feat: Add IdentityServer

- add and setup IdentityServer for login, registration, logout
- add mvc project to test identity server in simple way

Author: HlibPavlyk

CoinyProject.sln

@@ -21,10 +21,12 @@ Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CoinyProject.Infrastructure
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CoinyProject.Shared", "src\CoinyProject.Shared\CoinyProject.Shared.csproj", "{70C1241D-C297-4D3C-B26F-B7AA953EA24C}"
 EndProject
-Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CoinyProject.IdentityServer", "src\CoinyProject.IdentityServer\CoinyProject.IdentityServer.csproj", "{15B0F024-EB65-42A9-897D-9232CE14EA7B}"
-EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CoinyProject.UnitTests", "tests\CoinyProject.Application.AlbumService.Tests\CoinyProject.UnitTests.csproj", "{E76EE636-DCC4-4954-AAB2-A099FDE0728F}"
 EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "CoinyProject.IdentityServer", "src\CoinyProject.IdentityServer\CoinyProject.IdentityServer.csproj", "{6FB01F55-5016-457F-9D0E-F42F5928D39A}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "mvc", "src\mvc\mvc.csproj", "{7A01A352-EF24-4D73-BD06-E74F1B9DB12F}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -59,14 +61,18 @@ Global
 		{70C1241D-C297-4D3C-B26F-B7AA953EA24C}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{70C1241D-C297-4D3C-B26F-B7AA953EA24C}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{70C1241D-C297-4D3C-B26F-B7AA953EA24C}.Release|Any CPU.Build.0 = Release|Any CPU
-		{15B0F024-EB65-42A9-897D-9232CE14EA7B}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
-		{15B0F024-EB65-42A9-897D-9232CE14EA7B}.Debug|Any CPU.Build.0 = Debug|Any CPU
-		{15B0F024-EB65-42A9-897D-9232CE14EA7B}.Release|Any CPU.ActiveCfg = Release|Any CPU
-		{15B0F024-EB65-42A9-897D-9232CE14EA7B}.Release|Any CPU.Build.0 = Release|Any CPU
 		{E76EE636-DCC4-4954-AAB2-A099FDE0728F}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
 		{E76EE636-DCC4-4954-AAB2-A099FDE0728F}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{E76EE636-DCC4-4954-AAB2-A099FDE0728F}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{E76EE636-DCC4-4954-AAB2-A099FDE0728F}.Release|Any CPU.Build.0 = Release|Any CPU
+		{6FB01F55-5016-457F-9D0E-F42F5928D39A}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{6FB01F55-5016-457F-9D0E-F42F5928D39A}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{6FB01F55-5016-457F-9D0E-F42F5928D39A}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{6FB01F55-5016-457F-9D0E-F42F5928D39A}.Release|Any CPU.Build.0 = Release|Any CPU
+		{7A01A352-EF24-4D73-BD06-E74F1B9DB12F}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{7A01A352-EF24-4D73-BD06-E74F1B9DB12F}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{7A01A352-EF24-4D73-BD06-E74F1B9DB12F}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{7A01A352-EF24-4D73-BD06-E74F1B9DB12F}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -79,8 +85,9 @@ Global
 		{43B37B4B-9052-46D5-845D-AB21E74D5057} = {518A20A7-1C7F-4E74-8D37-34C56740DFBF}
 		{ADEE36F4-01B3-46F9-A1EB-D3B9BE2D4A7A} = {518A20A7-1C7F-4E74-8D37-34C56740DFBF}
 		{70C1241D-C297-4D3C-B26F-B7AA953EA24C} = {518A20A7-1C7F-4E74-8D37-34C56740DFBF}
-		{15B0F024-EB65-42A9-897D-9232CE14EA7B} = {518A20A7-1C7F-4E74-8D37-34C56740DFBF}
 		{E76EE636-DCC4-4954-AAB2-A099FDE0728F} = {20847965-4158-4A31-B5A6-C1F15024776C}
+		{6FB01F55-5016-457F-9D0E-F42F5928D39A} = {518A20A7-1C7F-4E74-8D37-34C56740DFBF}
+		{7A01A352-EF24-4D73-BD06-E74F1B9DB12F} = {518A20A7-1C7F-4E74-8D37-34C56740DFBF}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {F9FC4428-8E26-4BB5-A59F-8357620396C6}

src/CoinyProject.Core.Domain/Entities/User.cs

@@ -9,8 +9,15 @@ namespace CoinyProject.Core.Domain.Entities
 {
     public class User : IdentityUser
     {
+        
         public string FirstName { get; set; }
         public string LastName { get; set; }
+        public User(string userName, string firstName, string lastName) : base(userName)
+        {
+            FirstName = firstName;
+            LastName = lastName;
+            Email = userName;
+        }
 
         public ICollection<Album>? Albums { get; set; }
         public ICollection<AuctionBet> AuctionBets { get; set; }

src/CoinyProject.IdentityServer/CoinyProject.IdentityServer.csproj

@@ -1,9 +1,38 @@
-<Project Sdk="Microsoft.NET.Sdk">
+<Project Sdk="Microsoft.NET.Sdk.Web">
 
