mirror of https://github.com/azaion/admin.git synced 2026-04-22 22:16:33 +00:00

Files

T

Oleksandr Bezdieniezhnykh d320d6dd59 [AZ-189] [AZ-190] [AZ-191] [AZ-192] [AZ-193] [AZ-194] [AZ-195] Add e2e blackbox test suite

Made-with: Cursor

2026-04-16 06:25:36 +03:00

Module: Azaion.Services.AuthService

Purpose

JWT token creation and current-user resolution from HTTP context claims.

Method	Signature	Description
`GetCurrentUser`	`Task<User?> GetCurrentUser()`	Extracts email from JWT claims, returns full User entity
`CreateToken`	`string CreateToken(User user)`	Generates a signed JWT token for the given user

GetCurrentUser: reads ClaimTypes.Name from HttpContext.User.Claims, then delegates to IUserService.GetByEmail.
CreateToken: builds a SecurityTokenDescriptor with claims (NameIdentifier = user ID, Name = email, Role = role), signs with HMAC-SHA256 using the configured secret, sets expiry from JwtConfig.TokenLifetimeHours.

Private method:

Program.cs /login endpoint — calls CreateToken after successful validation
Program.cs /users/current, /resources/get, /resources/get-installer, /resources/check — call GetCurrentUser

None.

Uses JwtConfig (Issuer, Audience, Secret, TokenLifetimeHours).

None.

Token includes user ID, email, and role as claims
Signed with HMAC-SHA256
Expiry controlled by TokenLifetimeHours config
Token validation parameters are configured in Program.cs (ValidateIssuer, ValidateAudience, ValidateLifetime, ValidateIssuerSigningKey)

None.