void IActionFilter.OnActionExecuting(ActionExecutingContext filterContext)
{
HttpSessionStateBase session = filterContext.HttpContext.Session;
Controller controller = filterContext.Controller as Controller;
BackofficeUser bou = SessionHelper.Get <BackofficeUser>("bou");
if (bou != null)
{
BackofficeHelper boh = new BackofficeHelper();
Callback cb = boh.isUserLoggedIn(bou);
if (!cb.success)
{
controller.HttpContext.Response.Redirect("/backoffice/login");
filterContext.Result = new EmptyResult();
}
}
else
{
controller.HttpContext.Response.Redirect("/backoffice/login");
filterContext.Result = new EmptyResult();
}
this.OnActionExecuting(filterContext);
}
public Token Create(BackofficeUser user)
{
var claims = new[]
{
new Claim(ClaimTypes.NameIdentifier, user.Id.ToString()),
new Claim(ClaimTypes.Email, user.Email)
};
var tokenDescriptor = new SecurityTokenDescriptor
{
Subject = new ClaimsIdentity(claims),
Expires = DateTime.UtcNow.AddHours(1),
SigningCredentials = new SigningCredentials(
new SymmetricSecurityKey(jsonWebTokenSecretKey),
SecurityAlgorithms.HmacSha256Signature)
};
var createdToken = tokenHandler.CreateToken(tokenDescriptor);
return(new Token(value: tokenHandler.WriteToken(createdToken)));
}
