Build in AuthenticationStateProviders from project templates #55821
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dotnet-issue-labeler
bot
added
the
area-blazor
javiercn
reviewed
May 22, 2024
Comment on lines
+3
to
+6
| Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider | ||
| Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider.ServerAuthenticationStateProvider() -> void | ||
| Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider.SetAuthenticationState(System.Threading.Tasks.Task<Microsoft.AspNetCore.Components.Authorization.AuthenticationState!>! authenticationStateTask) -> void | ||
| override Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider.GetAuthenticationStateAsync() -> System.Threading.Tasks.Task<Microsoft.AspNetCore.Components.Authorization.AuthenticationState!>! |
There was a problem hiding this comment.
Is this public because of layering?
There was a problem hiding this comment.
Or because we want it to be extendable
There was a problem hiding this comment.
I mention this in the PR description:
In order to increase the consistency of using
AddAuthenticationStateSerialization()with and without server interactivity,ServerAuthenticationStateProviderwas type forwarded toMicrosoft.AspNetCore.Components.Endpointsand registered by default byAddRazorComponents. This is also helpful for auth in completely non-interactive Blazor web projects.
This change isn't strictly necessary for this PR, but I do think it helps with the general usability AddRazorComponents without AddInteractiveServerComponents. I could have used an internal AuthenticationStateProvider that's functionally equivalent to the ServerAuthenticationStateProvider without the type forwarding to achieve the same thing, but I figured we might as well reduce duplication.
javiercn
reviewed
May 22, 2024
Comment on lines
+2
to
+5
| *REMOVED*Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider | ||
| *REMOVED*Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider.ServerAuthenticationStateProvider() -> void | ||
| *REMOVED*Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider.SetAuthenticationState(System.Threading.Tasks.Task<Microsoft.AspNetCore.Components.Authorization.AuthenticationState!>! authenticationStateTask) -> void | ||
| *REMOVED*override Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider.GetAuthenticationStateAsync() -> System.Threading.Tasks.Task<Microsoft.AspNetCore.Components.Authorization.AuthenticationState!>! |
There was a problem hiding this comment.
Isn't this breaking? (For libraries for example).
There was a problem hiding this comment.
The [assembly: TypeForwardedTo(typeof(Microsoft.AspNetCore.Components.Server.ServerAuthenticationStateProvider))] should make it non-breaking.
javiercn
approved these changes
May 22, 2024
Rick-Anderson
requested changes
May 22, 2024
Comment on lines
+8
to
+10
| /// If this is implemented by the host's <see cref="AuthenticationStateProvider"/>, it will receive authentication state from the HttpContext. | ||
| /// Or if this implemented service that is registered directly as an <see cref="IHostEnvironmentAuthenticationStateProvider"/>, | ||
| /// it will receive the <see cref="AuthenticationState"/> returned by <see cref="AuthenticationStateProvider.GetAuthenticationStateAsync"/> |
There was a problem hiding this comment.
Suggested change
| /// If this is implemented by the host's <see cref="AuthenticationStateProvider"/>, it will receive authentication state from the HttpContext. | |
| /// Or if this implemented service that is registered directly as an <see cref="IHostEnvironmentAuthenticationStateProvider"/>, | |
| /// it will receive the <see cref="AuthenticationState"/> returned by <see cref="AuthenticationStateProvider.GetAuthenticationStateAsync"/> | |
| /// If this is implemented by the host's <see cref="AuthenticationStateProvider"/>, it receives authentication state from the HttpContext. | |
| /// If this implemented service that is registered directly as an <see cref="IHostEnvironmentAuthenticationStateProvider"/>, | |
| /// it receives the <see cref="AuthenticationState"/> returned by <see cref="AuthenticationStateProvider.GetAuthenticationStateAsync"/> |
| namespace Microsoft.AspNetCore.Components.WebAssembly.Server; | ||
|
|
||
| /// <summary> | ||
| /// Provides options for configuring the JSON serialization of the <see cref="AuthenticationState"/> provided by the server's <see cref="AuthenticationStateProvider"/> |
There was a problem hiding this comment.
Feel free to reject this but the sentence is too long and difficult to machine translate.
Suggested change
| /// Provides options for configuring the JSON serialization of the <see cref="AuthenticationState"/> provided by the server's <see cref="AuthenticationStateProvider"/> | |
| /// Provides options for configuring the JSON serialization of the <see cref="AuthenticationState"/>. Provided by the server's <see cref="AuthenticationStateProvider"/> |
| } | ||
|
|
||
| /// <summary> | ||
| /// If <see langword="true"/>, the default <see cref="SerializationCallback"/> will serialize all claims; otherwise, it will only serialize |
There was a problem hiding this comment.
