Merge pull request #25 from okta/lr-update-self-hosted-to-aspnetcore-2.2

Update self-hosted sample to ASP.NET Core 2.2

Author: laura-rodriguez

self-hosted-login/OktaMvcSamples.ruleset

@@ -0,0 +1,127 @@
+<?xml version="1.0" encoding="utf-8"?>
+<RuleSet Name="New Rule Set" Description=" " ToolsVersion="10.0">
+  <Rules AnalyzerId="AsyncUsageAnalyzers" RuleNamespace="AsyncUsageAnalyzers">
+    <Rule Id="AvoidAsyncSuffix" Action="Error" />
+    <Rule Id="AvoidAsyncVoid" Action="Error" />
+    <Rule Id="UseAsyncSuffix" Action="Error" />
+    <Rule Id="UseConfigureAwait" Action="Error" />
+  </Rules>
+
+  <Rules AnalyzerId="Microsoft.Analyzers.ManagedCodeAnalysis" RuleNamespace="Microsoft.Rules.Managed">
+    <Rule Id="CA1001" Action="Warning" />
+    <Rule Id="CA1009" Action="Warning" />
+    <Rule Id="CA1016" Action="Warning" />
+    <Rule Id="CA1033" Action="Warning" />
+    <Rule Id="CA1049" Action="Warning" />
+    <Rule Id="CA1060" Action="Warning" />
+    <Rule Id="CA1061" Action="Warning" />
+    <Rule Id="CA1063" Action="Warning" />
+    <Rule Id="CA1065" Action="Warning" />
+    <Rule Id="CA1301" Action="Warning" />
+    <Rule Id="CA1400" Action="Warning" />
+    <Rule Id="CA1401" Action="Warning" />
+    <Rule Id="CA1403" Action="Warning" />
+    <Rule Id="CA1404" Action="Warning" />
+    <Rule Id="CA1405" Action="Warning" />
+    <Rule Id="CA1410" Action="Warning" />
+    <Rule Id="CA1415" Action="Warning" />
+    <Rule Id="CA1821" Action="Warning" />
+    <Rule Id="CA1900" Action="Warning" />
+    <Rule Id="CA1901" Action="Warning" />
+    <Rule Id="CA2002" Action="Warning" />
+    <Rule Id="CA2100" Action="Warning" />
+    <Rule Id="CA2101" Action="Warning" />
+    <Rule Id="CA2108" Action="Warning" />
+    <Rule Id="CA2111" Action="Warning" />
+    <Rule Id="CA2112" Action="Warning" />
+    <Rule Id="CA2114" Action="Warning" />
+    <Rule Id="CA2116" Action="Warning" />
+    <Rule Id="CA2117" Action="Warning" />
+    <Rule Id="CA2122" Action="Warning" />
+    <Rule Id="CA2123" Action="Warning" />
+    <Rule Id="CA2124" Action="Warning" />
+    <Rule Id="CA2126" Action="Warning" />
+    <Rule Id="CA2131" Action="Warning" />
+    <Rule Id="CA2132" Action="Warning" />
+    <Rule Id="CA2133" Action="Warning" />
+    <Rule Id="CA2134" Action="Warning" />
+    <Rule Id="CA2137" Action="Warning" />
+    <Rule Id="CA2138" Action="Warning" />
+    <Rule Id="CA2140" Action="Warning" />
+    <Rule Id="CA2141" Action="Warning" />
+    <Rule Id="CA2146" Action="Warning" />
+    <Rule Id="CA2147" Action="Warning" />
+    <Rule Id="CA2149" Action="Warning" />
+    <Rule Id="CA2200" Action="Warning" />
+    <Rule Id="CA2202" Action="Warning" />
+    <Rule Id="CA2207" Action="Warning" />
+    <Rule Id="CA2212" Action="Warning" />
