public new void OnAuthorization(AuthorizationFilterContext context)
{
var token = context.HttpContext.Request.Headers.ContainsKey("Authorization");
if (token)
{
var tokenHandler = new JwtSecurityTokenHandler();
var tokenHeader = context.HttpContext.Request.Headers["Authorization"].FirstOrDefault()?.Split(" ").Last();
if (!JwtMiddleware.Validate(tokenHeader) || !JwtMiddleware.ValidateIsAdmin(tokenHeader))
{
context.Result = new JsonResult(new { message = "Unauthorized" })
{
StatusCode = StatusCodes.Status401Unauthorized
};
}
}
else
{
// not logged in
context.Result = new JsonResult(new { message = "Unauthorized" })
{
StatusCode = StatusCodes.Status401Unauthorized
};
}
}
public void OnAuthorization(AuthorizationFilterContext context)
{
var token = context.HttpContext.Request.Headers.ContainsKey("Authorization");
if (token)
{
var tokenHandler = new JwtSecurityTokenHandler();
var tokenHeader = context.HttpContext.Request.Headers["Authorization"].FirstOrDefault()?.Split(" ").Last();
var key = Encoding.ASCII.GetBytes("clave-secreta-supersecreta-tiene queser grande");
if (!JwtMiddleware.Validate(tokenHeader))
{
context.Result = new JsonResult(new { message = "Unauthorized" })
{
StatusCode = StatusCodes.Status401Unauthorized
};
}
}
else
{
// not logged in
context.Result = new JsonResult(new { message = "Unauthorized" })
{
StatusCode = StatusCodes.Status401Unauthorized
};
}
}
