public async Task Invoke(HttpContext context)
{
var authorization = context.Request.Headers["Authorization"].FirstOrDefault();
if (!string.IsNullOrEmpty(authorization))
{
var schemeIndex = authorization.IndexOf(' ');
if (schemeIndex == -1)
{
insight.Error("JwtAuthenticationMiddleware", "Invalid({0})", authorization);
}
else
{
var scheme = authorization.Substring(0, schemeIndex);
var token = authorization.Substring(schemeIndex + 1);
var identity = await service.ValidateTokenAsync(CallContext.ClientContext, scheme, token);
if (identity == null || !identity.IsAuthenticated)
{
insight.Error("JwtAuthenticationMiddleware", "Unauthorized({0})", authorization);
}
else
{
var principal = new ClaimsPrincipal(identity);
context.User = principal;
}
}
}
await next(context);
}