+    <Rule Id="CA2213" Action="Warning" />
+    <Rule Id="CA2214" Action="Warning" />
+    <Rule Id="CA2216" Action="Warning" />
+    <Rule Id="CA2220" Action="Warning" />
+    <Rule Id="CA2229" Action="Warning" />
+    <Rule Id="CA2231" Action="Warning" />
+    <Rule Id="CA2232" Action="Warning" />
+    <Rule Id="CA2235" Action="Warning" />
+    <Rule Id="CA2236" Action="Warning" />
+    <Rule Id="CA2237" Action="Warning" />
+    <Rule Id="CA2238" Action="Warning" />
+    <Rule Id="CA2240" Action="Warning" />
+    <Rule Id="CA2241" Action="Warning" />
+    <Rule Id="CA2242" Action="Warning" />
+  </Rules>
+
+  <Rules AnalyzerId="StyleCop.Analyzers" RuleNamespace="StyleCop.Analyzers">
+    <Rule Id="SA1000" Action="Error" />
+    <Rule Id="SA1001" Action="Error" />
+	<Rule Id="SA0001" Action="None" />
+    <!-- Restore after C# 7 support is added -->
+    <Rule Id="SA1008" Action="None" />
+    <Rule Id="SA1021" Action="Error" />
+    <Rule Id="SA1022" Action="Error" />
+    <Rule Id="SA1100" Action="Error" />
+    <Rule Id="SA1101" Action="None"/>
+    <Rule Id="SA1106" Action="Error" />
+    <Rule Id="SA1111" Action="Error" />
+    <Rule Id="SA1112" Action="Error" />
+    <Rule Id="SA1119" Action="Error" />
+    <Rule Id="SA1121" Action="Error" />
+    <Rule Id="SA1122" Action="Error" />
+    <Rule Id="SA1133" Action="Error" />
+    <Rule Id="SA1201" Action="None"/>
+    <Rule Id="SA1202" Action="None"/>
+    <Rule Id="SA1204" Action="None"/>
+    <Rule Id="SA1300" Action="Error" />
+    <Rule Id="SA1302" Action="Error" />
+    <Rule Id="SA1303" Action="Error" />
+    <Rule Id="SA1304" Action="Error" />
+    <Rule Id="SA1305" Action="Warning" />
+    <Rule Id="SA1309" Action="None" />
+    <Rule Id="SA1311" Action="Error" />
+    <Rule Id="SA1400" Action="Error" />
+    <Rule Id="SA1401" Action="Error" />
+    <Rule Id="SA1402" Action="Error" />
+    <Rule Id="SA1403" Action="Error" />
+    <Rule Id="SA1404" Action="Error" />
+    <Rule Id="SA1405" Action="Error" />
+    <Rule Id="SA1406" Action="Error" />
+    <Rule Id="SA1407" Action="Error" />
+    <Rule Id="SA1408" Action="Error" />
+    <Rule Id="SA1410" Action="Error" />
+    <Rule Id="SA1411" Action="Error" />
+    <Rule Id="SA1412" Action="Warning" />
+    <Rule Id="SA1503" Action="Error" />
+    <Rule Id="SA1512" Action="None" />
+    <Rule Id="SA1515" Action="None" />
+    <Rule Id="SA1603" Action="Error" />
+    <Rule Id="SA1609" Action="Warning" />
+    <Rule Id="SA1636" Action="Error" />
+    <Rule Id="SA1642" Action="Error" />
+    <Rule Id="SA1643" Action="Error" />
+	
+    <!-- Not required for samples -->
+	<Rule Id="SA1600" Action="None" />
+	<Rule Id="SA1633" Action="None" /> <!-- Back to Error after MSBuild bug fix (.NET Core 2.0) -->
+  </Rules>
+</RuleSet>

