public static void Register(HttpConfiguration config) { // Web API configuration and services config.Filters.Add(new AuthorizeAttribute()); // Web API routes config.MapHttpAttributeRoutes(); config.Routes.MapHttpRoute( name: "DefaultApi", routeTemplate: "api/{controller}/{id}", defaults: new { id = RouteParameter.Optional } ); var builder = new SecurityTokenBuilder(); var jwtHandler = new JwtAuthenticationMessageHandler { AllowedAudience = "http://www.rac.com.au", Issuer = "Satalyst", SigningToken = builder.CreateFromKey(ConfigurationManager.AppSettings["ApplicationKey"]) }; config.MessageHandlers.Add(jwtHandler); JsonMediaTypeFormatter jsonFormatter = config.Formatters.JsonFormatter; JsonSerializerSettings settings = jsonFormatter.SerializerSettings; settings.Formatting = Formatting.None; settings.ContractResolver = new CamelCasePropertyNamesContractResolver(); }
public static void Register(HttpConfiguration config) { config.Formatters.JsonFormatter.SupportedMediaTypes.Add(new MediaTypeHeaderValue("text/html")); config.Routes.MapHttpRoute( name: "DefaultApi", routeTemplate: "api/{controller}/{id}", defaults: new { id = RouteParameter.Optional } ); var tokenBuilder = new SecurityTokenBuilder(); var configReader = new ConfigurationReader(); var jwtHandler = new JwtAuthenticationMessageHandler { AllowedAudience = configReader.AllowedAudience, Issuer = configReader.Issuer, SigningToken = tokenBuilder.CreateFromKey(configReader.SymmetricKey), PrincipalTransformer = new PrincipalPersonalizadoTransformer() }; config.MessageHandlers.Add(jwtHandler); //WebApiConfig.Register(GlobalConfiguration.Configuration); //FilterConfig.RegisterGlobalFilters(GlobalFilters.Filters); // Uncomment the following line of code to enable query support for actions with an IQueryable or IQueryable<T> return type. // To avoid processing unexpected or malicious queries, use the validation settings on QueryableAttribute to validate incoming queries. // For more information, visit http://go.microsoft.com/fwlink/?LinkId=279712. //config.EnableQuerySupport(); // To disable tracing in your application, please comment out or remove the following line of code // For more information, refer to: http://www.asp.net/web-api config.EnableSystemDiagnosticsTracing(); }
public static void Register(HttpConfiguration config) { //Register CacheCow var cacheCow = new CacheCow.Server.CachingHandler(config, ""); config.MessageHandlers.Add(cacheCow); //Enable CORS //http://www.asp.net/web-api/overview/security/enabling-cross-origin-requests-in-web-api //var cors = new EnableCorsAttribute(ConfigurationManager.AppSettings["CORSSites"].ToString(), "*", "*"); //cors.SupportsCredentials = true; //the HTTP response will include an 'Access-Control-Allow-Credentials' header //config.EnableCors(cors); // Web API routes config.MapHttpAttributeRoutes(); config.Routes.MapHttpRoute( name: "DefaultApi", routeTemplate: "{controller}/{id}", defaults: new { id = RouteParameter.Optional } ); var tokenBuilder = new SecurityTokenBuilder(); var configReader = new ConfigurationReader(); //var jwtHandlerCert = new JwtAuthenticationMessageHandler //{ // AllowedAudience = configReader.AllowedAudience, // AllowedAudiences = configReader.AllowedAudiences, // Issuer = configReader.Issuer, // SigningToken = tokenBuilder.CreateFromCertificate(configReader.SubjectCertificateName), // PrincipalTransformer = new SamplePrincipalTransformer() //}; var jwtHandlerSharedKey = new JwtAuthenticationMessageHandler { AllowedAudience = configReader.AllowedAudience, Issuer = configReader.Issuer, SigningToken = tokenBuilder.CreateFromKey(configReader.SymmetricKey), PrincipalTransformer = new SamplePrincipalTransformer(), CookieNameToCheckForToken = configReader.CookieNameToCheckForToken }; //config.MessageHandlers.Add(jwtHandlerCert); config.MessageHandlers.Add(jwtHandlerSharedKey); }
public static void Register(HttpConfiguration config) { config.Routes.MapHttpRoute( name: "DefaultApi", routeTemplate: "api/{controller}/{id}", defaults: new { id = RouteParameter.Optional } ); var tokenBuilder = new SecurityTokenBuilder(); var configReader = new ConfigurationReader(); var jwtHandlerCert = new JwtAuthenticationMessageHandler(Logger.Instance) { AllowedAudience = configReader.AllowedAudience, AllowedAudiences = configReader.AllowedAudiences, Issuer = configReader.Issuer, SigningToken = tokenBuilder.CreateFromCertificate(configReader.SubjectCertificateName), PrincipalTransformer = new SamplePrincipalTransformer() }; var jwtHandlerSharedKey = new JwtAuthenticationMessageHandler(Logger.Instance) { AllowedAudience = configReader.AllowedAudience, Issuer = configReader.Issuer, SigningToken = tokenBuilder.CreateFromKey(configReader.SymmetricKey), PrincipalTransformer = new SamplePrincipalTransformer(), CookieNameToCheckForToken = configReader.CookieNameToCheckForToken }; config.MessageHandlers.Add(jwtHandlerCert); config.MessageHandlers.Add(jwtHandlerSharedKey); // Uncomment the following line of code to enable query support for actions with an IQueryable or IQueryable<T> return type. // To avoid processing unexpected or malicious queries, use the validation settings on QueryableAttribute to validate incoming queries. // For more information, visit http://go.microsoft.com/fwlink/?LinkId=279712. //config.EnableQuerySupport(); // To disable tracing in your application, please comment out or remove the following line of code // For more information, refer to: http://www.asp.net/web-api config.EnableSystemDiagnosticsTracing(); }
public static void Register(HttpConfiguration config) { config.Routes.MapHttpRoute( name: "DefaultApi", routeTemplate: "api/{controller}/{id}", defaults: new {id = RouteParameter.Optional} ); var tokenBuilder = new SecurityTokenBuilder(); var configReader = new ConfigurationReader(); var jwtHandlerCert = new JwtAuthenticationMessageHandler { AllowedAudience = configReader.AllowedAudience, AllowedAudiences = configReader.AllowedAudiences, Issuer = configReader.Issuer, SigningToken = tokenBuilder.CreateFromCertificate(configReader.SubjectCertificateName), PrincipalTransformer = new SamplePrincipalTransformer() }; var jwtHandlerSharedKey = new JwtAuthenticationMessageHandler { AllowedAudience = configReader.AllowedAudience, Issuer = configReader.Issuer, SigningToken = tokenBuilder.CreateFromKey(configReader.SymmetricKey), PrincipalTransformer = new SamplePrincipalTransformer(), CookieNameToCheckForToken = configReader.CookieNameToCheckForToken }; config.MessageHandlers.Add(jwtHandlerCert); config.MessageHandlers.Add(jwtHandlerSharedKey); // Uncomment the following line of code to enable query support for actions with an IQueryable or IQueryable<T> return type. // To avoid processing unexpected or malicious queries, use the validation settings on QueryableAttribute to validate incoming queries. // For more information, visit http://go.microsoft.com/fwlink/?LinkId=279712. //config.EnableQuerySupport(); // To disable tracing in your application, please comment out or remove the following line of code // For more information, refer to: http://www.asp.net/web-api config.EnableSystemDiagnosticsTracing(); }