public IActionResult Authenticate() { //for demo simplicity, use get and no args //todo: authenticate validation var success = _authService.Validate("test", "test"); if (!success) { return(BadRequest(new { message = "Username or password is incorrect" })); } //todo: get more client claim infos var generateTokenArgs = new GenerateTokenArgs(); generateTokenArgs.Id = _appSettings.Id; generateTokenArgs.Secret = _appSettings.Secret; //On successful authentication the Authenticate method generates a JWT(JSON Web Token) //using the JwtSecurityTokenHandler class that generates a token that is digitally signed using a secret key stored in appsettings.json. //The JWT token is returned to the client application which then must include it in the HTTP Authorization header of subsequent web api requests for authentication. var jwtSecurityTokenHelper = new JwtSecurityTokenHelper(); var token = jwtSecurityTokenHelper.GenerateToken(generateTokenArgs); return(Ok(token)); }
public IActionResult Authenticate() { //for demo simplicity, use get and no args //todo: authenticate validation var success = _authService.Validate("test", "test"); if (!success) { return(BadRequest(new { message = "Username or password is incorrect" })); } //todo: get more client claim infos var generateTokenArgs = new GenerateTokenArgs(); generateTokenArgs.Id = _appSettings.Id; generateTokenArgs.Secret = _appSettings.Secret; var basicAuthTokenHelper = new BasicAuthTokenHelper(); var generateToken = basicAuthTokenHelper.GenerateToken(generateTokenArgs.Id, generateTokenArgs.Secret); return(Ok(generateToken)); }