Andrei
Reputation: 44550
Web API Bearer token authentication Authorize doesn't work
I am developing ASP.NET Web API application with Identity 2.0 Bearer authentication. I have configured bearer authentication and implemented SignIn method, so that when I pass header:
Authorization: Bearer uGjAWZA1nPc1AqPuKpAzPhb989SYbtGd...
It works normally. I can call User.Identity.GetUserId() or User.Identity.GetUserName(). I even can check if user is in some role or not, and it also works good.
What is doesn't work, is [Authorize] attribute. When I specify roles, like that [Authorize(Roles = "Admin")] it returns:
{
Message: "Authorization has been denied for this request."
}
Any thoughts?
Upvotes: 1
Views: 1498
Answers (1)
Evgeniya Rudakovskaya
Reputation: 319
Have you added Role claim when creating your identity?
userIdentity.AddClaim(new Claim(ClaimTypes.Role, "Admin"));
Upvotes: 3
Related Questions
- ASP.NET Core 3 API Ignores Authorize Attribute with Bearertoken
- JWT bearer token Authorization not working asp net core web api
- Web API – authenticate with bearer token
- Asp.net Web Api Identity send bearer token in all request
- Token based authentication in ASP.NET Web API 2 not working
- Asp.net Web Api Token Authentication
- User login not being authenticated using OWIN bearer tokens
- ASP.NET 5 Web Api Token Based Authentication
- Bearer token in MVC controller to access Web API
- MVC 5 Identity 2 and Web API 2 authorization and call api using bearer token