/// <summary>
/// This method adds basic Jwt authentication to the web app
/// </summary>
/// <typeparam name="P">The web pipe type</typeparam>
/// <param name="webpipe">The pipe.</param>
/// <param name="algo">The supported HMAC algorithm</param>
/// <param name="base64Secret">The base64secret</param>
/// <param name="audience">The audience value to check.</param>
/// <param name="action">The action to be called on the filter creation.</param>
/// <param name="removeUnderlyingPrincipal">If this method is set to true, then the principal set from the underlying principal is cleared.</param>
/// <returns>Returns the web pipe.</returns>
public static P ApiAddJwtTokenAuthentication <P>(this P webpipe
, JwtHashAlgorithm algo
, string base64Secret
, string audience = "api"
, Action <IAuthenticationFilter> action = null
, bool removeUnderlyingPrincipal = true
)
where P : IPipelineWebApi
{
var policy = new JwtTokenVerificationPolicy
{
Algorithm = algo
, Audience = audience
, Secret = Convert.FromBase64String(base64Secret)
};
return(webpipe.ApiAddJwtTokenAuthentication(policy, action, removeUnderlyingPrincipal));
}
/// <summary>
/// This method adds basic Jwt authentication to the web app
/// </summary>
/// <typeparam name="P">The web pipe type</typeparam>
/// <param name="webpipe">The pipe.</param>
/// <param name="algo">The supported HMAC algorithm</param>
/// <param name="secret">The secret</param>
/// <param name="audience">The audience value to check.</param>
/// <param name="action">The action to be called on the filter creation.</param>
/// <param name="removeUnderlyingPrincipal">If this method is set to true, then the principal set from the underlying principal is cleared.</param>
/// <returns>Returns the web pipe.</returns>
public static P ApiAddJwtTokenAuthentication <P>(this P webpipe
, JwtHashAlgorithm algo
, byte[] secret
, string audience = "api"
, Action <IAuthenticationFilter> action = null
, bool removeUnderlyingPrincipal = true
, bool denyByDefault = true
)
where P : IPipelineWebApi
{
var policy = new JwtTokenVerificationPolicy
{
Algorithm = algo
, Audience = audience
, Secret = secret
, DenyByDefault = denyByDefault
};
return(webpipe.ApiAddJwtTokenAuthentication(policy, action, removeUnderlyingPrincipal));
}
/// <summary>
/// This method adds basic Jwt authentication to the web app
/// </summary>
/// <typeparam name="P">The web pipe type</typeparam>
/// <param name="webpipe">The pipe.</param>
/// <param name="policy">The token policy.</param>
/// <param name="action">The action to be called on the filter creation.</param>
/// <param name="removeUnderlyingPrincipal">If this method is set to true, then the principal set from the underlying principal is cleared.</param>
/// <returns>Returns the web pipe.</returns>
public static P ApiAddJwtTokenAuthentication <P>(this P webpipe
, JwtTokenVerificationPolicy policy
, Action <IAuthenticationFilter> action = null
, bool removeUnderlyingPrincipal = true
)
where P : IPipelineWebApi
{
//Remove any auth created by the underlying fabric.
if (removeUnderlyingPrincipal)
{
webpipe.HttpConfig.SuppressHostPrincipal();
}
var filter = new JwtAuthenticationFilter(policy);
action?.Invoke(filter);
webpipe.HttpConfig.Filters.Add(filter);
return(webpipe);
}