IQBall
/
Dotnet-WebAPI
6
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix jwt expiration validation

Browse Source
tests
maxime 1 year ago
parent d34e196830
commit 32913b791b
5 changed files with 6 additions and 4 deletions
Show Stats Download Patch File Download Diff File

3
API/Auth/Authentication.cs
Unescape View File

@ -1,13 +1,12 @@
using System.IdentityModel.Tokens.Jwt; using System.IdentityModel.Tokens.Jwt;
using System.Security.Claims; using System.Security.Claims;
using Microsoft.AspNetCore.Cryptography.KeyDerivation;
using Microsoft.IdentityModel.Tokens; using Microsoft.IdentityModel.Tokens;
namespace API.Auth; namespace API.Auth;
public static class Authentication public static class Authentication
{ {
private static readonly TimeSpan TokenLifetime = TimeSpan.FromMinutes(50); private static readonly TimeSpan TokenLifetime = TimeSpan.FromMinutes(15);
public static (string, DateTime) GenerateJwt(SymmetricSecurityKey key, IEnumerable<Claim> claims) public static (string, DateTime) GenerateJwt(SymmetricSecurityKey key, IEnumerable<Claim> claims)
{ {

3
API/Program.cs
Unescape View File

@ -39,7 +39,8 @@ builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
ValidateLifetime = true, ValidateLifetime = true,
ValidateIssuer = false, ValidateIssuer = false,
ValidateAudience = false, ValidateAudience = false,
ValidateIssuerSigningKey = true ValidateIssuerSigningKey = true,
ClockSkew = TimeSpan.Zero
} }
); );

1
API/appsettings.Development.json
Unescape View File

@ -3,6 +3,7 @@
"LogLevel": { "LogLevel": {
"Default": "Information", "Default": "Information",
"Microsoft.AspNetCore": "Warning", "Microsoft.AspNetCore": "Warning",
"Microsoft.EntityFrameworkCore.Database.Command": "Warning",
"Microsoft.AspNetCore.Authentication": "Trace" "Microsoft.AspNetCore.Authentication": "Trace"
} }
}, },

1
API/appsettings.json
Unescape View File

@ -5,6 +5,7 @@
"Logging": { "Logging": {
"LogLevel": { "LogLevel": {
"Default": "Information", "Default": "Information",
"Microsoft.EntityFrameworkCore.Database.Command": "Warning",
"Microsoft.AspNetCore": "Warning", "Microsoft.AspNetCore": "Warning",
"Microsoft.AspNetCore.HttpLogging.HttpLoggingMiddleware": "Trace" "Microsoft.AspNetCore.HttpLogging.HttpLoggingMiddleware": "Trace"
} }

2
ci/.drone.yml
Unescape View File

@ -38,7 +38,7 @@ steps:
- echo "$PRIVATE_KEY" > ~/.ssh/id_rsa - echo "$PRIVATE_KEY" > ~/.ssh/id_rsa
- chmod 0600 ~/.ssh - chmod 0600 ~/.ssh
- chmod 0500 ~/.ssh/id_rsa* - chmod 0500 ~/.ssh/id_rsa*
- rsync -avz -e "ssh -p 80 -o 'StrictHostKeyChecking=no'" ci/deploy_staging_server.sh iqball@maxou.dev:/srv/www/iqball/$DRONE_BRANCH - rsync -avz -e "ssh -p 80 -o 'StrictHostKeyChecking=no'" ci/deploy_staging_server.sh iqball@maxou.dev:/srv/www/iqball/$DRONE_BRANCH/
- ssh -p 80 -o 'StrictHostKeyChecking=no' iqball@maxou.dev "chmod +x /srv/www/iqball/$DRONE_BRANCH/deploy_staging_server.sh && /srv/www/iqball/$DRONE_BRANCH/deploy_staging_server.sh $(echo $DRONE_BRANCH | tr / _) $DRONE_COMMIT_SHA" - ssh -p 80 -o 'StrictHostKeyChecking=no' iqball@maxou.dev "chmod +x /srv/www/iqball/$DRONE_BRANCH/deploy_staging_server.sh && /srv/www/iqball/$DRONE_BRANCH/deploy_staging_server.sh $(echo $DRONE_BRANCH | tr / _) $DRONE_COMMIT_SHA"
# Deploy the production database and server on codefirst # Deploy the production database and server on codefirst

Write Preview
Loading…
Cancel
Save