public AuthenticationService(AuthenticationServiceOptions options, UserManager <PasswordlessAuthIdentityUser> userManager, IConfiguration config, ILogger <AuthenticationService> logger)
{
Options = options;
_userManager = userManager;
_emailSettings = config.GetSection("Email").Get <EmailSettings>();
_logger = logger;
}
public void ConfigureServices(IServiceCollection services)
{
AuthenticationServiceOptions authenticationServiceOptions = new AuthenticationServiceOptions {
BearerTokenSecurityKey = Configuration["BearerTokenSecurityKey"] ?? "4E76C132-10DD-4443-9C63-2F8C93BDD40C-9BB5C488-A01C-4ED2-953D-23675A15E4A4-474E1D77-AD03-4C82-AAD5-E89D78016BFA"
};
services.AddDbContext <PasswordlessAuthDbContext>(options =>
{
if (HostingEnvironment.EnvironmentName.Equals("Test", StringComparison.CurrentCultureIgnoreCase))
{
authenticationServiceOptions.BearerAccessTokenLifespan = TimeSpan.FromSeconds(3);
authenticationServiceOptions.BearerRefreshTokenLifespan = TimeSpan.FromSeconds(5);
options.UseInMemoryDatabase("Hyprsoft.Auth.Passwordless");
}
else
{
options.UseSqlite(Configuration.GetConnectionString("DefaultConnection"));
}
});
services.AddIdentity <PasswordlessAuthIdentityUser, IdentityRole>()
.AddEntityFrameworkStores <PasswordlessAuthDbContext>()
.AddDefaultTokenProviders();
services.Configure <DataProtectionTokenProviderOptions>(options => options.TokenLifespan = authenticationServiceOptions.OtpTokenLifespan);
services.ConfigureApplicationCookie(options => options.ForwardForbid = JwtBearerDefaults.AuthenticationScheme);
services.AddHttpsRedirection(options => options.HttpsPort = 443);
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme).AddJwtBearer(options =>
{
options.TokenValidationParameters = new TokenValidationParameters
{
ClockSkew = authenticationServiceOptions.BearerTokenClockSkew,
ValidateIssuer = true,
ValidateAudience = true,
ValidateLifetime = true,
ValidateIssuerSigningKey = true,
ValidIssuer = authenticationServiceOptions.BearerTokenIssuer,
ValidAudience = authenticationServiceOptions.BearerTokenAudience,
IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(authenticationServiceOptions.BearerTokenSecurityKey))
};
options.Events = new JwtBearerEvents
{
OnAuthenticationFailed = context =>
{
if (context.Exception.GetType() == typeof(SecurityTokenExpiredException))
{
context.Response.Headers.Add("Token-Expired", "true");
}
return(Task.CompletedTask);
}
};
});
services.Configure <RouteOptions>(options => options.LowercaseUrls = true);
services.AddSingleton(authenticationServiceOptions);
services.AddScoped <AuthenticationService>();
services.AddMvc().SetCompatibilityVersion(CompatibilityVersion.Version_2_2);
services.AddSwaggerGen(options =>
{
options.SwaggerDoc("v1", new Info
{
Title = "Pwdless Authentication REST API",
Version = "v1",
Description = "Password-less Authentication REST API.",
Contact = new Contact {
Name = "Hyprsoft Corporation", Email = "*****@*****.**", Url = "http://www.hyprsoft.com/"
}
});
options.AddSecurityDefinition("Bearer", new ApiKeyScheme
{
Description = "Value below should be in the form: \"Bearer <your token>\"",
Name = "Authorization",
In = "header",
Type = "apiKey"
});
options.AddSecurityRequirement(new Dictionary <string, IEnumerable <string> > {
{ "Bearer", new string[] { } }
});
options.IncludeXmlComments(Path.Combine(AppContext.BaseDirectory, $"{typeof(Hyprsoft.Auth.Passwordless.App).Assembly.GetName().Name}.xml"));
options.IncludeXmlComments(Path.Combine(AppContext.BaseDirectory, $"{Assembly.GetExecutingAssembly().GetName().Name}.xml"));
});
}
