aspnet-contrib
diff --git a/‎src/AspNet.Security.OAuth.Introspection/Events/AuthenticationFailedContext.cs
Lines changed: 0 additions & 14 deletions b/‎src/AspNet.Security.OAuth.Introspection/Events/AuthenticationFailedContext.cs
Lines changed: 0 additions & 14 deletions
diff --git a/‎src/AspNet.Security.OAuth.Introspection/Events/IOAuthIntrospectionEvents.cs
Lines changed: 0 additions & 5 deletions b/‎src/AspNet.Security.OAuth.Introspection/Events/IOAuthIntrospectionEvents.cs
Lines changed: 0 additions & 5 deletions
diff --git a/‎src/AspNet.Security.OAuth.Introspection/Events/OAuthIntrospectionEvents.cs
Lines changed: 0 additions & 10 deletions b/‎src/AspNet.Security.OAuth.Introspection/Events/OAuthIntrospectionEvents.cs
Lines changed: 0 additions & 10 deletions
diff --git a/‎src/AspNet.Security.OAuth.Introspection/OAuthIntrospectionHandler.cs
Lines changed: 103 additions & 103 deletions b/‎src/AspNet.Security.OAuth.Introspection/OAuthIntrospectionHandler.cs
Lines changed: 103 additions & 103 deletions
diff --git a/‎src/AspNet.Security.OAuth.Validation/Events/AuthenticationFailedContext.cs
Lines changed: 0 additions & 14 deletions b/‎src/AspNet.Security.OAuth.Validation/Events/AuthenticationFailedContext.cs
Lines changed: 0 additions & 14 deletions
diff --git a/‎src/AspNet.Security.OAuth.Validation/Events/IOAuthValidationEvents.cs
Lines changed: 0 additions & 5 deletions b/‎src/AspNet.Security.OAuth.Validation/Events/IOAuthValidationEvents.cs
Lines changed: 0 additions & 5 deletions
diff --git a/‎src/AspNet.Security.OAuth.Validation/Events/OAuthValidationEvents.cs
Lines changed: 0 additions & 10 deletions b/‎src/AspNet.Security.OAuth.Validation/Events/OAuthValidationEvents.cs
Lines changed: 0 additions & 10 deletions
@@ -8,11 +8,6 @@ public interface IOAuthIntrospectionEvents
         /// </summary>
         Task AccessTokenReceived(AccessTokenReceivedContext context);
 
-        /// <summary>
-        /// Invoked if exceptions are thrown during request processing. The exceptions will be re-thrown after this event unless suppressed.
-        /// </summary>
-        Task AuthenticationFailed(AuthenticationFailedContext context);
-
         /// <summary>
         /// Invoked when a ticket is to be created from an introspection response.
         /// </summary>
 
@@ -9,11 +9,6 @@ public class OAuthIntrospectionEvents : IOAuthIntrospectionEvents
         /// </summary>
         public Func<AccessTokenReceivedContext, Task> OnAccessTokenReceived { get; set; } = context => Task.FromResult(0);
 
-        /// <summary>
-        /// Invoked if exceptions are thrown during request processing. The exceptions will be re-thrown after this event unless suppressed.
-        /// </summary>
-        public Func<AuthenticationFailedContext, Task> OnAuthenticationFailed { get; set; } = context => Task.FromResult(0);
-
         /// <summary>
         /// Invoked when a ticket is to be created from an introspection response.
         /// </summary>
@@ -39,11 +34,6 @@ public class OAuthIntrospectionEvents : IOAuthIntrospectionEvents
         /// </summary>
         public virtual Task AccessTokenReceived(AccessTokenReceivedContext context) => OnAccessTokenReceived(context);
 
-        /// <summary>
-        /// Invoked if exceptions are thrown during request processing. The exceptions will be re-thrown after this event unless suppressed.
-        /// </summary>
-        public virtual Task AuthenticationFailed(AuthenticationFailedContext context) => OnAuthenticationFailed(context);
-
         /// <summary>
         /// Invoked when a ticket is to be created from an introspection response.
         /// </summary>
 
