Merge pull request #107 from Atralupus/jwt-headless

Atralupus · web-flow · commit cf51119317e0 · 2025-02-14T03:47:18.000+09:00
Request with jwt token
diff --git a/.gitignore b/.gitignore
@@ -91,5 +91,7 @@ fabric.properties
 
 # End of https://www.toptal.com/developers/gitignore/api/rider,dotnetcore
 
-ArenaService/appsettings.Local.json
+**/appsettings.Local.json
+**/appsettings.Internal.json
+**/appsettings.Main.json
 ArenaService.IntegrationTests/**/*.received.*
diff --git a/ArenaService/Setup.cs b/ArenaService/Setup.cs
@@ -1,5 +1,8 @@
 namespace ArenaService;
 
+using System.IdentityModel.Tokens.Jwt;
+using System.Net.Http.Headers;
+using System.Text;
 using System.Text.Json.Serialization;
 using ArenaService.Auth;
 using ArenaService.Data;
@@ -15,6 +18,7 @@ namespace ArenaService;
 using Microsoft.AspNetCore.Authentication;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.Extensions.Options;
+using Microsoft.IdentityModel.Tokens;
 using Microsoft.OpenApi.Models;
 using Newtonsoft.Json.Converters;
 using StackExchange.Redis;
@@ -43,6 +47,26 @@ public void ConfigureServices(IServiceCollection services)
                 {
                     var headlessOptions = provider.GetRequiredService<IOptions<HeadlessOptions>>();
                     client.BaseAddress = headlessOptions.Value.HeadlessEndpoint;
+
+                    if (
+                        headlessOptions.Value.JwtSecretKey is not null
+                        && headlessOptions.Value.JwtIssuer is not null
+                    )
+                    {
+                        var key = new SymmetricSecurityKey(
+                            Encoding.UTF8.GetBytes(headlessOptions.Value.JwtSecretKey)
+                        );
+                        var creds = new SigningCredentials(key, SecurityAlgorithms.HmacSha256);
+                        var token = new JwtSecurityToken(
+                            issuer: headlessOptions.Value.JwtIssuer,
+                            expires: DateTime.UtcNow.AddMinutes(5),
+                            signingCredentials: creds
+                        );
+                        client.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue(
+                            "Bearer",
+                            new JwtSecurityTokenHandler().WriteToken(token)
+                        );
+                    }
                 }
             );
 
