Jwt Document Retriever

DocumentRetriever.cs

var authConfig = configuration.GetSection("AuthConfiguration").Get<AuthConfiguration>();

var metadataAddress = authConfig.Authority;

if (!metadataAddress.EndsWith("/", StringComparison.Ordinal))
{
    metadataAddress += "/";
}

metadataAddress += ".well-known/openid-configuration";

var httpClientRetriever = new HttpClient() { Timeout = TimeSpan.FromMinutes(1) };
var configurationRetriever = new OpenIdConnectConfigurationRetriever();
var httpRetriever = new HttpDocumentRetriever(httpClientRetriever) { RequireHttps = false };

var configManager = new ConfigurationManager<OpenIdConnectConfiguration>(metadataAddress, configurationRetriever, httpRetriever);
services.AddSingleton<IConfigurationManager<OpenIdConnectConfiguration>>((provider) => configManager);

JwtSecurityTokenHandler.DefaultInboundClaimTypeMap.Clear();

services.AddAuthentication(authOptions =>
{
    authOptions.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
    authOptions.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
}).AddJwtBearer(bearerOptions =>
{
    bearerOptions.Authority = authConfig.Authority;
    bearerOptions.Audience = authConfig.Audience;
    bearerOptions.ConfigurationManager = configManager;
});