@@ -22,139 +22,139 @@
 
 namespace AspNet.Security.OAuth.Introspection {
     public class OAuthIntrospectionHandler : AuthenticationHandler<OAuthIntrospectionOptions> {
-        protected override async Task<AuthenticateResult> HandleAuthenticateAsync() {
-            try {
-                // Give application opportunity to find from a different location, adjust, or reject token
-                var accessTokenReceivedContext = new AccessTokenReceivedContext(Context, Options);
-
-                // event can set the token
-                await Options.Events.AccessTokenReceived(accessTokenReceivedContext);
-                if (accessTokenReceivedContext.HandledResponse) {
-                    return AuthenticateResult.Success(accessTokenReceivedContext.Ticket);
-                }
-                if (accessTokenReceivedContext.Skipped) {
-                    Logger.LogInformation("Authentication was skipped by event processing.");
-
-                    return AuthenticateResult.Skip();
-                }
+        protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
+        {
+            // Give application opportunity to find from a different location, adjust, or reject token
+            var accessTokenReceivedContext = new AccessTokenReceivedContext(Context, Options);
+
+            // event can set the token
+            await Options.Events.AccessTokenReceived(accessTokenReceivedContext);
+            if (accessTokenReceivedContext.HandledResponse)
+            {
+                return AuthenticateResult.Success(accessTokenReceivedContext.Ticket);
+            }
 
-                // If application retrieved token from somewhere else, use that.
-                string token = accessTokenReceivedContext.Token;
+            if (accessTokenReceivedContext.Skipped)
+            {
+                Logger.LogInformation("Authentication was skipped by event processing.");
 
-                if (string.IsNullOrWhiteSpace(token)) {
-                    string header = Request.Headers[HeaderNames.Authorization];
-                    if (string.IsNullOrEmpty(header)) {
-                        return AuthenticateResult.Fail("Authentication failed because the bearer token " +
-                                                       "was missing from the 'Authorization' header.");
-                    }
+                return AuthenticateResult.Skip();
+            }
 
-                    // Ensure that the authorization header contains the mandatory "Bearer" scheme.
-                    // See https://tools.ietf.org/html/rfc6750#section-2.1
-                    if (!header.StartsWith("Bearer ", StringComparison.OrdinalIgnoreCase)) {
-                        return AuthenticateResult.Fail("Authentication failed because an invalid scheme " +
-                                                       "was used in the 'Authorization' header.");
-                    }
+            // If application retrieved token from somewhere else, use that.
+            string token = accessTokenReceivedContext.Token;
 
-                    token = header.Substring("Bearer ".Length);
-                }
-                if (string.IsNullOrWhiteSpace(token)) {
+            if (string.IsNullOrWhiteSpace(token))
+            {
+                string header = Request.Headers[HeaderNames.Authorization];
+                if (string.IsNullOrEmpty(header))
+                {
                     return AuthenticateResult.Fail("Authentication failed because the bearer token " +
                                                    "was missing from the 'Authorization' header.");
                 }
 
-                // Try to resolve the authentication ticket from the distributed cache. If none
-                // can be found, a new introspection request is sent to the authorization server.
-                var ticket = await RetrieveTicketAsync(token);
-                if (ticket == null) {
-                    JObject payload;
-                    // Allow interception of the introspection retrieval process via events
-                    var requestTokenIntrospectionContext = new RequestTokenIntrospectionContext(Context, Options, token);
-                    await Options.Events.RequestTokenIntrospection(requestTokenIntrospectionContext);
-                    if (requestTokenIntrospectionContext.HandledResponse) {
-                        return AuthenticateResult.Success(requestTokenIntrospectionContext.Ticket);
-                    }
-                    else if (requestTokenIntrospectionContext.Skipped) {
-                        return AuthenticateResult.Skip();
-                    }
-                    else {
-                        // Return a failed authentication result if the introspection
-                        // request failed or if the "active" claim was false.
-                        payload = requestTokenIntrospectionContext.Payload ?? await GetIntrospectionPayloadAsync(token);
-                    }
+                // Ensure that the authorization header contains the mandatory "Bearer" scheme.
+                // See https://tools.ietf.org/html/rfc6750#section-2.1
+                if (!header.StartsWith("Bearer ", StringComparison.OrdinalIgnoreCase))
+                {
+                    return AuthenticateResult.Fail("Authentication failed because an invalid scheme " +
+                                                   "was used in the 'Authorization' header.");
+                }
 