   <PropertyGroup>
     <TargetFramework>net8.0</TargetFramework>
-    <ImplicitUsings>enable</ImplicitUsings>
     <Nullable>enable</Nullable>
+    <ImplicitUsings>enable</ImplicitUsings>
   </PropertyGroup>
 
+  <ItemGroup>
+    <PackageReference Include="IdentityServer4" Version="4.1.2" />
+    <PackageReference Include="IdentityServer4.AspNetIdentity" Version="4.1.2" />
+    <PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="8.0.4">
+      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
+      <PrivateAssets>all</PrivateAssets>
+    </PackageReference>
+  </ItemGroup>
+
+  <ItemGroup>
+    <ProjectReference Include="..\CoinyProject.Infrastructure.Data\CoinyProject.Infrastructure.Data.csproj" />
+    <ProjectReference Include="..\CoinyProject.Shared\CoinyProject.Shared.csproj" />
+  </ItemGroup>
+
+  <ItemGroup>
+    <Compile Update="Properties\Resources.Designer.cs">
+      <DesignTime>True</DesignTime>
+      <AutoGen>True</AutoGen>
+      <DependentUpon>Resources.resx</DependentUpon>
+    </Compile>
+  </ItemGroup>
+
+  <ItemGroup>
+    <EmbeddedResource Update="Properties\Resources.resx">
+      <Generator>ResXFileCodeGenerator</Generator>
+      <LastGenOutput>Resources.Designer.cs</LastGenOutput>
+    </EmbeddedResource>
+  </ItemGroup>
+
 </Project>

src/CoinyProject.IdentityServer/Configuration.cs

@@ -0,0 +1,56 @@
+using IdentityServer4;
+using IdentityServer4.Models;
+
+namespace CoinyProject.IdentityServer
+{
+    public static class Configuration
+    {
+        public static IEnumerable<ApiResource> GetApis() =>
+            new List<ApiResource>
+            {};
+        public static IEnumerable<IdentityResource> GetIdentityResources() =>
+            new List<IdentityResource>
+            {
+                new IdentityResources.OpenId(),
+                new IdentityResources.Profile(),
+
+            };
+
+        public static IEnumerable<Client> GetClients() =>
+            new List<Client>
+            {
+                new Client
+                {
+                    ClientId = "client_id_mvc",
+                    ClientSecrets = { new Secret("client_secret_mvc".Sha256()) },
+                    //7184
+                    //7115 mvc
+                    AllowedGrantTypes = GrantTypes.Code,
+                    RedirectUris = { "https://localhost:7115/signin-oidc" },
+                    PostLogoutRedirectUris = { "https://localhost:7115/Home/Index" },
+                    AllowedScopes = { 
+                        IdentityServerConstants.StandardScopes.OpenId,
+                        IdentityServerConstants.StandardScopes.Profile
+                    },
+                    /*AlwaysIncludeUserClaimsInIdToken = true,*/
+                    RequireConsent = false
+                },
+                new Client
+                {
+                    ClientId = "client_id_ui",
+                    ClientSecrets = { new Secret("client_secret_ui".Sha256()) },
+                    //7184
+                    //7115 mvc
+                    AllowedGrantTypes = GrantTypes.Code,
+                    RedirectUris = { "https://localhost:7184/signin-oidc" },
+                    PostLogoutRedirectUris = { "https://localhost:7184/Home/Index" },
+                    AllowedScopes = {
+                        IdentityServerConstants.StandardScopes.OpenId,
+                        IdentityServerConstants.StandardScopes.Profile
+                    },
+                    AlwaysIncludeUserClaimsInIdToken = true,
+                    RequireConsent = false
+                }
+            };
+    }
+}

src/CoinyProject.IdentityServer/Controllers/AuthController.cs

@@ -0,0 +1,73 @@
+using CoinyProject.Core.Domain.Entities;
+using CoinyProject.IdentityServer.Models;
+using IdentityServer4.Services;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.AspNetCore.Mvc;
+
+namespace CoinyProject.IdentityServer.Controllers
+{
+    public class AuthController : Controller
+    {
+        private readonly SignInManager<User> _signInManager;
+        private readonly UserManager<User> _userManager;
+        IIdentityServerInteractionService _interactionService;
+        public AuthController(SignInManager<User> signInManager, UserManager<User> userManager,
+            IIdentityServerInteractionService interactionService)
+        {
+            _signInManager = signInManager;
+            _userManager = userManager;
+            _interactionService = interactionService;
+        }
+        public async Task<IActionResult> Logout(string logoutId)
+        {
+            await _signInManager.SignOutAsync();
+
+            var logoutRequest = await _interactionService.GetLogoutContextAsync(logoutId);
+
+            if (string.IsNullOrEmpty(logoutRequest.PostLogoutRedirectUri))
+            {
+                return RedirectToAction("Home", "Index");
+            }
+            return Redirect(logoutRequest.PostLogoutRedirectUri);
+
+        }
+
+        public IActionResult Login(string returnUrl)
+        {
+            return View(new LoginViewModel { ReturnUrl = returnUrl});
+        }
+        [HttpPost]
+        public async Task<IActionResult> Login(LoginViewModel model)
+        {
+            var result = await _signInManager.PasswordSignInAsync(model.Username, model.Password, false, false);
+            
+            if (result.Succeeded)
+            {
+                return Redirect(model.ReturnUrl);
+            }
+            return BadRequest();
+        }
+
+        public IActionResult Register(string returnUrl)
+        {
+            return View(new RegisterViewModel { ReturnUrl = returnUrl });
+        }
+        [HttpPost]
+        public async Task<IActionResult> Register(RegisterViewModel model)
+        {
+            if(!ModelState.IsValid)
+            {
+                return View(model);
+            }
+
+            var user = new User(model.Email, model.Firstname, model.Lastname);
+            var result = await _userManager.CreateAsync(user, model.Password);
+            if (result.Succeeded)
+            {
+                await _signInManager.SignInAsync(user, false);
+                return Redirect(model.ReturnUrl);
+            }
+            return BadRequest();
+        }
+    }
+}

