public async Task Invoke(HttpContext context, IGetByIdUserFlow getByIdUserFlow) { var token = context.Request.Headers["Authorization"].FirstOrDefault()?.Split(" ").Last(); if (token != null) { attachUserToContext(context, getByIdUserFlow, token); } await _next(context); }
private async void attachUserToContext(HttpContext context, IGetByIdUserFlow getByIdUserFlow, string token) { try { var tokenHandler = new JwtSecurityTokenHandler(); var key = Encoding.ASCII.GetBytes(_appSettings.Secret); tokenHandler.ValidateToken(token, new TokenValidationParameters { ValidateIssuerSigningKey = true, IssuerSigningKey = new SymmetricSecurityKey(key), ValidateIssuer = false, ValidateAudience = false, ClockSkew = TimeSpan.Zero }, out SecurityToken validatedToken); var jwtToken = (JwtSecurityToken)validatedToken; var userId = int.Parse(jwtToken.Claims.First(x => x.Type == "id").Value); context.Items["User"] = await getByIdUserFlow.Execute(userId); } catch { } }