Closed AntMaster7 closed 1 year ago
It's passed through to TokenValidationParamters here: https://github.com/aspnet/AspNetKatana/blob/e55f48be5352469eaf116ba376806855ed9cf4be/src/Microsoft.Owin.Security.OpenIdConnect/OpenIdConnectAuthenticationOptions.cs#L250
The ClaimsIdentity is generated by a lower level library that uses this.
Thank you. Seems I overlooked the actual getters and setters. My bad.
The OpenIdConnectAuthenticationOptions.SignInAsAuthenticationType property is being ignored by the OpenIdConnect middleware. In fact, its definied but not referenced anywhere in the Microsoft.Owin.Security.OpenIdConnect project. Inside the MicrosoftAccountAuthenticationHandler for example, a new ClaimsIdentity (signInIdentity) gets generated if the mentioned option is set like so:
Whereas inside the OpenIdConnectAuthenticationHandler this logic is missing and the tickets Identity gets directly applied for the SignIn call: