cphipps/lubelog
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #901 from hargata/Hargata/oidc.check.claims

Browse Source 
Add check for email claims.
This commit is contained in:
Hargata Softworks
2025-03-29 07:40:23 -06:00
committed by GitHub
parent 76031d27d7 75c65b4681
commit 876f99fd26
1 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
Controllers/LoginController.cs
View File

@@ -136,7 +136,15 @@ namespace CarCareTracker.Controllers
//validate JWT token //validate JWT token
var tokenParser = new JwtSecurityTokenHandler(); var tokenParser = new JwtSecurityTokenHandler();
var parsedToken = tokenParser.ReadJwtToken(userJwt); var parsedToken = tokenParser.ReadJwtToken(userJwt);
var userEmailAddress = parsedToken.Claims.First(x => x.Type == "email").Value; var userEmailAddress = string.Empty;
if (parsedToken.Claims.Any(x => x.Type == "email"))
{
userEmailAddress = parsedToken.Claims.First(x => x.Type == "email").Value;
} else
{
var returnedClaims = parsedToken.Claims.Select(x => x.Type);
_logger.LogError($"OpenID Provider did not provide an email claim, claims returned: {string.Join(",", returnedClaims)}");
}
if (!string.IsNullOrWhiteSpace(userEmailAddress)) if (!string.IsNullOrWhiteSpace(userEmailAddress))
{ {
var userData = _loginLogic.ValidateOpenIDUser(new LoginModel() { EmailAddress = userEmailAddress }); var userData = _loginLogic.ValidateOpenIDUser(new LoginModel() { EmailAddress = userEmailAddress });