C# (CSharp) JwtManager.GenerateRefreshToken Examples

Example #1

File: AuthorizeAttribute.cs Project: csu-xiao-an/FinAPP

        public async Task OnAuthorizationAsync(AuthorizationFilterContext context)
        {
            var accessToken = context.HttpContext.Request.Headers["Authorization"].ToString().Replace("Bearer ", string.Empty);

            if (String.IsNullOrEmpty(accessToken))
            {
                throw new ApiException(HttpStatusCode.Unauthorized);
            }

            var claims = _jwtManager.GetClaims(accessToken);

            var _refreshToken = await _tokenRepository.GetTokenByUserId(claims.Id);

            if (!_jwtManager.IsValid(accessToken))
            {
                throw new SecurityTokenException();
            }

            if (_jwtManager.IsExpired(accessToken))
            {
                if (_jwtManager.IsExpired(_refreshToken.RefreshToken))
                {
                    var newRefreshToken = _jwtManager.GenerateRefreshToken(claims.Id, claims.Email, claims.Role);
                    await _jwtManager.UpdateAsync(claims.Id, newRefreshToken);

                    // throw new ValidationException(HttpStatusCode.Unauthorized, nameof(HttpStatusCode.Unauthorized)); unlogin when refresh is expired
                }

                throw new ValidationException(HttpStatusCode.Unauthorized, nameof(HttpStatusCode.Unauthorized));
            }
        }

Example #2

        public async Task <TokenResponse> Login()
        {
            if (Request == null ||
                Request.Headers == null ||
                Request.Headers.Authorization == null ||
                Request.Headers.Authorization.Scheme != "Basic" ||
                string.IsNullOrWhiteSpace(Request.Headers.Authorization.Parameter))
            {
                throw HttpExceptionHelper.BadRequest;
            }

            byte[] data          = Convert.FromBase64String(Request.Headers.Authorization.Parameter);
            string decodedString = Encoding.UTF8.GetString(data);

            int whitespace = decodedString.IndexOf(' ');

            if (whitespace < 1)
            {
                throw HttpExceptionHelper.BadRequest;
            }

            string email = decodedString.Substring(0, whitespace);

            string base64Password = decodedString.Substring(whitespace + 1);

            byte[] password = Convert.FromBase64String(base64Password);

            if (await userBusiness.CheckLoginData(email, password))
            {
                ClaimsPrincipal principal = new ClaimsPrincipal(new ClaimsIdentity(JwtScopes.Scopes.Select(x => new Claim(ClaimTypes.Role, x))));

                ClaimsPrincipal refreshPrincpal = new ClaimsPrincipal(new ClaimsIdentity(new[] { new Claim("email", email) }));

                TokenResponse response = new TokenResponse()
                {
                    refresh_token = JwtManager.GenerateRefreshToken(refreshPrincpal, new TimeSpan(30, 0, 0, 0)),
                    access_token  = JwtManager.GenerateAccessToken(principal, new TimeSpan(0, 30, 0))
                };

                return(response);
            }
            else
            {
                throw HttpExceptionHelper.Unauthorized;
            }
        }