131 lines
5.1 KiB
C#
131 lines
5.1 KiB
C#
using System;
|
|
using System.Threading.Tasks;
|
|
using Microsoft.AspNetCore.Authentication.JwtBearer;
|
|
using Microsoft.AspNetCore.Builder;
|
|
using Microsoft.AspNetCore.Hosting;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.AspNetCore.SignalR;
|
|
using Microsoft.EntityFrameworkCore;
|
|
using Microsoft.Extensions.Configuration;
|
|
using Microsoft.Extensions.DependencyInjection;
|
|
using Microsoft.IdentityModel.Tokens;
|
|
using SignalRAuthenticationSample.Data;
|
|
using SignalRAuthenticationSample.Hubs;
|
|
|
|
namespace SignalRAuthenticationSample
|
|
{
|
|
public class Startup
|
|
{
|
|
// We use a key generated on this server during startup to secure our tokens.
|
|
// This means that if the app restarts, existing tokens become invalid. It also won't work
|
|
// when using multiple servers.
|
|
public static readonly SymmetricSecurityKey SecurityKey = new SymmetricSecurityKey(Guid.NewGuid().ToByteArray());
|
|
|
|
public Startup(IConfiguration configuration)
|
|
{
|
|
Configuration = configuration;
|
|
}
|
|
|
|
public IConfiguration Configuration { get; }
|
|
|
|
// This method gets called by the runtime. Use this method to add services to the container.
|
|
#region snippet
|
|
public void ConfigureServices(IServiceCollection services)
|
|
{
|
|
services.AddDbContext<ApplicationDbContext>(options =>
|
|
options.UseSqlServer(Configuration.GetConnectionString("DefaultConnection")));
|
|
|
|
services.AddIdentity<ApplicationUser, IdentityRole>()
|
|
.AddEntityFrameworkStores<ApplicationDbContext>()
|
|
.AddDefaultTokenProviders();
|
|
|
|
services.AddAuthentication(options =>
|
|
{
|
|
// Identity made Cookie authentication the default.
|
|
// However, we want JWT Bearer Auth to be the default.
|
|
options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
|
|
options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
|
|
})
|
|
.AddJwtBearer(options =>
|
|
{
|
|
// Configure JWT Bearer Auth to expect our security key
|
|
options.TokenValidationParameters =
|
|
new TokenValidationParameters
|
|
{
|
|
LifetimeValidator = (before, expires, token, param) =>
|
|
{
|
|
return expires > DateTime.UtcNow;
|
|
},
|
|
ValidateAudience = false,
|
|
ValidateIssuer = false,
|
|
ValidateActor = false,
|
|
ValidateLifetime = true,
|
|
IssuerSigningKey = SecurityKey
|
|
};
|
|
|
|
// We have to hook the OnMessageReceived event in order to
|
|
// allow the JWT authentication handler to read the access
|
|
// token from the query string when a WebSocket or
|
|
// Server-Sent Events request comes in.
|
|
options.Events = new JwtBearerEvents
|
|
{
|
|
OnMessageReceived = context =>
|
|
{
|
|
var accessToken = context.Request.Query["access_token"];
|
|
|
|
// If the request is for our hub...
|
|
var path = context.HttpContext.Request.Path;
|
|
if (!string.IsNullOrEmpty(accessToken) &&
|
|
(path.StartsWithSegments("/hubs/chat")))
|
|
{
|
|
// Read the token out of the query string
|
|
context.Token = accessToken;
|
|
}
|
|
return Task.CompletedTask;
|
|
}
|
|
};
|
|
});
|
|
|
|
services.AddMvc().SetCompatibilityVersion(CompatibilityVersion.Version_2_1);
|
|
|
|
services.AddSignalR();
|
|
|
|
// Change to use Name as the user identifier for SignalR
|
|
// WARNING: This requires that the source of your JWT token
|
|
// ensures that the Name claim is unique!
|
|
// If the Name claim isn't unique, users could receive messages
|
|
// intended for a different user!
|
|
services.AddSingleton<IUserIdProvider, NameUserIdProvider>();
|
|
}
|
|
#endregion
|
|
|
|
// This method gets called by the runtime. Use this method to configure the
|
|
// HTTP request pipeline.
|
|
public void Configure(IApplicationBuilder app, IHostingEnvironment env)
|
|
{
|
|
if (env.IsDevelopment())
|
|
{
|
|
app.UseDeveloperExceptionPage();
|
|
}
|
|
else
|
|
{
|
|
app.UseExceptionHandler("/Error");
|
|
app.UseHsts();
|
|
}
|
|
|
|
app.UseHttpsRedirection();
|
|
app.UseStaticFiles();
|
|
|
|
app.UseAuthentication();
|
|
|
|
app.UseMvc();
|
|
|
|
app.UseSignalR(routes =>
|
|
{
|
|
routes.MapHub<ChatHub>("/hubs/chat");
|
|
});
|
|
}
|
|
}
|
|
}
|