Added JWT authentication for sample application

Author: Gourav Dwivedi

Samples/AspDotCore/WebApp/WebApp/Controllers/LoginController.cs

@@ -0,0 +1,78 @@
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.Extensions.Configuration;
+using Microsoft.IdentityModel.Tokens;
+using System;
+using System.Collections.Generic;
+using System.IdentityModel.Tokens.Jwt;
+using System.Text;
+
+namespace WebApp.Controllers
+{
+	[Route("api/[controller]")]
+	[ApiController]
+	public class LoginController : Controller
+    {
+		private IConfiguration _config;
+
+		public LoginController(IConfiguration config)
+		{
+			_config = config;
+		}
+
+		[AllowAnonymous]
+		[HttpPost]
+		public IActionResult Login([FromBody]UserModel login)
+		{
+			IActionResult response = Unauthorized();
+			var user = AuthenticateUser(login);
+
+			if (user != null)
+			{
+				var tokenString = GenerateJSONWebToken(user);
+				response = Ok(new { token = tokenString });
+			}
+
+			return response;
+		}
+
+		[HttpGet]
+		[Authorize]
+		public ActionResult<IEnumerable<string>> Get()
+		{
+			return new string[] { "value1", "value2", "value3", "value4", "value5" };
+		}
+
+		private string GenerateJSONWebToken(UserModel userInfo)
+		{
+			var securityKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(_config["Jwt:Key"]));
+			var credentials = new SigningCredentials(securityKey, SecurityAlgorithms.HmacSha256);
+
+			var token = new JwtSecurityToken(_config["Jwt:Issuer"],
+			  _config["Jwt:Issuer"],
+			  null,
+			  expires: DateTime.Now.AddMinutes(120),
+			  signingCredentials: credentials);
+
+			return new JwtSecurityTokenHandler().WriteToken(token);
+		}
+
+		private UserModel AuthenticateUser(UserModel login)
+		{
+			UserModel user = null;
+
+			if (login.Username == "Test" && login.Password == "Abc@123")
+			{
+				user = new UserModel { Username = "Test", EmailAddress = "test@test.com" };
+			}
+			return user;
+		}
+	}
+
+	public class UserModel
+	{
+		public string Username { get; set; }
+		public string EmailAddress { get; set; }
+		public string Password { get; set; }
+	}
+}

Samples/AspDotCore/WebApp/WebApp/Hubs/OneHub.cs

@@ -1,4 +1,6 @@
-using Microsoft.AspNetCore.SignalR;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.SignalR;
 using System;
 using System.Threading.Tasks;
 
@@ -17,6 +19,14 @@ public async Task NotifySameClient(string data)
 			await Clients.Client(connectionId).SendAsync("ReceiveData", $"Data Received: {data}");
 		}
 
+		//[Authorize(AuthenticationSchemes = JwtBearerDefaults.AuthenticationScheme)]
+		[Authorize]
+		public async Task EE(string data)
+		{
+			var connectionId = Context.ConnectionId;
+			await Clients.Client(connectionId).SendAsync("ReceiveData", $"Data Received: {data}");
+		}
+
 		public async Task NotifyAllClient(string data)
 		{
 			await Clients.All.SendAsync("ReceiveData", $"Data Received: {data}");

Samples/AspDotCore/WebApp/WebApp/Startup.cs

@@ -1,14 +1,17 @@
 using System;
 using System.Collections.Generic;
 using System.Linq;
+using System.Text;
 using System.Threading.Tasks;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.AspNetCore.Builder;
 using Microsoft.AspNetCore.Hosting;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.HttpsPolicy;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
+using Microsoft.IdentityModel.Tokens;
 using WebApp.Hubs;
 
 namespace WebApp
@@ -35,6 +38,60 @@ public void ConfigureServices(IServiceCollection services)
 					.WithOrigins("http://localhost:8080");
 			}));
 
+			//services.AddAuthentication()
+			//.AddJwtBearer(options => {
+			//	options.Events = new Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerEvents
+			//	{
+			//		OnTokenValidated = cotext => {
+
+			//			return Task.CompletedTask;
+			//		},
+			//		OnMessageReceived = context =>
+			//		{
+			//			var accessToken = context.Request.Query["access_token"];
+			//			if (string.IsNullOrEmpty(accessToken) == false)
+			//			{
+			//				context.Token = accessToken;
+			//			}
+			//			return Task.CompletedTask;
+			//		}
+			//	};
+			//});
+
+			services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
+			.AddJwtBearer(options =>
+			{
+				options.TokenValidationParameters = new TokenValidationParameters
+				{
+					ValidateIssuer = true,
+					ValidateAudience = true,
+					ValidateLifetime = true,
+					ValidateIssuerSigningKey = true,
+					ValidIssuer = Configuration["Jwt:Issuer"],
+					ValidAudience = Configuration["Jwt:Issuer"],
+					IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(Configuration["Jwt:Key"]))
+				};
+
+				options.Events = new JwtBearerEvents
+				{
+					//OnTokenValidated = cotext =>
+					//{
+
+					//	return Task.CompletedTask;
+					//},
+					OnMessageReceived = context =>
+					{
+						//This is used for SignalR authentication
+						var accessToken = context.Request.Query["access_token"];
+						if (string.IsNullOrEmpty(accessToken) == false)
+						{
+							context.Token = accessToken;
+						}
+						return Task.CompletedTask;
+					}
+				};
+			});
+
 			services.Configure<CookiePolicyOptions>(options =>
 			{
 				// This lambda determines whether user consent for non-essential cookies is needed for a given request.
@@ -62,11 +119,13 @@ public void Configure(IApplicationBuilder app, IHostingEnvironment env)
 				app.UseHsts();
 			}
 
+			app.UseAuthentication();
+
 			app.UseSignalR(option => {
 				option.MapHub<OneHub>(new PathString("/Test/OneHub"));
 			});
 
-			app.UseHttpsRedirection();
+			//app.UseHttpsRedirection();
 			app.UseStaticFiles();
 			app.UseCookiePolicy();
 

Samples/AspDotCore/WebApp/WebApp/WebApp.csproj

@@ -10,6 +10,7 @@
     <PackageReference Include="Microsoft.AspNetCore.App" />
     <PackageReference Include="Microsoft.AspNetCore.Razor.Design" Version="2.2.0" PrivateAssets="All" />
     <PackageReference Include="Microsoft.AspNetCore.SignalR" Version="1.1.0" />
+    <PackageReference Include="Microsoft.VisualStudio.Web.CodeGeneration.Design" Version="2.2.0" />
   </ItemGroup>
 
 </Project>

Samples/AspDotCore/WebApp/WebApp/appsettings.json

@@ -1,8 +1,12 @@
 {
-  "Logging": {
-    "LogLevel": {
-      "Default": "Warning"
-    }
-  },
-  "AllowedHosts": "*"
+	"Logging": {
+		"LogLevel": {
+			"Default": "Warning"
+		}
+	},
+	"AllowedHosts": "*",
+	"Jwt": {
+		"Key": "ThisismySecretKey",
+		"Issuer": "Test.com"
+	}
 }

package-lock.json

@@ -23,6 +23,7 @@
     "@webcomponents/webcomponentsjs": "^2.2.10",
     "bootstrap": "^4.3.1",
     "jquery": "^3.4.1",
+    "mitt": "^1.1.3",
     "popper.js": "^1.15.0"
   },
   "devDependencies": {

package.json

@@ -45,7 +45,7 @@ class SrFormComponent extends HTMLElement {
                                         </div>
                                     </div>
 
-                                    <div class="form-group row onconnect">
+                                    <div class="form-group row ">
                                         <label for="authHeader" class="col-sm-2 col-form-label">Authentication Header</label>
                                         <div class="col-sm-10 offset-sm-2">
                                             <input type="text" class="form-control" id="authHeader" placeholder="Token">