/
Startup.cs
95 lines (83 loc) · 3.62 KB
/
Startup.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
using System;
using FSL.ApiCustomIdentity.Models;
using FSL.ApiCustomIdentity.Service;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Hosting;
using Microsoft.Extensions.Options;
namespace FSL.ApiCustomIdentity
{
public class Startup
{
public Startup(
IConfiguration configuration)
{
Configuration = configuration;
}
public IConfiguration Configuration { get; }
// This method gets called by the runtime. Use this method to add services to the container.
public void ConfigureServices(
IServiceCollection services)
{
services.AddCors();
var token = new TokenConfiguration();
new ConfigureFromConfigurationOptions<TokenConfiguration>(Configuration.GetSection(typeof(TokenConfiguration).Name)).Configure(token);
services.AddSingleton(token);
var siginingConfiguration = new SigningConfiguration();
services.AddSingleton(siginingConfiguration);
services.AddHttpContextAccessor();
services.AddSingleton<IAuthenticationService, JwtIdentityAuthenticationService>();
services.AddSingleton<Service.IAuthorizationService, FakeAuthorizationService>();
services.AddSingleton<ILoggedUserService, IdentityLoggedUserService>();
services.AddControllers();
services.AddAuthentication(opt =>
{
opt.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
opt.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
}).AddJwtBearer(opt =>
{
opt.TokenValidationParameters.IssuerSigningKey = siginingConfiguration.Key;
opt.TokenValidationParameters.ValidAudience = token.ValidAudience; // dynamic
opt.TokenValidationParameters.ValidIssuer = token.ValidIssuer; // dynamic
opt.TokenValidationParameters.ValidateIssuerSigningKey = token.ValidateIssuerSigningKey; // dynamic
opt.TokenValidationParameters.ValidateLifetime = token.ValidateLifetime; // dynamic
opt.TokenValidationParameters.ClockSkew = TimeSpan.Zero;
});
services.AddAuthorization(auth =>
{
auth.AddPolicy(TokenConfiguration.Policy, new AuthorizationPolicyBuilder()
.AddAuthenticationSchemes(JwtBearerDefaults.AuthenticationScheme)
.RequireAuthenticatedUser().Build());
});
services
.AddMvc()
.SetCompatibilityVersion(CompatibilityVersion.Version_3_0)
.AddJsonOptions(opt =>
{
opt.JsonSerializerOptions.IgnoreNullValues = true;
});
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(
IApplicationBuilder app,
IWebHostEnvironment env)
{
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
}
app.UseCors(option => option.AllowAnyOrigin());
app.UseRouting();
app.UseAuthorization();
app.UseEndpoints(endpoints =>
{
endpoints.MapControllers();
});
}
}
}