Update OAuth providers #4684 (#25112)

Tratcher · web-flow · commit e5ab127f7492 · 2020-08-23T17:04:43.000-07:00
diff --git a/src/Security/Authentication/Facebook/src/FacebookDefaults.cs b/src/Security/Authentication/Facebook/src/FacebookDefaults.cs
@@ -10,10 +10,10 @@ public static class FacebookDefaults
         public static readonly string DisplayName = "Facebook";
 
         // https://developers.facebook.com/docs/facebook-login/manually-build-a-login-flow#login
-        public static readonly string AuthorizationEndpoint = "https://www.facebook.com/v4.0/dialog/oauth";
+        public static readonly string AuthorizationEndpoint = "https://www.facebook.com/v8.0/dialog/oauth";
 
-        public static readonly string TokenEndpoint = "https://graph.facebook.com/v4.0/oauth/access_token";
+        public static readonly string TokenEndpoint = "https://graph.facebook.com/v8.0/oauth/access_token";
 
-        public static readonly string UserInformationEndpoint = "https://graph.facebook.com/v4.0/me";
+        public static readonly string UserInformationEndpoint = "https://graph.facebook.com/v8.0/me";
     }
 }
diff --git a/src/Security/Authentication/Google/src/GoogleDefaults.cs b/src/Security/Authentication/Google/src/GoogleDefaults.cs
@@ -14,10 +14,10 @@ public static class GoogleDefaults
 
         public static readonly string DisplayName = "Google";
 
-        // https://developers.google.com/identity/protocols/OAuth2WebServer
+        // https://developers.google.com/identity/protocols/oauth2/web-server#httprest
         public static readonly string AuthorizationEndpoint = "https://accounts.google.com/o/oauth2/v2/auth";
 
-        public static readonly string TokenEndpoint = "https://www.googleapis.com/oauth2/v4/token";
+        public static readonly string TokenEndpoint = "https://oauth2.googleapis.com/token";
 
         // https://developers.google.com/apis-explorer/#search/oauth2/oauth2/v2/
         public static readonly string UserInformationEndpoint = "https://www.googleapis.com/oauth2/v2/userinfo";
diff --git a/src/Security/Authentication/OpenIdConnect/samples/OpenIdConnectSample/Startup.cs b/src/Security/Authentication/OpenIdConnect/samples/OpenIdConnectSample/Startup.cs
@@ -110,7 +110,7 @@ public void ConfigureServices(IServiceCollection services)
                 o.Authority = Configuration["oidc:authority"];
                 */
                 // https://github.com/IdentityServer/IdentityServer4.Demo/blob/master/src/IdentityServer4Demo/Config.cs
-                o.ClientId = "server.hybrid";
+                o.ClientId = "hybrid";
                 o.ClientSecret = "secret"; // for code flow
                 o.Authority = "https://demo.identityserver.io/";
 
