Add framework for reducing exceptions and logging. #2628

brentschmaltz · 2024-06-11T21:26:37Z

This PR introduces an internal set of building blocks that will be used for capturing SecurityToken validation results in a consistent and deterministic manner.

We introduced the TokenValidationResult to avoid throwing back to the calling application on errors.
This work is an extension where each step captures and attaches the result to the TokenValidationResult.
All logs and exceptions are handled by upper layers.

This will be used to reduce throwing exceptions and logging.

When multiple security policies are associated with a single endpoint, for a successful validation, error logs will not be automatically written.

Latency is reduced as Exceptions are not thrown when one policy succeeds.

src/Microsoft.IdentityModel.Tokens/TokenValidationParameters.cs

jmprieur

This is really cool, @brentschmaltz

jennyf19

Looks really well laid out. Thanks @brentschmaltz

src/Microsoft.IdentityModel.Tokens/Validation/MessageDetail.cs

src/Microsoft.IdentityModel.Tokens/Validation/IssuerValidationResult.cs

src/Microsoft.IdentityModel.Tokens/Validation/ValidationResult.cs

src/Microsoft.IdentityModel.Tokens/Validation/MessageDetail.cs

src/Microsoft.IdentityModel.Tokens/Validation/LogDetail.cs

src/Microsoft.IdentityModel.JsonWebTokens/JsonWebTokenHandler.ValidateToken.cs

Add framework for reducing exceptions and logging.

e675885

brentschmaltz requested a review from a team as a code owner June 11, 2024 21:26

jmprieur reviewed Jun 12, 2024

View reviewed changes

src/Microsoft.IdentityModel.Tokens/TokenValidationParameters.cs Show resolved Hide resolved

jmprieur reviewed Jun 12, 2024

View reviewed changes

jennyf19 approved these changes Jun 12, 2024

View reviewed changes