Skip to content
This repository was archived by the owner on Jan 5, 2026. It is now read-only.

Cherry-Pick Skill Validation to 4.8 #4581

Merged
EricDahlvang merged 1 commit into from
Sep 3, 2020
Merged

Cherry-Pick Skill Validation to 4.8 #4581

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 5 additions & 1 deletion libraries/Microsoft.Bot.Connector/Authentication/JwtTokenValidation.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -175,7 +175,7 @@ public static string GetAppIdFromClaims(IEnumerable<Claim> claims)
/// <param name="authConfig">An <see cref="AuthenticationConfiguration"/> instance.</param>
/// <param name="claims">The list of claims to validate.</param>
/// <returns>A <see cref="Task"/> representing the asynchronous operation.</returns>
/// <exception cref="UnauthorizedAccessException">If the validation returns false.</exception>
/// <exception cref="UnauthorizedAccessException">If the validation returns false, or ClaimsValidator is null and this is a skill claim.</exception>
internal static async Task ValidateClaimsAsync(AuthenticationConfiguration authConfig, IEnumerable<Claim> claims)
{
if (authConfig.ClaimsValidator != null)
Expand All @@ -184,6 +184,10 @@ internal static async Task ValidateClaimsAsync(AuthenticationConfiguration authC
var claimsList = claims as IList<Claim> ?? claims.ToList();
await authConfig.ClaimsValidator.ValidateClaimsAsync(claimsList).ConfigureAwait(false);
}
else if (SkillValidation.IsSkillClaim(claims))
{
throw new UnauthorizedAccessException("ClaimsValidator is required for validation of Skill Host calls.");
}
}

/// <summary>
Expand Down