Is there a way to add claims in an ASP.NET Core middleware after Authentication?












2















I have this in my startup:



public void Configure(IApplicationBuilder app, IHostingEnvironment env)

{

    if (env.IsDevelopment())

    {

        app.UseDeveloperExceptionPage();

    }

    else

    {

        app.UseHsts();

    }



    app.UseHttpsRedirection();

    app.UseStaticFiles();

    app.UseSwaggerWithUi();



    app.UseAuthentication();

    app.UseMiddleware<SomeMiddleware>();



    app.UseMvc();

}


I need to add some additional claims AFTER the user is authenticated, but the middleware Invoke function always fires before Auth (HttpContext.User.Identity.IsAuthenticated is false). But when it hits the controller the user is authenticated fine.



Any idea what to do here? I've tried to put "app.UseAuthentication()" after calling app.UseMiddleware but it has no affect.



I'm currently using multiple Authentication schemes. I'm not sure if that has an affect.






c# asp.net-core







share|improve this question





























    2















    I have this in my startup:



    public void Configure(IApplicationBuilder app, IHostingEnvironment env)
    
{
    
    if (env.IsDevelopment())
    
    {
    
        app.UseDeveloperExceptionPage();
    
    }
    
    else
    
    {
    
        app.UseHsts();
    
    }
    

    
    app.UseHttpsRedirection();
    
    app.UseStaticFiles();
    
    app.UseSwaggerWithUi();
    

    
    app.UseAuthentication();
    
    app.UseMiddleware<SomeMiddleware>();
    

    
    app.UseMvc();
    
}


    I need to add some additional claims AFTER the user is authenticated, but the middleware Invoke function always fires before Auth (HttpContext.User.Identity.IsAuthenticated is false). But when it hits the controller the user is authenticated fine.



    Any idea what to do here? I've tried to put "app.UseAuthentication()" after calling app.UseMiddleware but it has no affect.



    I'm currently using multiple Authentication schemes. I'm not sure if that has an affect.






    c# asp.net-core







    share|improve this question



























      2












      2








      2








      I have this in my startup:



      public void Configure(IApplicationBuilder app, IHostingEnvironment env)
      
{
      
    if (env.IsDevelopment())
      
    {
      
        app.UseDeveloperExceptionPage();
      
    }
      
    else
      
    {
      
        app.UseHsts();
      
    }
      

      
    app.UseHttpsRedirection();
      
    app.UseStaticFiles();
      
    app.UseSwaggerWithUi();
      

      
    app.UseAuthentication();
      
    app.UseMiddleware<SomeMiddleware>();
      

      
    app.UseMvc();
      
}


      I need to add some additional claims AFTER the user is authenticated, but the middleware Invoke function always fires before Auth (HttpContext.User.Identity.IsAuthenticated is false). But when it hits the controller the user is authenticated fine.



      Any idea what to do here? I've tried to put "app.UseAuthentication()" after calling app.UseMiddleware but it has no affect.



      I'm currently using multiple Authentication schemes. I'm not sure if that has an affect.






      c# asp.net-core







      share|improve this question
















      I have this in my startup:



      public void Configure(IApplicationBuilder app, IHostingEnvironment env)
      
{
      
    if (env.IsDevelopment())
      
    {
      
        app.UseDeveloperExceptionPage();
      
    }
      
    else
      
    {
      
        app.UseHsts();
      
    }
      

      
    app.UseHttpsRedirection();
      
    app.UseStaticFiles();
      
    app.UseSwaggerWithUi();
      

      
    app.UseAuthentication();
      
    app.UseMiddleware<SomeMiddleware>();
      

      
    app.UseMvc();
      
}


      I need to add some additional claims AFTER the user is authenticated, but the middleware Invoke function always fires before Auth (HttpContext.User.Identity.IsAuthenticated is false). But when it hits the controller the user is authenticated fine.



      Any idea what to do here? I've tried to put "app.UseAuthentication()" after calling app.UseMiddleware but it has no affect.



