Developing JWT (JSON web Token) based authentication

-

Hello,


You are going to see how we can implement custom authentication mechanism to our system. 

Source code contains necessary projects (Web API, Console Application) in C# with  MVC patern so supposing you have basic information on that areas.

Source code is here :

https://github.com/TheMaty/JSONWebToken-Custom-Authorization

I use Visual Studio 2019 in the study.

Solution structure;

  • AuthorizationServer project is ASP.NET Web Application with Web API template (which is MVC).
    It accepts any requests from client device with Client Id and Client Secret and generates Bearer token respectively.
  • BackEndServer project is ASP.NET Web Application with Web API template (which is MVC).
  • It acceptes bearer token, validates it then execute order that comes in request body (mostly JSON format) 
  • BearerTokenRequestor project is a console application to simulate request send and recieve (Postman can already be used for that purpose)
  • CryptoRandomDataGenerator project is a console application to create Client Secret value


PoC:

Suppose that
We need to build up a mobile application to create a record in the backend application which resides under secure network or we do not want to expose the application to the world. 

Note: Mobile client is not in the source code since it is not ready at that moment. I may share it later. 

It is good to consider building up our authentication model.


High Level Design



Flow is very simple;

Client device can only access to the Back End node with a valid JWT (Bearer Token) so in order to send request to the back application through back end node, Client device must have a valid bearer token;

  1. Mobile Client reaches to the Authorization Server with valid Client Id and Client Secret
    Client Id is any key but must be stored in Audience table in database . I use GUID there(SQL Statement is in source code - please look at above for my github page - Audience_Table_Creation_Script.sql)
    Client Secret is a crypto data (please find RandomNumberGenerator console application under solution) 
  2. Authorization Server connects Database for accessing Registered device list through Audience table
  3. Authorization server generates bearer token for certain duration ( you can set the expiration from Web.config file - AccessTokenExpirationInSeconds is a parameter in config - ) 
  4. Mobile Client sends request to Back End node with bearer token
  5. Back End node verify sent token via Audience table in the database
  6. Execute order if Bearer token is valid
  7. Response the result. 

 

  

Special thanks to Andrei: 

https://eidand.com/2015/03/28/authorization-system-with-owin-web-api-json-web-tokens/ 

His article and source code help and encourage me a lot to implement custom authentication.  



Comments

Post a Comment

Popular posts from this blog

Complex Query in QueryExpression in Microsoft CRM 2011

-
Hi, Here is tables and relation,QueryExpression statement afterwards. contact 1--->N new_ticket N --> N new_tour QueryExpression query = new QueryExpression()                     {                         EntityName = "contact",                         ColumnSet = new ColumnSet(new string[] {                                                             "contactid",                                                             "firstname",                                                             "lastname",                                                             "birthdate",                                                             "fullname"                                                             }                                                   )                     }; Query Expression will execute the query against contact. For performance issue; do not retrieve any columns that we do
Read more

Exception caught instantiating TERADATA report server extension SQL Reporting Services

-
Hi, If you face an error in Reporting Services Log File (C:\Program Files\Microsoft SQL Server\MSRSxx_xx.MSSQLSERVER\Reporting Services\LogFiles) such as : extensionfactory!ReportServer_0-1!ea4!03/26/2013-08:20:15:: e ERROR: Exception caught instantiating TERADATA report server extension:  System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation.  ---> System.IO.FileNotFoundException: Could not load file or assembly 'Teradata.Client.Provider, Version=12.0.0.0, Culture=neutral, PublicKeyToken=76b417ee2e04956c' or one of its dependencies. The system cannot find the file specified. File name: 'Teradata.Client.Provider, Version=12.0.0.0, Culture=neutral, PublicKeyToken=76b417ee2e04956c'    at System.Reflection.Assembly._nLoad(AssemblyName fileName, String codeBase, Evidence assemblySecurity, Assembly locationHint, StackCrawlMark& stackMark, Boolean throwOnFileNotFound, Boolean forIntrospection)    at System.Refl
Read more

Microsoft Power Apps Portal integration with Dynamics 365 CE On-Premise - Step By Step Guide

-
Image
 Hello, It has been quite long since I did not post any guides with you. Today, I am going to share a PoC of mine result with detailed screenshots as much as possible.  You will see how we can easily position Power Apps Portal in front of Dynamics 365 CRM ( CE ) Engine 9.x on-premise edition. You are going to see following subjects in the study; Solution generation for the scenario in Dynamics 365 CRM on-premise  Create Solution Create Custom Entity Add Existing entity to a custom solution 1:N relation Form creation for Portal visibilities for portal specific fields Microsoft Common Data Service (Microsoft Dataverse) - an environment -creation Solution generation for the scenario in Dynamics 365 CRM on-premise  Microsoft Power Apps Portal creation (Starter Portal) in the environment Microsoft Dynamics 365 On-Premise customization for PoC Scenario implementation Reflecting Dynamics 365 On-Premise solution to CDS (Microsoft Dataverse) - to the environment- Aligning Microsoft Power Apps P
Read more