1. 首頁
  2. 問答
  3. AddOAuth linkedin dotnet核心2.0

AddOAuth linkedin dotnet核心2.0

2017-09-02 100 views
4

我正在使用dotnet核心我想在網站上設置LinkedIn身份驗證,因爲LinkedIn沒有默認身份驗證構建器,如facebook,google和twitter我決定使用泛型實現,如下所示:AddOAuth linkedin dotnet核心2.0

services.AddAuthentication().AddOAuth("LinkedIn", 
      c => 
      { 
       c.ClientId = Configuration["linkedin-app-id"]; 
       c.ClientSecret = Configuration["linkedin-app-secret"]; 
       c.Scope.Add("r_basicprofile"); 
       c.Scope.Add("r_emailaddress"); 
       c.CallbackPath = "/signin-linkedin"; 
       c.AuthorizationEndpoint = "https://www.linkedin.com/oauth/v2/authorization"; 
       c.TokenEndpoint = "https://www.linkedin.com/oauth/v2/accessToken"; 
       c.UserInformationEndpoint = "https://api.linkedin.com/v1/people/~:(id,formatted-name,email-address,picture-url)"; 
})

我遇到問題,因爲GetExternalLoginInfoAsync()爲空,查找身份ASP.net核心源,是因爲providerkey爲空。

從asp.net核心代碼摘自:

var providerKey = auth.Principal.FindFirstValue(ClaimTypes.NameIdentifier); 
var provider = items["LoginProvider"] as string; 
if (providerKey == null || provider == null) 
{ 
    return null; 
}

的問題是我在哪裏可以在ClaimTypes.NameIdentifier添加到LinkedIn要求?

來源

2017-09-02 jack.the.ripper

回答

12

在這種情況下,必須預先填充使用OauthEvent這樣手動每個權利要求:

.AddOAuth("LinkedIn", 
      c => 
      { 
       c.ClientId = Configuration["linkedin-app-id"]; 
       c.ClientSecret = Configuration["linkedin-app-secret"]; 
       c.Scope.Add("r_basicprofile"); 
       c.Scope.Add("r_emailaddress"); 
       c.CallbackPath = "/signin-linkedin"; 
       c.AuthorizationEndpoint = "https://www.linkedin.com/oauth/v2/authorization"; 
       c.TokenEndpoint = "https://www.linkedin.com/oauth/v2/accessToken"; 
       c.UserInformationEndpoint = "https://api.linkedin.com/v1/people/~:(id,formatted-name,email-address,picture-url)"; 
       c.Events = new OAuthEvents 
       { 
        OnCreatingTicket = async context => 
        { 
         var request = new HttpRequestMessage(HttpMethod.Get, context.Options.UserInformationEndpoint); 
         request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", context.AccessToken); 
         request.Headers.Add("x-li-format", "json"); 

         var response = await context.Backchannel.SendAsync(request, context.HttpContext.RequestAborted); 
         response.EnsureSuccessStatusCode(); 
         var user = JObject.Parse(await response.Content.ReadAsStringAsync()); 

         var userId = user.Value<string>("id"); 
         if (!string.IsNullOrEmpty(userId)) 
         { 
          context.Identity.AddClaim(new Claim(ClaimTypes.NameIdentifier, userId, ClaimValueTypes.String, context.Options.ClaimsIssuer)); 
         } 

         var formattedName = user.Value<string>("formattedName"); 
         if (!string.IsNullOrEmpty(formattedName)) 
         { 
          context.Identity.AddClaim(new Claim(ClaimTypes.Name, formattedName, ClaimValueTypes.String, context.Options.ClaimsIssuer)); 
         } 

         var email = user.Value<string>("emailAddress"); 
         if (!string.IsNullOrEmpty(email)) 
         { 
          context.Identity.AddClaim(new Claim(ClaimTypes.Email, email, ClaimValueTypes.String, 
           context.Options.ClaimsIssuer)); 
         } 
         var pictureUrl = user.Value<string>("pictureUrl"); 
         if (!string.IsNullOrEmpty(pictureUrl)) 
         { 
          context.Identity.AddClaim(new Claim("profile-picture", pictureUrl, ClaimValueTypes.String, 
           context.Options.ClaimsIssuer)); 
         } 
        } 
       }; 

      })

來源

2017-09-06 00:07:34

相關問題

 相關問題