AddOAuth linkedin dotnet core 2.0
我正在使用dotnet核心我想在网站上设置LinkedIn身份validation,因为LinkedIn没有默认身份validation构建器,因为facebook,google和twitter我决定使用如下通用实现:
services.AddAuthentication().AddOAuth("LinkedIn", c => { c.ClientId = Configuration["linkedin-app-id"]; c.ClientSecret = Configuration["linkedin-app-secret"]; c.Scope.Add("r_basicprofile"); c.Scope.Add("r_emailaddress"); c.CallbackPath = "/signin-linkedin"; c.AuthorizationEndpoint = "https://www.linkedin.com/oauth/v2/authorization"; c.TokenEndpoint = "https://www.linkedin.com/oauth/v2/accessToken"; c.UserInformationEndpoint = "https://api.linkedin.com/v1/people/~:(id,formatted-name,email-address,picture-url)"; }) 我有一个问题,因为GetExternalLoginInfoAsync()为null,查看Identity ASP.net核心源,是因为providerkey为null。
取自asp.net核心代码:
var providerKey = auth.Principal.FindFirstValue(ClaimTypes.NameIdentifier); var provider = items["LoginProvider"] as string; if (providerKey == null || provider == null) { return null; }
问题是我在哪里可以将ClaimTypes.NameIdentifier添加到LinkedIn声明?
在这种情况下,您必须使用OauthEvent手动预填充每个Claim,如下所示:
.AddOAuth("LinkedIn", c => { c.ClientId = Configuration["linkedin-app-id"]; c.ClientSecret = Configuration["linkedin-app-secret"]; c.Scope.Add("r_basicprofile"); c.Scope.Add("r_emailaddress"); c.CallbackPath = "/signin-linkedin"; c.AuthorizationEndpoint = "https://www.linkedin.com/oauth/v2/authorization"; c.TokenEndpoint = "https://www.linkedin.com/oauth/v2/accessToken"; c.UserInformationEndpoint = "https://api.linkedin.com/v1/people/~:(id,formatted-name,email-address,picture-url)"; c.Events = new OAuthEvents { OnCreatingTicket = async context => { var request = new HttpRequestMessage(HttpMethod.Get, context.Options.UserInformationEndpoint); request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", context.AccessToken); request.Headers.Add("x-li-format", "json"); var response = await context.Backchannel.SendAsync(request, context.HttpContext.RequestAborted); response.EnsureSuccessStatusCode(); var user = JObject.Parse(await response.Content.ReadAsStringAsync()); var userId = user.Value("id"); if (!string.IsNullOrEmpty(userId)) { context.Identity.AddClaim(new Claim(ClaimTypes.NameIdentifier, userId, ClaimValueTypes.String, context.Options.ClaimsIssuer)); } var formattedName = user.Value ("formattedName"); if (!string.IsNullOrEmpty(formattedName)) { context.Identity.AddClaim(new Claim(ClaimTypes.Name, formattedName, ClaimValueTypes.String, context.Options.ClaimsIssuer)); } var email = user.Value ("emailAddress"); if (!string.IsNullOrEmpty(email)) { context.Identity.AddClaim(new Claim(ClaimTypes.Email, email, ClaimValueTypes.String, context.Options.ClaimsIssuer)); } var pictureUrl = user.Value ("pictureUrl"); if (!string.IsNullOrEmpty(pictureUrl)) { context.Identity.AddClaim(new Claim("profile-picture", pictureUrl, ClaimValueTypes.String, context.Options.ClaimsIssuer)); } } }; })
- NuGet.Config文件位于Visual Studio 2017项目中的哪个位置?
- .net核心中的GZIP无法正常工作
- 在Entity Framework Core中创建迁移时如何配置DbContext?
- 无法在.NET Core中编译Environment.Exit
- Swashbuckle.AspNetCore v1.0.0 with OAuth2,flow:application – > IdentityServer4
- 替换ASP.NET Core内置DI容器中的服务注册?
- 在.NET Core中引用时,从程序集文件加载的类型不等于相同的类型
- 如何运行.Net Core dll?
- validationJWT令牌后访问dotnetcore中间件