Commit 611afa9

committed

Initial RBAC implementaion done.

1 parent e65c0f6 commit 611afa9Copy full SHA for 611afa9

File tree

3 files changed

+19

-10

lines changed

server
- AuthWebApplication/AuthWebApplication/Controllers
  - AuthorizeTokenController.cs
- WebApplication2/WebApplication2
  - Attributes
    - TokenAuthorizeAttribute.cs
  - appsettings.json

3 files changed

+19

-10

lines changed

`‎server/AuthWebApplication/AuthWebApplication/Controllers/AuthorizeTokenController.cs`

Lines changed: 9 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -1,18 +1,21 @@`
`1`	`1`	`using System;`
`2`	`2`	`using System.Collections.Generic;`
`3`	`3`	`using System.Linq;`
	`4`	`+using System.Security.Claims;`
`4`	`5`	`using System.Threading.Tasks;`
`5`	`6`	`using AuthWebApplication.Models.ViewModels;`
`6`	`7`	`using AuthWebApplication.Services;`
`7`	`8`	`using Microsoft.AspNetCore.Authentication;`
`8`	`9`	`using Microsoft.AspNetCore.Authorization;`
`9`	`10`	`using Microsoft.AspNetCore.Http;`
`10`	`11`	`using Microsoft.AspNetCore.Mvc;`
	`12`	`+using Microsoft.IdentityModel.JsonWebTokens;`
`11`	`13`	`using Newtonsoft.Json;`
`12`	`14`	`using Newtonsoft.Json.Linq;`
`13`	`15`
`14`	`16`	`namespace AuthWebApplication.Controllers`
`15`	`17`	`{`
	`18`	`+ [Authorize]`
`16`	`19`	`[Route("api/[controller]")]`
`17`	`20`	`[ApiController]`
`18`	`21`	`public class AuthorizeTokenController : ControllerBase`
`@@ -24,8 +27,13 @@ public AuthorizeTokenController(RedisService redisService)`
`24`	`27`	`this.redisService = redisService;`
`25`	`28`	`}`
`26`	`29`
`27`		`- public async Task<IActionResult> Get(string userName,stringjti,stringresource)`
	`30`	`+ public async Task<IActionResult> Get(string resource)`
`28`	`31`	`{`
	`32`	`+ var userName = this.User.Identity.Name;`
	`33`	`+ var claimsIdentity = this.User.Identities.First() as ClaimsIdentity;`
	`34`	`+ var claim = claimsIdentity.Claims.First(x => x.Type == JwtRegisteredClaimNames.Jti);`
	`35`	`+ var jti = claim.Value;`
	`36`	`+`
`29`	`37`	`var inValid = string.IsNullOrWhiteSpace(userName) \|\| string.IsNullOrWhiteSpace(jti) \|\| string.IsNullOrWhiteSpace(resource);`
`30`	`38`	`if (inValid)`
`31`	`39`	`{`

`‎server/WebApplication2/WebApplication2/Attributes/TokenAuthorizeAttribute.cs`

Lines changed: 9 additions & 8 deletions

Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,8 @@`
`3`	`3`	`using System.Linq;`
`4`	`4`	`using System.Net;`
`5`	`5`	`using System.Net.Http;`
	`6`	`+using System.Net.Http.Headers;`
	`7`	`+using System.Security.Claims;`
`6`	`8`	`using Microsoft.AspNetCore.Authorization;`
`7`	`9`	`using Microsoft.AspNetCore.Mvc;`
`8`	`10`	`using Microsoft.AspNetCore.Mvc.Filters;`
`@@ -15,14 +17,13 @@ public class TokenAuthorizeAttribute : AuthorizeAttribute, IAuthorizationFilter`
`15`	`17`	`{`
`16`	`18`	`public void OnAuthorization(AuthorizationFilterContext context)`
`17`	`19`	`{`
`18`		`- var claims = (context.HttpContext.User.Identity as System.Security.Claims.ClaimsIdentity).Claims.ToList();`
`19`		`- var claim = claims.FirstOrDefault(x => x.Type == JwtRegisteredClaimNames.Jti);`
`20`		`- var jti = claim.Value;`
`21`		`- string authServerUrl = Constants.AuthServer;`
`22`		`- string resource = context.HttpContext.Request.Path.Value;`
`23`		`- var name = context.HttpContext.User.Identity.Name;`
`24`		`- string url = $"{authServerUrl}/api/AuthorizeToken?userName={name}&jti={jti}&resource={resource}";`
`25`		`- HttpClient client = new HttpClient();`
	`20`	`+ var authServerUrl = Constants.AuthServer;`
	`21`	`+ var resource = context.HttpContext.Request.Path.Value;`
	`22`	`+ var url = $"{authServerUrl}/api/AuthorizeToken?resource={resource}";`
	`23`	`+`
	`24`	`+ using var client = new HttpClient();`
	`25`	`+ client.DefaultRequestHeaders.Authorization = AuthenticationHeaderValue.Parse(context.HttpContext.Request.Headers["Authorization"].ToString());`
	`26`	`+`
`26`	`27`	`try`
`27`	`28`	`{`
`28`	`29`	`var httpResponseMessage = client.GetAsync(url).GetAwaiter().GetResult();`

`‎server/WebApplication2/WebApplication2/appsettings.json`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -12,5 +12,5 @@`
`12`	`12`	`}`
`13`	`13`	`},`
`14`	`14`	`"AllowedHosts": "*",`
`15`		`- "AuthServer": "http://localhost:5000"`
	`15`	`+ "AuthServer": "https://localhost:5001"`
`16`	`16`	`}`

0 commit comments

Comments

(0)

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit 611afa9

File tree

3 files changed

3 files changed

`‎server/AuthWebApplication/AuthWebApplication/Controllers/AuthorizeTokenController.cs`

`‎server/WebApplication2/WebApplication2/Attributes/TokenAuthorizeAttribute.cs`

`‎server/WebApplication2/WebApplication2/appsettings.json`

0 commit comments