stackoom
  简体   繁体   中英

GraphQL .NET Authentication with JWT does not work

 原文  2020-11-24 14:17:39       c#/ .net/ graphql/ jwt

Question

I am implementing a GraphQL API that I'm trying to secure with JWT.

In my Startup.cs I'm implementing

    .AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
    .AddJwtBearer(JwtBearerDefaults.AuthenticationScheme, options =>
    {
        options.TokenValidationParameters = new TokenValidationParameters
        {
            ValidateIssuer = true,
            ValidateAudience = true,
            ValidateLifetime = true,
            ValidateIssuerSigningKey = true,
            ValidIssuer = Configuration["JWT:Issuer"],
            ValidAudience = Configuration["JWT:Audience"],
            IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(Configuration["Jwt:Secret"]))
        };
    });

and

  app.UseAuthentication();   <---------- Added authentication
  app.UseGraphQL<ToGatherSchema>();
  app.UseGraphQLPlayground(new GraphQLPlaygroundOptions());

I tested authentication on one of my file controllers by adding

[Authorize]   <---------- Added authentication
public class FilesController : Controller
{
   ...

and it works like a charm, but I cannot seem to get it to authenticate my GraphQL endpoint. I can run queries and mutations without a token in http header.

I've seen some people creating a separate controller to handle POST requests to /graphql endpoint, but it seems like more of a workaround than a solution.

Is there a way to do this?

Cheers!

2 answers

solution1
 1 ACCPTED  2022-03-03 09:13:52

An old question I know, but I stumbled across it having the same problem. I solved it by adding a call to MapGraphQL in UseEndpoints. The RequireAuthorization method ensures that authentication is required for the endpoint. 

app.UseAuthentication();   <---------- Added authentication
app.UseGraphQL<ToGatherSchema>();
app.UseGraphQLPlayground(new GraphQLPlaygroundOptions());
app.UseEndpoints(endpoints =>
{
    endpoints.MapControllers();
    endpoints.MapGraphQL<ToGatherSchema>().RequireAuthorization();
});

solution2
 0  2020-11-24 19:43:35

GraphQl API by default works like a middleware, so it's impossible to use the authorize attribute or JWT token for a communication. A separate route is the only one way.
Also, you able to use UserContext but I'm not sure if this solution what you a looking for.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Asp Net Core authentication with JWT Firebase Authentication (JWT) with .NET Core .Net Core 2 JWT, Angular 2 Authorization through roles does not work .Net Core 3.1 Jwt Validate Issuer does not seem to work RestSharp with JWT-authentication doesn't work JWT Authentication validation in asp.net core Authentication windows/JWT with .net core & angular 7 ASP.NET Core 3+ JWT authentication Consuming web api with JWT authentication in .NET 7 MAUI? Use JWT with OAuth Authentication in .Net-Core
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM