asp.net web api - c#: JWT ValidateToken overriding? -

-

i have setup token authentication process , working quite well. using owin.

i extending 2 specific points lets me control signing of jwt , validating of user credentials so.

            provider = new myoauthprovider(),             accesstokenformat = new myjwtformatter()

how hook part token being validated. searched google , appears there method can't validatetoken can override don't know is.

i have following. need override here ?

        app.usejwtbearerauthentication(             new jwtbearerauthenticationoptions                 {                     authenticationmode = authenticationmode.active,                     allowedaudiences = new[] { audience },                     issuersecuritytokenproviders =                         new iissuersecuritytokenprovider[]                             {                                 new symmetrickeyissuersecuritytokenprovider(                                     issuer,                                     secret)                             }                 });

if has clue of missing appreciate info. of things have found support doing not hooking token authentication.

i believe using internal jwttokenhandler, presume can override or something?

here's simple jwt validation class based on: google sign-in websites

using system; using system.collections.generic; using system.identitymodel.tokens; using system.linq; using system.net.http; using system.web; using system.web.configuration; using newtonsoft.json; using system.net; using system.threading.tasks; using system.threading; using services.models; using system.security.claims;  namespace services {     /// <summary>     ///  implementation of google jwt verification     ///  demonstrates:     ///    - jwt validation     /// </summary>     /// @author kunal.bajpai@gmail.com (kunal bajpai)       public class customjwthandler : delegatinghandler     {         string issuer = webconfigurationmanager.appsettings["googledomain"];         string audience = webconfigurationmanager.appsettings["googleclientid"];          /// <summary>         ///          /// </summary>         /// <param name="request"></param>         /// <param name="cancellationtoken"></param>         /// <returns></returns>         protected override task<httpresponsemessage> sendasync(httprequestmessage request, cancellationtoken cancellationtoken)         {             httpstatuscode statuscode;             string token;              var authheader = request.headers.authorization;             if (authheader == null)             {                 // missing authorization header                 return base.sendasync(request, cancellationtoken);             }              if (!tryretrievetoken(request, out token))             {                 return task<httpresponsemessage>.factory.startnew(() => new httpresponsemessage(httpstatuscode.unauthorized));             }              try             {                 validatetoken(token);                 return base.sendasync(request, cancellationtoken);             }             catch (securitytokeninvalidaudienceexception)             {                 statuscode = httpstatuscode.unauthorized;             }             catch (securitytokenvalidationexception)             {                 statuscode = httpstatuscode.unauthorized;             }             catch (exception e)             {                 statuscode = httpstatuscode.internalservererror;             }              return task<httpresponsemessage>.factory.startnew(() => new httpresponsemessage(statuscode));         }         /// <summary>         /// validates jwt token         /// </summary>         /// <param name="token"></param>         private void validatetoken(string token)         {             try             {                 using (webclient wc = new webclient())                 {                     tokeninfo tokeninfo = jsonconvert.deserializeobject<tokeninfo>(wc.downloadstring("https://www.googleapis.com/oauth2/v3/tokeninfo?id_token=" + token));                      list<claim> claims = new list<claim> {                         new claim(claimtypes.name, tokeninfo.name),                         new claim(claimtypes.email, tokeninfo.email),                         new claim(claimtypes.givenname, tokeninfo.givenname),                         new claim(claimtypes.surname, tokeninfo.familyname),                     };                      claimsprincipal claimsprincipal = new claimsprincipal(new claimsidentity(claims, tokeninfo.issuer));                     thread.currentprincipal = claimsprincipal;                     httpcontext.current.user = claimsprincipal;                 }             }             catch (webexception e)             {                 httpstatuscode statuscode = ((httpwebresponse)e.response).statuscode;                 if (statuscode == httpstatuscode.badrequest)                 {                     throw new securitytokenvalidationexception();                 }                 else                 {                     throw new exception();                 }             }         }         /// <summary>         /// tries retrieve token         /// </summary>         /// <param name="request"></param>         /// <param name="token"></param>         /// <returns></returns>         private static bool tryretrievetoken(httprequestmessage request, out string token)         {             token = null;             ienumerable<string> authorizationheaders;              if (!request.headers.trygetvalues("authorization", out authorizationheaders) ||             authorizationheaders.count() > 1)             {                 return false;             }              var bearertoken = authorizationheaders.elementat(0);             token = bearertoken.startswith("bearer ") ? bearertoken.substring(7) : bearertoken;             return true;         }     } }

Comments

Post a Comment

Popular posts from this blog

How has firefox/gecko HTML+CSS rendering changed in version 38? -

-
i have a little website header no longer renders correctly, since updating firefox 38.0.5 [the faceplant logo missing top right, , main logo no longer centred]. still renders expected in other browsers. how has engine's rendering changed in update? according mdn , list of changes is: css support ruby-position , ruby-align have been added , available default ( bug 1055676 , bug 1123917 , bug 1039006 ). the :unresolved pseudo-class has been implemented custom elements ( bug 1111633 ). the predefined style ethiopic-numeric uses space, instead of dot, suffix match recent change spec ( bug 1120721 ). css transitions on generated content (with ::before , ::after ) on both inline , block splits them start expected specification ( bug 1110277 ). the implementation of css logical properties made big progress. [...] how css transitions start has been modified match recent change of specifications, aiming @ having interoperable behavio
Read more

javascript - Complex json ng-repeat -

-
i try ng-repeat on object, tried several times still stuck. if have idea, , if it's possible share tips kind of situation. [ { "abonnement": { "id": "1", "nom": "bas prix", "tarif": "2.49", "communication": "2h de communication", "vers": "vers fixes et mobiles", "zone": "zone nationale" } }, { "abonnement": { "id": "2", "nom": "national", "tarif": "9.99", "communication": "t\u00e9l\u00e9phonie et sms illimit\u00e9s", "vers": "vers fixes et mobiles", "zone": "zone nationale" } }, { "abonnement": { "id": "3", "nom": "euro", "tarif&
Read more

jquery - Cloning of rows and columns from the old table into the new with colSpan and rowSpan -

-
i using clone jquery. necessary clone gray area in new table. problem cloned rows , columns can has rowspan , colspan. the gray area intersection data-fix-cols , data-fix-rows. my solution not work: <table id="old-table" data-fix-cols='3' data-fix-rows='4'> <tbody> <tr> <td class="gray">clone me</td> <td colspan="2" rowspan="2" class="gray">clone me</td> <td>ashgabat</td> <td>barcelona</td> <td>berlin</td> </tr> <tr> <td rowspan="3" class="gray">clone me</td> <td>bucharest</td> <td>warsaw</td> <td>washington</td> </tr> <tr> <td class="gray">clone me</td>
Read more