JWT Authentication with Bearer token support. Authorized GetAllErrors Api and LogErrors Api.

Author: HasanJaved-Developer

CentralizedLoggingApi/Auth/JwtOptions.cs

@@ -0,0 +1,10 @@
+namespace CentralizedLoggingApi.DTO.Auth
+{
+    public class JwtOptions
+    {
+        public string Issuer { get; set; } = null!;
+        public string Audience { get; set; } = null!;
+        public string Key { get; set; } = null!;
+        public int ExpiresMinutes { get; set; }
+    }
+}

CentralizedLoggingApi/CentralizedLoggingApi.csproj

@@ -10,6 +10,7 @@
   </PropertyGroup>
 
   <ItemGroup>
+    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="9.0.8" />
     <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="9.0.7" />
     <PackageReference Include="Microsoft.EntityFrameworkCore" Version="9.0.8" />
     <PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="9.0.8">

CentralizedLoggingApi/Controllers/ErrorLogsController.cs

@@ -1,6 +1,7 @@
 using CentralizedLoggingApi.Data;
 using CentralizedLoggingApi.DTO;
 using CentralizedLoggingApi.Models;
+using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
 
@@ -17,6 +18,7 @@ public ErrorLogsController(LoggingDbContext context)
             _context = context;
         }
 
+        [Authorize]
         // POST api/errorlogs
         [HttpPost]
         public async Task<IActionResult> LogError([FromBody] CreateErrorLogDto errorLogDto)
@@ -59,6 +61,7 @@ public async Task<IActionResult> GetErrorById(long id)
             return Ok(error);
         }
 
+        [Authorize]
         // GET api/errorlogs
         [HttpGet]
         public async Task<IActionResult> GetAllErrors()

CentralizedLoggingApi/Program.cs

@@ -1,10 +1,14 @@
 using CentralizedLoggingApi;
 using CentralizedLoggingApi.Data;
+using CentralizedLoggingApi.DTO.Auth;
 using CentralizedLoggingApi.Middlewares;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.EntityFrameworkCore;
+using Microsoft.IdentityModel.Tokens;
 using Microsoft.OpenApi.Models; 
 using Serilog;
 using System.Reflection;
+using System.Text;
 
 
 
@@ -24,6 +28,30 @@
 builder.Services.AddDbContext<LoggingDbContext>(options =>
     options.UseSqlServer(builder.Configuration.GetConnectionString("DefaultConnection")));
 
+// Add JwtOptions + Authentication
+builder.Services.Configure<JwtOptions>(builder.Configuration.GetSection("Jwt"));
+var jwt = builder.Configuration.GetSection("Jwt").Get<JwtOptions>()!;
+
+var keyBase64 = builder.Configuration["Jwt:Key"]!;
+var keyPlain = Encoding.UTF8.GetString(Convert.FromBase64String(keyBase64));
+
+builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
+    .AddJwtBearer(opt =>
+    {
+        opt.TokenValidationParameters = new TokenValidationParameters
+        {
+            ValidateIssuer = true,
+            ValidateAudience = true,
+            ValidateIssuerSigningKey = true,
+            ValidIssuer = jwt.Issuer,
+            ValidAudience = jwt.Audience,
+            IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(keyPlain)),
+            ClockSkew = TimeSpan.Zero
+        };
+    });
+
+builder.Services.AddAuthorization();
+
 
 builder.Services.AddHttpContextAccessor();
 
@@ -41,6 +69,33 @@
         Version = "v1",
         Description = "API for centralized error logging and monitoring"
     });
+
+    // Bearer token support
+    var jwtSecurityScheme = new Microsoft.OpenApi.Models.OpenApiSecurityScheme
+    {
+        Scheme = "bearer",
+        BearerFormat = "JWT",
+        Name = "Authorization",
+        In = Microsoft.OpenApi.Models.ParameterLocation.Header,
+        Type = Microsoft.OpenApi.Models.SecuritySchemeType.Http,
+        Description = "JWT auth using Bearer scheme. Paste **only** the token below.",
+
+        Reference = new Microsoft.OpenApi.Models.OpenApiReference
+        {
+            Id = "Bearer",
+            Type = Microsoft.OpenApi.Models.ReferenceType.SecurityScheme
+        }
+    };
+
+    c.AddSecurityDefinition("Bearer", jwtSecurityScheme);
+
+    // Require Bearer token for all operations (you can remove if you prefer per-endpoint)
+    c.AddSecurityRequirement(new Microsoft.OpenApi.Models.OpenApiSecurityRequirement
+    {
+        { jwtSecurityScheme, Array.Empty<string>() }
+    });
+
+
     var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
     var xmlPath = Path.Combine(AppContext.BaseDirectory, xmlFile);
     c.IncludeXmlComments(xmlPath, includeControllerXmlComments: true); // ok if your Swashbuckle version supports the bool

CentralizedLoggingApi/appsettings.json

@@ -23,6 +23,12 @@
         "restrictedToMinimumLevel": "Information"
       }
     ]
+  },
+  "Jwt": {
+    "Issuer": "PermsApi",
+    "Audience": "PermsApiAudience",
+    "Key": "dmVyeV9sb25nX2Rldl9rZXlfY2hhbmdlX2luX3Byb2RfMTIzNDU2Nzg5MA==",
+    "ExpiresMinutes": 60
   }
 
 }

UserManagementApi/Program.cs

@@ -1,7 +1,6 @@
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.IdentityModel.Tokens;
-using Microsoft.OpenApi.Models;
 using Serilog;
 using System.Reflection;
 using System.Text;