daohualiuxiang
/
AspNetCore.Docs.Samples
mirror of https://github.com/dotnet/AspNetCore.Docs.Samples.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
AspNetCore.Docs.Samples/samples/aspnetcore-authz-with-ext-a.../Contoso.API/Program.cs

45 lines
1.1 KiB
C#
Raw Normal View History

sample that shows how we can implement additional authorization requirements with an external authorization service (#104) * sample impl to invoke an ext authz service * remove disclaimer * remove have an issue section in readme * remove gitignore per code review * remove template generated comments per code review * use minimal api based on dotnet new behavior * use file scoped namespaces Co-authored-by: David Lee <leedavid@microsoft.com>
2022-11-04 08:52:59 +08:00
using Contoso.API;
using Contoso.API.Authorization;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Authorization;
using Microsoft.Identity.Web;
var builder = WebApplication.CreateBuilder(args);
builder.Services.AddHttpClient(AppConstants.SecurityAPIClient, httpClient =>
{
httpClient.BaseAddress = new Uri("https://localhost:7123/");
});
builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddMicrosoftIdentityWebApi(builder.Configuration.GetSection("AzureAd"));
builder.Services.AddSingleton<IAuthorizationHandler, CanGetWeatherAuthorizationHandler>();
builder.Services.AddAuthorization(options =>
{
options.AddPolicy(AppConstants.CanGetWeatherPolicyName, policy =>
policy.Requirements.Add(new CanGetWeatherRequirement()));
});
builder.Services.AddControllers();
builder.Services.AddEndpointsApiExplorer();
builder.Services.AddSwaggerGen();
var app = builder.Build();
if (app.Environment.IsDevelopment())
{
app.UseSwagger();
app.UseSwaggerUI();
}
app.UseHttpsRedirection();
app.UseAuthentication();
app.UseAuthorization();
app.MapControllers();
app.Run();