NikiforovAll/ Keycloak.AuthServices.Authentication v1.0.1 ✓ Verified .NET 10.0
Simple and configurable JWT Bearer Authentication for Web APIs and OIDC+Cookie Authentication for Web Apps.
Get Started dotnet CLI PackageReference Package Manager
$ dotnet add package Keycloak.AuthServices.Authentication
Keycloak.AuthServices.Authentication Add OpenID Connect + JWT Bearer token authentication.
// add configuration from keycloak file
host.ConfigureKeycloakConfigurationSource("keycloak.json");
// add authentication services, OICD JwtBearerDefaults.AuthenticationScheme
services.AddKeycloakAuthentication(configuration, o =>
{
o.RequireHttpsMetadata = false;
});
Keycloak installation file:
// confidential client
{
"realm": "<realm>",
"auth-server-url": "http://localhost:8088/auth/",
"ssl-required": "external", // external | none
"resource": "<clientId>",
"verify-token-audience": true,
"credentials": {
"secret": ""
}
}
// public client
{
"realm": "<realm>",
"auth-server-url": "http://localhost:8088/auth/",
"ssl-required": "external",
"resource": "<clientId>",
"public-client": true,
"confidential-port": 0
}
Keycloak.AuthServices.Authorization services.AddAuthorization(authOptions =>
{
authOptions.AddPolicy("<policyName>", policyBuilder =>
{
// configure policies here
});
}).AddKeycloakAuthorization(configuration);
Keycloak.AuthServices.Sdk Service Description IKeycloakClient Unified HTTP client - IKeycloakRealmClient, IKeycloakProtectedResourceClient IKeycloakRealmClient Keycloak realm API IKeycloakProtectedResourceClient Protected resource API IKeycloakProtectionClient Authorization server API, used by AddKeycloakAuthorization
// requires confidential client
services.AddKeycloakAdminHttpClient(keycloakOptions);
// based on token forwarding HttpClient middleware and IHttpContextAccessor
services.AddKeycloakProtectionHttpClient(keycloakOptions);
Build and Development dotnet cake --target build
dotnet pack -o ./Artefacts
Reference May 16, 2024
