add AuthorizationSample project

Author: RainingNight

.vscode/launch.json

@@ -7,7 +7,7 @@
             "name": ".NET Core Launch (CookieSample)",
             "type": "coreclr",
             "request": "launch",
-            "preLaunchTask": "build1",
+            "preLaunchTask": "BuildCookieSample",
             "program": "${workspaceRoot}/src/CookieSample/bin/Debug/netcoreapp2.0/CookieSample.dll",
             "args": [],
             "cwd": "${workspaceRoot}/src/CookieSample",
@@ -38,7 +38,7 @@
             "name": ".NET Core Launch (OAuth)",
             "type": "coreclr",
             "request": "launch",
-            "preLaunchTask": "build2",
+            "preLaunchTask": "BuildOAuthSample",
             "program": "${workspaceRoot}/src/OAuthSample/bin/Debug/netcoreapp2.0/OAuthSample.dll",
             "args": [],
             "cwd": "${workspaceRoot}",
@@ -68,7 +68,7 @@
             "name": ".NET Core Launch (OIDCSample)",
             "type": "coreclr",
             "request": "launch",
-            "preLaunchTask": "build3",
+            "preLaunchTask": "BuildOIDCSample",
             "program": "${workspaceRoot}/src/OIDCSample/bin/Debug/netcoreapp2.0/OIDCSample.dll",
             "args": [],
             "cwd": "${workspaceRoot}",
@@ -93,6 +93,36 @@
             "sourceFileMap": {
                 "/Views": "${workspaceRoot}/Views"
             }
+        },
+        {
+            "name": ".NET Core Launch (AuthorizationSample)",
+            "type": "coreclr",
+            "request": "launch",
+            "preLaunchTask": "BuildAuthorizationSample",
+            "program": "${workspaceRoot}/src/AuthorizationSample/bin/Debug/netcoreapp2.0/AuthorizationSample.dll",
+            "args": [],
+            "cwd": "${workspaceRoot}",
+            "stopAtEntry": false,
+            "launchBrowser": {
+                "enabled": true,
+                "args": "${auto-detect-url}",
+                "windows": {
+                    "command": "cmd.exe",
+                    "args": "/C start ${auto-detect-url}"
+                },
+                "osx": {
+                    "command": "open"
+                },
+                "linux": {
+                    "command": "xdg-open"
+                }
+            },
+            "env": {
+                "ASPNETCORE_ENVIRONMENT": "Development"
+            },
+            "sourceFileMap": {
+                "/Views": "${workspaceRoot}/Views"
+            }
         }
     ]
 }

.vscode/tasks.json

@@ -1,8 +1,7 @@
 {
     "version": "2.0.0",
-    "tasks": [
-        {
-            "taskName": "build1",
+    "tasks": [{
+            "label": "BuildCookieSample",
             "group": {
                 "kind": "build",
                 "isDefault": true
@@ -18,7 +17,7 @@
             ]
         },
         {
-            "taskName": "build2",
+            "label": "BuildOAuthSample",
             "group": {
                 "kind": "build",
                 "isDefault": true
@@ -34,7 +33,7 @@
             ]
         },
         {
-            "taskName": "build3",
+            "label": "BuildOIDCSample",
             "group": {
                 "kind": "build",
                 "isDefault": true
@@ -48,6 +47,22 @@
             "problemMatcher": [
                 "$msCompile"
             ]
+        },
+        {
+            "label": "BuildAuthorizationSample",
+            "group": {
+                "kind": "build",
+                "isDefault": true
+            },
+            "type": "shell",
+            "command": "dotnet",
+            "args": [
+                "build",
+                "${workspaceRoot}/src/AuthorizationSample/AuthorizationSample.csproj"
+            ],
+            "problemMatcher": [
+                "$msCompile"
+            ]
         }
     ]
 }