self-hosted-login/README.md

@@ -1,6 +1,6 @@
 # ASP.NET Core & Self-Hosted Login Page Example
 
-This example shows you how to use the `Okta.AspNetCore` library to log in a user. The user's browser is first redirected to the self-hosted login page on your ASP.NET Core application. Once the user is successfully authenticated via Okta, ASP.NET Core automatically populates `HttpContext.User` with the information Okta sends back about the user.
+This example shows you how to use the [Okta ASP.NET Core SDK] to sign in a user. The user's browser is first redirected to the self-hosted sign-in page on your ASP.NET Core application. Once the user is successfully authenticated via Okta, ASP.NET Core automatically populates `HttpContext.User` with the information Okta sends back about the user.
 
 ## Prerequisites
 
@@ -9,23 +9,63 @@ Before running this sample, you will need the following:
 * An Okta Developer Account, you can sign up for one at https://developer.okta.com/signup/.
 * An Okta Application, configured for Web mode. This is done from the Okta Developer Console and you can find instructions [here][OIDC Web Application Setup Instructions].  When following the wizard, use the default properties.  They are designed to work with our sample applications.
 
-**Note:** Make sure to add `http://localhost:8080` as a [Trusted Origin].
-
 ## Running This Example
 
-Clone this repo and replace the okta configuration placeholders in the `appsettings.json` with your configuration values from the Okta Developer Console. 
-You can see all the available configuration options in the [okta-aspnet GitHub](https://github.com/okta/okta-aspnet/blob/master/README.md).
-For step-by-step instructions, visit the Okta [ASP.NET MVC quickstart]. The quickstart will guide you through adding Okta login to your ASP.NET application.
+### Clone this repository
+
+```git clone https://github.com/okta/samples-aspnetcore.git```
+
+### Run the web application
+
+Run the example with your preferred tool and write down the port of your web application to configure Okta afterwards.
+
+> **NOTE:** This sample is using ASP.NET Core 2.2 which enforces HTTPS. This is a recommended practice for web applications. Check out [Enforce HTTPS in ASP.NET Core] for more details.
+
+#### Run the web application from Visual Studio
+
+If you run this project in Visual Studio it will start the web application on ports 5000 for HTTP and 44314 for HTTPS. You can change this configuration in the `launchSettings.json`. 
+
+#### Run the web application from dotnet CLI
+
+If you run this project via the dotnet CLI it will start the web application on ports 5000 for HTTP and 5001 for HTTPS. You can change this configuration in the `launchSettings.json`. 
+
+Navigate to the folder where the project file is located and type the following:
+
+```dotnet run```
+
+#### Trust the local dev certificate if necessary
+
+If you’ve never run an ASP.NET Core 2.x application before, you may notice a strange error page come up warning you that the site is potentially unsafe.
+This is because ASP.NET Core creates an HTTPS development certificate for you as part of the first-run experience, but it still needs to be trusted. You can ignore the warning by clicking on Advanced and telling the browser that it’s okay to visit this site even though there is no certificate for it. Or you can trust the certificate to get rid of this warning, check out [Configuring HTTPS in ASP.NET Core across different platforms] for more details.
+
+### Add the correct configuration to the Okta Developer Console (including the port you just found in [Run the web application](#run-the-web-application))
+
+Go to your [Okta Developer Console] and update the following parameters in your Okta Web Application configuration:
+* **Login redirect URI** - for example, `https://localhost:5001/authorization-code/callback`
+* **Logout redirect URI** - for example, `https://localhost:5001/signout/callback`
+
+Also, enable CORS to allow your self-hosted page to make an XHR to the Okta API with the Okta session cookie. To do so, click **API > Trusted Origin** in your [Okta Developer Console], and add your web application’s base URL (for example, `https://localhost:5001/`) as a **Trusted Origin**.
+
+For step-by-step instructions, visit the Okta [Sign Users in to Your Web Application guide] which will show you how to sign users in using Okta and, [Sign Users Out guide] which will show you how to sign users out of your app and out of Okta.
+
+### Add the same configuration to the sample's appsettings
+
+Replace the okta configuration placeholders in the `appsettings.json` with your configuration values from the [Okta Developer Console]. 
+You can see all the available configuration options in the [okta-aspnet GitHub](https://github.com/okta/okta-aspnet/blob/master/docs/aspnetcore-mvc.md#configuration-reference).
+For step-by-step instructions, visit the Okta [Sign Users in to Your Web Application guide]. The guide will walk you through adding Okta sign-in to your ASP.NET application.
 
-Now start your server and navigate to http://localhost:8080 in your browser.
+### Run again and try to sign in
 
-If you see a home page that allows you to login, then things are working!  Clicking the **Log in** link will redirect you to the self-hosted sign-in page.
+Click the **Sign In** link in the Home page and it will redirect you to the self-hosted sign-in page.
 
-You can login with the same account that you created when signing up for your Developer Org, or you can use a known username and password from your Okta Directory.
+You can sign in with the same account that you created when signing up for your Developer Org, or you can use a known username and password from your Okta Directory.
 
