1 //----------------------------------------------------------------------
3 // Copyright (c) Microsoft Corporation.
4 // All rights reserved.
6 // This code is licensed under the MIT License.
8 // Permission is hereby granted, free of charge, to any person obtaining a copy
9 // of this software and associated documentation files(the "Software"), to deal
10 // in the Software without restriction, including without limitation the rights
11 // to use, copy, modify, merge, publish, distribute, sublicense, and / or sell
12 // copies of the Software, and to permit persons to whom the Software is
13 // furnished to do so, subject to the following conditions :
15 // The above copyright notice and this permission notice shall be included in
16 // all copies or substantial portions of the Software.
18 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
19 // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
20 // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.IN NO EVENT SHALL THE
21 // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
22 // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
23 // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
26 //------------------------------------------------------------------------------
29 using System.Collections.Generic;
30 using System.Globalization;
31 using System.Runtime.Serialization;
33 namespace Microsoft.IdentityModel.Clients.ActiveDirectory
36 internal class DeviceAuthHeader
38 public DeviceAuthHeader(string base64EncodedCertificate)
42 this.X5c = new List<string>();
43 this.X5c.Add(base64EncodedCertificate);
46 [DataMember(Name = "x5c", IsRequired = true)]
47 public List<string> X5c { get; set; }
49 [DataMember(Name = "typ", IsRequired = true)]
50 public string Type { get; set; }
52 [DataMember(Name = "alg", IsRequired = true)]
53 public string Alg { get; private set; }
57 internal class DeviceAuthPayload
59 public DeviceAuthPayload(string audience, string nonce)
62 this.Audience = audience;
63 var timeSpan = (DateTime.UtcNow - new DateTime(1970, 1, 1, 0, 0, 0));
64 this.Iat = (long)timeSpan.TotalSeconds;
67 [DataMember(Name = "iat", IsRequired = true)]
68 public long Iat { get; set; }
70 [DataMember(Name = "aud", IsRequired = true)]
71 public string Audience { get; set; }
73 [DataMember(Name = "nonce", IsRequired = true)]
74 public string Nonce { get; private set; }
78 internal class DeviceAuthJWTResponse
80 private DeviceAuthHeader header;
81 private DeviceAuthPayload payload;
83 public DeviceAuthJWTResponse(string audience, string nonce,
84 string base64EncodedCertificate)
86 this.header = new DeviceAuthHeader(base64EncodedCertificate);
87 this.payload = new DeviceAuthPayload(audience, nonce);
90 public string GetResponseToSign()
92 return String.Format(CultureInfo.CurrentCulture, "{0}.{1}",
93 Base64UrlEncoder.Encode(JsonHelper.EncodeToJson(header).ToByteArray()),
94 Base64UrlEncoder.Encode(JsonHelper.EncodeToJson(payload).ToByteArray()));