AspNetCoreSample.sln

@@ -1,7 +1,7 @@
 
 Microsoft Visual Studio Solution File, Format Version 12.00
 # Visual Studio 15
-VisualStudioVersion = 15.0.27009.1
+VisualStudioVersion = 15.0.27102.0
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "src", "src", "{95394AEA-085A-4A55-B4CA-3C1C07D9B787}"
 EndProject
@@ -21,6 +21,18 @@ Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Security", "Security", "{22
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Microsoft.AspNetCore.Authentication.JwtBearer", "Security\Microsoft.AspNetCore.Authentication.JwtBearer\Microsoft.AspNetCore.Authentication.JwtBearer.csproj", "{D6129CC4-2333-4467-9F3E-6DD8E65C332B}"
 EndProject
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "test", "test", "{62A46794-5B2A-4A26-AFEC-DC1808ED397D}"
+EndProject
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Authentication", "Authentication", "{DAB21C84-A7A8-48D7-8EFE-DA1CA716B128}"
+EndProject
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Authorization", "Authorization", "{BA5F289F-120E-4E94-8E9A-35821E68E5F0}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "AuthorizationSample", "src\AuthorizationSample\AuthorizationSample.csproj", "{8C306007-DF69-4943-964C-8110DE004FFA}"
+EndProject
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Microsoft.AspNetCore.Authorization", "Security\Microsoft.AspNetCore.Authorization\Microsoft.AspNetCore.Authorization.csproj", "{8C824EF7-2C93-41FE-9E1F-D4C46117B5A6}"
+EndProject
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Microsoft.AspNetCore.Authentication", "Security\Microsoft.AspNetCore.Authentication\Microsoft.AspNetCore.Authentication.csproj", "{64AAF232-D5A5-4424-86AD-C1E4BFE92783}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -55,18 +67,35 @@ Global
 		{D6129CC4-2333-4467-9F3E-6DD8E65C332B}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{D6129CC4-2333-4467-9F3E-6DD8E65C332B}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{D6129CC4-2333-4467-9F3E-6DD8E65C332B}.Release|Any CPU.Build.0 = Release|Any CPU
+		{8C306007-DF69-4943-964C-8110DE004FFA}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{8C306007-DF69-4943-964C-8110DE004FFA}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{8C306007-DF69-4943-964C-8110DE004FFA}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{8C306007-DF69-4943-964C-8110DE004FFA}.Release|Any CPU.Build.0 = Release|Any CPU
+		{8C824EF7-2C93-41FE-9E1F-D4C46117B5A6}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{8C824EF7-2C93-41FE-9E1F-D4C46117B5A6}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{8C824EF7-2C93-41FE-9E1F-D4C46117B5A6}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{8C824EF7-2C93-41FE-9E1F-D4C46117B5A6}.Release|Any CPU.Build.0 = Release|Any CPU
+		{64AAF232-D5A5-4424-86AD-C1E4BFE92783}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{64AAF232-D5A5-4424-86AD-C1E4BFE92783}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{64AAF232-D5A5-4424-86AD-C1E4BFE92783}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{64AAF232-D5A5-4424-86AD-C1E4BFE92783}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
 	EndGlobalSection
 	GlobalSection(NestedProjects) = preSolution
-		{3AC19A59-DDBD-4B2B-B97D-8A287CCC3176} = {95394AEA-085A-4A55-B4CA-3C1C07D9B787}
-		{B741B4EA-6FAE-427F-8650-376564FBEF96} = {95394AEA-085A-4A55-B4CA-3C1C07D9B787}
-		{E499FEE6-C9AD-4C2B-AEC1-502A509D4D5E} = {95394AEA-085A-4A55-B4CA-3C1C07D9B787}
-		{691319AB-BAA4-4454-9FF7-14436F8EEB3C} = {95394AEA-085A-4A55-B4CA-3C1C07D9B787}
-		{B2DF9019-9658-4EC3-9D67-5FC15F3B29C6} = {95394AEA-085A-4A55-B4CA-3C1C07D9B787}
-		{65F732C5-5FFA-4032-8114-373FF67D9725} = {95394AEA-085A-4A55-B4CA-3C1C07D9B787}
+		{3AC19A59-DDBD-4B2B-B97D-8A287CCC3176} = {DAB21C84-A7A8-48D7-8EFE-DA1CA716B128}
+		{B741B4EA-6FAE-427F-8650-376564FBEF96} = {DAB21C84-A7A8-48D7-8EFE-DA1CA716B128}
+		{E499FEE6-C9AD-4C2B-AEC1-502A509D4D5E} = {DAB21C84-A7A8-48D7-8EFE-DA1CA716B128}
+		{691319AB-BAA4-4454-9FF7-14436F8EEB3C} = {DAB21C84-A7A8-48D7-8EFE-DA1CA716B128}
+		{B2DF9019-9658-4EC3-9D67-5FC15F3B29C6} = {DAB21C84-A7A8-48D7-8EFE-DA1CA716B128}
+		{65F732C5-5FFA-4032-8114-373FF67D9725} = {62A46794-5B2A-4A26-AFEC-DC1808ED397D}
 		{D6129CC4-2333-4467-9F3E-6DD8E65C332B} = {229EEA98-E688-47A7-894D-5D17A0B3BC56}
+		{DAB21C84-A7A8-48D7-8EFE-DA1CA716B128} = {95394AEA-085A-4A55-B4CA-3C1C07D9B787}
+		{BA5F289F-120E-4E94-8E9A-35821E68E5F0} = {95394AEA-085A-4A55-B4CA-3C1C07D9B787}
+		{8C306007-DF69-4943-964C-8110DE004FFA} = {BA5F289F-120E-4E94-8E9A-35821E68E5F0}
+		{8C824EF7-2C93-41FE-9E1F-D4C46117B5A6} = {229EEA98-E688-47A7-894D-5D17A0B3BC56}
+		{64AAF232-D5A5-4424-86AD-C1E4BFE92783} = {229EEA98-E688-47A7-894D-5D17A0B3BC56}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {8D0A0329-7F31-453F-807D-FED2262A86C4}

