public string ValidateAccessToken(string value)
{
ACToken token = null;
string tokenBase64 = null;
string tokenSign = null;
try
{
var tokenparts = value.Split('.');
tokenBase64 = tokenparts[0];
tokenSign = tokenparts[1];
token = JsonConvert.DeserializeObject <ACToken>(tokenBase64.Base64ToString());
if (DateTime.UtcNow > token.Expires)
{
throw new AiurAPIModelException(ErrorType.Timeout, "Token was timed out!");
}
if (!_rsa.VerifyData(tokenBase64.Base64ToString(), tokenSign))
{
throw new AiurAPIModelException(ErrorType.Unauthorized, "Invalid signature! Token could not be authorized!");
}
}
catch
{
throw new AiurAPIModelException(ErrorType.Unauthorized, "Token was not in a valid format and can not be verified!");
}
return(token.AppId);
}
public (string, DateTime) GenerateAccessToken(string appId)
{
var token = new ACToken
{
AppId = appId,
Expires = DateTime.UtcNow + new TimeSpan(0, 20, 0)
};
var tokenJson = JsonConvert.SerializeObject(token, new JsonSerializerSettings
{
DateTimeZoneHandling = DateTimeZoneHandling.Utc,
ContractResolver = new DefaultContractResolver
{
NamingStrategy = new CamelCaseNamingStrategy()
}
});
var tokenBase64 = tokenJson.StringToBase64();
var tokenSign = _rsa.SignData(tokenJson);
return($"{tokenBase64}.{tokenSign}", token.Expires);
}
