himadric/SitecoreIdentityClient.Startup.cs

## SitecoreIdentityClient.Startup.cs
using System;
using System.IdentityModel.Tokens.Jwt;
using System.Net.Http;
using Clients;
using IdentityModel;
using IdentityModel.Client;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.IdentityModel.Tokens;

namespace SitecoreMvcClient
{
    public class Startup
    {
        public Startup(IConfiguration configuration)
        {
            JwtSecurityTokenHandler.DefaultInboundClaimTypeMap.Clear();
        }

        // This method gets called by the runtime. Use this method to add services to the container.
        public void ConfigureServices(IServiceCollection services)
        {
            services.AddMvc();
            services.AddHttpClient();

            services.AddSingleton<IDiscoveryCache>(r =>
            {
                var factory = r.GetRequiredService<IHttpClientFactory>();
                return new DiscoveryCache(Constants.SitecoreAuthority, () => factory.CreateClient());
            });

            services.AddAuthentication(options =>
                {
                    options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
                    options.DefaultChallengeScheme = "oidc";
                })
                .AddCookie(options =>
                {
                    options.ExpireTimeSpan = TimeSpan.FromMinutes(60);
                    options.Cookie.Name = "sitecoremvcclient";
                })
                .AddOpenIdConnect("oidc", options =>
                {
                    options.Authority = Constants.SitecoreAuthority;
                    options.RequireHttpsMetadata = false;

                    options.ClientSecret = "abracadabra";
                    options.ClientId = "sitecoremvc";

                    options.ResponseType = "code id_token";

                    options.Scope.Clear();
                    options.Scope.Add("openid");
                    options.Scope.Add("sitecore.profile");
                    options.Scope.Add("sitecore.profile.api");
                    options.Scope.Add("offline_access");

                    options.ClaimActions.MapAllExcept("iss", "nbf", "exp", "aud", "nonce", "iat", "c_hash");

                    options.GetClaimsFromUserInfoEndpoint = true;
                    options.SaveTokens = true;

                    options.TokenValidationParameters = new TokenValidationParameters
                    {
                        NameClaimType = JwtClaimTypes.Name,
                        RoleClaimType = JwtClaimTypes.Role,
                    };
                });
        }

        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
        public void Configure(IApplicationBuilder app, IHostingEnvironment env)
        {
            app.UseDeveloperExceptionPage();
            app.UseAuthentication();
            app.UseStaticFiles();
            app.UseMvcWithDefaultRoute();
        }
    }
}
	using System;
	using System.IdentityModel.Tokens.Jwt;
	using System.Net.Http;
	using Clients;
	using IdentityModel;
	using IdentityModel.Client;
	using Microsoft.AspNetCore.Authentication;
	using Microsoft.AspNetCore.Authentication.Cookies;
	using Microsoft.AspNetCore.Builder;
	using Microsoft.AspNetCore.Hosting;
	using Microsoft.Extensions.Configuration;
	using Microsoft.Extensions.DependencyInjection;
	using Microsoft.IdentityModel.Tokens;

	namespace SitecoreMvcClient
	{
	public class Startup
	{
	public Startup(IConfiguration configuration)
	{
	JwtSecurityTokenHandler.DefaultInboundClaimTypeMap.Clear();
	}

	// This method gets called by the runtime. Use this method to add services to the container.
	public void ConfigureServices(IServiceCollection services)
	{
	services.AddMvc();
	services.AddHttpClient();

	services.AddSingleton<IDiscoveryCache>(r =>
	{
	var factory = r.GetRequiredService<IHttpClientFactory>();
	return new DiscoveryCache(Constants.SitecoreAuthority, () => factory.CreateClient());
	});

	services.AddAuthentication(options =>
	{
	options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
	options.DefaultChallengeScheme = "oidc";
	})
	.AddCookie(options =>
	{
	options.ExpireTimeSpan = TimeSpan.FromMinutes(60);
	options.Cookie.Name = "sitecoremvcclient";
	})
	.AddOpenIdConnect("oidc", options =>
	{
	options.Authority = Constants.SitecoreAuthority;
	options.RequireHttpsMetadata = false;

	options.ClientSecret = "abracadabra";
	options.ClientId = "sitecoremvc";

	options.ResponseType = "code id_token";

	options.Scope.Clear();
	options.Scope.Add("openid");
	options.Scope.Add("sitecore.profile");
	options.Scope.Add("sitecore.profile.api");
	options.Scope.Add("offline_access");

	options.ClaimActions.MapAllExcept("iss", "nbf", "exp", "aud", "nonce", "iat", "c_hash");

	options.GetClaimsFromUserInfoEndpoint = true;
	options.SaveTokens = true;

	options.TokenValidationParameters = new TokenValidationParameters
	{
	NameClaimType = JwtClaimTypes.Name,
	RoleClaimType = JwtClaimTypes.Role,
	};
	});
	}

	// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
	public void Configure(IApplicationBuilder app, IHostingEnvironment env)
	{
	app.UseDeveloperExceptionPage();
	app.UseAuthentication();
	app.UseStaticFiles();
	app.UseMvcWithDefaultRoute();
	}
	}
	}