dj-nitehawk/Program.cs

## Program.cs
bld.Services.AddAuthenticationJwtBearer(
       s =>
       {
           s.SigningKey = "base64 encoded public key";
           s.SigningStyle = TokenSigningStyle.Asymmetric;
           s.KeyIsPemEncoded = true; // only if public key is in PEM format
       },
       b =>
       {
           b.TokenValidationParameters.ValidIssuer = "issuer";
           b.TokenValidationParameters.ValidAudience = "audience";
       })

## TokenCreation.cs
var token = JwtBearer.CreateToken(
    o =>
    {
        o.SigningKey = "base64 encoded private key";
        o.SigningStyle = TokenSigningStyle.Asymmetric;
        o.SigningAlgorithm = SecurityAlgorithms.RsaSha256;
        o.Issuer = "issuer";
        o.Audience = "audience";
        o.ExpireAt = DateTime.UtcNow.AddDays(1);
        o.User.Claims.Add(("Claim Type", "Claim Value"));
        o.User.Permissions.Add("Perm1", "Perm2", "Perm3");
        o.User.Roles.Add("Role1", "Role2");
    });
	bld.Services.AddAuthenticationJwtBearer(
	s =>
	{
	s.SigningKey = "base64 encoded public key";
	s.SigningStyle = TokenSigningStyle.Asymmetric;
	s.KeyIsPemEncoded = true; // only if public key is in PEM format
	},
	b =>
	{
	b.TokenValidationParameters.ValidIssuer = "issuer";
	b.TokenValidationParameters.ValidAudience = "audience";
	})
	var token = JwtBearer.CreateToken(
	o =>
	{
	o.SigningKey = "base64 encoded private key";
	o.SigningStyle = TokenSigningStyle.Asymmetric;
	o.SigningAlgorithm = SecurityAlgorithms.RsaSha256;
	o.Issuer = "issuer";
	o.Audience = "audience";
	o.ExpireAt = DateTime.UtcNow.AddDays(1);
	o.User.Claims.Add(("Claim Type", "Claim Value"));
	o.User.Permissions.Add("Perm1", "Perm2", "Perm3");
	o.User.Roles.Add("Role1", "Role2");
	});