Last active
September 1, 2021 08:04
-
-
Save nenoNaninu/d0d2e5525b0968bef0c0e5c89b5d7007 to your computer and use it in GitHub Desktop.
BlogAuthenticationJwt.cs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
using Microsoft.AspNetCore.Authentication; | |
using Microsoft.AspNetCore.Authentication.JwtBearer; | |
using Microsoft.IdentityModel.Tokens; | |
using System.IdentityModel.Tokens.Jwt; | |
using System.Security.Claims; | |
using System.Security.Cryptography; | |
var builder = WebApplication.CreateBuilder(args); | |
// Add services to the container. | |
builder.Services.AddControllers(); | |
var keyBytes = new byte[64]; | |
RandomNumberGenerator.Fill(keyBytes); | |
builder.Services | |
.AddAuthentication() | |
.AddJwtBearer(JwtBearerDefaults.AuthenticationScheme, options => | |
{ | |
options.TokenValidationParameters = new TokenValidationParameters() | |
{ | |
ValidateIssuerSigningKey = true, | |
ValidateLifetime = true, | |
ValidateIssuer = true, | |
ValidateAudience = false, | |
ValidIssuer = "hoge", | |
ValidAudience = "fuga", | |
IssuerSigningKey = new SymmetricSecurityKey(keyBytes), | |
}; | |
}); | |
var app = builder.Build(); | |
// Configure the HTTP request pipeline. | |
app.Map("/", async (HttpContext context) => | |
{ | |
var authResult = await context.AuthenticateAsync(JwtBearerDefaults.AuthenticationScheme); | |
var principal = authResult.Principal; | |
var identity = principal?.Identity; | |
if (identity?.IsAuthenticated ?? false) | |
{ | |
var name = principal!.FindFirst(ClaimTypes.Name)!.Value; | |
return $"wellcome {name}"; | |
} | |
else | |
{ | |
var claims = new[] { | |
new Claim(ClaimTypes.Name, "sample"), | |
}; | |
var key = new SymmetricSecurityKey(keyBytes); | |
var credentials = new SigningCredentials(key, SecurityAlgorithms.HmacSha256); | |
var header = new JwtHeader(credentials); | |
var payload = new JwtPayload("hoge", "fuga", claims, null, DateTime.Now.AddMinutes(1)); | |
var token = new JwtSecurityToken(header, payload); | |
var handler = new JwtSecurityTokenHandler(); | |
return handler.WriteToken(token); | |
} | |
}); | |
app.Run(); |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment