Class AuthTokenService

Namespace

GastroSky.Services.AuthTokenService

Assembly

GastroSky.dll

public class AuthTokenService : IAuthTokenService

Inheritance

object

AuthTokenService

Implements

IAuthTokenService

Inherited Members

object.Equals(object)

object.Equals(object, object)

object.GetHashCode()

object.GetType()

object.MemberwiseClone()

object.ReferenceEquals(object, object)

object.ToString()

Constructors

AuthTokenService(GastroSkyDatabaseContext, ILogger<AuthTokenService>, IOptionsMonitor<JwtSettings>)

public AuthTokenService(GastroSkyDatabaseContext db, ILogger<AuthTokenService> logger, IOptionsMonitor<JwtSettings> settingsMonitor)

Parameters

db GastroSkyDatabaseContext

logger ILogger<AuthTokenService>

settingsMonitor IOptionsMonitor<JwtSettings>

Methods

EmitAuthTokenForUserAccount(User)

Emits a new authentication token for a given userAccount.

public string EmitAuthTokenForUserAccount(User userAccount)

Parameters

userAccount User

The User for whom to generate the token.

Returns

string

The token string ready for the user to append to his subsequent requests (inside the Authorization HTTP header with the Bearer prefix).

EmitDefibrillatorTokenForUserAccount(User)

Emits a new defibrillator token useful for reviving dead sessions (expired).

Defi-Tokens have a slightly longer lifetime, but need to be handled with the same (if not more) care as the normal auth tokens.

public string EmitDefibrillatorTokenForUserAccount(User userAccount)

Parameters

userAccount User

The User for whom to generate the token.

Returns

string

The defibrillator token string.

ExtractJwt(HttpContext)

Extracts the authorization header value from a request's HttpContext.

public string? ExtractJwt(HttpContext httpContext)

Parameters

httpContext HttpContext

HTTP request's HttpContext to extract the token from.

Returns

string

The found JWT (null if no auth token was found inside the request's authorization header).

ValidateReviveRequest(ReviveRequestDto)

Checks whether a defibrillator token that was emitted by the EmitDefibrillatorTokenForUserAccount(User) method is valid or not.

public string? ValidateReviveRequest(ReviveRequestDto dto)

Parameters

dto ReviveRequestDto

The revival request DTO to check.

Returns

string

null if validation failed; the sub claim value if validation was successful (which should correspond to the User's Slug value).

Remarks

This will NOT obliterate the token: do not forget to do that in case of validity and renewal!