-                    if (payload == null || !payload.Value<bool>(OAuthIntrospectionConstants.Claims.Active)) {
-                        return AuthenticateResult.Fail("Authentication failed because the authorization " +
-                                                       "server rejected the access token.");
-                    }
+                token = header.Substring("Bearer ".Length);
+            }
+            if (string.IsNullOrWhiteSpace(token))
+            {
+                return AuthenticateResult.Fail("Authentication failed because the bearer token " +
+                                               "was missing from the 'Authorization' header.");
+            }
 
-                    // Ensure that the access token was issued
-                    // to be used with this resource server.
-                    if (!await ValidateAudienceAsync(payload)) {
-                        return AuthenticateResult.Fail("Authentication failed because the access token " +
-                                                       "was not valid for this resource server.");
-                    }
+            // Try to resolve the authentication ticket from the distributed cache. If none
+            // can be found, a new introspection request is sent to the authorization server.
+            var ticket = await RetrieveTicketAsync(token);
+            if (ticket == null)
+            {
+                JObject payload;
+                // Allow interception of the introspection retrieval process via events
+                var requestTokenIntrospectionContext = new RequestTokenIntrospectionContext(Context, Options, token);
 
-                    // Allow interception of the ticket creation process via events
-                    var createTicketContext = new CreateTicketContext(Context, Options, payload);
-                    await Options.Events.CreateTicket(createTicketContext);
-                    if (createTicketContext.HandledResponse) {
-                        return AuthenticateResult.Success(createTicketContext.Ticket);
-                    }
-                    if (createTicketContext.Skipped) {
-                        return AuthenticateResult.Skip();
-                    }
+                await Options.Events.RequestTokenIntrospection(requestTokenIntrospectionContext);
+
+                if (requestTokenIntrospectionContext.HandledResponse)
+                {
+                    return AuthenticateResult.Success(requestTokenIntrospectionContext.Ticket);
+                }
 
-                    // Create a new authentication ticket from the introspection
-                    // response returned by the authorization server.
-                    ticket = createTicketContext.Ticket ?? await CreateTicketAsync(payload);
-                    Debug.Assert(ticket != null);
+                else if (requestTokenIntrospectionContext.Skipped)
+                {
+                    return AuthenticateResult.Skip();
+                }
 
-                    await StoreTicketAsync(token, ticket);
+                else {
+                    // Return a failed authentication result if the introspection
+                    // request failed or if the "active" claim was false.
+                    payload = requestTokenIntrospectionContext.Payload ?? await GetIntrospectionPayloadAsync(token);
                 }
 
-                // Allow for interception and handling of the token validated event.
-                var tokenValidatedContext = new TokenValidatedContext(Context, Options, ticket);
-                await Options.Events.TokenValidated(tokenValidatedContext);
-                if (tokenValidatedContext.HandledResponse)
+                if (payload == null || !payload.Value<bool>(OAuthIntrospectionConstants.Claims.Active))
                 {
-                    return AuthenticateResult.Success(tokenValidatedContext.Ticket);
+                    return AuthenticateResult.Fail("Authentication failed because the authorization " +
+                                                   "server rejected the access token.");
                 }
-                if (tokenValidatedContext.Skipped)
+
+                // Ensure that the access token was issued
+                // to be used with this resource server.
+                if (!await ValidateAudienceAsync(payload))
                 {
-                    Logger.LogInformation("Authentication was skipped by event processing.");
+                    return AuthenticateResult.Fail("Authentication failed because the access token " +
+                                                   "was not valid for this resource server.");
+                }
 
+                // Allow interception of the ticket creation process via events
+                var createTicketContext = new CreateTicketContext(Context, Options, payload);
+                await Options.Events.CreateTicket(createTicketContext);
+                if (createTicketContext.HandledResponse)
+                {
+                    return AuthenticateResult.Success(createTicketContext.Ticket);
+                }
+                if (createTicketContext.Skipped)
+                {
                     return AuthenticateResult.Skip();
                 }
 
