Context.User.Identity.IsAuthenticated is always false in jwt token?

Question

Context.User.Identity.IsAuthenticated is always false in jwt token?

mc 5,426

I am using signalr with jwt token.
`services.AddAuthentication(options =>
{
options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
}).AddJwtBearer(options =>
{
options.Events = new JwtBearerEvents
{
OnMessageReceived = context =>
{
var accessToken = context.Request.Query["access_token"];
var id = context.Request.Query["id"];
var path = context.HttpContext.Request.Path;
if (!string.IsNullOrWhiteSpace(accessToken) && path.StartsWithSegments("/ddjhub"))
{
context.Token = accessToken;
}

                      return Task.CompletedTask;
                  }
            };
        });`

the accessToken is valid but Context.User.Identity.IsAuthenticated is always false.

why?

I just write the token to the client. need I use other like SignInAsync?

var token = new JwtSecurityTokenHandler().WriteToken(tokenWriter);

Accepted answer

0 additional answers

Your answer

Answer 1

Anonymous

Hi @mc ,

When using JWT token authentication and validate the token, the server will get the token from the request header with the 'Authentication' key, after that validate it. If the token is valid, the user can continue accessing the resource, otherwise it will show the not permission notification message. You can refer to the following screenshot:

From your code, it seems that the access_token (it is the JWT token, right?) is in the query string, right? Try to use F12 developer Network tool or Fiddler to check it. And then try to add the JWT token at the request header with the 'Authentication' key.

You can also refer to Brando's reply in this thread: add the custom middleware to add the JWT token at the request header:

    app.Use(async (context, next) =>  
    {  
        var JWToken = context.Session.GetString("JWToken");  
        if (!string.IsNullOrEmpty(JWToken))  
        {  
            context.Request.Headers.Add("Authorization", "Bearer " + JWToken);  
        }  
        await next();  
    });  
    app.UseAuthentication();  
    app.UseAuthorization();

If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Best regards,
Dillion

mc 5,426 Reputation points

2021-11-16T09:15:59.21+00:00

can not mark as answer
Anonymous

2021-11-16T09:39:57.33+00:00

Hi @mc ,

Glad to hear it did help resolve the problem. And I have converted it as an answer, hoping it can help other community members quickly fix similar issue.

Best regards,
Dillion
mc 5,426 Reputation points

2021-11-17T01:12:36.93+00:00

I resolve it by myself not your code but still want to mark this as answer.
Jose 1 Reputation point

2022-06-28T09:12:39.957+00:00

It was really helpful to see your answer, what with the gif and everyhting.
My particular problem was that I hadn't written the Header right (Authorize instead of Authorization), and that alone made everything else fail.
Now it's working for me.Thank you so much!

Share via

Context.User.Identity.IsAuthenticated is always false in jwt token?

0 additional answers

Your answer