docker files fixes from liaqat

src/Managing.Api/Authorization/JwtMiddleware.cs

@@ -0,0 +1,27 @@
+using Managing.Application.Abstractions.Services;
+
+namespace Managing.Api.Authorization;
+
+
+public class JwtMiddleware
+{
+    private readonly RequestDelegate _next;
+
+    public JwtMiddleware(RequestDelegate next, IConfiguration config)
+    {
+        _next = next;
+    }
+
+    public async Task Invoke(HttpContext context, IUserService userService, IJwtUtils jwtUtils)
+    {
+        var token = context.Request.Headers["Authorization"].FirstOrDefault()?.Split(" ").Last();
+        var userId = jwtUtils.ValidateJwtToken(token);
+        if (userId != null)
+        {
+            // attach user to context on successful jwt validation
+            context.Items["User"] = await userService.GetUserByAddressAsync(userId);
+        }
+
+        await _next(context);
+    }
+}

src/Managing.Api/Authorization/JwtUtils.cs

@@ -0,0 +1,70 @@
+using Managing.Domain.Users;
+using Microsoft.IdentityModel.Tokens;
+using System.IdentityModel.Tokens.Jwt;
+using System.Security.Claims;
+using System.Text;
+
+namespace Managing.Api.Authorization;
+
+
+public interface IJwtUtils
+{
+    public string GenerateJwtToken(User user, string publicAddress);
+    public string ValidateJwtToken(string token);
+}
+
+public class JwtUtils : IJwtUtils
+{
+    private readonly string _secret;
+    public JwtUtils(IConfiguration config)
+    {
+        _secret = config.GetValue<string>("Jwt:Secret");
+    }
+
+    public string GenerateJwtToken(User user, string publicAddress)
+    {
+        // generate token that is valid for 15 minutes
+        var tokenHandler = new JwtSecurityTokenHandler();
+        var key = Encoding.ASCII.GetBytes(_secret);
+        var tokenDescriptor = new SecurityTokenDescriptor
+        {
+            Subject = new ClaimsIdentity(new[] { new Claim("address", publicAddress) }),
+            Expires = DateTime.UtcNow.AddDays(15),
+            SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature)
+        };
+        var token = tokenHandler.CreateToken(tokenDescriptor);
+        return tokenHandler.WriteToken(token);
+    }
+
+    public string ValidateJwtToken(string token)
+    {
+        if (token == null || string.IsNullOrEmpty(token))
+            return null;
+
+        var tokenHandler = new JwtSecurityTokenHandler();
+        var key = Encoding.ASCII.GetBytes(_secret);
+        try
+        {
+            tokenHandler.ValidateToken(token, new TokenValidationParameters
+            {
+                ValidateIssuerSigningKey = true,
+                IssuerSigningKey = new SymmetricSecurityKey(key),
+                ValidateIssuer = false,
+                ValidateAudience = false,
+                // set clockskew to zero so tokens expire exactly at token expiration time (instead of 5 minutes later)
+                ClockSkew = TimeSpan.Zero
+            }, out SecurityToken validatedToken);
+
+            var jwtToken = (JwtSecurityToken)validatedToken;
+            var address = jwtToken.Claims.First(x => x.Type == "address").Value;
+
+            // return user id from JWT token if validation successful
+            return address;
+        }
+        catch
+        {
+            // return null if validation fails
+            return null;
+        }
+    }
+}