/ASC.Files/Core/Core/Entries/Folder.cs # products/ASC.Files/Core/Core/FileStorageService.cs # products/ASC.Files/Core/Core/Thirdparty/ProviderDao/ProviderDaoBase.cs # products/ASC.Files/Core/Helpers/ThirdpartyConfiguration.cs # products/ASC.Files/Core/HttpHandlers/FileHandler.ashx.cs # products/ASC.Files/Core/Services/DocumentService/Configuration.cs # products/ASC.Files/Core/Services/DocumentService/DocumentServiceConnector.cs # products/ASC.Files/Core/Services/DocumentService/DocumentServiceTracker.cs # products/ASC.Files/Core/Services/WCFService/FileOperations/FileDownloadOperation.cs # products/ASC.Files/Core/Services/WCFService/FileOperations/FileMoveCopyOperation.cs # products/ASC.Files/Core/Utils/EntryManager.cs # products/ASC.Files/Server/Helpers/FilesControllerHelper.cs # products/ASC.Files/Server/Startup.cs # products/ASC.Files/Service/Thumbnail/Builder.cs # products/ASC.Files/Service/Thumbnail/FileDataProvider.cs # products/ASC.People/Server/Startup.cs # web/ASC.Web.Core/Files/DocumentService.cs # web/ASC.Web.Core/Files/DocumentServiceLicense.cs # web/ASC.Web.Core/QuotaSync.cs # web/ASC.Web.Core/Sms/SmsKeyStorage.cs # web/ASC.Web.Core/Users/UserManagerWrapper.cs # web/ASC.Web.HealthChecks.UI/Program.cs # web/ASC.Web.Studio/Startup.cs
162 lines
5.8 KiB
C#
162 lines
5.8 KiB
C#
/*
|
|
*
|
|
* (c) Copyright Ascensio System Limited 2010-2018
|
|
*
|
|
* This program is freeware. You can redistribute it and/or modify it under the terms of the GNU
|
|
* General Public License (GPL) version 3 as published by the Free Software Foundation (https://www.gnu.org/copyleft/gpl.html).
|
|
* In accordance with Section 7(a) of the GNU GPL its Section 15 shall be amended to the effect that
|
|
* Ascensio System SIA expressly excludes the warranty of non-infringement of any third-party rights.
|
|
*
|
|
* THIS PROGRAM IS DISTRIBUTED WITHOUT ANY WARRANTY; WITHOUT EVEN THE IMPLIED WARRANTY OF MERCHANTABILITY OR
|
|
* FITNESS FOR A PARTICULAR PURPOSE. For more details, see GNU GPL at https://www.gnu.org/copyleft/gpl.html
|
|
*
|
|
* You can contact Ascensio System SIA by email at sales@onlyoffice.com
|
|
*
|
|
* The interactive user interfaces in modified source and object code versions of ONLYOFFICE must display
|
|
* Appropriate Legal Notices, as required under Section 5 of the GNU GPL version 3.
|
|
*
|
|
* Pursuant to Section 7 § 3(b) of the GNU GPL you must retain the original ONLYOFFICE logo which contains
|
|
* relevant author attributions when distributing the software. If the display of the logo in its graphic
|
|
* form is not reasonably feasible for technical reasons, you must include the words "Powered by ONLYOFFICE"
|
|
* in every copy of the program you distribute.
|
|
* Pursuant to Section 7 § 3(e) we decline to grant you any rights under trademark law for use of our trademarks.
