UzunTec.API.Authentication.Engine 3.1.4

.NET Standard 2.0 This package targets .NET Standard 2.0. The package is compatible with this framework or higher.
There is a newer version of this package available.
See the version list below for details. 
dotnet add package UzunTec.API.Authentication.Engine --version 3.1.4
                    


                    

                
NuGet\Install-Package UzunTec.API.Authentication.Engine -Version 3.1.4
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="UzunTec.API.Authentication.Engine" Version="3.1.4" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="UzunTec.API.Authentication.Engine" Version="3.1.4" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="UzunTec.API.Authentication.Engine" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add UzunTec.API.Authentication.Engine --version 3.1.4
                    


                    

                
#r "nuget: UzunTec.API.Authentication.Engine, 3.1.4"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#:package UzunTec.API.Authentication.Engine@3.1.4
#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package. 
#addin nuget:?package=UzunTec.API.Authentication.Engine&version=3.1.4
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=UzunTec.API.Authentication.Engine&version=3.1.4
                    


                            Install as a Cake Tool

UzunTec API Authentication

Libraries and a sample REST API that help .NET developers add JWT Bearer authentication to ASP.NET Core applications. Token responses use snake_case property names (access_token, expires_in, token_type) for compatibility with common OAuth2-style clients and Identity Server–like payloads.

Repository layout

Project Purpose
UzunTec.API.Authentication.Engine netstandard2.0 library: issue JWTs, configure JWT Bearer validation, DI extension for IServiceCollection. Packaged as UzunTec.API.Authentication.Engine (NuGet metadata in the .csproj).
UzunTec.API.Authentication.RestAPI ASP.NET Core 3.1 sample API: token endpoint pattern, [Authorize] examples, Swagger UI with Bearer security.

Solution file: UzunTec.API.Atuhentication.sln (note the filename spelling).

Requirements

  • .NET Core SDK 3.1 (for the sample web project)
  • For consuming only the Engine library: any host that supports netstandard2.0 and the referenced ASP.NET Core / JWT packages

Quick start (sample API)

From the repository root:

dotnet restore UzunTec.API.Atuhentication.sln
dotnet run --project UzunTec.API.Authentication.RestAPI/UzunTec.API.Authentication.RestAPI.csproj

By default the app listens on http://localhost:5000 (see Properties/launchSettings.json). Open http://localhost:5000/swagger to try the API.

Example flows in the sample

  1. Obtain a tokenGET /api/user/{user}

    • For admin, the sample returns a token with extra claims and the WritePermission role.
    • For other users, a simpler token is returned.

  2. Call a protected endpoint — Send header:
    Authorization: Bearer <access_token>

    • GET /api/anyobject — requires any authenticated user.
    • GET /api/anyobject/{id} — requires role WritePermission.

  3. Inspect token payload (sample)GET /api/user/tokenData with Bearer token returns the JWT payload (implementation relies on the Engine’s token reader during validation).

Using the Engine in your own API

1. Reference the project or NuGet package

Add a project reference to UzunTec.API.Authentication.Engine, or install the published package UzunTec.API.Authentication.Engine (version and feed as defined by your team).

2. Configure AuthSettings in appsettings

Bind a section named to match your code (the sample uses AuthSettings):

{
  "AuthSettings": {
    "JtiCode": "your-jti-identifier",
    "Audience": "YourAudience",
    "Issuer": "YourIssuer",
    "TokenExpireTimeInSeconds": 7200,
    "SignatureKey": "your-secret-key-for-hmac-minimum-length-per-algorithm",
    "IgnoreSignature": false,
    "SignatureAlgorithm": "http://www.w3.org/2001/04/xmldsig-more#hmac-sha256"
  }
}

AuthenticationConfig defaults SignatureAlgorithm to HMAC SHA-256. For RSA, set it to http://www.w3.org/2001/04/xmldsig-more#rsa-sha256; the Engine will generate an RSA key pair when issuing tokens (see Authenticator).

3. Register services in Startup

services.AddAuthenticationEngine(Configuration.GetSection("AuthSettings"));

Then in the pipeline (order matters):

app.UseAuthentication();
app.UseAuthorization();

Use [Authorize] and [Authorize(Roles = "...")] on controllers or actions as usual.

4. Issue tokens from your login or token endpoint

Inject Authenticator and call:

  • GenerateToken(string userCode)
  • GenerateToken(string userCode, IReadOnlyDictionary<string, string> claims, IEnumerable<string> roles)

Returned TokenData exposes:

  • Access_token — JWT string
  • Expires_in — lifetime in seconds (from config)
  • Token_type — e.g. "Bearer"

Security notes

  • Replace sample SignatureKey, Issuer, Audience, and JtiCode with production values; never commit real secrets. Prefer user secrets, environment variables, or a secret manager in development.
  • IgnoreSignature: true disables signing key validation — useful only for special test scenarios, not production.
  • TokenExpireTimeInSeconds: 0 disables lifetime validation in the bearer options; use with care.
  • In production, keep HTTPS enabled and set RequireHttpsMetadata appropriately if you harden JWT bearer options beyond the sample.

Building the NuGet package

The Engine project has GeneratePackageOnBuild enabled. Building the Engine produces a .nupkg under the output folder (typical path: bin/Debug or bin/Release).

dotnet pack UzunTec.API.Authentication.Engine/UzunTec.API.Authentication.Engine.csproj -c Release

License and attribution

Package metadata in the Engine project lists © 2020 Uzun Technology and repository https://github.com/uztec/api-auth. Add or adjust a LICENSE file in this repo if you need an explicit open-source license text.

Product Compatible and additional computed target framework versions.
.NET net5.0 was computed.  net5.0-windows was computed.  net6.0 was computed.  net6.0-android was computed.  net6.0-ios was computed.  net6.0-maccatalyst was computed.  net6.0-macos was computed.  net6.0-tvos was computed.  net6.0-windows was computed.  net7.0 was computed.  net7.0-android was computed.  net7.0-ios was computed.  net7.0-maccatalyst was computed.  net7.0-macos was computed.  net7.0-tvos was computed.  net7.0-windows was computed.  net8.0 was computed.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 was computed.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 was computed.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
.NET Core netcoreapp2.0 was computed.  netcoreapp2.1 was computed.  netcoreapp2.2 was computed.  netcoreapp3.0 was computed.  netcoreapp3.1 was computed. 
.NET Standard netstandard2.0 is compatible.  netstandard2.1 was computed. 
.NET Framework net461 was computed.  net462 was computed.  net463 was computed.  net47 was computed.  net471 was computed.  net472 was computed.  net48 was computed.  net481 was computed. 
MonoAndroid monoandroid was computed. 
MonoMac monomac was computed. 
MonoTouch monotouch was computed. 
Tizen tizen40 was computed.  tizen60 was computed. 
Xamarin.iOS xamarinios was computed. 
Xamarin.Mac xamarinmac was computed. 
Xamarin.TVOS xamarintvos was computed. 
Xamarin.WatchOS xamarinwatchos was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages

This package is not used by any NuGet packages.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
10.0.0 83 3/24/2026
8.0.0 79 3/24/2026
6.0.0 78 3/24/2026
3.1.5 80 3/24/2026
3.1.4 84 3/24/2026
3.1.3 92 3/24/2026
3.1.2 90 3/24/2026
3.1.1 1,424 12/8/2020
3.1.0 619 11/10/2020
2.1.0 604 11/9/2020