      I'm currently using multiple Authentication schemes. I'm not sure if that has an affect.






      c# asp.net-core




      c# asp.net-core






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited Nov 14 '18 at 8:20









      Panagiotis Kanavos

      54.7k481108




      54.7k481108










      asked Nov 14 '18 at 2:21









      YodacheeseYodacheese

      2,4771932




      2,4771932
























          2 Answers
          2






          active

          oldest

          votes


















          0














          You can add another middleware immediately after the UseAuthentication() to add claims :



          app.UseAuthentication();
          
app.Use(async(context, next)=>{
          
    if(context.User !=null && context.User.Identity.IsAuthenticated){
          
        // add claims here 
          
        context.User.Claims.Append(new Claim("type-x","value-x"));
          
    }
          
    await next();
          
});
          

          
//  call other middlewares 
          
app.UseMiddleware<SomeMiddleware>();





          share|improve this answer
























          • Tried this, no good. This works only if I have a default auth scheme.

            – Yodacheese
            Nov 18 '18 at 21:15













          • @Yodacheese As far as I know, the AuthenticationMiddleware is invoked for every request. And the claims will be added just after the authentication and before any other middlewares . It doesn't care whether there's a default scheme or not. Could you please elaborate on This works only if I have a default auth scheme ?

            – itminus
            Nov 19 '18 at 4:25





















          0














          It depends on what do you want to do and which scheme you use.



          For example, if you use JwtBearer then you could utilize JwtBearerOptions.Events to handle particular events raised by the middleware. You need to set that in your ConfigureServices method of Startup class.



          That would give you more granular control of what precise case you want to have your Claims added to, for example, OnTokenValidated.






          share|improve this answer
























          • This is fine but a bit tedious. I have multiple schemes so JWT is just one, then I need to add the even on the custom auth scheme, at the same time I still want to use dependency injection so I have to resolve it.

            – Yodacheese
            Nov 18 '18 at 21:17











          Your Answer






          StackExchange.ifUsing("editor", function () {
          StackExchange.using("externalEditor", function () {
          StackExchange.using("snippets", function () {
          StackExchange.snippets.init();
          });
          });
          }, "code-snippets");

          StackExchange.ready(function() {
          var channelOptions = {
          tags: "".split(" "),
          id: "1"
          };
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function() {
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled) {
          StackExchange.using("snippets", function() {
          createEditor();
          });
          }
          else {
          createEditor();
          }
          });

          function createEditor() {
          StackExchange.prepareEditor({
          heartbeatType: 'answer',
          autoActivateHeartbeat: false,
          convertImagesToLinks: true,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: 10,
          bindNavPrevention: true,
          postfix: "",
          imageUploader: {
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          },
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          });


          }
          });














          draft saved

          draft discarded


















          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53292286%2fis-there-a-way-to-add-claims-in-an-asp-net-core-middleware-after-authentication%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown

























          2 Answers
          2






          active

          oldest

          votes








          2 Answers
          2






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes









          0














          You can add another middleware immediately after the UseAuthentication() to add claims :



          app.UseAuthentication();
          
app.Use(async(context, next)=>{
          
    if(context.User !=null && context.User.Identity.IsAuthenticated){
          
        // add claims here 
          
        context.User.Claims.Append(new Claim("type-x","value-x"));
          
    }
          
    await next();
          
});
          

          
//  call other middlewares 
          
app.UseMiddleware<SomeMiddleware>();





          share|improve this answer
























          • Tried this, no good. This works only if I have a default auth scheme.

            – Yodacheese
            Nov 18 '18 at 21:15













          • @Yodacheese As far as I know, the AuthenticationMiddleware is invoked for every request. And the claims will be added just after the authentication and before any other middlewares . It doesn't care whether there's a default scheme or not. Could you please elaborate on This works only if I have a default auth scheme ?

            – itminus
            Nov 19 '18 at 4:25


















          0














          You can add another middleware immediately after the UseAuthentication() to add claims :



          app.UseAuthentication();
          
app.Use(async(context, next)=>{
          
    if(context.User !=null && context.User.Identity.IsAuthenticated){
          
        // add claims here 
          
        context.User.Claims.Append(new Claim("type-x","value-x"));
          
    }
          
    await next();
          
});
          

          
//  call other middlewares 
          
app.UseMiddleware<SomeMiddleware>();





          share|improve this answer
























          • Tried this, no good. This works only if I have a default auth scheme.

            – Yodacheese
            Nov 18 '18 at 21:15













          • @Yodacheese As far as I know, the AuthenticationMiddleware is invoked for every request. And the claims will be added just after the authentication and before any other middlewares . It doesn't care whether there's a default scheme or not. Could you please elaborate on This works only if I have a default auth scheme ?

