handled more exceptions in gRPC

thangchung · thangchung · commit 8ff21de98cd2 · 2019-03-24T12:16:06.000+07:00
diff --git a/src/NetCoreKit.Infrastructure.GrpcHost/AuthInterceptor.cs b/src/NetCoreKit.Infrastructure.GrpcHost/AuthInterceptor.cs
@@ -88,10 +88,23 @@ public override async Task<TResponse> UnaryServerHandler<TRequest, TResponse>(TR
                 handler.InboundClaimTypeMap.Clear();
 
                 var userToken = context.RequestHeaders.FirstOrDefault(x => x.Key == "authorization")?.Value;
+
+                if (string.IsNullOrEmpty(userToken))
+                {
+                    throw new AuthenticationException("Cannot get authorization on the header");
+                }
+
                 var user = handler.ValidateToken(userToken.TrimStart("Bearer").TrimStart("bearer").TrimStart(" "), parameters, out _);
+
+                if (user == null)
+                {
+                    throw new AuthenticationException(
+                        "Cannot validate jwt token. Check authority and audience configuration.");
+                }
+
                 if (!user.HasClaim(c => c.Value == attribute.Name))
                 {
-                    throw new AuthenticationException("Couldn't access to this API, please check your permission.");
+                    throw new AuthenticationException("Cannot access to this API, please check your permission.");
                 }
 
                 return await continuation(request, context);