Security/Microsoft.AspNetCore.Authentication.JwtBearer/Microsoft.AspNetCore.Authentication.JwtBearer.csproj

@@ -6,12 +6,8 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.AspNetCore.Authentication">
-      <Version>2.0.0</Version>
-    </PackageReference>
-    <PackageReference Include="Microsoft.IdentityModel.Protocols.OpenIdConnect">
-      <Version>2.1.4</Version>
-    </PackageReference>
+    <PackageReference Include="Microsoft.AspNetCore.Authentication" Version="2.0.0" />
+    <PackageReference Include="Microsoft.IdentityModel.Protocols.OpenIdConnect" Version="2.1.4" />
   </ItemGroup>
 
 </Project>

Security/Microsoft.AspNetCore.Authentication/AuthenticationBuilder.cs

@@ -25,18 +25,10 @@ public AuthenticationBuilder(IServiceCollection services)
         /// </summary>
         public virtual IServiceCollection Services { get; }
 
-        /// <summary>
-        /// Adds a <see cref="AuthenticationScheme"/> which can be used by <see cref="IAuthenticationService"/>.
-        /// </summary>
-        /// <typeparam name="TOptions">The <see cref="AuthenticationSchemeOptions"/> type to configure the handler."/>.</typeparam>
-        /// <typeparam name="THandler">The <see cref="AuthenticationHandler{TOptions}"/> used to handle this scheme.</typeparam>
-        /// <param name="authenticationScheme">The name of this scheme.</param>
-        /// <param name="displayName">The display name of this scheme.</param>
-        /// <param name="configureOptions">Used to configure the scheme options.</param>
-        /// <returns>The builder.</returns>
-        public virtual AuthenticationBuilder AddScheme<TOptions, THandler>(string authenticationScheme, string displayName, Action<TOptions> configureOptions)
-            where TOptions : AuthenticationSchemeOptions, new()
-            where THandler : AuthenticationHandler<TOptions>
+
+        private AuthenticationBuilder AddSchemeHelper<TOptions, THandler>(string authenticationScheme, string displayName, Action<TOptions> configureOptions)
+            where TOptions : class, new()
+            where THandler : class, IAuthenticationHandler
         {
             Services.Configure<AuthenticationOptions>(o =>
             {
@@ -53,6 +45,20 @@ public virtual AuthenticationBuilder AddScheme<TOptions, THandler>(string authen
             return this;
         }
 
