51 lines
1.6 KiB
C#
51 lines
1.6 KiB
C#
using System.IdentityModel.Tokens.Jwt;
|
|
using System.Security.Claims;
|
|
using System.Security.Cryptography;
|
|
using System.Text;
|
|
using AipsCore.Application.Abstract.UserContext;
|
|
using AipsCore.Domain.Models.User.External;
|
|
using Microsoft.IdentityModel.Tokens;
|
|
|
|
namespace AipsCore.Infrastructure.Authentication.Jwt;
|
|
|
|
public class JwtTokenProvider : ITokenProvider
|
|
{
|
|
private readonly JwtSettings _jwtSettings;
|
|
|
|
public JwtTokenProvider(JwtSettings jwtSettings)
|
|
{
|
|
_jwtSettings = jwtSettings;
|
|
}
|
|
|
|
public string GenerateAccessToken(Domain.Models.User.User user, IList<UserRole> roles)
|
|
{
|
|
var claims = new List<Claim>
|
|
{
|
|
new Claim(ClaimTypes.NameIdentifier, user.Id.IdValue),
|
|
new Claim(ClaimTypes.Email, user.Email.EmailValue)
|
|
};
|
|
|
|
foreach (var role in roles)
|
|
{
|
|
claims.Add(new Claim(ClaimTypes.Role, role.Name));
|
|
}
|
|
|
|
var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(_jwtSettings.Key));
|
|
|
|
var credentials = new SigningCredentials(key, SecurityAlgorithms.HmacSha256);
|
|
|
|
var token = new JwtSecurityToken(
|
|
issuer: _jwtSettings.Issuer,
|
|
audience: _jwtSettings.Audience,
|
|
claims: claims,
|
|
expires: DateTime.UtcNow.AddMinutes(_jwtSettings.ExpirationMinutes),
|
|
signingCredentials: credentials);
|
|
|
|
return new JwtSecurityTokenHandler().WriteToken(token);
|
|
}
|
|
|
|
public string GenerateRefreshToken()
|
|
{
|
|
return Convert.ToBase64String(RandomNumberGenerator.GetBytes(64));
|
|
}
|
|
} |