cesnimda/jobtrackingapp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Auto-link verified Google sign-ins by email

Browse Source
This commit is contained in:
cesnimda
2026-03-28 14:24:10 +01:00
parent 9f949ee9df
commit 19a4da9382
3 changed files with 110 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
JobTrackerApi/Services/GoogleTokenValidator.cs
+9 -1
View File
@@ -5,7 +5,7 @@ using Microsoft.IdentityModel.Tokens;
namespace JobTrackerApi.Services;
public sealed record GoogleTokenPrincipal(string Subject, string? Email, string? GivenName, string? FamilyName, string? Name);
public sealed record GoogleTokenPrincipal(string Subject, string? Email, bool EmailVerified, string? GivenName, string? FamilyName, string? Name);
public interface IGoogleTokenValidator
{
@@ -56,9 +56,17 @@ public sealed class GoogleTokenValidator : IGoogleTokenValidator
return new GoogleTokenPrincipal(
Subject: subject,
Email: principal.FindFirst("email")?.Value?.Trim(),
EmailVerified: IsEmailVerified(principal),
GivenName: principal.FindFirst("given_name")?.Value?.Trim(),
FamilyName: principal.FindFirst("family_name")?.Value?.Trim(),
Name: principal.FindFirst("name")?.Value?.Trim()
);
}
private static bool IsEmailVerified(System.Security.Claims.ClaimsPrincipal principal)
{
var raw = principal.FindFirst("email_verified")?.Value?.Trim();
if (string.IsNullOrWhiteSpace(raw)) return false;
return string.Equals(raw, "true", StringComparison.OrdinalIgnoreCase) || raw == "1";
}
}