TraceExceptionLogger and Jwt improvement

thiagoloureiro · thiagoloureiro · commit 0af99274996a · 2017-12-03T19:08:01.000+01:00
diff --git a/Utils/JwtManager.cs b/Utils/JwtManager.cs
@@ -1,22 +1,24 @@
-﻿using System;
+﻿using Microsoft.IdentityModel.Tokens;
+using System;
 using System.IdentityModel.Tokens.Jwt;
+using System.Runtime.Caching;
 using System.Security.Claims;
-using Microsoft.IdentityModel.Tokens;
+using System.Security.Cryptography;
 
 namespace Utils
 {
     public static class JwtManager
     {
-        /// <summary>
-        /// Use the below code to generate symmetric Secret Key
-        ///     var hmac = new HMACSHA256();
-        ///     var key = Convert.ToBase64String(hmac.Key);
-        /// </summary>
-        private const string Secret = "db3OIsj+BXE9NZDy0t8W3TcNekrF+2d/1sFnWG4HnV8TZY30iTOdtVWJG8abWvB1GlOgJuQZdcF2Luqm/hccMw==";
+        private static MemoryCache cache;
 
         public static string GenerateToken(string username, int expireMinutes = 20)
         {
-            var symmetricKey = Convert.FromBase64String(Secret);
+            cache = new MemoryCache("CachingProvider");
+
+            var hmac = new HMACSHA256();
+            var key = Convert.ToBase64String(hmac.Key);
+
+            var symmetricKey = Convert.FromBase64String(key);
             var tokenHandler = new JwtSecurityTokenHandler();
 
             var now = DateTime.UtcNow;
@@ -35,11 +37,15 @@ public static string GenerateToken(string username, int expireMinutes = 20)
             var stoken = tokenHandler.CreateToken(tokenDescriptor);
             var token = tokenHandler.WriteToken(stoken);
 
+            cache.Add(token, key, DateTimeOffset.MaxValue);
+
             return token;
         }
 
         public static ClaimsPrincipal GetPrincipal(string token)
         {
+            var key = cache[token].ToString();
+
             try
             {
                 var tokenHandler = new JwtSecurityTokenHandler();
@@ -48,7 +54,7 @@ public static ClaimsPrincipal GetPrincipal(string token)
                 if (jwtToken == null)
                     return null;
 
-                var symmetricKey = Convert.FromBase64String(Secret);
+                var symmetricKey = Convert.FromBase64String(key);
 
                 var validationParameters = new TokenValidationParameters()
                 {
diff --git a/Utils/Utils.csproj b/Utils/Utils.csproj
@@ -44,6 +44,7 @@
     <Reference Include="System.IdentityModel.Tokens.Jwt, Version=5.1.4.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\packages\System.IdentityModel.Tokens.Jwt.5.1.4\lib\net451\System.IdentityModel.Tokens.Jwt.dll</HintPath>
     </Reference>
+    <Reference Include="System.Runtime.Caching" />
     <Reference Include="System.XML" />
   </ItemGroup>
   <ItemGroup>
diff --git a/WebAPI/Helpers/TraceExceptionLogger.cs b/WebAPI/Helpers/TraceExceptionLogger.cs
@@ -0,0 +1,14 @@
+﻿using System.Diagnostics;
+using System.Web.Http.ExceptionHandling;
+
+namespace WebAPI.Helpers
+{
+    public class TraceExceptionLogger : ExceptionLogger
+    {
+        public override void Log(ExceptionLoggerContext context)
+        {
+            Trace.TraceError(context.ExceptionContext.Exception.ToString());
+            // Log your error here, Db or Service.
+        }
+    }
+}
diff --git a/WebAPI/WebAPI.csproj b/WebAPI/WebAPI.csproj
@@ -201,6 +201,7 @@
     <Compile Include="Global.asax.cs">
       <DependentUpon>Global.asax</DependentUpon>
     </Compile>
+    <Compile Include="Helpers\TraceExceptionLogger.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
     <Compile Include="Requests\UserLoginExample.cs" />
     <Compile Include="Requests\UserLogin.cs" />
