public new void OnAuthorization(AuthorizationFilterContext context) { var token = context.HttpContext.Request.Headers.ContainsKey("Authorization"); if (token) { var tokenHandler = new JwtSecurityTokenHandler(); var tokenHeader = context.HttpContext.Request.Headers["Authorization"].FirstOrDefault()?.Split(" ").Last(); if (!JwtMiddleware.Validate(tokenHeader) || !JwtMiddleware.ValidateIsAdmin(tokenHeader)) { context.Result = new JsonResult(new { message = "Unauthorized" }) { StatusCode = StatusCodes.Status401Unauthorized }; } } else { // not logged in context.Result = new JsonResult(new { message = "Unauthorized" }) { StatusCode = StatusCodes.Status401Unauthorized }; } }
public void OnAuthorization(AuthorizationFilterContext context) { var token = context.HttpContext.Request.Headers.ContainsKey("Authorization"); if (token) { var tokenHandler = new JwtSecurityTokenHandler(); var tokenHeader = context.HttpContext.Request.Headers["Authorization"].FirstOrDefault()?.Split(" ").Last(); var key = Encoding.ASCII.GetBytes("clave-secreta-supersecreta-tiene queser grande"); if (!JwtMiddleware.Validate(tokenHeader)) { context.Result = new JsonResult(new { message = "Unauthorized" }) { StatusCode = StatusCodes.Status401Unauthorized }; } } else { // not logged in context.Result = new JsonResult(new { message = "Unauthorized" }) { StatusCode = StatusCodes.Status401Unauthorized }; } }