centralize AddIdentityAuthenticationServices

src/Events/Startup.cs

@@ -1,9 +1,6 @@
-using System.Security.Claims;
-using Bit.Core;
+using Bit.Core;
 using Bit.Core.Services;
 using Bit.Core.Utilities;
-using IdentityModel;
-using IdentityServer4.AccessTokenValidation;
 using Microsoft.AspNetCore.Builder;
 using Microsoft.AspNetCore.Hosting;
 using Microsoft.Extensions.Configuration;
@@ -39,25 +36,7 @@ namespace Bit.Events
             services.AddScoped<CurrentContext>();
 
             // Identity
-            services
-                .AddAuthentication(IdentityServerAuthenticationDefaults.AuthenticationScheme)
-                .AddIdentityServerAuthentication(options =>
-                {
-                    options.Authority = globalSettings.BaseServiceUri.InternalIdentity;
-                    options.RequireHttpsMetadata = !Environment.IsDevelopment() &&
-                        globalSettings.BaseServiceUri.InternalIdentity.StartsWith("https");
-                    options.NameClaimType = ClaimTypes.Email;
-                    options.SupportedTokens = SupportedTokens.Jwt;
-                });
-
-            services.AddAuthorization(config =>
-            {
-                config.AddPolicy("Application", policy =>
-                {
-                    policy.RequireAuthenticatedUser();
-                    policy.RequireClaim(JwtClaimTypes.AuthenticationMethod, "Application");
-                });
-            });
+            services.AddIdentityAuthenticationServices(globalSettings, Environment);
 
             // Services
             services.AddScoped<IEventService, EventService>();