-**Note:** If you are currently using your Developer Console, you already have a Single Sign-On (SSO) session for your Org.  You will be automatically logged into your application as the same user that is using the Developer Console.  You may want to use an incognito tab to test the flow from a blank slate.
+**Note:** If you are currently using your Developer Console, you already have a Single Sign-On (SSO) session for your Org.  You will be automatically signed into your application as the same user that is using the Developer Console.  You may want to use an incognito tab to test the flow from a blank slate.
 
-[OIDC Middleware Library]: https://github.com/okta/okta-aspnet
-[Authorization Code Flow]: https://developer.okta.com/authentication-guide/implementing-authentication/auth-code
+[Okta ASP.NET Core SDK]: https://github.com/okta/okta-aspnet
 [OIDC Web Application Setup Instructions]: https://developer.okta.com/authentication-guide/implementing-authentication/auth-code#1-setting-up-your-application
-[ASP.NET MVC quickstart]:https://developer.okta.com/quickstart/#/okta-sign-in-page/dotnet/aspnetcore
+[Enforce HTTPS in ASP.NET Core]: https://docs.microsoft.com/en-us/aspnet/core/security/enforcing-ssl?view=aspnetcore-2.2&tabs=visual-studio
+[Configuring HTTPS in ASP.NET Core across different platforms]:https://devblogs.microsoft.com/aspnet/configuring-https-in-asp-net-core-across-different-platforms/
+[Sign Users in to Your Web Application guide]: https://developer.okta.com/guides/sign-into-web-app/aspnet/before-you-begin/
+[Sign Users Out guide]: https://developer.okta.com/guides/sign-users-out/aspnetcore/before-you-begin/
+[Okta Developer Console]: https://login.okta.com

self-hosted-login/okta-aspnetcore-mvc-example.sln

@@ -1,25 +1,25 @@
 
 Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio 15
-VisualStudioVersion = 15.0.27130.2036
+# Visual Studio Version 16
+VisualStudioVersion = 16.0.28729.10
 MinimumVisualStudioVersion = 10.0.40219.1
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "okta-aspnetcore-mvc-example", "okta-aspnetcore-mvc-example\okta-aspnetcore-mvc-example.csproj", "{A31C71CE-4B56-485B-A760-9D3E2241EDF1}"
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "okta-aspnetcore-mvc-example", "okta-aspnetcore-mvc-example\okta-aspnetcore-mvc-example.csproj", "{E358DC85-C34B-4B6F-BBE1-4814A43D7827}"
 EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
 		Release|Any CPU = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(ProjectConfigurationPlatforms) = postSolution
-		{A31C71CE-4B56-485B-A760-9D3E2241EDF1}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
-		{A31C71CE-4B56-485B-A760-9D3E2241EDF1}.Debug|Any CPU.Build.0 = Debug|Any CPU
-		{A31C71CE-4B56-485B-A760-9D3E2241EDF1}.Release|Any CPU.ActiveCfg = Release|Any CPU
-		{A31C71CE-4B56-485B-A760-9D3E2241EDF1}.Release|Any CPU.Build.0 = Release|Any CPU
+		{E358DC85-C34B-4B6F-BBE1-4814A43D7827}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{E358DC85-C34B-4B6F-BBE1-4814A43D7827}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{E358DC85-C34B-4B6F-BBE1-4814A43D7827}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{E358DC85-C34B-4B6F-BBE1-4814A43D7827}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
-		SolutionGuid = {B40705E7-BD7A-4BBF-B87A-9BC2C953BC89}
+		SolutionGuid = {689AB55A-EB52-4057-B501-1AD0A57D683B}
 	EndGlobalSection
 EndGlobal

self-hosted-login/okta-aspnetcore-mvc-example/Controllers/AccountController.cs

@@ -1,35 +1,28 @@
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.AspNetCore.Authentication.Cookies;
 using Microsoft.AspNetCore.Mvc;
-using Microsoft.Extensions.Options;
 using Okta.AspNetCore;
-using okta_aspnetcore_mvc_example.Models;
 