|
|
*
|
|
*/
|
|
|
|
namespace ASC.FederatedLogin.LoginProviders
|
|
{
|
|
public enum LoginProviderEnum
|
|
{
|
|
Facebook,
|
|
Google,
|
|
Dropbox,
|
|
Docusign,
|
|
Box,
|
|
OneDrive,
|
|
GosUslugi,
|
|
LinkedIn,
|
|
MailRu,
|
|
VK,
|
|
Wordpress,
|
|
Yahoo,
|
|
Yandex
|
|
}
|
|
|
|
public abstract class BaseLoginProvider<T> : Consumer, ILoginProvider where T : Consumer, ILoginProvider, new()
|
|
{
|
|
public T Instance
|
|
{
|
|
get
|
|
{
|
|
return ConsumerFactory.Get<T>();
|
|
}
|
|
}
|
|
|
|
public abstract string CodeUrl { get; }
|
|
public abstract string AccessTokenUrl { get; }
|
|
public abstract string RedirectUri { get; }
|
|
public abstract string ClientID { get; }
|
|
public abstract string ClientSecret { get; }
|
|
public virtual string Scopes { get { return ""; } }
|
|
|
|
public virtual bool IsEnabled
|
|
{
|
|
get
|
|
{
|
|
return !string.IsNullOrEmpty(ClientID) &&
|
|
!string.IsNullOrEmpty(ClientSecret) &&
|
|
!string.IsNullOrEmpty(RedirectUri);
|
|
}
|
|
}
|
|
|
|
private OAuth20TokenHelper OAuth20TokenHelper { get; }
|
|
internal Signature Signature { get; }
|
|
internal InstanceCrypto InstanceCrypto { get; }
|
|
|
|
protected BaseLoginProvider()
|
|
{
|
|
|
|
}
|
|
|
|
protected BaseLoginProvider(
|
|
OAuth20TokenHelper oAuth20TokenHelper,
|
|
TenantManager tenantManager,
|
|
CoreBaseSettings coreBaseSettings,
|
|
CoreSettings coreSettings,
|
|
IConfiguration configuration,
|
|
ICacheNotify<ConsumerCacheItem> cache,
|
|
ConsumerFactory consumerFactory,
|
|
Signature signature,
|
|
InstanceCrypto instanceCrypto,
|
|
string name, int order, Dictionary<string, string> props, Dictionary<string, string> additional = null)
|
|
: base(tenantManager, coreBaseSettings, coreSettings, configuration, cache, consumerFactory, name, order, props, additional)
|
|
{
|
|
OAuth20TokenHelper = oAuth20TokenHelper;
|
|
Signature = signature;
|
|
InstanceCrypto = instanceCrypto;
|
|
}
|
|
|
|
public virtual LoginProfile ProcessAuthoriztion(HttpContext context, IDictionary<string, string> @params, IDictionary<string, string> additionalStateArgs)
|
|
{
|
|
try
|
|
{
|
|
var token = Auth(context, Scopes, out var redirect, @params, additionalStateArgs);
|
|
|
|
if (redirect)
|
|
{
|
|
return null;
|
|
}
|
|
|
|
return GetLoginProfile(token?.AccessToken);
|
|
}
|
|
catch (ThreadAbortException)
|
|
{
|
|
throw;
|
|
}
|
|
catch (Exception ex)
|
|
{
|
|
return LoginProfile.FromError(Signature, InstanceCrypto, ex);
|
|
}
|
|
}
|
|
|
|
protected virtual OAuth20Token Auth(HttpContext context, string scopes, out bool redirect, IDictionary<string, string> additionalArgs = null, IDictionary<string, string> additionalStateArgs = null)
|
|
{
|
|
var error = context.Request.Query["error"];
|
|
if (!string.IsNullOrEmpty(error))
|
|
{
|
|
if (error == "access_denied")
|
|
{
|
|
error = "Canceled at provider";
|
|
}
|
|
throw new Exception(error);
|
|
}
|
|
|
|
var code = context.Request.Query["code"];
|
|
if (string.IsNullOrEmpty(code))
|
|
{
|
|
context.Response.Redirect(OAuth20TokenHelper.RequestCode<T>(scopes, additionalArgs, additionalStateArgs));
|
|
redirect = true;
|
|
return null;
|
|
}
|
|
|
|
redirect = false;
|
|
return OAuth20TokenHelper.GetAccessToken<T>(ConsumerFactory, code);
|
|
}
|
|
|
|
public abstract LoginProfile GetLoginProfile(string accessToken);
|
|
}
|
|
|
|
public static class BaseLoginProviderExtension
|
|
{
|
|
public static void Register(DIHelper services)
|
|
{
|
|
services.TryAdd<BoxLoginProvider>();
|
|
services.TryAdd<DropboxLoginProvider>();
|
|
services.TryAdd<OneDriveLoginProvider>();
|
|
services.TryAdd<DocuSignLoginProvider>();
|
|
services.TryAdd<GoogleLoginProvider>();
|
|
services.TryAdd<WordpressLoginProvider>();
|
|
}
|
|
}
|
|
}
|