MVC with Owin JWT Identity

本文关键字:Identity JWT Owin with MVC | 更新日期: 2023-09-27 18:22:47

我正试图弄清楚如何从我的代币中获得索赔。我会尽量简短地解释

  • 我有一个HTML页面,它向我的web api、do和auth发布检查并返回JWT令牌
  • 当我取回令牌时,我想把它发送到不同的url,而我这样做的方式是使用querystring。我知道我可以使用cookie,但对于这个应用程序,我们不想使用它们。所以如果我的url看起来像这个http://somedomain/checkout/?token=bearer token comes here

我使用的是Owin middleware,这就是我目前拥有的

app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions
            {
                Provider = new ApplicationOAuthBearerAuthenticationProvider(),
            });
public class ApplicationOAuthBearerAuthenticationProvider
            : OAuthBearerAuthenticationProvider
        {
            public override Task RequestToken(OAuthRequestTokenContext context)
            {
                if (context == null)
                    throw new ArgumentNullException("context");
                var token = HttpContext.Current.Request.QueryString["token"];
                if (!string.IsNullOrEmpty(token))
                    context.Token = token;
                return Task.FromResult<object>(null);
            }
        }

但是我如何将ClaimsToken中取出,或者只检查IsAuthenticated

我在我的controller中尝试了以下内容只是为了检查,但IsAuthenticated总是false

var identity = (ClaimsIdentity) HttpContext.Current.GetOwinContext().Authentication.User.Identity;
  if (!identity.IsAuthenticated)
      return;
  var id = identity.FindFirst(ClaimTypes.NameIdentifier);

MVC with Owin JWT Identity

好吧,所以我设法弄清楚了。我上面的代码都运行得很好,但我需要添加UseJwtBearerAuthentication中间件。

我做的一件事最终改变了我原来的代码,那就是我把context.Token = token;改成了context.Request.Headers.Add("Authorization", new[] { string.Format("Bearer {0}", token) });

所以我的启动类是这样的。。。

public partial class Startup
    {
        public void Configuration(IAppBuilder app)
        {
            app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions
            {
                Provider = new ApplicationOAuthBearerAuthenticationProvider(),
            });
            app.UseJwtBearerAuthentication(JwtOptions());
            ConfigureAuth(app);
        }

        private static JwtBearerAuthenticationOptions JwtOptions()
        {
            var key = Encoding.UTF8.GetBytes(ConfigurationManager.AppSettings["auth:key"]);
            var jwt = new JwtBearerAuthenticationOptions
            {
                AuthenticationMode = AuthenticationMode.Active,
                TokenValidationParameters = new TokenValidationParameters
                {
                    ValidAudience = Some Audience,
                    ValidIssuer = Some Issuer,
                    IssuerSigningToken = new BinarySecretSecurityToken(key),
                    RequireExpirationTime = false,
                    ValidateLifetime = false
                }
            };
            return jwt;
        }
        public class ApplicationOAuthBearerAuthenticationProvider
            : OAuthBearerAuthenticationProvider
        {
            public override Task RequestToken(OAuthRequestTokenContext context)
            {
                if (context == null)
                    throw new ArgumentNullException("context");
                var token = HttpContext.Current.Request.QueryString["token"];
                if (!string.IsNullOrEmpty(token))
                    context.Request.Headers.Add("Authorization", new[] { string.Format("Bearer {0}", token) });
                return Task.FromResult<object>(null);
            }
        }
    }
相关文章: