Authorization validation implemented

Author: foyzulkarim

.vscode/launch.json

@@ -1,11 +1,11 @@
 {
- // Use IntelliSense to find out which attributes exist for C# debugging
- // Use hover for the description of the existing attributes
- // For further information visit https://github.com/OmniSharp/omnisharp-vscode/blob/master/debugger-launchjson.md
- "version": "0.2.0",
- "configurations": [
+  // Use IntelliSense to find out which attributes exist for C# debugging
+  // Use hover for the description of the existing attributes
+  // For further information visit https://github.com/OmniSharp/omnisharp-vscode/blob/master/debugger-launchjson.md
+  "version": "0.2.0",
+  "configurations": [
  {
- "name": ".NET Core Launch (web)",
+ "name": ".NET Core Launch (auth)",
  "type": "coreclr",
  "request": "launch",
  "preLaunchTask": "build",
@@ -26,6 +26,28 @@
  "/Views": "${workspaceFolder}/Views"
  }
  },
+ {
+ "name": ".NET Core Launch (webapp)",
+ "type": "coreclr",
+ "request": "launch",
+ "preLaunchTask": "build",
+ // If you have changed target frameworks, make sure to update the program path.
+ "program": "${workspaceFolder}/server/WebApplication2/WebApplication2/bin/Debug/netcoreapp3.1/WebApplication2.dll",
+ "args": [],
+ "cwd": "${workspaceFolder}/server/WebApplication2/WebApplication2",
+ "stopAtEntry": false,
+ // Enable launching a web browser when ASP.NET Core starts. For more information: https://aka.ms/VSCode-CS-LaunchJson-WebBrowser
+ "serverReadyAction": {
+ "action": "openExternally",
+ "pattern": "^\\s*Now listening on:\\s+(https?://\\S+)"
+ },
+ "env": {
+ "ASPNETCORE_ENVIRONMENT": "Development"
+ },
+ "sourceFileMap": {
+ "/Views": "${workspaceFolder}/Views"
+ }
+ },
  {
  "name": ".NET Core Attach",
  "type": "coreclr",

server/AuthWebApplication/AuthWebApplication/AuthWebApplication.csproj

@@ -20,6 +20,7 @@
  <PackageReference Include="Microsoft.IdentityModel.Tokens" Version="6.8.0" />
  <PackageReference Include="Microsoft.VisualStudio.Azure.Containers.Tools.Targets" Version="1.10.8" />
  <PackageReference Include="Microsoft.VisualStudio.Web.CodeGeneration.Design" Version="3.1.4" />
+ <PackageReference Include="StackExchange.Redis" Version="2.1.58" />
  <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="6.8.0" />
  </ItemGroup>
 

server/AuthWebApplication/AuthWebApplication/Controllers/AuthorizeTokenController.cs

@@ -0,0 +1,29 @@
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Threading.Tasks;
+using AuthWebApplication.Services;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Mvc;
+
+namespace AuthWebApplication.Controllers
+{
+ [Route("api/[controller]")]
+ [ApiController]
+ public class AuthorizeTokenController : ControllerBase
+ {
+ private RedisService redisService;
+
+ public AuthorizeTokenController(RedisService redisService)
+ {
+ this.redisService = redisService;
+ }
+
+ public async Task<IActionResult> Get(string jti)
+ {
+ var s = await redisService.Get(jti);
+ var inValid = string.IsNullOrWhiteSpace(s);
+ return inValid ? (IActionResult) Unauthorized(jti) : Ok();
+ }
+ }
+}

server/AuthWebApplication/AuthWebApplication/Controllers/TokenController.cs

@@ -1,10 +1,12 @@
 using System;
 using System.Collections.Generic;
+using System.IdentityModel.Tokens.Jwt;
 using System.Linq;
 using System.Security.Claims;
 using System.Threading.Tasks;
 using AuthWebApplication.Models;
 using AuthWebApplication.Models.Db;
+using AuthWebApplication.Services;
 using AuthWebApplication.Utilities;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Http;
@@ -26,15 +28,17 @@ public class TokenController : ControllerBase
  private readonly JwtIssuerOptions jwtOptions;
  private readonly SecurityDbContext securityDb;
  private readonly ILogger<TokenController> logger;
+ private readonly RedisService redisService;
 
  public TokenController(ILogger<TokenController> logger, UserManager<ApplicationUser> userManager, IJwtFactory jwtFactory,
- IOptions<JwtIssuerOptions> jwtOptions, SecurityDbContext securityDb)
+ IOptions<JwtIssuerOptions> jwtOptions, SecurityDbContext securityDb, RedisService redisService)
  {
  this.logger = logger;
  this.userManager = userManager;
  this.jwtFactory = jwtFactory;
  this.jwtOptions = jwtOptions.Value;
  this.securityDb = securityDb;
+ this.redisService = redisService;
  }
 
  [AllowAnonymous]
@@ -54,8 +58,8 @@ public async Task<ActionResult> Post([FromBody] LoginViewModel loginViewModel)
  }
 
  Claim claim = identity.Claims.First(x => x.Type == Constants.Strings.JwtClaimIdentifiers.Id);
- var id = claim.Value.ToString();
- ApplicationUser user = securityDb.Users.First(x => x.Id == id);
+ var userId = claim.Value.ToString();
+ ApplicationUser user = securityDb.Users.First(x => x.Id == userId);
 
  if (user == null)
  {
@@ -69,7 +73,7 @@ public async Task<ActionResult> Post([FromBody] LoginViewModel loginViewModel)
  return BadRequest("User is Deactivated");
  }
 
- 
+
  //var roles = await securityDb.ApplicationUserRoles.Include(x => x.Role).Where(x => x.UserId == user.Id).Select(x => (dynamic) new { x.Role.Id, x.Role.Name }).ToListAsync();
 
  var jwt = await Tokens.GenerateJwt(
@@ -81,12 +85,21 @@ public async Task<ActionResult> Post([FromBody] LoginViewModel loginViewModel)
  new JsonSerializerSettings { Formatting = Formatting.None },
  securityDb);
 
- IdentityUserToken<string> token = new IdentityUserToken<string>
+ var jtiClaim = identity.Claims.First(x => x.Type == JwtRegisteredClaimNames.Jti);
+
+ var token = new ApplicationUserToken()
  {
- UserId = user.Id, Name = "Token", LoginProvider = "Self", Value = jwt.ToString()
+ UserId = user.Id,
+ Name = jtiClaim.Value,
+ LoginProvider = "Self",
+ Value = true.ToString()
  };
+
  await securityDb.UserTokens.AddAsync(token);
  await securityDb.SaveChangesAsync();
+
+ await redisService.Set(token.Name, user.Id);
+
  return Ok(jwt);
  }