feat: Aktualisiert, um Token durch Query-String zu behandeln

2025-02-11 08:56:29 +01:00 · 2025-02-11 08:56:29 +01:00 · 5ab1f24ce5
commit 5ab1f24ce5
parent 33ead6ebf4
2 changed files with 11 additions and 36 deletions
--- a/src/DigitalData.Auth.API/Config/AuthApiParams.cs
+++ b/src/DigitalData.Auth.API/Config/AuthApiParams.cs
@ -12,6 +12,8 @@ namespace DigitalData.Auth.API.Config

        public string DefaultCookieName { get; init; } = "AuthToken";

+        public string DefaultQueryStringKey { get; init; } = "AuthToken";
+
        public required string Issuer { get; init; }

        public bool RequireHttpsMetadata { get; init; } = true;
--- a/src/DigitalData.Auth.API/Program.cs
+++ b/src/DigitalData.Auth.API/Program.cs
@ -102,43 +102,16 @@ builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
        {
            OnMessageReceived = context =>
            {
-                // if there is no token read related cookie
-                if (context.Token is null   // if there is no token
-                    && context.Request.Cookies.TryGetValue(apiParams!.DefaultCookieName, out var token)    // get token from cookies  
-                    && token is not null)  
-                    context.Token = token;
+                // if there is no token read related cookie or query string
+                if (context.Token is null)   // if there is no token
+                {
+                    if (context.Request.Cookies.TryGetValue(apiParams!.DefaultCookieName, out var cookieToken) && cookieToken is not null)
+                        context.Token = cookieToken;
+                    else if (context.Request.Query.TryGetValue(apiParams.DefaultQueryStringKey, out var queryStrToken))
+                        context.Token = queryStrToken;
+                }
                return Task.CompletedTask;
-            },
-        };
-    });
-
-builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
-    .AddJwtBearer(options =>
-    {
-        options.RequireHttpsMetadata = apiParams!.RequireHttpsMetadata;
-        options.ClaimsIssuer = apiParams!.Issuer;
-        options.Audience = apiParams.LocalConsumer.Audience;
-        options.TokenValidationParameters = new()
-        {
-            ValidateIssuer = true,
-            ValidIssuer = apiParams!.Issuer,
-            ValidateAudience = true,
-            ValidAudience = apiParams.LocalConsumer.Audience,
-            ValidateLifetime = true,
-            IssuerSigningKey = issuerSigningKeyInitiator?.Value
-        };
-
-        options.Events = new JwtBearerEvents
-        {
-            OnMessageReceived = context =>
-            {
-                // if there is no token read related cookie
-                if (context.Token is null   // if there is no token
-                    && context.Request.Cookies.TryGetValue(apiParams!.DefaultCookieName, out var token)    // get token from cookies  
-                    && token is not null)
-                    context.Token = token;
-                return Task.CompletedTask;
-            },
+            }
        };
    });