Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

#29 added cookiesettings section to authenticationSettings #31

Merged
merged 8 commits into from
Jun 5, 2024
Merged

#29 added cookiesettings section to authenticationSettings #31

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
d9ed815
#29 added cookiesettings section to authenticationSettings, if cookie…
PieterBracke Apr 19, 2024
d1d55dc
#29 - refactored cookieSettings to set initialize to most secure inst…
PieterBracke May 14, 2024
29b04d8
#29 - fixed merge conflicts
PieterBracke May 14, 2024
6e45855
#29 - adding [email protected] as contributor
PieterBracke Jun 5, 2024
a3cfedb
#4 - adding [email protected] as contributor
PieterBracke Jun 5, 2024
83fb671
#29 - adding [email protected] to contributors
Pieter-1337 Jun 5, 2024
b135dd5
#29 - test
PieterBracke Jun 5, 2024
3b288de
#29 - removed test
PieterBracke Jun 5, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 4 additions & 0 deletions src/Fancy.ResourceLinker.Gateway/Authentication/GatewayAuthentication.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -54,10 +54,14 @@ internal static void AddGatewayAuthentication(IServiceCollection services, Gatew
options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = OpenIdConnectDefaults.AuthenticationScheme;
})
// Add cookie settings
.AddCookie(options =>
{
options.ExpireTimeSpan = TimeSpan.FromMinutes(settings.SessionTimeoutInMin);
options.SlidingExpiration = true;
options.Cookie.SameSite = settings.CookieSettings.SameSiteStrict == true ? SameSiteMode.Strict : SameSiteMode.Lax;
options.Cookie.SecurePolicy = settings.CookieSettings.Secure == true ? CookieSecurePolicy.Always : CookieSecurePolicy.SameAsRequest;
options.Cookie.HttpOnly = settings.CookieSettings.HttpOnly;
})
.AddOpenIdConnect(options =>
{
Expand Down
39 changes: 39 additions & 0 deletions src/Fancy.ResourceLinker.Gateway/Authentication/GatewayAuthenticationSettings.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -78,6 +78,15 @@ public class GatewayAuthenticationSettings
/// </value>
public string? IssuerAddressForSignOut { get; set; }

/// <summary>
/// Gets or sets the cookiesettings.
/// </summary>
/// <value>
/// Set cookiesettings.
/// </value>
public CookieSettings CookieSettings { get; set; } = new CookieSettings();


public void Validate()
{
// Check required fields
Expand All @@ -97,3 +106,33 @@ public void Validate()
}
}
}

public class CookieSettings
{
/// <summary>
/// Gets or sets the SameSite policy
/// </summary>
/// <value>
/// true || Not set == Strict
/// false == Lax
/// </value>
public bool SameSiteStrict { get; set; } = true;
///
/// <summary>
/// Gets or sets the secure flag.
/// </summary>
/// <value>
/// true || Not set == Always
/// false == SameAsRequest
/// </value>
public bool Secure { get; set; } = true;
///
/// <summary>
/// Gets or sets the HttpOnly setting.
/// </summary>
/// <value>
/// true || Not set == true
/// false == false
/// </value>
public bool HttpOnly { get; set; } = true;
}
Loading