Token based auth for aspnet-core web api

Question

Dears,

I've followed https://stormpath.com/blog/token-authentication-asp-net-core to authenticate the user for my web apis I managed to create a successful access-token when calling api/token

My problem is the use of [Authorize], authorize filter didn't get that my user has a valid token, although HeaderAuthorization and HeaderExpries have been set.

function getValues()
{
    $.ajax({
        url: "http://localhost:48146/api/values",
        headers: { 'Authorization': 'Basic ' + accessToken, Expires: tokenExpires },
        method: "GET",
        context: document.body,
        success: function (data) {
            alert(data);
        }
    });
}

Did I passed a wrong header?

user1336 · Accepted Answer · 2017-02-13 18:24:15Z

2

Based on the tutorial you followed you should pass a bearer authorization header, not a basic authorization header:

headers: { 'Authorization': 'bearer' + accessToken, Expires: tokenExpires },

answered Feb 13, 2017 at 18:24

user1336

7,2552 gold badges31 silver badges36 bronze badges

Add a comment |

N0rA · Accepted Answer · 2017-02-19 13:42:34Z

0

I've figured out 2 problems

as @user1336 said in header I had theaders: { 'Authorization': 'bearer' + accessToken, Expires: tokenExpires },
I had to call ConfigureAuth(app) before app.UseMvc(); in Startup.css

answered Feb 19, 2017 at 13:42

N0rA

6121 gold badge8 silver badges27 bronze badges

Add a comment |

Collectives™ on Stack Overflow

Token based auth for aspnet-core web api

2 Answers 2

Hot Network Questions

Collectives™ on Stack Overflow

2 Answers 2

Related