public IActionResult Authenticate()
{
//for demo simplicity, use get and no args
//todo: authenticate validation
var success = _authService.Validate("test", "test");
if (!success)
{
return(BadRequest(new { message = "Username or password is incorrect" }));
}
//todo: get more client claim infos
var generateTokenArgs = new GenerateTokenArgs();
generateTokenArgs.Id = _appSettings.Id;
generateTokenArgs.Secret = _appSettings.Secret;
//On successful authentication the Authenticate method generates a JWT(JSON Web Token)
//using the JwtSecurityTokenHandler class that generates a token that is digitally signed using a secret key stored in appsettings.json.
//The JWT token is returned to the client application which then must include it in the HTTP Authorization header of subsequent web api requests for authentication.
var jwtSecurityTokenHelper = new JwtSecurityTokenHelper();
var token = jwtSecurityTokenHelper.GenerateToken(generateTokenArgs);
return(Ok(token));
}
public IActionResult Authenticate()
{
//for demo simplicity, use get and no args
//todo: authenticate validation
var success = _authService.Validate("test", "test");
if (!success)
{
return(BadRequest(new { message = "Username or password is incorrect" }));
}
//todo: get more client claim infos
var generateTokenArgs = new GenerateTokenArgs();
generateTokenArgs.Id = _appSettings.Id;
generateTokenArgs.Secret = _appSettings.Secret;
var basicAuthTokenHelper = new BasicAuthTokenHelper();
var generateToken = basicAuthTokenHelper.GenerateToken(generateTokenArgs.Id, generateTokenArgs.Secret);
return(Ok(generateToken));
}
