Class DefaultClaimsService

Namespace

Duende.IdentityServer.Services

Assembly

Duende.IdentityServer.dll

Default claims provider implementation

public class DefaultClaimsService : IClaimsService

Inheritance

object

DefaultClaimsService

Implements

IClaimsService

Inherited Members

object.GetType()

object.MemberwiseClone()

object.ToString()

object.Equals(object)

object.Equals(object, object)

object.ReferenceEquals(object, object)

object.GetHashCode()

Constructors

DefaultClaimsService(IProfileService, ILogger<DefaultClaimsService>)

Initializes a new instance of the DefaultClaimsService class.

public DefaultClaimsService(IProfileService profile, ILogger<DefaultClaimsService> logger)

Parameters

profile IProfileService

The profile service

logger ILogger<DefaultClaimsService>

The logger

Fields

Logger

The logger

protected readonly ILogger Logger

Field Value

ILogger

Profile

The user service

protected readonly IProfileService Profile

Field Value

IProfileService

Methods

FilterProtocolClaims(IEnumerable<Claim>)

Filters out protocol claims like amr, nonce etc..

protected virtual IEnumerable<Claim> FilterProtocolClaims(IEnumerable<Claim> claims)

Parameters

claims IEnumerable<Claim>

The claims.

Returns

IEnumerable<Claim>

FilterRequestedClaimTypes(IEnumerable<string>)

Filters out protocol claims like amr, nonce etc..

protected virtual IEnumerable<string> FilterRequestedClaimTypes(IEnumerable<string> claimTypes)

Parameters

claimTypes IEnumerable<string>

The claim types.

Returns

IEnumerable<string>

GetAccessTokenClaimsAsync(ClaimsPrincipal, ResourceValidationResult, ValidatedRequest)

Returns claims for an access token.

public virtual Task<IEnumerable<Claim>> GetAccessTokenClaimsAsync(ClaimsPrincipal subject, ResourceValidationResult resourceResult, ValidatedRequest request)

Parameters

subject ClaimsPrincipal

The subject.

resourceResult ResourceValidationResult

The validated resource result

request ValidatedRequest

The raw request.

Returns

Task<IEnumerable<Claim>>

Claims for the access token

GetIdentityTokenClaimsAsync(ClaimsPrincipal, ResourceValidationResult, bool, ValidatedRequest)

Returns claims for an identity token

public virtual Task<IEnumerable<Claim>> GetIdentityTokenClaimsAsync(ClaimsPrincipal subject, ResourceValidationResult resources, bool includeAllIdentityClaims, ValidatedRequest request)

Parameters

subject ClaimsPrincipal

The subject

resources ResourceValidationResult

The requested resources

includeAllIdentityClaims bool

Specifies if all claims should be included in the token, or if the userinfo endpoint can be used to retrieve them

request ValidatedRequest

The raw request

Returns

Task<IEnumerable<Claim>>

Claims for the identity token

GetOptionalClaims(ClaimsPrincipal)

Gets additional (and optional) claims from the cookie or incoming subject.

protected virtual IEnumerable<Claim> GetOptionalClaims(ClaimsPrincipal subject)

Parameters

subject ClaimsPrincipal

The subject.

Returns

IEnumerable<Claim>

Additional claims

GetStandardSubjectClaims(ClaimsPrincipal)

Gets the standard subject claims.

protected virtual IEnumerable<Claim> GetStandardSubjectClaims(ClaimsPrincipal subject)

Parameters

subject ClaimsPrincipal

The subject.

Returns

IEnumerable<Claim>

A list of standard claims