            – itminus
            Nov 19 '18 at 4:25
















          0












          0








          0







          You can add another middleware immediately after the UseAuthentication() to add claims :



          app.UseAuthentication();
          
app.Use(async(context, next)=>{
          
    if(context.User !=null && context.User.Identity.IsAuthenticated){
          
        // add claims here 
          
        context.User.Claims.Append(new Claim("type-x","value-x"));
          
    }
          
    await next();
          
});
          

          
//  call other middlewares 
          
app.UseMiddleware<SomeMiddleware>();





          share|improve this answer













          You can add another middleware immediately after the UseAuthentication() to add claims :



          app.UseAuthentication();
          
app.Use(async(context, next)=>{
          
    if(context.User !=null && context.User.Identity.IsAuthenticated){
          
        // add claims here 
          
        context.User.Claims.Append(new Claim("type-x","value-x"));
          
    }
          
    await next();
          
});
          

          
//  call other middlewares 
          
app.UseMiddleware<SomeMiddleware>();






          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered Nov 14 '18 at 4:52









          itminusitminus

          3,4861321




          3,4861321













          • Tried this, no good. This works only if I have a default auth scheme.

            – Yodacheese
            Nov 18 '18 at 21:15













          • @Yodacheese As far as I know, the AuthenticationMiddleware is invoked for every request. And the claims will be added just after the authentication and before any other middlewares . It doesn't care whether there's a default scheme or not. Could you please elaborate on This works only if I have a default auth scheme ?

            – itminus
            Nov 19 '18 at 4:25





















          • Tried this, no good. This works only if I have a default auth scheme.

            – Yodacheese
            Nov 18 '18 at 21:15













          • @Yodacheese As far as I know, the AuthenticationMiddleware is invoked for every request. And the claims will be added just after the authentication and before any other middlewares . It doesn't care whether there's a default scheme or not. Could you please elaborate on This works only if I have a default auth scheme ?

            – itminus
            Nov 19 '18 at 4:25



















          Tried this, no good. This works only if I have a default auth scheme.

          – Yodacheese
          Nov 18 '18 at 21:15







          Tried this, no good. This works only if I have a default auth scheme.

          – Yodacheese
          Nov 18 '18 at 21:15















          @Yodacheese As far as I know, the AuthenticationMiddleware is invoked for every request. And the claims will be added just after the authentication and before any other middlewares . It doesn't care whether there's a default scheme or not. Could you please elaborate on This works only if I have a default auth scheme ?

          – itminus
          Nov 19 '18 at 4:25







          @Yodacheese As far as I know, the AuthenticationMiddleware is invoked for every request. And the claims will be added just after the authentication and before any other middlewares . It doesn't care whether there's a default scheme or not. Could you please elaborate on This works only if I have a default auth scheme ?

          – itminus
          Nov 19 '18 at 4:25















          0














          It depends on what do you want to do and which scheme you use.



          For example, if you use JwtBearer then you could utilize JwtBearerOptions.Events to handle particular events raised by the middleware. You need to set that in your ConfigureServices method of Startup class.



          That would give you more granular control of what precise case you want to have your Claims added to, for example, OnTokenValidated.






          share|improve this answer
























          • This is fine but a bit tedious. I have multiple schemes so JWT is just one, then I need to add the even on the custom auth scheme, at the same time I still want to use dependency injection so I have to resolve it.

            – Yodacheese
            Nov 18 '18 at 21:17
















          0














          It depends on what do you want to do and which scheme you use.



          For example, if you use JwtBearer then you could utilize JwtBearerOptions.Events to handle particular events raised by the middleware. You need to set that in your ConfigureServices method of Startup class.



          That would give you more granular control of what precise case you want to have your Claims added to, for example, OnTokenValidated.






          share|improve this answer
























          • This is fine but a bit tedious. I have multiple schemes so JWT is just one, then I need to add the even on the custom auth scheme, at the same time I still want to use dependency injection so I have to resolve it.

            – Yodacheese
            Nov 18 '18 at 21:17














          0












          0








          0







          It depends on what do you want to do and which scheme you use.



          For example, if you use JwtBearer then you could utilize JwtBearerOptions.Events to handle particular events raised by the middleware. You need to set that in your ConfigureServices method of Startup class.



          That would give you more granular control of what precise case you want to have your Claims added to, for example, OnTokenValidated.






          share|improve this answer













          It depends on what do you want to do and which scheme you use.



