Add middleware to enable token based authentication.

Author: hikalkan

aspnet-core/src/AbpCompanyName.AbpProjectName.Application/AbpCompanyName.AbpProjectName.Application.csproj

@@ -11,7 +11,7 @@
     <GenerateAssemblyProductAttribute>false</GenerateAssemblyProductAttribute>
     <RootNamespace>AbpCompanyName.AbpProjectName</RootNamespace>
   </PropertyGroup>
-
+  
   <ItemGroup>
     <ProjectReference Include="..\AbpCompanyName.AbpProjectName.Core\AbpCompanyName.AbpProjectName.Core.csproj" />
   </ItemGroup>

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Core/Authentication/JwtBearer/JwtTokenMiddleware.cs

@@ -0,0 +1,26 @@
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
+using Microsoft.AspNetCore.Builder;
+
+namespace AbpCompanyName.AbpProjectName.Authentication.JwtBearer
+{
+    public static class JwtTokenMiddleware
+    {
+        public static IApplicationBuilder UseJwtTokenMiddleware(this IApplicationBuilder app)
+        {
+            return app.Use(async (ctx, next) =>
+            {
+                if (ctx.User.Identity?.IsAuthenticated != true)
+                {
+                    var result = await ctx.AuthenticateAsync(JwtBearerDefaults.AuthenticationScheme);
+                    if (result.Succeeded && result.Principal != null)
+                    {
+                        ctx.User = result.Principal;
+                    }
+                }
+
+                await next();
+            });
+        }
+    }
+}

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Host/Startup/AuthConfigurer.cs

@@ -19,6 +19,8 @@ public static void Configure(IServiceCollection services, IConfiguration configu
                 services.AddAuthentication()
                     .AddJwtBearer(options =>
                     {
+                        options.Audience = configuration["Authentication:JwtBearer:Audience"];
+
                         options.TokenValidationParameters = new TokenValidationParameters
                         {
                             // The signing key must match!

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Host/Startup/Startup.cs

@@ -13,6 +13,9 @@
 using Microsoft.Extensions.Logging;
 using Swashbuckle.AspNetCore.Swagger;
 using Abp.Extensions;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
+using AbpCompanyName.AbpProjectName.Authentication.JwtBearer;
 
 #if FEATURE_SIGNALR
 using Owin;
@@ -83,10 +86,11 @@ public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerF
 
             app.UseCors(DefaultCorsPolicyName); //Enable CORS!
 
-            app.UseAuthentication();
-
             app.UseStaticFiles();
 
+            app.UseAuthentication();
+            app.UseJwtTokenMiddleware();
+
 #if FEATURE_SIGNALR
             //Integrate to OWIN
             app.UseAppBuilder(ConfigureOwinServices);

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Mvc/Startup/AuthConfigurer.cs

@@ -1,5 +1,6 @@
 using System;
 using System.Text;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.IdentityModel.Tokens;
@@ -15,6 +16,8 @@ public static void Configure(IServiceCollection services, IConfiguration configu
                 services.AddAuthentication()
                     .AddJwtBearer(options =>
                     {
+                        options.Audience = configuration["Authentication:JwtBearer:Audience"];
+                        
                         options.TokenValidationParameters = new TokenValidationParameters
                         {
                             // The signing key must match!

aspnet-core/src/AbpCompanyName.AbpProjectName.Web.Mvc/Startup/Startup.cs

@@ -1,6 +1,7 @@
 using System;
 using Abp.AspNetCore;
 using Abp.Castle.Logging.Log4Net;
+using AbpCompanyName.AbpProjectName.Authentication.JwtBearer;
 using AbpCompanyName.AbpProjectName.Configuration;
 using AbpCompanyName.AbpProjectName.Identity;
 using AbpCompanyName.AbpProjectName.Web.Resources;
@@ -11,6 +12,8 @@
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.Extensions.Logging;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
 
 #if FEATURE_SIGNALR
 using Owin;
@@ -38,7 +41,6 @@ public IServiceProvider ConfigureServices(IServiceCollection services)
             });
 
             IdentityRegistrar.Register(services);
-
             AuthConfigurer.Configure(services, _appConfiguration);
 
             services.AddScoped<IWebResourceManager, WebResourceManager>();
@@ -66,10 +68,11 @@ public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerF
                 app.UseExceptionHandler("/Error");
             }
 
-            app.UseAuthentication();
-
             app.UseStaticFiles();
 
+            app.UseAuthentication();
+            app.UseJwtTokenMiddleware();
+
 #if FEATURE_SIGNALR
             //Integrate to OWIN
             app.UseAppBuilder(ConfigureOwinServices);