Added oidc service to webapi with a dumb way of authenticating incoming tokens

2021-10-13 22:26:45 -04:00
parent cccd609233
commit 33cbb4f136
13 changed files with 120 additions and 114 deletions
--- a/WebAPI/Data/OIDCService.cs
+++ b/WebAPI/Data/OIDCService.cs
@@ -0,0 +1,39 @@
+using System;
+using System.Net.Http;
+using System.Net.Http.Headers;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Http;
+using Microsoft.Extensions.Logging;
+
+namespace WebAPI.Data
+{
+    public class OIDCService
+    {
+        private HttpClient _httpClient { get; set; }
+        private ILogger<OIDCService> _logger { get; set; }
+        public OIDCService(ILogger<OIDCService> logger)
+        {
+            _logger = logger;
+            _httpClient = new HttpClient();
+        }
+
+        /// <summary>
+        /// Simple check of an OIDC access token by attempting to hit the userinfo endpoint.
+        /// </summary>
+        /// <param name="accessToken">access token to check</param>
+        /// <returns>success</returns>
+        public async Task<bool> ValidateAccessToken(string accessToken)
+        {
+            Uri requestUri = new Uri($"{AppSettings.OIDCUserInfoEndpoint}");
+            HttpRequestMessage request = new HttpRequestMessage(HttpMethod.Get, requestUri);
+            request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", accessToken);
+            HttpResponseMessage response = await _httpClient.SendAsync(request);
+            if (!response.IsSuccessStatusCode)
+            {
+                return false;
+            }
+            return false;
+        }
+        
+    }
+}