This is an example of how to generate JWT tokens using
IdentityServer4 and use them to authenticate users in SignalR via a React/TypeScript Single Page App.
It will accompany this blog post.
You can run this from the command line if you have Node and Dotnet Core installed, or you can use VS2015 or greater:
-
Install Visual Studio 2015 Update 3 and/or DotNet Core 1.1.
-
Install Node. I'm using 6.9.5.
-
Optionally install the Node extension for Visual Studio
From the Developer Command Prompt:
> makecert -n "CN=ExampleTest" -a sha256 -sv ExampleTest.pvk -r ExampleTest.cer
> pvk2pfx -pvk ExampleTest.pvk -spc ExampleTest.cer -pfx ExampleTest.pfx
The pvk2pfx command combines the pvk and cer files into a single pfx file containing both the public and private keys for the certificate. The IdentityServer4 app will use the private key from the pfx to sign tokens. The .cer file containing the public key can be shared with other services for the purpose of signature validation.
To install asymmetric keys:
- Go to
Manage Computer Certificatesin Windows - Under
Certificates - Local Computer => Personal => Certificates, right click and selectAll Tasks => Import... - Select
ExampleTest.pfxand import it (there's no password). You should see ExampleTest in the list. - Under
Certificates - Local Computer => Trusted People => Certificates, right click and selectAll Tasks => Import... - Select
ExampleTest.cerand import it (there's no password).
If you want to verify generated JWT tokens yourself at jwt.io, you can translate the .pfx to a .pem file:
openssl x509 -inform der -in ExampleTest.cer -pubkey -noout > ExampleTest_pub.pemFrom one console:
> cd src\ChatAPI
> dotnet restore
> dotnet runAnd in another console:
> cd src\IdentityServer
> dotnet restore
> dotnet runAnd in a third console:
> cd src\Web
> npm install
> npm run startIn a browser, navigate to http://localhost:3000/.
The two test users are "lou" and "bud" with the password "password".
I have not been able to get a net461 app working in docker using a nanoserver image.