Diplomarbeit-Absolventenverein/oqtane.framework
10
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity

minor improvements to security features, use ActivatorUtilities.CreateInstance with SiteMigration to enable simpler DI

Browse Source
This commit is contained in:
Shaun Walker
2022-04-12 07:46:43 -04:00
parent 3abfbab5d1
commit 355d0405f4
4 changed files with 12 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
Oqtane.Shared/Security/UserSecurity.cs
View File

@ -155,26 +155,11 @@ namespace Oqtane.Security
public static void ResetClaimsIdentity(ClaimsIdentity identity)
{
var claim = identity.Claims.FirstOrDefault(item => item.Type == ClaimTypes.Name);
if (claim != null)
var claims = identity.Claims.ToList(); // clone
foreach (var claim in claims)
{
identity.RemoveClaim(claim);
}
claim = identity.Claims.FirstOrDefault(item => item.Type == ClaimTypes.NameIdentifier);
if (claim != null)
{
identity.RemoveClaim(claim);
}
claim = identity.Claims.FirstOrDefault(item => item.Type == "sitekey");
if (claim != null)
{
identity.RemoveClaim(claim);
}
var roles = identity.Claims.Where(item => item.Type == ClaimTypes.Role);
foreach (var role in roles)
{
identity.RemoveClaim(role);
}
}
}
}