src/CoinyProject.IdentityServer/Models/LoginViewModel.cs

@@ -0,0 +1,9 @@
+namespace CoinyProject.IdentityServer.Models
+{
+    public class LoginViewModel
+    {
+        public string Username { get; set; }
+        public string Password { get; set; }
+        public string ReturnUrl { get; set; }
+    }
+}

src/CoinyProject.IdentityServer/Models/RegisterViewModel.cs

@@ -0,0 +1,23 @@
+using System.ComponentModel.DataAnnotations;
+
+namespace CoinyProject.IdentityServer.Models
+{
+    public class RegisterViewModel
+    {
+        [Required]
+        public string Firstname { get; set; }
+        [Required]
+        public string Lastname { get; set; }
+        [Required]
+        [DataType(DataType.EmailAddress)]
+        public string Email { get; set; }
+        [Required]
+        [DataType(DataType.Password)]
+        public string Password { get; set; }
+        [Required]
+        [DataType(DataType.Password)]
+        [Compare("Password", ErrorMessage = "Passwords do not match")]
+        public string ConfirmPassword { get; set; }
+        public string ReturnUrl { get; set; }
+    }
+}

src/CoinyProject.IdentityServer/Program.cs

@@ -0,0 +1,75 @@
+using CoinyProject.Core.Domain.Entities;
+using CoinyProject.IdentityServer;
+using CoinyProject.Infrastructure.Data;
+using CoinyProject.Shared.Extensions;
+using Microsoft.AspNetCore.Authentication.Cookies;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.EntityFrameworkCore;
+using Microsoft.Extensions.Configuration;
+
+var builder = WebApplication.CreateBuilder(args);
+
+builder.Services.AddControllersWithViews();
+
+builder.Services.AddDBConnection(builder.Configuration);
+builder.Services.ConfigurateIdentityOptions();
+builder.Services.AddIdentityUser();
+
+
+builder.Services.ConfigureApplicationCookie(options =>
+{
+    options.Cookie.Name = "CoinyProject.IdentityServer.Cookie";
+    options.LoginPath = "/Auth/Login";
+    options.LogoutPath = "/Auth/Logout";
+}); 
+
+
+var migrationsAssembly = typeof(Program).Assembly.GetName().Name;
+
+builder.Services.AddIdentityServer()
+    .AddAspNetIdentity<User>()
+    /*.AddConfigurationStore(options =>
+    {
+        options.ConfigureDbContext = b =>
+            b.UseSqlServer(builder.Configuration.GetConnectionString("DefaultConnection"),
+                sql => sql.MigrationsAssembly(migrationsAssembly));
+    })
+    .AddOperationalStore(options =>
+    {
+        options.ConfigureDbContext = b =>
+            b.UseSqlServer(builder.Configuration.GetConnectionString("DefaultConnection"),
+                sql => sql.MigrationsAssembly(migrationsAssembly));
+    })*/
+    .AddInMemoryApiResources(Configuration.GetApis())
+    .AddInMemoryClients(Configuration.GetClients())
+    .AddInMemoryIdentityResources(Configuration.GetIdentityResources())
+    .AddDeveloperSigningCredential();
+
+
+var app = builder.Build();
+
+// Configure the HTTP request pipeline.
+if (!app.Environment.IsDevelopment())
+{
+    app.UseExceptionHandler("/Home/Error");
+    // The default HSTS value is 30 days. You may want to change this for production scenarios, see https://aka.ms/aspnetcore-hsts.
+    app.UseHsts();
+}
+
+using var scope = app.Services.CreateScope();
+{
+    var userManager = scope.ServiceProvider
+        .GetRequiredService<UserManager<User>>();
+}
+
+app.UseRouting();
+app.UseIdentityServer();
+app.UseAuthentication();
+
+
+app.UseEndpoints(endpoints =>
+{
+    endpoints.MapDefaultControllerRoute();
+});
+
+app.Run();