Merge pull request #45 from WeihanLi/dev

2.1.0

Author: WeihanLi

Directory.Build.props

@@ -1,12 +1,5 @@
 <Project>
-  <PropertyGroup>
-    <VersionMajor>2</VersionMajor>
-    <VersionMinor>0</VersionMinor>
-    <VersionPatch>0</VersionPatch>
-    <VersionPrefix>$(VersionMajor).$(VersionMinor).$(VersionPatch)</VersionPrefix>
-    <VersionSuffix Condition="'$(Configuration)'=='DEBUG'">develop</VersionSuffix>
-    <InformationalVersion>$(PackageVersion)</InformationalVersion>
-	</PropertyGroup>
+  <Import Project="./build/version.props"/>
   <PropertyGroup>
     <LangVersion>latest</LangVersion>
     <ImplicitUsings>enable</ImplicitUsings>

Directory.Packages.props

@@ -2,17 +2,22 @@
   <PropertyGroup>
     <ManagePackageVersionsCentrally>true</ManagePackageVersionsCentrally>
     <CentralPackageFloatingVersionsEnabled>true</CentralPackageFloatingVersionsEnabled>
+    <!-- https://learn.microsoft.com/en-us/nuget/concepts/auditing-packages -->    
+    <NuGetAudit>true</NuGetAudit>    
+    <NuGetAuditMode>all</NuGetAuditMode>
+    <!-- https://learn.microsoft.com/en-us/nuget/reference/errors-and-warnings/nu1901-nu1904 -->
+    <WarningsAsErrors>NU1901;NU1902;NU1903;NU1904</WarningsAsErrors>
   </PropertyGroup>
   <ItemGroup>
     <PackageVersion Condition="'$(TargetFramework)'=='net8.0'" Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="8.0.11" />
     <PackageVersion Condition="'$(TargetFramework)'=='net9.0'" Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="9.0.0" />
     <PackageVersion Include="Microsoft.AspNetCore.OpenApi" Version="9.0.0" />
-    <PackageVersion Include="Scalar.AspNetCore" Version="1.2.36" />
-    <PackageVersion Include="WeihanLi.Common" Version="1.0.72" />
+    <PackageVersion Include="Scalar.AspNetCore" Version="1.2.72" />
+    <PackageVersion Include="WeihanLi.Common" Version="1.0.74" />
   </ItemGroup>
   <ItemGroup>
-    <PackageVersion Include="Microsoft.NET.Test.Sdk" Version="17.11.1" />
+    <PackageVersion Include="Microsoft.NET.Test.Sdk" Version="17.12.0" />
     <PackageVersion Include="xunit" Version="2.9.2" />
     <PackageVersion Include="xunit.runner.visualstudio" Version="2.8.2" />
   </ItemGroup>
-</Project>
+</Project>

build/sign.props

@@ -0,0 +1,10 @@
+<Project>
+  <PropertyGroup>
+    <VersionMajor>2</VersionMajor>
+    <VersionMinor>1</VersionMinor>
+    <VersionPatch>0</VersionPatch>
+    <VersionPrefix>$(VersionMajor).$(VersionMinor).$(VersionPatch)</VersionPrefix>
+    <VersionSuffix Condition="'$(Configuration)'=='DEBUG'">develop</VersionSuffix>
+    <InformationalVersion>$(PackageVersion)</InformationalVersion>
+  </PropertyGroup>
+</Project>

build/version.props

@@ -1,5 +1,7 @@
 # Release Notes
 
+see pull requests: https://github.com/WeihanLi/WeihanLi.Web.Extensions/pulls?q=is%3Apr+is%3Aclosed+is%3Amerged
+
 ## 1.4.0
 
 - Add Basic auth support

docs/ReleaseNotes.md

@@ -3,6 +3,7 @@
 
 using Microsoft.IdentityModel.Tokens;
 using Scalar.AspNetCore;
+using System.Security.Claims;
 using System.Text.Json.Serialization;
 using WeihanLi.Common.Aspect;
 using WeihanLi.Common.Models;
@@ -18,7 +19,7 @@
 
 var builder = WebApplication.CreateBuilder(args);
 
-builder.Services.AddAuthentication(HeaderAuthenticationDefaults.AuthenticationSchema)
+builder.Services.AddAuthentication(HeaderAuthenticationDefaults.AuthenticationScheme)
     .AddJwtBearer()
     .AddBasic(options =>
     {
@@ -39,6 +40,19 @@
         options.ApiKeyName = "X-ApiKey";
         options.KeyLocation = KeyLocation.HeaderOrQuery;
     })
+    .AddDelegate(options =>
+    {
+        options.Validator = c => (c.Request.Headers.TryGetValue("x-delegate-key", out var values) && values.ToString().Equals("test"))
+            .WrapTask();
+        options.ClaimsGenerator = c =>
+        {
+            Claim[] claims =
+            [
+                new (ClaimTypes.Name, "test")
+            ];
+            return Task.FromResult<IReadOnlyCollection<Claim>>(claims);
+        };
+    })
     ;
 builder.Services.AddJwtServiceWithJwtBearerAuth(options =>
 {

