changhuixu
/ core.module.ts
Created
July 26, 2020 02:47
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @NgModule({ | |
| declarations: [], | |
| imports: [CommonModule], | |
| providers: [ | |
| { | |
| provide: APP_INITIALIZER, | |
| useFactory: appInitializer, | |
| multi: true, | |
| deps: [AuthService], | |
| }, |
changhuixu
/ app-initializer.ts
Created
July 26, 2020 02:46
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| export function appInitializer(authService: AuthService) { | |
| return () => | |
| new Promise((resolve) => { | |
| console.log('refresh token on app start up') | |
| authService.refreshToken().subscribe().add(resolve); | |
| }); | |
| } |
changhuixu
/ unauthorized.interceptor.ts
Last active
August 6, 2020 00:24
changhuixu
/ jwt.interceptor.ts
Created
July 26, 2020 02:43
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @Injectable() | |
| export class JwtInterceptor implements HttpInterceptor { | |
| constructor(private authService: AuthService) {} | |
| intercept( | |
| request: HttpRequest<unknown>, | |
| next: HttpHandler | |
| ): Observable<HttpEvent<unknown>> { | |
| // add JWT auth header if a user is logged in for API requests | |
| const accessToken = localStorage.getItem('access_token'); |
changhuixu
/ app-routing.module.ts
Created
July 26, 2020 02:39
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const routes: Routes = [ | |
| // ... | |
| { path: 'demo-apis', component: DemoApisComponent, canActivate: [AuthGuard] }, | |
| ]; |
changhuixu
/ auth.guard.ts
Created
July 26, 2020 02:32
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @Injectable({ | |
| providedIn: 'root', | |
| }) | |
| export class AuthGuard implements CanActivate { | |
| constructor(private router: Router, private authService: AuthService) {} | |
| canActivate( | |
| next: ActivatedRouteSnapshot, | |
| state: RouterStateSnapshot | |
| ): |
changhuixu
/ auth.service.ts
Created
July 26, 2020 00:51
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| private storageEventListener(event: StorageEvent) { | |
| if (event.storageArea === localStorage) { | |
| if (event.key === 'logout-event') { | |
| this._user.next(null); | |
| } | |
| if (event.key === 'login-event') { | |
| location.reload(); | |
| } | |
| } | |
| } |
changhuixu
/ auth.service.ts
Last active
July 26, 2020 00:54
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @Injectable({ | |
| providedIn: 'root', | |
| }) | |
| export class AuthService implements OnDestroy { | |
| private readonly apiUrl = `${environment.apiUrl}api/account`; | |
| private timer: Subscription; | |
| private _user = new BehaviorSubject<ApplicationUser>(null); | |
| user$: Observable<ApplicationUser> = this._user.asObservable(); | |
| private storageEventListener(event: StorageEvent) { // ... } |
changhuixu
/ JwtAuthManager.cs
Last active
March 24, 2021 11:28
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| public JwtAuthResult Refresh(string refreshToken, string accessToken, DateTime now) | |
| { | |
| var (principal, jwtToken) = DecodeJwtToken(accessToken); | |
| if (jwtToken == null || !jwtToken.Header.Alg.Equals(SecurityAlgorithms.HmacSha256Signature)) | |
| { | |
| throw new SecurityTokenException("Invalid token"); | |
| } | |
| var userName = principal.Identity.Name; | |
| if (!_usersRefreshTokens.TryGetValue(refreshToken, out var existingRefreshToken)) |
changhuixu
/ AccountController.cs
Created
July 24, 2020 19:05
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [HttpPost("refresh-token")] | |
| [Authorize] | |
| public async Task<ActionResult> RefreshToken([FromBody] RefreshTokenRequest request) | |
| { | |
| try | |
| { | |
| var userName = User.Identity.Name; | |
| _logger.LogInformation($"User [{userName}] is trying to refresh JWT token."); | |
| if (string.IsNullOrWhiteSpace(request.RefreshToken)) |
NewerOlder