feat: JWT-Service mit Unterstützung für UserReadDto-Ansprüche hinzufügen

- ToClaimDictionary-Erweiterungsmethode hinzugefügt, um die Ansprüche von UserReadDto in ein Wörterbuch zu konvertieren. - JWT-Service konfiguriert, um Tokens mit Ansprüchen aus UserReadDto zu generieren. - JWT-Service in die Authentifizierungskonfiguration integriert.
2024-10-25 14:51:50 +02:00 · 2024-10-25 14:51:50 +02:00 · 41151593fd
commit 41151593fd
parent 730b218eb5
2 changed files with 10 additions and 0 deletions
--- a/WorkFlow.API/Models/ModelExtensions.cs
+++ b/WorkFlow.API/Models/ModelExtensions.cs
@ -12,5 +12,7 @@ namespace WorkFlow.API.Models
            new (ClaimTypes.GivenName, user.Prename ?? ""),
            new (ClaimTypes.Email, user.Email ?? "")
        ];
+
+        public static Dictionary<string, object> ToClaimDictionary(this UserReadDto user) => user.ToClaimList().ToDictionary(claim => claim.Type, claim => (object) claim.Value);
    }
 }
--- a/WorkFlow.API/Program.cs
+++ b/WorkFlow.API/Program.cs
@ -5,6 +5,10 @@ using WorkFlow.Infrastructure;
 using Microsoft.AspNetCore.Authentication.Cookies;
 using DigitalData.Core.API;
 using DigitalData.Core.Application;
+using DigitalData.UserManager.Application.DTOs.User;
+using Microsoft.IdentityModel.Tokens;
+using WorkFlow.API.Models;
+using System.Security.Claims;

 var builder = WebApplication.CreateBuilder(args);
 var config = builder.Configuration;
@ -16,6 +20,10 @@ builder.Services.AddWorkFlow().AddUserManager<WFDBContext>();
 builder.Services.AddCookieBasedLocalizer();
 builder.ConfigureBySection<DirectorySearchOptions>();
 builder.Services.AddDirectorySearchService();
+builder.Services.AddJWTService<UserReadDto>(user => new SecurityTokenDescriptor()
+{
+    Claims = user.ToClaimList().ToDictionary(claim => claim.Type, claim => claim.Value as object)
+});

 builder.Services.AddControllers();