+#pragma warning disable SA1300 // Element should begin with upper-case letter
 namespace okta_aspnetcore_mvc_example.Controllers
+#pragma warning restore SA1300 // Element should begin with upper-case letter
 {
     public class AccountController : Controller
     {
-        private OktaSettings _oktaSettings;
-
-        public AccountController(IOptions<OktaSettings> oktaSettings)
-        {
-            _oktaSettings = oktaSettings.Value;
-        }
-
-        public IActionResult Login()
+        public IActionResult SignIn()
         {
             return View();
         }
 
         [HttpPost]
         [ValidateAntiForgeryToken]
-        public IActionResult Login([FromForm]string sessionToken)
+        public IActionResult SignIn([FromForm]string sessionToken)
         {
             if (!HttpContext.User.Identity.IsAuthenticated)
             {
                 var properties = new AuthenticationProperties();
                 properties.Items.Add("sessionToken", sessionToken);
-                properties.RedirectUri = "/Home/About";
+                properties.RedirectUri = "/Home/";
 
                 return Challenge(properties, OktaDefaults.MvcAuthenticationScheme);
             }
@@ -38,9 +31,15 @@ public IActionResult Login([FromForm]string sessionToken)
         }
 
         [HttpPost]
-        public IActionResult Logout()
+        public IActionResult SignOut()
         {
-            return new SignOutResult(new[] { CookieAuthenticationDefaults.AuthenticationScheme, OktaDefaults.MvcAuthenticationScheme });
+            return new SignOutResult(
+                new[]
+                {
+                     OktaDefaults.MvcAuthenticationScheme,
+                     CookieAuthenticationDefaults.AuthenticationScheme,
+                },
+                new AuthenticationProperties { RedirectUri = "/Home/" });
         }
     }
-}
+}

self-hosted-login/okta-aspnetcore-mvc-example/Controllers/HomeController.cs

@@ -3,7 +3,9 @@
 using Microsoft.AspNetCore.Mvc;
 using okta_aspnetcore_mvc_example.Models;
 
+#pragma warning disable SA1300 // Element should begin with upper-case letter
 namespace okta_aspnetcore_mvc_example.Controllers
+#pragma warning restore SA1300 // Element should begin with upper-case letter
 {
     public class HomeController : Controller
     {
@@ -12,20 +14,12 @@ public IActionResult Index()
             return View();
         }
 
-        public IActionResult About()
+        public IActionResult Privacy()
         {
-            ViewData["Message"] = "Your application description page.";
-
-            return View();
-        }
-
-        public IActionResult Contact()
-        {
-            ViewData["Message"] = "Your contact page.";
-
             return View();
         }
 
+        [ResponseCache(Duration = 0, Location = ResponseCacheLocation.None, NoStore = true)]
         public IActionResult Error()
         {
             return View(new ErrorViewModel { RequestId = Activity.Current?.Id ?? HttpContext.TraceIdentifier });

self-hosted-login/okta-aspnetcore-mvc-example/Models/ErrorViewModel.cs

@@ -1,11 +1,11 @@
-using System;
-
+#pragma warning disable SA1300 // Element should begin with upper-case letter
 namespace okta_aspnetcore_mvc_example.Models
+#pragma warning restore SA1300 // Element should begin with upper-case letter
 {
     public class ErrorViewModel
     {
         public string RequestId { get; set; }
 
         public bool ShowRequestId => !string.IsNullOrEmpty(RequestId);
     }
-}
+}

self-hosted-login/okta-aspnetcore-mvc-example/Models/OktaSettings.cs

@@ -8,18 +8,19 @@
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.Logging;
 
+#pragma warning disable SA1300 // Element should begin with upper-case letter
 namespace okta_aspnetcore_mvc_example
+#pragma warning restore SA1300 // Element should begin with upper-case letter
 {
     public class Program
     {
         public static void Main(string[] args)
         {
-            BuildWebHost(args).Run();
+            CreateWebHostBuilder(args).Build().Run();
         }
 
-        public static IWebHost BuildWebHost(string[] args) =>
+        public static IWebHostBuilder CreateWebHostBuilder(string[] args) =>
             WebHost.CreateDefaultBuilder(args)
-                .UseStartup<Startup>()
-                .Build();
+                .UseStartup<Startup>();
     }
 }