从 swagger UI 将 Jwt 令牌作为不记名令牌传递到标头中不起作用
use*_*202 6 c# authentication asp.net-web-api swagger bearer-token
我正在生成 jwt 令牌 Web api 核心应用程序。在应用程序中,我使用 swagger 并应用了不记名令牌身份验证。但是当我尝试从 swagger UI 传递不记名令牌时,我收到 401 错误。请有人帮助我解决这个问题
services.AddSwaggerGen(c =>
{
c.SwaggerDoc("v1", new OpenApiInfo { Title = "My API", Version = "v1" });
c.SwaggerDoc("v2", new OpenApiInfo { Title = "My API", Version = "v2" });
c.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme
{
In = ParameterLocation.Header,
Description = "JWT Authorization header using the Bearer scheme. Example: \"Authorization: Bearer {token}\"",
Name = "Authorization",
Type = SecuritySchemeType.ApiKey,
});
});
app.UseSwagger();
app.UseSwaggerUI(c =>
{
c.SwaggerEndpoint("/swagger/v1/swagger.json", "Versioned API v1.0");
c.SwaggerEndpoint("/swagger/v2/swagger.json", "Versioned API v2.0");
c.DocExpansion(DocExpansion.None);
});
] 您已指定 API 支持的 SecurityScheme,但未指定其必需的。因此,swagger 不会在标头中传递它。为此,您需要使用OpenApiSecurityRequirement并 在其中指定SecurityDefinition您所使用的 Id。
这是我使用过的一个片段。
var securityScheme = new OpenApiSecurityScheme()
{
Description = "JWT Authorization header using the Bearer scheme. Example: \"Authorization: Bearer {token}\"",
Name = "Authorization",
In = ParameterLocation.Header,
Type = SecuritySchemeType.Http,
Scheme = "bearer",
BearerFormat = "JWT" // Optional
};
var securityRequirement = new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme
{
Reference = new OpenApiReference
{
Type = ReferenceType.SecurityScheme,
Id = "bearerAuth"
}
},
new string[] {}
}
};
options.AddSecurityDefinition("bearerAuth", securityScheme);
options.AddSecurityRequirement(securityRequirement);
| 归档时间: |
|
| 查看次数: |
9076 次 |
| 最近记录: |