Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How can I add kid to jwt header using SecurityTokenDescriptor in .netcore

Tags:

c#

.net-core

jwt

asp.net-core-webapi

asp.net-core-2.0

I am using .netcore 2 with JwtSecurityToken to generate a token

            var jwtSecurityToken = new JwtSecurityToken(
                issuer: issuer,
                audience:issuer,
                claims: claims,
                expires: DateTime.Now.AddMinutes(5),
                signingCredentials: new SigningCredentials(key, SecurityAlgorithms.HmacSha256)
            );

            jwtSecurityToken.Header.Add("kid", requestAPIKey);

Now because I use Idenity I have switched from JwtSecurityToken to Security Token Descriptor and my code is:

            var tokenDescriptor = new SecurityTokenDescriptor
            {
                Subject = new ClaimsIdentity(claims),
                Expires = DateTime.Now.AddDays(1),
                SigningCredentials = creds
            };

My question is how can I add kid to my token header when using Security Token Descriptor? In JwtSecurityToken, I was adding it with this code:

jwtSecurityToken.Header.Add("kid", requestAPIKey);

How can I do the same thing with SecurityTokenDescriptor? Thank, you!

like image 596
flyingpig Avatar asked Oct 27 '18 00:10

flyingpig

People also ask

How do I add a child to my JWT token?

In JwtSecurityToken, I was adding it with this code: jwtSecurityToken. Header. Add("kid", requestAPIKey);

What is kid in JWT header?

Key Id mainly refers to a Secret that can be retrieved and used to validate the signed JWT. - Mostly it is just a random guid that is stored as a secret Id. It should be provided by the generator of the JWT so that a Validator can retrieve the correct secret based on the "kid" to validate the signed JWT token.

1 Answers

Here's a code snippet I've used:

var tokenHandler = new JwtSecurityTokenHandler(); 
        var key = Encoding.UTF8.GetBytes("Secret"); 
        var tokenDescriptor = new SecurityTokenDescriptor 
        { 
            Subject = new ClaimsIdentity(new Claim[] 
            { 
                new Claim(ClaimTypes.Name, UserId), 
                new Claim(name, value), 
                new Claim(name, value)
            }), 

            Expires = DateTime.UtcNow.AddMinutes(5), 
            SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature) 

        }; 

        var token = tokenHandler.CreateJwtSecurityToken(tokenDescriptor); 
        token.Header.Add("kid", ""); 

        token.Payload.Remove("iss"); 
        token.Payload.Add("iss", "your issuer"); 

        var tokenString = tokenHandler.WriteToken(token);
like image 101
John Burrows Avatar answered Sep 22 '22 12:09

John Burrows
Sign in to Comment

Related questions

How can I simplify this long series of if statements?
How to use PEM certificate in Kestrel directly?
Warning on dependencies when create a new standard .NET project
Identityserver4 and API in single project
How to inject dependency into MVVM View Model class?
Linq OrderBy to group objects with the same sets
Custom print of object in C# Interactive
c# Appropriate data structure for storing values from csv file. Specific Case
How to validate a List of Guid using FluentValidation
How can I correctly inject `TempDataDictionary` into my classes?
Is LINQPad's IL code the optimized version?
This submission failed with error code(s) 2003,1201
Why doesn't type implemented in f# behave the same as C# types when called from C# application?
Azure static files System.IO.DirectoryNotFoundException
How to Mock IMongoCollection.Find using Moq
.NET C# float.Parse returning different result to double.Parse [duplicate]
ILDASM and ILASM, how use them?
Regex: match everything inside closest opening and closing curly braces around expression
What is the advantage of Path.TryJoin over Path.Combine in .NET Core?
Parallel EF Core queries with DbContext injection in ASP.NET Core

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!