Coder Social home page Coder Social logo

authapi's Introduction

AuthAPI - Authentication and Authorization Web API

This is a web API built with .NET 6 that provides authentication and authorization functionality using an identity framework with an in-app database. The API allows users to log in and generate JWT tokens for accessing protected resources. The API also implements role-based access control, allowing only users with the "Admin" and "BackOffice" roles to access certain endpoints.

Prerequisites .NET 6 SDK: Make sure you have .NET 6 SDK installed on your machine. Getting Started Clone the repository to your local machine. Navigate to the AuthApi directory. Database Setup Before running the API, ensure you have set up the database:

Open a terminal or command prompt. Navigate to the AuthApi directory. Run the following command to create the database and apply migrations:

dotnet ef database update --project AuthApi --startup-project AuthApi --msbuildprojectextensionspath .

JWT Token Configuration

To enable JWT token generation and authentication, you need to replace the placeholders with the actual values for JWT token configuration in the Program.cs file:

// Replace the following placeholders with actual values for JWT token configuration

const string issuer = "your-issuer";

const string audience = "your-audience";

const string secretKey = "your-secret-key";

Replace your-issuer, your-audience, and your-secret-key with your desired values.

Build and Run the API

Open a terminal or command prompt.

Navigate to the AuthApi directory.

Run the following command to build the API:

dotnet build

Run the following command to start the API:

dotnet run --project AuthApi --urls=https://localhost:5001

Testing the API You can now test the API using a tool like Postman or any other HTTP client:

Use your HTTP client to send a POST request to https://localhost:5001/api/auth/login with the following JSON body: json

{ "username": "FrontOffice", "password": "your-password" }

Replace your-password with the password for the "FrontOffice" user.

The API will respond with a JWT token. Copy the token.

Use the JWT token to access protected endpoints. Include the token in the Authorization header as a Bearer token for requests to endpoints that require authentication.

Role-Based Access The API implements role-based access control. Users with the roles "Admin" and "BackOffice" will be able to access certain endpoints, while other users will be denied access.

authapi's People

Contributors

biodun-dev avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.