Activities of "mdepouw"
If license control pacakge doesn't have any source code used in the main app, so you can easily delete the reference of license packages and disable license control :)
Ah, 🤦♂️, that makes sense! I see now, thanks!
Did you configure OpenId section in appsettings.json and faced a problem while login via Azure AD ?
I did but we're using Azure AD B2C not AD 😊. Please see this ticket for challenges (looks like lack of support) for configuring Zero w/ B2C.
Closing this ticket, thanks!
You can inject IConfigurationRoot to read appsetting.json
That was not giving me the full config. But, I injected IWebHostEnvironment env and then called env.GetAppConfiguration() which gave me a IConfigurationRoot that did have all the config.
Next challenge, how can I add additional configuration fields to an OpenID Connect provider if that source code is not modifiable?
I wanted to add Issuer and WellKnown to appsettings.json for supporting Azure AD B2C but I'm not seeing a way w/o hacking up the code. Seems like a pretty simple thing, add a few more fields to the config & modify the code that's reading it but that's not the case here.
I'm not seeing it, what does "license control code" have to do w/ external authentication? 🤔
Please see the screenshot below... the green I get & is properly related to licensing but the red, how does that related to licensing? 🤔
My question still stands though 😊
So, you may create a new OIDC provider with OpenIdConnect2 for example to support second OIDC provider.
That's the path I was heading down 😊! The issue I came across when doing that was on ExternalAuthManager.GetUserInfo(). The provider is not passed through to OpenIdConnectAuthProviderApi.GetUserInfo().
In the returned object, I can see the Provider is hardcoded 😢. I ended up overriding the Provider after calling the method. i.e.
var userInfo = await _externalAuthManager.GetUserInfo(model.AuthProvider, model.ProviderAccessCode);
// ugly!
userInfo.Provider = model.AuthProvider;
return userInfo;
Decompiled code snippet of OpenIdConnectAuthProviderApi:
public class OpenIdConnectAuthProviderApi : ExternalAuthProviderApiBase
{
public override async Task<ExternalAuthUserInfo> GetUserInfo(string token)
{
...
return new ExternalAuthUserInfo
{
Provider = "OpenIdConnect",
ProviderKey = validatedTokenResult.Token.Subject,
Name = fullNameParts[0],
Surname = ((fullNameParts.Length > 1) ? fullNameParts[1] : fullNameParts[0]),
EmailAddress = emailClaim.Value,
Claims = validatedTokenResult.Principal.Claims.Select((Claim c) => new ClaimKeyValue(c.Type, c.Value)).ToList()
};
}
}
Currently this is not supported
I figured that was the case. I didn't want to start customizing when there's some functionality I wasn't aware of. GTG, thanks!
Hi @ismcagdas 👋
- The solution also has a closed-source NuGet package that is used to protect ASP.NET Zero's license rules. source
That part makes sense 👍. If the source was available for license checking then one could subvert the rules & modify that code. But, anything outside of that, why make that closed source? 🤔
For example, I'm extending ASP.NET Zero to support multiple OpenID providers in one tenant & I wanted to understand how Abp.AspNetZeroCore.Web.Authentication.External.ExternalAuthManager is behaving.
Please see the screenshot below... the green I get & is properly related to licensing but the red, how does that related to licensing? 🤔
Not a huge deal, just trying to understand 😊, thanks!
Hi @ismcagdas 👋 - unfortunately no. We need multiple OpenID connect providers within one tenant.
sidenote: question title updated to better reflect the ask
Hi @ismcagdas - any updates? Are my customizations required or am I doing something wrong? thanks!