-                // Flow the ticket changes
-                ticket = tokenValidatedContext.Ticket;
+                // Create a new authentication ticket from the introspection
+                // response returned by the authorization server.
+                ticket = createTicketContext.Ticket ?? await CreateTicketAsync(payload);
+                Debug.Assert(ticket != null);
 
-                // Ensure that the authentication ticket is still valid.
-                if (ticket.Properties.ExpiresUtc.HasValue &&
-                    ticket.Properties.ExpiresUtc.Value < Options.SystemClock.UtcNow) {
-                    return AuthenticateResult.Fail("Authentication failed because the access token was expired.");
-                }
+                await StoreTicketAsync(token, ticket);
+            }
 
-                return AuthenticateResult.Success(ticket);
+            // Allow for interception and handling of the token validated event.
+            var tokenValidatedContext = new TokenValidatedContext(Context, Options, ticket);
+            await Options.Events.TokenValidated(tokenValidatedContext);
+            if (tokenValidatedContext.HandledResponse)
+            {
+                return AuthenticateResult.Success(tokenValidatedContext.Ticket);
             }
-            catch (Exception exception)
+            if (tokenValidatedContext.Skipped)
             {
-                var authenticationFailedContext = new AuthenticationFailedContext(Context, Options) {
-                    Exception = exception
-                };
+                Logger.LogInformation("Authentication was skipped by event processing.");
 
-                await Options.Events.AuthenticationFailed(authenticationFailedContext);
-                if (authenticationFailedContext.HandledResponse) {
-                    return AuthenticateResult.Success(authenticationFailedContext.Ticket);
-                }
+                return AuthenticateResult.Skip();
+            }
 
-                if (authenticationFailedContext.Skipped) {
-                    return AuthenticateResult.Skip();
-                }
+            // Flow the ticket changes
+            ticket = tokenValidatedContext.Ticket;
 
-                Logger.LogInformation("Exception occurred while processing message", authenticationFailedContext.Exception);
-                throw authenticationFailedContext.Exception ?? exception;
+            // Ensure that the authentication ticket is still valid.
+            if (ticket.Properties.ExpiresUtc.HasValue &&
+                ticket.Properties.ExpiresUtc.Value < Options.SystemClock.UtcNow)
+            {
+                return AuthenticateResult.Fail("Authentication failed because the access token was expired.");
             }
+
+            return AuthenticateResult.Success(ticket);
         }
 
         protected virtual async Task<string> ResolveIntrospectionEndpointAsync(string issuer) {
 
@@ -9,11 +9,6 @@ public interface IOAuthValidationEvents
         /// </summary>
         Task AccessTokenReceived(AccessTokenReceivedContext context);
 
-        /// <summary>
-        /// Invoked if exceptions are thrown during request processing. The exceptions will be re-thrown after this event unless suppressed.
-        /// </summary>
-        Task AuthenticationFailed(AuthenticationFailedContext context);
-
         /// <summary>
         /// Invoked after processing, when a token has been validated.
         /// </summary>
 
@@ -9,11 +9,6 @@ public class OAuthValidationEvents : IOAuthValidationEvents
         /// </summary>
         public Func<AccessTokenReceivedContext, Task> OnAccessTokenReceived { get; set; } = context => Task.FromResult(0);
 
-        /// <summary>
-        /// Invoked if exceptions are thrown during request processing. The exceptions will be re-thrown after this event unless suppressed.
-        /// </summary>
-        public Func<AuthenticationFailedContext, Task> OnAuthenticationFailed { get; set; } = context => Task.FromResult(0);
-
         /// <summary>
         /// Invoked after processing, when a token has been validated.
         /// </summary>
@@ -29,11 +24,6 @@ public class OAuthValidationEvents : IOAuthValidationEvents
         /// </summary>
         public virtual Task AccessTokenReceived(AccessTokenReceivedContext context) => OnAccessTokenReceived(context);
 
-        /// <summary>
-        /// Invoked if exceptions are thrown during request processing. The exceptions will be re-thrown after this event unless suppressed.
-        /// </summary>
-        public virtual Task AuthenticationFailed(AuthenticationFailedContext context) => OnAuthenticationFailed(context);
-
         /// <summary>
         /// Invoked after processing, when a token has been validated.
         /// </summary>