diff --git a/src/Security/Authentication/samples/SocialSample/Startup.cs b/src/Security/Authentication/samples/SocialSample/Startup.cs
@@ -117,7 +117,7 @@ public void ConfigureServices(IServiceCollection services)
                 })
                 // You must first create an app with GitHub and add its ID and Secret to your user-secrets.
                 // https://github.com/settings/applications/
-                // https://developer.github.com/apps/building-oauth-apps/authorizing-oauth-apps/
+                // https://docs.github.com/en/developers/apps/authorizing-oauth-apps
                 .AddOAuth("GitHub", "Github", o =>
                 {
                     o.ClientId = Configuration["github:clientid"];
@@ -156,7 +156,7 @@ public void ConfigureServices(IServiceCollection services)
                 })
                 // You must first create an app with GitHub and add its ID and Secret to your user-secrets.
                 // https://github.com/settings/applications/
-                // https://developer.github.com/apps/building-oauth-apps/authorizing-oauth-apps/
+                // https://docs.github.com/en/developers/apps/authorizing-oauth-apps
                 .AddOAuth("GitHub-AccessToken", "GitHub AccessToken only", o =>
                 {
                     o.ClientId = Configuration["github-token:clientid"];
@@ -171,9 +171,10 @@ public void ConfigureServices(IServiceCollection services)
                     };
                 })
                 // https://demo.identityserver.io/
+                // https://github.com/IdentityServer/IdentityServer4.Demo/blob/master/src/IdentityServer4Demo/Config.cs
                 .AddOAuth("IdentityServer", "Identity Server", o =>
                 {
-                    o.ClientId = "server.code";
+                    o.ClientId = "interactive.public";
                     o.ClientSecret = "secret";
                     o.CallbackPath = new PathString("/signin-identityserver");
                     o.AuthorizationEndpoint = "https://demo.identityserver.io/connect/authorize";
diff --git a/src/Security/Authentication/test/FacebookTests.cs b/src/Security/Authentication/test/FacebookTests.cs
@@ -233,7 +233,7 @@ public async Task NestedMapWillNotAffectRedirect()
             var transaction = await server.SendAsync("http://example.com/base/login");
             Assert.Equal(HttpStatusCode.Redirect, transaction.Response.StatusCode);
             var location = transaction.Response.Headers.Location.AbsoluteUri;
-            Assert.Contains("https://www.facebook.com/v4.0/dialog/oauth", location);
+            Assert.Contains("https://www.facebook.com/v8.0/dialog/oauth", location);
             Assert.Contains("response_type=code", location);
             Assert.Contains("client_id=", location);
             Assert.Contains("redirect_uri=" + UrlEncoder.Default.Encode("http://example.com/base/signin-facebook"), location);
@@ -266,7 +266,7 @@ public async Task MapWillNotAffectRedirect()
             var transaction = await server.SendAsync("http://example.com/login");
             Assert.Equal(HttpStatusCode.Redirect, transaction.Response.StatusCode);
             var location = transaction.Response.Headers.Location.AbsoluteUri;
-            Assert.Contains("https://www.facebook.com/v4.0/dialog/oauth", location);
+            Assert.Contains("https://www.facebook.com/v8.0/dialog/oauth", location);
             Assert.Contains("response_type=code", location);
             Assert.Contains("client_id=", location);
             Assert.Contains("redirect_uri=" + UrlEncoder.Default.Encode("http://example.com/signin-facebook"), location);
@@ -301,7 +301,7 @@ public async Task ChallengeWillTriggerRedirection()
             var transaction = await server.SendAsync("http://example.com/challenge");
             Assert.Equal(HttpStatusCode.Redirect, transaction.Response.StatusCode);
             var location = transaction.Response.Headers.Location.AbsoluteUri;
-            Assert.Contains("https://www.facebook.com/v4.0/dialog/oauth", location);
+            Assert.Contains("https://www.facebook.com/v8.0/dialog/oauth", location);
             Assert.Contains("response_type=code", location);
             Assert.Contains("client_id=", location);
             Assert.Contains("redirect_uri=", location);
diff --git a/src/Security/Authentication/test/GoogleTests.cs b/src/Security/Authentication/test/GoogleTests.cs
@@ -1020,7 +1020,7 @@ private HttpMessageHandler CreateBackchannel()
             {
                 Sender = req =>
                 {
-                    if (req.RequestUri.AbsoluteUri == "https://www.googleapis.com/oauth2/v4/token")
+                    if (req.RequestUri.AbsoluteUri == "https://oauth2.googleapis.com/token")
                     {
                         return ReturnJsonResponse(new
                         {

Original file line number	Diff line number	Diff line change
`@@ -10,10 +10,10 @@ public static class FacebookDefaults`
`10`	`10`	`public static readonly string DisplayName = "Facebook";`
`11`	`11`
`12`	`12`	`// https://developers.facebook.com/docs/facebook-login/manually-build-a-login-flow#login`
`13`		`- public static readonly string AuthorizationEndpoint = "https://www.facebook.com/v4.0/dialog/oauth";`
	`13`	`+ public static readonly string AuthorizationEndpoint = "https://www.facebook.com/v8.0/dialog/oauth";`
`14`	`14`
`15`		`- public static readonly string TokenEndpoint = "https://graph.facebook.com/v4.0/oauth/access_token";`
	`15`	`+ public static readonly string TokenEndpoint = "https://graph.facebook.com/v8.0/oauth/access_token";`
`16`	`16`
`17`		`- public static readonly string UserInformationEndpoint = "https://graph.facebook.com/v4.0/me";`
	`17`	`+ public static readonly string UserInformationEndpoint = "https://graph.facebook.com/v8.0/me";`
`18`	`18`	`}`
`19`	`19`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1020,7 +1020,7 @@ private HttpMessageHandler CreateBackchannel()`
`1020`	`1020`	`{`
`1021`	`1021`	`Sender = req =>`
`1022`	`1022`	`{`
`1023`		`- if (req.RequestUri.AbsoluteUri == "https://www.googleapis.com/oauth2/v4/token")`
	`1023`	`+ if (req.RequestUri.AbsoluteUri == "https://oauth2.googleapis.com/token")`
`1024`	`1024`	`{`
`1025`	`1025`	`return ReturnJsonResponse(new`
`1026`	`1026`	`{`