samples/WeihanLi.Web.Extensions.Samples/Program.cs

@@ -9,6 +9,7 @@
 using WeihanLi.Common.Models;
 using WeihanLi.Common.Services;
 using WeihanLi.Web.Authentication.ApiKeyAuthentication;
+using WeihanLi.Web.Authentication.DelegateAuthentication;
 using WeihanLi.Web.Authentication.HeaderAuthentication;
 using WeihanLi.Web.Authentication.QueryAuthentication;
 using WeihanLi.Web.Authorization.Token;
@@ -40,9 +41,10 @@ public IActionResult ServiceScopeTest()
     [HttpGet]
     public async Task<IActionResult> Get([FromServices] IUserIdProvider userIdProvider)
     {
-        var headerAuthResult = await HttpContext.AuthenticateAsync(HeaderAuthenticationDefaults.AuthenticationSchema);
-        var queryAuthResult = await HttpContext.AuthenticateAsync(QueryAuthenticationDefaults.AuthenticationSchema);
-        var apiKeyAuthResult = await HttpContext.AuthenticateAsync(ApiKeyAuthenticationDefaults.AuthenticationSchema);
+        var headerAuthResult = await HttpContext.AuthenticateAsync(HeaderAuthenticationDefaults.AuthenticationScheme);
+        var queryAuthResult = await HttpContext.AuthenticateAsync(QueryAuthenticationDefaults.AuthenticationScheme);
+        var apiKeyAuthResult = await HttpContext.AuthenticateAsync(ApiKeyAuthenticationDefaults.AuthenticationScheme);
+        var delegateAuthResult = await HttpContext.AuthenticateAsync(DelegateAuthenticationDefaults.AuthenticationScheme);
         var bearerAuthResult = await HttpContext.AuthenticateAsync(JwtBearerDefaults.AuthenticationScheme);
 
         return Ok(new
@@ -52,12 +54,13 @@ public async Task<IActionResult> Get([FromServices] IUserIdProvider userIdProvid
             headerAuthResult = headerAuthResult.Principal?.Identity,
             queryAuthResult = queryAuthResult.Principal?.Identity,
             apiKeyAuthResult = apiKeyAuthResult.Principal?.Identity,
-            bearerAuthResult = bearerAuthResult.Principal?.Identity
+            bearerAuthResult = bearerAuthResult.Principal?.Identity,
+            delegateAuthResult = delegateAuthResult.Principal?.Identity,
         });
     }
 
     [HttpGet("apiKeyTest")]
-    [Authorize(AuthenticationSchemes = ApiKeyAuthenticationDefaults.AuthenticationSchema)]
+    [Authorize(AuthenticationSchemes = ApiKeyAuthenticationDefaults.AuthenticationScheme)]
     public IActionResult ApiKeyAuthTest()
     {
         return Ok(User.Identity);

samples/WeihanLi.Web.Extensions.Samples/ValuesController.cs

@@ -1,7 +1,7 @@
 <Project>
   <Import Project="$([MSBuild]::GetPathOfFileAbove('Directory.Build.props', '$(MSBuildThisFileDirectory)../'))" />
-  <Import Project="../build/sign.props" />
-  <PropertyGroup>    
+  <PropertyGroup>
+    <NuGetAuditMode>direct</NuGetAuditMode>
     <GenerateDocumentationFile>true</GenerateDocumentationFile>
     <NoWarn>$(NoWarn);1591</NoWarn>
     <PackageReadmeFile>README.md</PackageReadmeFile>

src/Directory.Build.props

@@ -5,5 +5,5 @@ namespace WeihanLi.Web.Authentication.ApiKeyAuthentication;
 
 public static class ApiKeyAuthenticationDefaults
 {
-    public const string AuthenticationSchema = "ApiKey";
+    public const string AuthenticationScheme = "ApiKey";
 }

src/WeihanLi.Web.Extensions/Authentication/ApiKeyAuthentication/ApiKeyAuthenticationDefaults.cs

@@ -34,8 +34,18 @@ protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
 
         var claims = new[]
         {
-            new Claim("issuer", ClaimsIssuer),
-        }.Union(Options.ClaimsGenerator?.Invoke(Context, Options) ?? []);
+            new Claim("issuer", ClaimsIssuer)
+        };
+
+        if (Options.ClaimsGenerator != null)
+        {
+            var generatedClaims = await Options.ClaimsGenerator.Invoke(Context, Options);
+            if (generatedClaims is { Count: > 0 })
+            {
+                claims = claims.Union(generatedClaims).ToArray();
+            }
+        }
+
         return AuthenticateResult.Success(
             new AuthenticationTicket(
                 new ClaimsPrincipal([