feat(blazor): configure ciba + server side session options

Author: github-actions

src/Aguacongas.TheIdServer.BlazorApp/README.md

@@ -67,7 +67,16 @@ The application obtains its configuration from appsettings.json and the environm
     "redirectUri": "https://localhost:5443/authentication/login-callback",
     "responseType": "code"
   },
-  "welcomeContenUrl": "/welcome-fragment.html"
+  "settingsOptions": {
+    "typeName": "Aguacongas.TheIdServer.BlazorApp.Models.ServerConfig, Aguacongas.TheIdServer.BlazorApp.Infrastructure",
+    "apiUrl": "https://localhost:5443/api/api/configuration"
+  },
+  "menuOptions": {
+    "showSettings": true
+  },
+  "welcomeContenUrl": "https://localhost:5443/welcome-fragment.html",
+  "serverSideSessionEnabled": false,
+  "cibaEnabled": false
 }
 ```
 
@@ -149,12 +158,18 @@ This endpoint should return an HTML fragment.
 </p>
 ```
 
-## Client and API secrets
+## UI Options
+### Hide settings menu
+
+To hide the settings menu, unset **menuOptions:showSettings**.
+
+### Hide CIBA grant type
+
+If CIBA is not enabled you can hide the CIBA grant type by unsetting cibaEnabled options.
 
-The application doesn't generate secrets. Shared Secrets or x509 certificates require conversion before storing. 
+### Hide coordinate lifetime with user session checkbox
 
-* Convert a SharedSecret to SHA256 value.
-* Convert an X509 certificate to Base64 string.
+If server side sessions are not enable you can hide the coordinate lifetime with user session checkbox in client tokens section by unsetting serverSideSessionEnabled options.
 
 ## Additional resources
 

src/Aguacongas.TheIdServer.BlazorApp/wwwroot/appsettings.heroku.json

@@ -22,5 +22,8 @@
     "postLogoutRedirectUri": "https://theidserver.herokuapp.com/authentication/logout-callback",
     "redirectUri": "https://theidserver.herokuapp.com/authentication/login-callback"
   },
-  "welcomeContenUrl": "https://theidserver.herokuapp.com/api/welcomefragment"
+  "welcomeContenUrl": "https://theidserver.herokuapp.com/api/welcomefragment",
+  "serverSideSessionEnabled": false,
+  "cibaEnabled": false
+
 }

src/Aguacongas.TheIdServer.BlazorApp/wwwroot/appsettings.json

@@ -31,5 +31,7 @@
   },
   "menuOptions": {
     "showSettings": true
-  }
+  },
+  "serverSideSessionEnabled": true,
+  "cibaEnabled":  true
 }

src/BlazorApp/Aguacongas.TheIdServer.BlazorApp.Infrastructure/Models/Settings.cs

@@ -15,6 +15,10 @@ public class Settings
         public bool Prerendered { get; set; }
 
         public string HostElementIdentifier { get; set; } = "app";
+
+        public bool ServerSideSessionEnabled { get; set; }
+
+        public bool CibaEnabled { get; set; }
     }
 
     public class LoggingOptions

src/BlazorApp/Aguacongas.TheIdServer.BlazorApp.Pages.Client/Components/ClientTokens.razor

@@ -1,4 +1,5 @@
 @inject IStringLocalizerAsync<ClientTokens> Localizer
+@inject IOptions<Settings> Options
 @if (Model.ProtocolType == "oidc")
 {
     <div class="mb-3 row">
@@ -211,13 +212,16 @@
             <AuthorizedToken Name="sso-lifetime" QuickValues="_ssoLifetimeQuickValues" @bind-Value="@Model.UserSsoLifetime" TokenValueChanged="TokenChanded" />
         </div>
     </div>
-    <div class="mb-3 row">
-        <label class="col col-form-label" for="coordinate-lifetime-with-user-session">
-        </label>
-        <div class="col-lg-8 col-sm-12">
-            <AuthorizeNullableCheckbox Name="coordinate-lifetime-with-user-session" @bind-Value="@Model.CoordinateLifetimeWithUserSession" Label="@Localizer["coordinate lifetime with user session"]" />
+    @if (Options.Value.ServerSideSessionEnabled)
+    {
+        <div class="mb-3 row">
+            <label class="col col-form-label" for="coordinate-lifetime-with-user-session">
+            </label>
+            <div class="col-lg-8 col-sm-12">
+                <AuthorizeNullableCheckbox Name="coordinate-lifetime-with-user-session" @bind-Value="@Model.CoordinateLifetimeWithUserSession" Label="@Localizer["coordinate lifetime with user session"]" />
+            </div>
         </div>
-    </div>
+    }
     @if (_showAllOptions || Model.IsDevice())
     {
         <div class="mb-3 row">

src/BlazorApp/Aguacongas.TheIdServer.BlazorApp.Pages.Client/Components/GrantType.razor

@@ -1,4 +1,6 @@
-@inherits AutoCompleteModel<Entity.ClientGrantType>
+
+@inherits AutoCompleteModel<Entity.ClientGrantType>
+@inject IOptions<Settings> Options
 
 @if (IsReadOnly)
 {

src/BlazorApp/Aguacongas.TheIdServer.BlazorApp.Pages.Client/Components/GrantType.razor.cs

@@ -37,6 +37,12 @@ protected override Task<IEnumerable<string>> GetFilteredValues(string term, Canc
                         (kv.Key == "authorization_code" || kv.Key == "implicit")) &&
                     (kv.Value.Contains(term) || kv.Key.Contains(term)))
                 .Select(kv => kv.Key);
+
+            if (!Options.Value.CibaEnabled)
+            {
+                result = result.Where(r => r != "ciba");
+            }
+
             return Task.FromResult(result);
         }
 

src/BlazorApp/Aguacongas.TheIdServer.BlazorApp.Pages.Client/_Imports.razor

@@ -1,6 +1,7 @@
 @using Microsoft.AspNetCore.Components.Authorization
 @using Microsoft.AspNetCore.Components.Forms
 @using Microsoft.AspNetCore.Components.Web
+@using Microsoft.Extensions.Options
 @using Aguacongas.IdentityServer.Store
 @using Aguacongas.TheIdServer.BlazorApp.Components
 @using Aguacongas.TheIdServer.BlazorApp.Components.Form