private string SetRefreshToken(UserEntity user, string jwt)
{
var base64 = Convert.ToBase64String(Encoding.UTF8.GetBytes(jwt));
UsersRepository.AddRefreshToken(user, base64);
return(base64);
}
private string GenerateJwt(UserEntity user)
{
var key = Encoding.UTF8.GetBytes(AuthSettings.Secret);
var tokenDescriptor = new SecurityTokenDescriptor()
{
Subject = new ClaimsIdentity(new[] {
new Claim(ClaimTypes.Name, user.ID.ToString()),
new Claim(ClaimTypes.Role, user.Role.ToString())
}),
Expires = DateTime.UtcNow.AddDays(AuthSettings.ExpirationDays),
SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature),
Issuer = AuthSettings.Issuer
};
var tokenHandler = new JwtSecurityTokenHandler();
var token = tokenHandler.CreateToken(tokenDescriptor);
return(tokenHandler.WriteToken(token));
}
private bool IsValidPassword(UserEntity user, string password)
{
return(BCrypt.Net.BCrypt.Verify(password, user.Password));
}
