fisshy/Startup.Auth

## Startup.Auth
public partial class Startup
    {

        public void ConfigureOAuth(IAppBuilder app)
        {
            OAuthAuthorizationServerOptions OAuthServerOptions = new OAuthAuthorizationServerOptions()
            {
#if DEBUG
                AllowInsecureHttp = true,
#else
                AllowInsecureHttp = false,
#endif
                TokenEndpointPath = new PathString("/api/auth"),
                AccessTokenExpireTimeSpan = TimeSpan.FromDays(1),
                Provider = new SimpleAuthorizationServerProvider(),

            };

            // Token Generation
            app.UseOAuthAuthorizationServer(OAuthServerOptions);
            app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions());
        }
    }


    public class SimpleAuthorizationServerProvider : OAuthAuthorizationServerProvider
    {
        public override async Task ValidateClientAuthentication(OAuthValidateClientAuthenticationContext context)
        {
            //Logger.ReportInformation("Auth", string.Join(" | ", context.Request.Headers.Select(a => string.Format("{0} -> {1}", a.Key, a.Value))));
            context.Validated();
        }

        public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
        {

            context.OwinContext.Response.Headers.Add("Access-Control-Allow-Origin", new[] { "*" });

            var _repo = new AuthRepository();

            var user = await _repo.FindUser(context.UserName, context.Password);

            if (user == null)
            {
                context.SetError("invalid_grant", "The user name or password is incorrect.");
                return;
            }

            var identity = new ClaimsIdentity(context.Options.AuthenticationType);

            identity.AddClaim(new Claim("sub", context.UserName));
            identity.AddClaim(new Claim("user", user.UserId.ToString()));

            context.Validated(identity);

        }
    }
	public partial class Startup
	{

	public void ConfigureOAuth(IAppBuilder app)
	{
	OAuthAuthorizationServerOptions OAuthServerOptions = new OAuthAuthorizationServerOptions()
	{
	#if DEBUG
	AllowInsecureHttp = true,
	#else
	AllowInsecureHttp = false,
	#endif
	TokenEndpointPath = new PathString("/api/auth"),
	AccessTokenExpireTimeSpan = TimeSpan.FromDays(1),
	Provider = new SimpleAuthorizationServerProvider(),

	};

	// Token Generation
	app.UseOAuthAuthorizationServer(OAuthServerOptions);
	app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions());
	}
	}


	public class SimpleAuthorizationServerProvider : OAuthAuthorizationServerProvider
	{
	public override async Task ValidateClientAuthentication(OAuthValidateClientAuthenticationContext context)
	{
	//Logger.ReportInformation("Auth", string.Join(" \| ", context.Request.Headers.Select(a => string.Format("{0} -> {1}", a.Key, a.Value))));
	context.Validated();
	}

	public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
	{

	context.OwinContext.Response.Headers.Add("Access-Control-Allow-Origin", new[] { "*" });

	var _repo = new AuthRepository();

	var user = await _repo.FindUser(context.UserName, context.Password);

	if (user == null)
	{
	context.SetError("invalid_grant", "The user name or password is incorrect.");
	return;
	}

	var identity = new ClaimsIdentity(context.Options.AuthenticationType);

	identity.AddClaim(new Claim("sub", context.UserName));
	identity.AddClaim(new Claim("user", user.UserId.ToString()));

	context.Validated(identity);

	}
	}