tgstation-server 6.17.0
The /tg/station 13 server suite
Loading...
Searching...
No Matches
SecurityConfiguration.cs
Go to the documentation of this file.
1using System;
2using System.Collections.Generic;
3using System.Linq;
4
5using Swashbuckle.AspNetCore.SwaggerGen;
6
7using Tgstation.Server.Api.Models;
8
9namespace Tgstation.Server.Host.Configuration
10{
14 public sealed class SecurityConfiguration
15 {
19 public const string Section = "Security";
20
24 const uint DefaultTokenExpiryMinutes = 15;
25
29 const uint DefaultOAuthTokenExpiryMinutes = 60 * 24; // 1 day
30
34 const uint DefaultTokenClockSkewMinutes = 1;
35
39 const uint DefaultTokenSigningKeyByteAmount = 256;
40
44 public uint TokenExpiryMinutes { get; set; } = DefaultTokenExpiryMinutes;
45
49 public uint TokenClockSkewMinutes { get; set; } = DefaultTokenClockSkewMinutes;
50
54 public uint TokenSigningKeyByteCount { get; set; } = DefaultTokenSigningKeyByteAmount;
55
59 public uint OAuthTokenExpiryMinutes { get; set; } = DefaultOAuthTokenExpiryMinutes;
60
64 public string? CustomTokenSigningKeyBase64 { get; set; }
65
69 public bool OidcStrictMode { get; set; }
70
74 public IDictionary<OAuthProvider, OAuthConfiguration>? OAuth
75 {
76 get => oAuth;
77 set
78 {
79 // Workaround for https://github.com/dotnet/runtime/issues/89547
80 var publicProperties = typeof(OAuthConfiguration)
81 .GetProperties()
82 .Where(property => property.CanWrite && property.SetMethod!.IsPublic)
83 .ToList();
84 oAuth = value
85 ?.Where(
86 kvp => !publicProperties.All(
87 prop => prop.GetValue(kvp.Value) == prop.PropertyType.GetDefaultValue()))
88 .ToDictionary(kvp => kvp.Key, kvp => kvp.Value);
89 }
90 }
91
95 IDictionary<OAuthProvider, OAuthConfiguration>? oAuth;
96
100 public IDictionary<string, OidcConfiguration>? OpenIDConnect { get; set; }
101
106 public IEnumerable<OidcProviderInfo> OidcProviderInfos()
107 => OpenIDConnect?.Select(oidcConfig => new OidcProviderInfo
108 {
109 SchemeKey = oidcConfig.Key,
110 FriendlyName = oidcConfig.Value.FriendlyName ?? oidcConfig.Key,
111 ThemeColour = oidcConfig.Value.ThemeColour,
112 ThemeIconUrl = oidcConfig.Value.ThemeIconUrl,
113 }) ?? Enumerable.Empty<OidcProviderInfo>();
114 }
115}
Tgstation.Server.Api.Models.OidcProviderInfo
Represents a configured OIDC provider.
Definition OidcProviderInfo.cs:9
Tgstation.Server.Api.Models.OidcProviderInfo.ThemeColour
string? ThemeColour
Colour that should be used to theme this OIDC provider.
Definition OidcProviderInfo.cs:23
Tgstation.Server.Host.Configuration.SecurityConfiguration
Configuration options pertaining to user security.
Definition SecurityConfiguration.cs:15
Tgstation.Server.Host.Configuration.SecurityConfiguration.TokenSigningKeyByteCount
uint TokenSigningKeyByteCount
Amount of bytes to use in the Microsoft.IdentityModel.Tokens.TokenValidationParameters....
Definition SecurityConfiguration.cs:54
Tgstation.Server.Host.Configuration.SecurityConfiguration.CustomTokenSigningKeyBase64
string? CustomTokenSigningKeyBase64
A custom token signing key. Overrides TokenSigningKeyByteCount.
Definition SecurityConfiguration.cs:64
Tgstation.Server.Host.Configuration.SecurityConfiguration.TokenClockSkewMinutes
uint TokenClockSkewMinutes
Amount of minutes to skew the clock for Api.Models.Response.TokenResponse validation.
Definition SecurityConfiguration.cs:49
Tgstation.Server.Host.Configuration.SecurityConfiguration.Section
const string Section
The key for the Microsoft.Extensions.Configuration.IConfigurationSection the SecurityConfiguration re...
Definition SecurityConfiguration.cs:19
Tgstation.Server.Host.Configuration.SecurityConfiguration.DefaultTokenSigningKeyByteAmount
const uint DefaultTokenSigningKeyByteAmount
Default value of TokenSigningKeyByteCount.
Definition SecurityConfiguration.cs:39
Tgstation.Server.Host.Configuration.SecurityConfiguration.OAuthTokenExpiryMinutes
uint OAuthTokenExpiryMinutes
Amount of minutes until Api.Models.Response.TokenResponses generated from OAuth logins expire.
Definition SecurityConfiguration.cs:59
Tgstation.Server.Host.Configuration.SecurityConfiguration.OpenIDConnect
IDictionary< string, OidcConfiguration >? OpenIDConnect
OIDC provider settings keyed by scheme name.
Definition SecurityConfiguration.cs:100
Tgstation.Server.Host.Configuration.SecurityConfiguration.DefaultOAuthTokenExpiryMinutes
const uint DefaultOAuthTokenExpiryMinutes
Default value of OAuthTokenExpiryMinutes.
Definition SecurityConfiguration.cs:29
Tgstation.Server.Host.Configuration.SecurityConfiguration.OidcProviderInfos
IEnumerable< OidcProviderInfo > OidcProviderInfos()
Get the OidcProviderInfos from the SecurityConfiguration.
Tgstation.Server.Host.Configuration.SecurityConfiguration.OidcStrictMode
bool OidcStrictMode
If OIDC strict mode should be enabled. This mode enforces the existence of at least one OpenIDConnect...
Definition SecurityConfiguration.cs:69
Tgstation.Server.Host.Configuration.SecurityConfiguration.DefaultTokenClockSkewMinutes
const uint DefaultTokenClockSkewMinutes
Default value of TokenClockSkewMinutes.
Definition SecurityConfiguration.cs:34
Tgstation.Server.Host.Configuration.SecurityConfiguration.oAuth
IDictionary< OAuthProvider, OAuthConfiguration >? oAuth
Backing field for OAuth.
Definition SecurityConfiguration.cs:95
Tgstation.Server.Host.Configuration.SecurityConfiguration.TokenExpiryMinutes
uint TokenExpiryMinutes
Amount of minutes until Api.Models.Response.TokenResponses generated from passwords expire.
Definition SecurityConfiguration.cs:44
Tgstation.Server.Host.Configuration.SecurityConfiguration.DefaultTokenExpiryMinutes
const uint DefaultTokenExpiryMinutes
Default value of TokenExpiryMinutes.
Definition SecurityConfiguration.cs:24
Tgstation.Server.Host.Configuration.SecurityConfiguration.OAuth
IDictionary< OAuthProvider, OAuthConfiguration >? OAuth
OAuth provider settings.
Definition SecurityConfiguration.cs:75
Generated by doxygen 1.9.8