e-suite/Backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
90b23f939c
Backend/e-suite.API/eSuite.API/Middleware/AuthenticationExtension.cs
Colin Dawson 5aa0151c59 Initial commit
2026-01-20 21:50:10 +00:00

56 lines
2.2 KiB
C#
Raw Blame History

using System.Text;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.IdentityModel.Tokens;
namespace eSuite.API.Middleware;
/// <summary>
/// Methods used to extend WebAPI authentication to use the Bearer token.
/// </summary>
internal static class AuthenticationExtension
{
public const string SessionCookieName = "eSuiteSession";
/// <summary>
/// Adds support for JWT Tokens passed as Bearer to the application.
/// </summary>
/// <param name="builder"></param>
public static void AddTokenAuthentication(this WebApplicationBuilder builder)
{
builder.Services.AddAuthentication(options =>
{
options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
options.DefaultScheme = JwtBearerDefaults.AuthenticationScheme;
})
.AddJwtBearer(options =>
{
options.SaveToken = true;
options.RequireHttpsMetadata = true;
options.TokenValidationParameters = new TokenValidationParameters
{
ValidateIssuer = true,
ValidateAudience = true,
ValidateIssuerSigningKey = true,
ValidateLifetime = true,
ValidAudience = builder.Configuration["JwtConfig:audience"],
ValidIssuer = builder.Configuration["JwtConfig:issuer"],
IssuerSigningKey =
new SymmetricSecurityKey(Encoding.UTF8.GetBytes(builder.Configuration["JwtConfig:secret"]!)),
ClockSkew = TimeSpan.FromSeconds(5)
};
options.Events = new JwtBearerEvents
{
OnMessageReceived = context =>
{
if (context.Request.Cookies.ContainsKey(SessionCookieName))
{
context.Token = context.Request.Cookies[SessionCookieName];
}
return Task.CompletedTask;
}
};
});
}
}
Reference in New Issue View Git Blame Copy Permalink