feat: add anonymous access level to local test (#8413)

Co-authored-by: Ronny Birkeli <[email protected]>

src/Controllers/HomeController.cs

@@ -103,22 +103,25 @@ public IActionResult Error()
         [HttpPost]
         public async Task<ActionResult> LogInTestUser(StartAppModel startAppModel)
         {
-            UserProfile profile = await _userProfileService.GetUser(startAppModel.UserId);
-
-            List<Claim> claims = new List<Claim>();
-            string issuer = _generalSettings.Hostname;
-            claims.Add(new Claim(ClaimTypes.NameIdentifier, profile.UserId.ToString(), ClaimValueTypes.String, issuer));
-            claims.Add(new Claim(AltinnCoreClaimTypes.UserId, profile.UserId.ToString(), ClaimValueTypes.String, issuer));
-            claims.Add(new Claim(AltinnCoreClaimTypes.UserName, profile.UserName, ClaimValueTypes.String, issuer));
-            claims.Add(new Claim(AltinnCoreClaimTypes.PartyID, profile.PartyId.ToString(), ClaimValueTypes.Integer32, issuer));
-            claims.Add(new Claim(AltinnCoreClaimTypes.AuthenticationLevel, startAppModel.AuthenticationLevel, ClaimValueTypes.Integer32, issuer));
-
-            ClaimsIdentity identity = new ClaimsIdentity(_generalSettings.GetClaimsIdentity);
-            identity.AddClaims(claims);
-            ClaimsPrincipal principal = new ClaimsPrincipal(identity);
-
-            string token = _authenticationService.GenerateToken(principal, int.Parse(_generalSettings.GetJwtCookieValidityTime));
-            CreateJwtCookieAndAppendToResponse(token);
+            if (startAppModel.AuthenticationLevel != "-1")
+            {
+                UserProfile profile = await _userProfileService.GetUser(startAppModel.UserId);
+
+                List<Claim> claims = new List<Claim>();
+                string issuer = _generalSettings.Hostname;
+                claims.Add(new Claim(ClaimTypes.NameIdentifier, profile.UserId.ToString(), ClaimValueTypes.String, issuer));
+                claims.Add(new Claim(AltinnCoreClaimTypes.UserId, profile.UserId.ToString(), ClaimValueTypes.String, issuer));
+                claims.Add(new Claim(AltinnCoreClaimTypes.UserName, profile.UserName, ClaimValueTypes.String, issuer));
+                claims.Add(new Claim(AltinnCoreClaimTypes.PartyID, profile.PartyId.ToString(), ClaimValueTypes.Integer32, issuer));
+                claims.Add(new Claim(AltinnCoreClaimTypes.AuthenticationLevel, startAppModel.AuthenticationLevel, ClaimValueTypes.Integer32, issuer));
+
+                ClaimsIdentity identity = new ClaimsIdentity(_generalSettings.GetClaimsIdentity);
+                identity.AddClaims(claims);
+                ClaimsPrincipal principal = new ClaimsPrincipal(identity);
+
+                string token = _authenticationService.GenerateToken(principal, int.Parse(_generalSettings.GetJwtCookieValidityTime));
+                CreateJwtCookieAndAppendToResponse(token);
+            }
 
             Application app = await _localApp.GetApplicationMetadata(startAppModel.AppPathSelection);
 
@@ -247,6 +250,12 @@ private List<SelectListItem> GetAuthenticationLevels(int defaultAuthLevel)
         {
             return new()
             {
+                new()
+                {
+                    Value = "-1",
+                    Text = "Ikke autentisert",
+                    Selected = defaultAuthLevel == -1
+                },
                 new()
                 {
                     Value = "0",

src/Views/Home/Index.cshtml

@@ -80,7 +80,7 @@
         <label for="exampleInputEmail1">Select your authentication level</label>
         @Html.DropDownListFor(model => model.AuthenticationLevel, Model.AuthenticationLevels, new { Class = "form-control" })
       </div>
-      <button type="submit" class="btn btn-primary">Sign in</button>
+      <button type="submit" class="btn btn-primary">Proceed to app</button>
     }
 
     <div class="alert alert-light" role="alert">