homeburger/agologum
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Feature/Auth: last one was authentication, this one is authorization #4

Merged
homeburger merged 33 commits from feature/auth into main 2026-04-23 00:18:39 -05:00
Conversation 0 Commits 33 Files Changed 29 +11 -4
2 changed files with 11 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit ffdf997929 - Show all commits

2
api/src/Controllers/AuthController.cs
View File

@@ -97,7 +97,7 @@ public class AuthController : ControllerBase {
User? user = await jwt_.GetUser(storedToken.UserId); User? user = await jwt_.GetUser(storedToken.UserId);
if(user == null) return NotFound(); if(user == null) return NotFound();
string? newAccessToken = jwt_.GenerateJwt(user); string? newAccessToken = await jwt_.GenerateJwt(user);
if(newAccessToken == null) return NotFound(); if(newAccessToken == null) return NotFound();
string newRefreshToken = jwt_.GenerateRefreshToken(); string newRefreshToken = jwt_.GenerateRefreshToken();

13
api/src/Services/JwtService.cs
View File

@@ -5,6 +5,7 @@ using System.Text;
using System.Security.Claims; using System.Security.Claims;
using System.IdentityModel.Tokens.Jwt; using System.IdentityModel.Tokens.Jwt;
using System.Security.Cryptography; using System.Security.Cryptography;
using Microsoft.AspNetCore.Identity;
using agologumApi.Models; using agologumApi.Models;
@@ -12,13 +13,15 @@ public class JwtService {
private readonly IConfiguration config_; private readonly IConfiguration config_;
private readonly AppDbContext db_; private readonly AppDbContext db_;
private readonly UserManager<User> userManager_;
public JwtService(IConfiguration config, AppDbContext db) { // why the heck does c# not have initializer lists ? public JwtService(IConfiguration config, AppDbContext db, UserManager<User> userManager) { // why the heck does c# not have initializer lists ?
config_ = config; config_ = config;
db_ = db; db_ = db;
userManager_ = userManager;
} }
public string? GenerateJwt(User user) { public async Task<string?> GenerateJwt(User user) {
string? jwtKey = config_["Jwt:Key"]; string? jwtKey = config_["Jwt:Key"];
if(jwtKey == null) return null; if(jwtKey == null) return null;
@@ -28,12 +31,16 @@ public class JwtService {
if(user.UserName == null) return null; if(user.UserName == null) return null;
var roles = await userManager_.GetRolesAsync(user);
// not too sure // not too sure
var claims = new[] { var claims = new List<Claim> {
new Claim(ClaimTypes.Name, user.UserName), new Claim(ClaimTypes.Name, user.UserName),
new Claim(ClaimTypes.NameIdentifier, user.Id.ToString()) new Claim(ClaimTypes.NameIdentifier, user.Id.ToString())
}; };
claims.AddRange(roles.Select(role => new Claim(ClaimTypes.Role, role)));
var token = new JwtSecurityToken( var token = new JwtSecurityToken(
issuer: "agologum", issuer: "agologum",
audience: "agologum", audience: "agologum",