derek/auth-mistox
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Create JWT renew request
Docker Build and Release Upload / build (push) Successful in 4m40s
Details

Browse Source
This commit is contained in:
Derek Holloway
2025-07-24 22:30:07 -07:00
parent 5851cbfdfe
commit 80c13bd900
4 changed files with 51 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/Server/Controllers/AuthenticationController.cs
+26 -1
View File
@@ -4,6 +4,10 @@ using Auth.Services.DatabaseService;
using Auth.Entities; using Auth.Entities;
using Auth.DTO; using Auth.DTO;
using System.Web.Http; using System.Web.Http;
using System.IdentityModel.Tokens.Jwt;
using Microsoft.IdentityModel.Tokens;
using System.Text;
using System.Security.Claims;
namespace Auth.Controllers { namespace Auth.Controllers {
[ApiController] [ApiController]
@@ -71,7 +75,7 @@ namespace Auth.Controllers {
} }
} }
[Route("authenticate")] [Route("jwtlogin")]
[HttpPost] [HttpPost]
public async Task<ActionResult> Authenticate([FromBody] LoginRequest request) { public async Task<ActionResult> Authenticate([FromBody] LoginRequest request) {
try { try {
@@ -107,6 +111,27 @@ namespace Auth.Controllers {
} }
} }
[Route("jwttryrenew")]
[HttpPost]
public IActionResult Refresh([FromBody] JWTRenewRequest request){
try {
JwtSecurityTokenHandler handler = new JwtSecurityTokenHandler();
ClaimsPrincipal claimsPrincipal = handler.ValidateToken(request.Token, AuthJWT.TokenParameters, out var validatedToken);
JwtSecurityToken jwt = (JwtSecurityToken)validatedToken;
if (jwt != null) {
if (jwt.ValidTo - DateTime.UtcNow < TimeSpan.FromDays(1)) {
var newJwt = AuthJWT.RenewJWTToken(claimsPrincipal);
return Ok(newJwt);
}
return BadRequest("Not ready to renew");
}
return BadRequest("Malformed Token");
}
catch (SecurityTokenException ex) {
return Unauthorized($"Token invalid: {ex.Message}");
}
}
[Route("logout")] [Route("logout")]
[HttpPost] [HttpPost]
public ActionResult Logout() { public ActionResult Logout() {
src/Server/DTO/AuthenticationDTO.cs
+4
View File
@@ -6,6 +6,10 @@ namespace Auth.DTO {
public bool StayLoggedIn { get; set; } public bool StayLoggedIn { get; set; }
} }
public class JWTRenewRequest {
public string Token { get; set; } = "";
}
public class RegisterRequest { public class RegisterRequest {
public string Email { get; set; } = ""; public string Email { get; set; } = "";
public string UserName { get; set; } = ""; public string UserName { get; set; } = "";
src/Server/Program.cs
+1 -10
View File
@@ -73,16 +73,7 @@ builder.Services.AddAuthentication(options => {
options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme; options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme; options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
}).AddJwtBearer(options => { }).AddJwtBearer(options => {
options.TokenValidationParameters = new TokenValidationParameters { options.TokenValidationParameters = AuthJWT.TokenParameters;
ValidateIssuer = true,
ValidateAudience = true,
ValidateLifetime = true,
ValidateIssuerSigningKey = true,
ValidIssuer = AuthJWT.TokenIssuer,
ValidAudience = AuthJWT.TokenAudience,
IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(AuthJWT.TokenSecretKey)),
ClockSkew = TimeSpan.FromMinutes(1)
};
options.Events = new JwtBearerEvents { options.Events = new JwtBearerEvents {
OnMessageReceived = context => { OnMessageReceived = context => {
context.Token = context.Request.Cookies[AuthJWT.TokenName]; context.Token = context.Request.Cookies[AuthJWT.TokenName];
src/Server/Services/jwt.cs
+20
View File
@@ -11,6 +11,16 @@ namespace Auth.Services {
public static string TokenIssuer = "https://auth.mistox.com"; public static string TokenIssuer = "https://auth.mistox.com";
public static string TokenSecretKey = ""; public static string TokenSecretKey = "";
public static string TokenName = "mistox_session"; public static string TokenName = "mistox_session";
public static TokenValidationParameters TokenParameters = new TokenValidationParameters {
ValidateIssuer = true,
ValidateAudience = true,
ValidateLifetime = true,
ValidateIssuerSigningKey = true,
ValidIssuer = AuthJWT.TokenIssuer,
ValidAudience = AuthJWT.TokenAudience,
IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(AuthJWT.TokenSecretKey)),
ClockSkew = TimeSpan.FromMinutes(1)
};
public static string GenereateJWTToken(Account account, bool StayLoggedIn) { public static string GenereateJWTToken(Account account, bool StayLoggedIn) {
var tokenHandler = new JwtSecurityTokenHandler(); var tokenHandler = new JwtSecurityTokenHandler();
@@ -36,6 +46,16 @@ namespace Auth.Services {
return tokenHandler.WriteToken(token); return tokenHandler.WriteToken(token);
} }
public static string RenewJWTToken( ClaimsPrincipal principal ) {
return GenereateJWTToken(new Account {
ID = Convert.ToInt32(principal.FindFirst(ClaimTypes.NameIdentifier)!.Value),
UserName = principal.FindFirst(ClaimTypes.Name)!.Value,
Email = principal.FindFirst(ClaimTypes.Email)!.Value,
Role = principal.FindFirst(ClaimTypes.Role)!.Value,
DataServer = principal.FindFirst(ClaimTypes.UserData)!.Value
}, Convert.ToBoolean(principal.FindFirst(ClaimTypes.IsPersistent)!.Value));
}
public static void SignIn(HttpResponse Response, bool StayLoggedIn, string jwt) { public static void SignIn(HttpResponse Response, bool StayLoggedIn, string jwt) {
if (StayLoggedIn) { if (StayLoggedIn) {
// Stay logged in cookie // Stay logged in cookie