          For example, if you use JwtBearer then you could utilize JwtBearerOptions.Events to handle particular events raised by the middleware. You need to set that in your ConfigureServices method of Startup class.



          That would give you more granular control of what precise case you want to have your Claims added to, for example, OnTokenValidated.







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered Nov 14 '18 at 5:27









          dee zgdee zg

          4,60631434




          4,60631434













          • This is fine but a bit tedious. I have multiple schemes so JWT is just one, then I need to add the even on the custom auth scheme, at the same time I still want to use dependency injection so I have to resolve it.

            – Yodacheese
            Nov 18 '18 at 21:17



















          • This is fine but a bit tedious. I have multiple schemes so JWT is just one, then I need to add the even on the custom auth scheme, at the same time I still want to use dependency injection so I have to resolve it.

            – Yodacheese
            Nov 18 '18 at 21:17

















          This is fine but a bit tedious. I have multiple schemes so JWT is just one, then I need to add the even on the custom auth scheme, at the same time I still want to use dependency injection so I have to resolve it.

          – Yodacheese
          Nov 18 '18 at 21:17





          This is fine but a bit tedious. I have multiple schemes so JWT is just one, then I need to add the even on the custom auth scheme, at the same time I still want to use dependency injection so I have to resolve it.

          – Yodacheese
          Nov 18 '18 at 21:17


















          draft saved

          draft discarded




















































          Thanks for contributing an answer to Stack Overflow!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid



          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.


          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53292286%2fis-there-a-way-to-add-claims-in-an-asp-net-core-middleware-after-authentication%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          -

          Popular posts from this blog

          The Sandy Post

          Image
          The Sandy Post From Wikipedia, the free encyclopedia Jump to navigation Jump to search The Sandy Post Type Weekly Newspaper Format Tabloid Owner(s) Community Newspapers/Pamplin Media Group Publisher J. Mark Garber Editor Steve Brown Founded 1937  ( 1937 ) Headquarters Sandy, Oregon Circulation 3,800 Website www.pamplinmedia.com/sandy-post-home/ This article needs additional citations for verification . Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed. (February 2010) (Learn how and when to remove this template message) The Sandy Post is a weekly newspaper, published in Sandy, Oregon, United States. The paper, founded in 1937, serves the communities of Sandy, Boring, the Villages at Mount Hood and the surrounding areas. The newspaper is owned by Community Newspapers/Pamplin Media Group, a company of ...
          Read more

          Danny Elfman

          Image
          Danny Elfman From Wikipedia, the free encyclopedia Jump to navigation Jump to search Danny Elfman Elfman at the 2010 San Diego Comic-Con Born Daniel Robert Elfman ( 1953-05-29 ) May 29, 1953 (age 65) Los Angeles, California, U.S. Spouse(s) Bridget Fonda ( m.  2003) Children 1 Musical career Genres Rock [1] ska [2] new wave film music video game music Occupation(s) Composer, singer, songwriter, record producer Instruments Trombone guitar percussion vocals keyboards [3] Years active 1972–present Associated acts Oingo Boingo James Newton Howard Daniel Robert Elfman (born May 29, 1953) is an American composer, singer, songwriter, and record producer. Elfman first became known for being the lead singer and songwriter for the band Oingo Boingo from 1974 to 1995. He is well known for scoring films and television shows, particularly his frequent collabora...
          Read more

          Pages that link to "Head v. Amoskeag Manufacturing Co."

          Image
          Help Pages that link to "Head v. Amoskeag Manufacturing Co." ← Head v. Amoskeag Manufacturing Co. Jump to navigation Jump to search What links here Page:   Namespace:  all (Article) Talk User User talk Wikipedia Wikipedia talk File File talk MediaWiki MediaWiki talk Template Template talk Help Help talk Category Category talk Portal Portal talk Book Book talk Draft Draft talk TimedText TimedText talk Module Module talk Gadget Gadget talk Gadget definition Gadget definition talk   Invert selection Filters Hide transclusions | Hide links | Hide redirects The following pages link to Head v. Amoskeag Manufacturing Co. External tools: Show redirects only View (previous 50 | next 50) (20 | 50 | 100 | 250 | 500) Amoskeag Manufacturing Company ‎ (links | edit) List of United States Supreme Court cases by the Waite Court ‎ (links | edit) Talk:Head v. Amoskeag Manuf...
          Read more