identity: fix session revokation

2026-02-12 11:12:44 +00:00 · 2023-10-28 11:08:17 +05:00
parent 3746c4b42b
commit 1f72e2c3a8
12 changed files with 100 additions and 50 deletions
--- a/Streetwriters.Messenger/Startup.cs
+++ b/Streetwriters.Messenger/Startup.cs
@@ -28,6 +28,7 @@ using Microsoft.AspNetCore.Builder;
 using Microsoft.AspNetCore.Hosting;
 using Microsoft.AspNetCore.HttpOverrides;
 using Microsoft.AspNetCore.ResponseCompression;
+using Microsoft.Extensions.Caching.Distributed;
 using Microsoft.Extensions.Caching.Memory;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
@@ -74,11 +75,11 @@ namespace Streetwriters.Messenger
                options.Authority = Servers.IdentityServer.ToString();
                options.ClientSecret = Constants.NOTESNOOK_API_SECRET;
                options.ClientId = "notesnook";
+                options.DiscoveryPolicy.RequireHttps = false;
+                options.CacheKeyGenerator = (options, token) => (token + ":" + "reference_token").Sha256();
                options.SaveToken = true;
                options.EnableCaching = true;
                options.CacheDuration = TimeSpan.FromMinutes(30);
-                // TODO
-                options.DiscoveryPolicy.RequireHttps = false;
            });

            services.AddServerSentEvents();
@@ -119,7 +120,7 @@ namespace Streetwriters.Messenger
            app.UseWamp(WampServers.MessengerServer, (realm, server) =>
            {
                IServerSentEventsService service = app.ApplicationServices.GetRequiredService<IServerSentEventsService>();
-                realm.Subscribe<SendSSEMessage>(server.Topics.SendSSETopic, async (ev) =>
+                realm.Subscribe<SendSSEMessage>(MessengerServerTopics.SendSSETopic, async (ev) =>
                {
                    var message = JsonSerializer.Serialize(ev.Message);
                    if (ev.SendToAll)
@@ -131,6 +132,9 @@ namespace Streetwriters.Messenger
                        await SSEHelper.SendEventToUserAsync(message, service, ev.UserId, ev.OriginTokenId);
                    }
                });
+
+                IDistributedCache cache = app.GetScopedService<IDistributedCache>();
+                realm.Subscribe<ClearCacheMessage>(IdentityServerTopics.ClearCacheTopic, (ev) => ev.Keys.ForEach((key) => cache.Remove(key)));
            });

            app.UseEndpoints(endpoints =>
--- a/Streetwriters.Messenger/Streetwriters.Messenger.csproj
+++ b/Streetwriters.Messenger/Streetwriters.Messenger.csproj
@@ -13,7 +13,7 @@
    <PackageReference Include="Lib.AspNetCore.ServerSentEvents" Version="6.0.0" />
    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="5.0.0" NoWarn="NU1605" />
    <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="5.0.0" NoWarn="NU1605" />
-    <PackageReference Include="IdentityServer4.AccessTokenValidation" Version="3.0.1" />
+    <PackageReference Include="IdentityModel.AspNetCore.OAuth2Introspection" Version="6.2.0" />
  </ItemGroup>

  <ItemGroup>