/// <summary>
/// Creates a JsonWebToken (JWE or JWS). Raw header value is passed in as one of the parameters for testing purposes.
/// Will be removed when this is released.
/// </summary>
private string CreateJsonWebToken(JObject payload, SigningCredentials signingCredentials, EncryptingCredentials encryptingCredentials, string rawHeader)
{
if (payload == null)
{
throw LogHelper.LogArgumentNullException(nameof(payload));
}
if (rawHeader == null)
{
throw LogHelper.LogArgumentNullException(nameof(rawHeader));
}
string rawPayload = Base64UrlEncoder.Encode(Encoding.UTF8.GetBytes(payload.ToString(Newtonsoft.Json.Formatting.None)));
string rawSignature = signingCredentials == null ? string.Empty : JwtTokenUtilities.CreateEncodedSignature(string.Concat(rawHeader, ".", rawPayload), signingCredentials);
var rawData = rawHeader + "." + rawPayload + "." + rawSignature;
if (encryptingCredentials != null)
{
return(EncryptToken(rawData, encryptingCredentials));
}
else
{
return(rawData);
}
}
/// <summary>
/// Creates a JsonWebToken (JWS or JWE).
/// </summary>
/// <param name="payload">A JObject that represents the JWT token payload.</param>
/// <param name="signingCredentials">Defines the security key and algorithm that will be used to sign the JWT.</param>
/// <param name="encryptingCredentials">Defines the security key and algorithm that will be used to encrypt the JWT.</param>
/// <returns>A JWT in compact serialization format.</returns>
private string CreateJsonWebToken(JObject payload, SigningCredentials signingCredentials, EncryptingCredentials encryptingCredentials)
{
if (payload == null)
{
throw LogHelper.LogArgumentNullException(nameof(payload));
}
string rawHeader;
if (!JsonWebTokenManager.KeyToHeaderCache.TryGetValue(JsonWebTokenManager.GetHeaderCacheKey(signingCredentials), out rawHeader))
{
var header = signingCredentials == null ? new JObject() : new JObject
{
{ JwtHeaderParameterNames.Alg, signingCredentials.Algorithm },
{ JwtHeaderParameterNames.Kid, signingCredentials.Key.KeyId },
{ JwtHeaderParameterNames.Typ, JwtConstants.HeaderType }
};
rawHeader = Base64UrlEncoder.Encode(Encoding.UTF8.GetBytes(header.ToString(Newtonsoft.Json.Formatting.None)));
JsonWebTokenManager.KeyToHeaderCache.TryAdd(JsonWebTokenManager.GetHeaderCacheKey(signingCredentials), rawHeader);
}
string rawPayload = Base64UrlEncoder.Encode(Encoding.UTF8.GetBytes(payload.ToString(Newtonsoft.Json.Formatting.None)));
string rawSignature = signingCredentials == null ? string.Empty : JwtTokenUtilities.CreateEncodedSignature(string.Concat(rawHeader, ".", rawPayload), signingCredentials);
var rawData = rawHeader + "." + rawPayload + "." + rawSignature;
if (encryptingCredentials != null)
{
return(EncryptToken(rawData, encryptingCredentials));
}
else
{
return(rawData);
}
}