+        /// <summary>
+        /// Adds a <see cref="AuthenticationScheme"/> which can be used by <see cref="IAuthenticationService"/>.
+        /// </summary>
+        /// <typeparam name="TOptions">The <see cref="AuthenticationSchemeOptions"/> type to configure the handler."/>.</typeparam>
+        /// <typeparam name="THandler">The <see cref="AuthenticationHandler{TOptions}"/> used to handle this scheme.</typeparam>
+        /// <param name="authenticationScheme">The name of this scheme.</param>
+        /// <param name="displayName">The display name of this scheme.</param>
+        /// <param name="configureOptions">Used to configure the scheme options.</param>
+        /// <returns>The builder.</returns>
+        public virtual AuthenticationBuilder AddScheme<TOptions, THandler>(string authenticationScheme, string displayName, Action<TOptions> configureOptions)
+            where TOptions : AuthenticationSchemeOptions, new()
+            where THandler : AuthenticationHandler<TOptions>
+            => AddSchemeHelper<TOptions, THandler>(authenticationScheme, displayName, configureOptions);
+
         /// <summary>
         /// Adds a <see cref="AuthenticationScheme"/> which can be used by <see cref="IAuthenticationService"/>.
         /// </summary>
@@ -84,6 +90,17 @@ public virtual AuthenticationBuilder AddRemoteScheme<TOptions, THandler>(string
             return AddScheme<TOptions, THandler>(authenticationScheme, displayName, configureOptions: configureOptions);
         }
 
+        /// <summary>
+        /// Adds a <see cref="VirtualAuthenticationHandler"/> based authentication handler which can be used to 
+        /// redirect to other authentication schemes.
+        /// </summary>
+        /// <param name="authenticationScheme">The name of this scheme.</param>
+        /// <param name="displayName">The display name of this scheme.</param>
+        /// <param name="configureOptions">Used to configure the scheme options.</param>
+        /// <returns>The builder.</returns>
+        public virtual AuthenticationBuilder AddVirtualScheme(string authenticationScheme, string displayName, Action<VirtualSchemeOptions> configureOptions)
+            => AddSchemeHelper<VirtualSchemeOptions, VirtualAuthenticationHandler>(authenticationScheme, displayName, configureOptions);
+
         // Used to ensure that there's always a default sign in scheme that's not itself
         private class EnsureSignInScheme<TOptions> : IPostConfigureOptions<TOptions> where TOptions : RemoteAuthenticationOptions
         {

Security/Microsoft.AspNetCore.Authentication/AuthenticationHandler.cs

@@ -22,12 +22,12 @@ namespace Microsoft.AspNetCore.Authentication
 
         protected HttpRequest Request
         {
-            get { return Context.Request; }
+            get => Context.Request;
         }
 
         protected HttpResponse Response
         {
-            get { return Context.Response; }
+            get => Context.Response;
         }
 
         protected PathString OriginalPath => Context.Features.Get<IAuthenticationFeature>()?.OriginalPath ?? Request.Path;
@@ -52,10 +52,7 @@ protected HttpResponse Response
 
         protected string CurrentUri
         {
-            get
-            {
-                return Request.Scheme + "://" + Request.Host + Request.PathBase + Request.Path + Request.QueryString;
-            }
+            get => Request.Scheme + "://" + Request.Host + Request.PathBase + Request.Path + Request.QueryString;
         }
 