Suggested change
| /// If <see langword="true"/>, the default <see cref="SerializationCallback"/> will serialize all claims; otherwise, it will only serialize | |
| /// If <see langword="true"/>, the default <see cref="SerializationCallback"/> serializes all claims; otherwise, it only serializes |
Comment on lines
+31
to
+32
| /// Default implementation for converting the server's <see cref="AuthenticationState"/> to an <see cref="AuthenticationStateData"/> object | ||
| /// for JSON serialization to the client using <see cref="PersistentComponentState"/>."/> |
There was a problem hiding this comment.
Suggested change
| /// Default implementation for converting the server's <see cref="AuthenticationState"/> to an <see cref="AuthenticationStateData"/> object | |
| /// for JSON serialization to the client using <see cref="PersistentComponentState"/>."/> | |
| /// Default implementation for converting the server's <see cref="AuthenticationState"/> to an <see cref="AuthenticationStateData"/> object. | |
| /// This conversion is intended for JSON serialization to the client using <see cref="PersistentComponentState"/>."/> |
Comment on lines
+36
to
+38
| /// Serializes the <see cref="AuthenticationState"/> returned by the server-side <see cref="AuthenticationStateProvider"/> using <see cref="PersistentComponentState"/> | ||
| /// for use by interactive WebAssembly components via a deserializing client-side <see cref="AuthenticationStateProvider"/> which can be added by calling | ||
| /// AddAuthenticationStateDeserialization from the Microsoft.AspNetCore.Components.WebAssembly.Authentication package in the client project. |
There was a problem hiding this comment.
Suggested change
| /// Serializes the <see cref="AuthenticationState"/> returned by the server-side <see cref="AuthenticationStateProvider"/> using <see cref="PersistentComponentState"/> | |
| /// for use by interactive WebAssembly components via a deserializing client-side <see cref="AuthenticationStateProvider"/> which can be added by calling | |
| /// AddAuthenticationStateDeserialization from the Microsoft.AspNetCore.Components.WebAssembly.Authentication package in the client project. | |
| /// Serializes the <see cref="AuthenticationState"/> returned by the server-side <see cref="AuthenticationStateProvider"/> using <see cref="PersistentComponentState"/>. | |
| /// Intended for use by interactive WebAssembly components via a deserializing client-side <see cref="AuthenticationStateProvider"/>. The WebAssembly can be added by calling | |
| /// AddAuthenticationStateDeserialization from the Microsoft.AspNetCore.Components.WebAssembly.Authentication package in the client project. |
Comment on lines
+19
to
+20
| /// Default implementation for converting the <see cref="AuthenticationStateData"/> that was JSON deserialized from the server | ||
| /// using <see cref="PersistentComponentState"/> to an <see cref="AuthenticationState"/> object to be returned by the WebAssembly |
There was a problem hiding this comment.
Suggested change
| /// Default implementation for converting the <see cref="AuthenticationStateData"/> that was JSON deserialized from the server | |
| /// using <see cref="PersistentComponentState"/> to an <see cref="AuthenticationState"/> object to be returned by the WebAssembly | |
| /// Default implementation for converting the <see cref="AuthenticationStateData"/> that was JSON deserialized from the server. | |
| /// This conversion is performed using <see cref="PersistentComponentState"/> to an <see cref="AuthenticationState"/> object. | |
| // This object is then returned by the WebAssembly client's <see |
There was a problem hiding this comment.
@tdykstra why no rich diff?
There was a problem hiding this comment.
I don't know, but your new line 21 is missing one slash at the start.
This was referenced May 31, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This automatically registers a client
AuthenticationStateProvider's similar to the PersistentAuthenticationStateProvider added by the "Individual Auth" option in the Blazor Web project templates.This feature must be opted in by calling
AddAuthenticationStateSerialization()on the server'sIRazorComponentsBuilderandAddAuthenticationStateDeserialization()on the client'sIServiceCollection. These methods are defined in Microsoft.AspNetCore.Components.WebAssembly.Server and Microsoft.AspNetCore.Components.WebAssembly.Authentication assemblies respectively, so they should only be available to applications using WebAssembly interactivity.Even if you do opt-in to authentication state serialization/deserialization, you must further opt-in to serializing all claims by setting
AuthenticationStateSerializationOptions.SerializeAllClaimsor registering a customSerializationCallback. Otherwise, only the name and role claims will be serialized.Rather than override the server's
AuthenticationStateProviderlike the project template's PersistingServerAuthenticationStateProvider, this registers anAuthenticationStateSerializerwhich does not implementAuthenticationStateProvider. This allowsEndpointHtmlRendererto flow authentication state from a custom server-sideAuthenticationStateProviderto the serializer which is registered directly asIHostEnvironmentAuthenticationStateProviderbyAddAuthenticationStateSerialization().In order to increase the consistency of using
AddAuthenticationStateSerialization()with and without server interactivity,ServerAuthenticationStateProviderwas type forwarded toMicrosoft.AspNetCore.Components.Endpointsand registered by default byAddRazorComponents. This is also helpful for auth in completely non-interactive Blazor web projects.Fixes #52769