How to extract and get a claim from token?

2019-05-28 19:46发布

I've been looking for an exact answer but it seems most answers are client call and out of the scope.

Question: I already have an access token access token. How to get a claim using c# code given an access token ONLY?

I think: Below are the same questions but no answers i think fits.

How to get the claims out of a authenticated SecurityToken

How do I read claims from my Oauth token?

标签： c# token access-token claims-based-identity claims

1条回答

Luminary・发光体

2楼-- · 2019-05-28 20:44

Install-Package Newtonsoft.Json

The access token is just base64 encoded JSON. You can parse the token as follows

        string token =
            "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9.TJVA95OrM7E2cBab30RMHrHDcEfxjoYZgeFONFh7HgQ";
        var parts = token.Split('.');
        var decoded = Convert.FromBase64String(parts[1]);
        var part = Encoding.UTF8.GetString(decoded);
        var jwt = JObject.Parse(part);
        var name = jwt["name"].Value<string>();

UPDATE

Parsing access token on the client is not recommended, access token should be parsed only on the resource server.
You must validate the access token on the resource server to make sure that token has not tampered on the way.
Most of the time you dont need to parse token as above, Just use a recommended JWT library that does both validation and parsing. e.g.

app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions());

0人赞添加讨论(0) 举报

How to extract and get a claim from token?

采纳回答

编辑标签

举报内容

检举类型

检举原因

检举说明(必填)

打开微信“扫一扫”，打开网页后点击屏幕右上角分享按钮

付费偷看金额在0.1-10元之间