         protected AuthenticationHandler(IOptionsMonitor<TOptions> options, ILoggerFactory logger, UrlEncoder encoder, ISystemClock clock)
@@ -116,15 +113,10 @@ protected virtual async Task InitializeEventsAsync()
         /// Called after options/events have been initialized for the handler to finish initializing itself.
         /// </summary>
         /// <returns>A task</returns>
-        protected virtual Task InitializeHandlerAsync()
-        {
-            return Task.CompletedTask;
-        }
+        protected virtual Task InitializeHandlerAsync() => Task.CompletedTask;
 
         protected string BuildRedirectUri(string targetPath)
-        {
-            return Request.Scheme + "://" + Request.Host + OriginalPathBase + targetPath;
-        }
+            => Request.Scheme + "://" + Request.Host + OriginalPathBase + targetPath;
 
         public async Task<AuthenticateResult> AuthenticateAsync()
         {

Security/Microsoft.AspNetCore.Authentication/LoggingExtensions.cs

@@ -39,7 +39,7 @@ static LoggingExtensions()
                 formatString: "{AuthenticationScheme} was not authenticated. Failure message: {FailureMessage}");
             _authSchemeAuthenticated = LoggerMessage.Define<string>(
                 eventId: 8,
-                logLevel: LogLevel.Information,
+                logLevel: LogLevel.Debug,
                 formatString: "AuthenticationScheme: {AuthenticationScheme} was successfully authenticated.");
             _authSchemeNotAuthenticated = LoggerMessage.Define<string>(
                 eventId: 9,

Security/Microsoft.AspNetCore.Authentication/Microsoft.AspNetCore.Authentication.csproj

@@ -1,17 +1,19 @@
-<Project Sdk="Microsoft.NET.Sdk">
+<Project Sdk="Microsoft.NET.Sdk">
 
   <PropertyGroup>
-    <TargetFramework>netcoreapp2.0</TargetFramework>
+    <TargetFramework>netstandard2.0</TargetFramework>
+    <VersionPrefix>2.0.2</VersionPrefix>
   </PropertyGroup>
-  
+
   <ItemGroup>
-    <PackageReference Include="Microsoft.AspNetCore.Authentication.Core" Version="2.0.0" />
-    <PackageReference Include="Microsoft.AspNetCore.DataProtection" Version="2.0.0" />
-    <PackageReference Include="Microsoft.AspNetCore.Http" Version="2.0.0" />
-    <PackageReference Include="Microsoft.AspNetCore.Http.Extensions" Version="2.0.0" />
-    <PackageReference Include="Microsoft.Extensions.Logging.Abstractions" Version="2.0.0" />
-    <PackageReference Include="Microsoft.Extensions.Options" Version="2.0.0" />
-    <PackageReference Include="Microsoft.Extensions.WebEncoders" Version="2.0.0" />
+    <PackageReference Include="Microsoft.AspNetCore.Authentication.Core" Version="2.1.0-preview1-27569" />
+    <PackageReference Include="Microsoft.AspNetCore.DataProtection" Version="2.1.0-preview1-27569" />
+    <PackageReference Include="Microsoft.AspNetCore.Http" Version="2.1.0-preview1-27569" />
+    <PackageReference Include="Microsoft.AspNetCore.Http.Extensions" Version="2.1.0-preview1-27569" />
+    <PackageReference Include="Microsoft.Extensions.Logging.Abstractions" Version="2.1.0-preview1-27569" />
+    <PackageReference Include="Microsoft.Extensions.Options" Version="2.1.0-preview1-27569" />
+    <PackageReference Include="Microsoft.Extensions.SecurityHelper.Sources" Version="2.1.0-preview1-27569" />
+    <PackageReference Include="Microsoft.Extensions.WebEncoders" Version="2.1.0-preview1-27569" />
   </ItemGroup>
-  
+
 </Project>