summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--Controllers/UsersController.cs53
-rw-r--r--DTOs/UserDTO.cs9
-rw-r--r--IdentityAPI.csproj3
-rw-r--r--Program.cs42
-rw-r--r--appsettings.json3
5 files changed, 108 insertions, 2 deletions
diff --git a/Controllers/UsersController.cs b/Controllers/UsersController.cs
new file mode 100644
index 0000000..52c9105
--- /dev/null
+++ b/Controllers/UsersController.cs
@@ -0,0 +1,53 @@
+using Microsoft.AspNetCore.Authentication.JwtBearer;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.IdentityModel.Tokens;
+using System.IdentityModel.Tokens.Jwt;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.EntityFrameworkCore;
+using System.Text;
+using System.Security.Claims;
+using IdentityAPI.Models;
+using IdentityAPI.DTO;
+
+namespace IdentityAPI.Controllers {
+ [Route("api/users")]
+ [ApiController]
+ public class UsersController : ControllerBase {
+ private readonly ApplicationDbContext _context;
+ private readonly IConfiguration _configuration;
+ private readonly UserManager<IdentityUser> _manager;
+
+ public UsersController(ApplicationDbContext context, IConfiguration configuration, UserManager<IdentityUser> manager) {
+ _context = context;
+ _configuration = configuration;
+ _manager = manager;
+ }
+
+ [HttpPost("signup")]
+ public async Task<IActionResult> PostUser(UserDTO data) {
+ var user = new IdentityUser { UserName = data.UserName, Email = data.Email };
+ var result = await _manager.CreateAsync(user, data.Password);
+
+ if(result.Succeeded)
+ return Ok(new { Token = GenerateToken(user) });
+
+ return StatusCode(422, new { error = "The provided user is invalid" });
+ }
+
+ private string GenerateToken(IdentityUser user) {
+ var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(_configuration["Jwt:Key"]));
+ var creds = new SigningCredentials(key, SecurityAlgorithms.HmacSha256);
+ var expiration = DateTime.UtcNow.AddMinutes(30);
+ var issuer = _configuration["Jwt:Issuer"];
+ var claims = new List<Claim> {
+ new Claim("sid", user.Id),
+ new Claim("username", user.UserName),
+ new Claim("email", user.Email)
+ };
+ var descriptor = new JwtSecurityToken(issuer: null, audience: null, claims: claims, expires: expiration, signingCredentials: creds);
+
+ return new JwtSecurityTokenHandler().WriteToken(descriptor);
+ }
+ }
+}
diff --git a/DTOs/UserDTO.cs b/DTOs/UserDTO.cs
new file mode 100644
index 0000000..9336817
--- /dev/null
+++ b/DTOs/UserDTO.cs
@@ -0,0 +1,9 @@
+namespace IdentityAPI.DTO {
+ public class UserDTO {
+ #nullable enable
+ public string? UserName { get; set; }
+ public string? Email { get; set; }
+ public string? Password { get; set; }
+ #nullable disable
+ }
+}
diff --git a/IdentityAPI.csproj b/IdentityAPI.csproj
index 1e26281..0d8799f 100644
--- a/IdentityAPI.csproj
+++ b/IdentityAPI.csproj
@@ -7,8 +7,11 @@
</PropertyGroup>
<ItemGroup>
+ <PackageReference Include="Microsoft.AspNetCore.Authentication" Version="2.2.0" />
+ <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="7.0.0" />
<PackageReference Include="Microsoft.AspNetCore.Identity" Version="2.2.0" />
<PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" Version="7.0.0" />
+ <PackageReference Include="Microsoft.AspNetCore.Identity.UI" Version="7.0.0" />
<PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="7.0.0" />
<PackageReference Include="Microsoft.EntityFrameworkCore" Version="7.0.0" />
<PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="7.0.0">
diff --git a/Program.cs b/Program.cs
index 19b5970..28b00d9 100644
--- a/Program.cs
+++ b/Program.cs
@@ -1,5 +1,10 @@
using Microsoft.AspNetCore.Identity;
using Microsoft.EntityFrameworkCore;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
+using Microsoft.IdentityModel.Tokens;
+using System.IdentityModel.Tokens.Jwt;
+using System.Security.Claims;
+using System.Text;
using IdentityAPI.Models;
var builder = WebApplication.CreateBuilder(args);
@@ -8,9 +13,42 @@ var builder = WebApplication.CreateBuilder(args);
builder.Services.AddControllers();
builder.Services.AddDbContext<ApplicationDbContext>(o => o.UseNpgsql(builder.Configuration.GetConnectionString("ApplicationDbContext")));
+builder.Services.AddIdentity<IdentityUser, IdentityRole>()
+// .AddRoles<IdentityRole>()
+ .AddEntityFrameworkStores<ApplicationDbContext>();
// Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle
builder.Services.AddEndpointsApiExplorer();
builder.Services.AddSwaggerGen();
+// Autenticación con JSON web tokens.
+builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
+ .AddJwtBearer(options => {
+ options.TokenValidationParameters = new TokenValidationParameters {
+ ValidateLifetime = true,
+ ValidateIssuer = true,
+ ValidIssuer = builder.Configuration["Jwt:Issuer"],
+ IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(builder.Configuration["Jwt:Key"]))
+ };
+});
+builder.Services.Configure<IdentityOptions>(options =>
+{
+ // Password settings.
+ options.Password.RequireDigit = false;
+ options.Password.RequireLowercase = false;
+ options.Password.RequireNonAlphanumeric = false;
+ options.Password.RequireUppercase = false;
+ options.Password.RequiredLength = 6;
+ options.Password.RequiredUniqueChars = 0;
+
+ // Lockout settings.
+ options.Lockout.DefaultLockoutTimeSpan = TimeSpan.FromMinutes(5);
+ options.Lockout.MaxFailedAccessAttempts = 5;
+ options.Lockout.AllowedForNewUsers = true;
+
+ // User settings.
+ options.User.AllowedUserNameCharacters =
+ "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-._@+";
+ options.User.RequireUniqueEmail = false;
+});
// Identity configuration.
// builder.Services.Configure<IdentityOptions>(options => {
@@ -25,7 +63,9 @@ if (app.Environment.IsDevelopment())
app.UseSwaggerUI();
}
-app.UseHttpsRedirection();
+// app.UseHttpsRedirection();
+
+app.UseAuthentication();
app.UseAuthorization();
diff --git a/appsettings.json b/appsettings.json
index 02401f4..4404596 100644
--- a/appsettings.json
+++ b/appsettings.json
@@ -9,7 +9,8 @@
"ApplicationDbContext": "Host=127.0.0.1;Database=identity;Username=luis"
},
"Jwt": {
- "Key": "3aa68fb64d638cd66a0485fce8fcdb49"
+ "Key": "3aa68fb64d638cd66a0485fce8fcdb49",
+ "Issuer": "jwtissuer.com"
},
"AllowedHosts": "*"
}