Afrisys.JwtAuthentication.AspNetCore 1.0.1

.NET 10.0

dotnet add package Afrisys.JwtAuthentication.AspNetCore --version 1.0.1

NuGet\Install-Package Afrisys.JwtAuthentication.AspNetCore -Version 1.0.1

This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package.

<PackageReference Include="Afrisys.JwtAuthentication.AspNetCore" Version="1.0.1" />

For projects that support PackageReference, copy this XML node into the project file to reference the package.

<PackageVersion Include="Afrisys.JwtAuthentication.AspNetCore" Version="1.0.1" />
                    

                            Directory.Packages.props

<PackageReference Include="Afrisys.JwtAuthentication.AspNetCore" />
                    

                            Project file

For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package.

paket add Afrisys.JwtAuthentication.AspNetCore --version 1.0.1

The NuGet Team does not provide support for this client. Please contact its maintainers for support.

#r "nuget: Afrisys.JwtAuthentication.AspNetCore, 1.0.1"

#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package.

#:package Afrisys.JwtAuthentication.AspNetCore@1.0.1

#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package.

#addin nuget:?package=Afrisys.JwtAuthentication.AspNetCore&version=1.0.1
                    

                            Install as a Cake Addin

#tool nuget:?package=Afrisys.JwtAuthentication.AspNetCore&version=1.0.1
                    

                            Install as a Cake Tool

The NuGet Team does not provide support for this client. Please contact its maintainers for support.

Afrisys.JwtAuthKit

A lightweight JWT authentication and API authorization library for ASP.NET Core.

Designed to simplify secure microservice communication using JWT Audience-based isolation, without complex policy or IdentityServer configuration.

📌 Why This Exists

Modern microservice systems often struggle with:

Overly complex authentication configuration per service
Weak service-to-service isolation
Repeated JWT setup across APIs
Difficult-to-maintain authorization rules

Afrisys.JwtAuthKit solves this by enforcing a simple principle:

JWT Audience defines API access boundaries

Each API only accepts tokens explicitly intended for it.

✨ Features

Minimal setup (single-line configuration)
Automatic JWT Audience validation
Works with any JWT provider (Duende, Auth0, Keycloak, Azure AD, etc.)
Lightweight with zero unnecessary dependencies
Compatible with Controllers and Minimal APIs
Clean separation of authentication and authorization logic

⚡ Quick Start

1. Install Package

dotnet add package Afrisys.JwtAuthentication.AspNetCore

2. Configure `appsettings.json`

{
  "Auth": {
    "Authority": "http://your-identity-server.com",
    "Audience": "Your scope here"
  }
}

3. Register in `Program.cs`

using Afrisys.JwtAuthKit;

var builder = WebApplication.CreateBuilder(args);

builder.Services.AddJwtAuthKit(builder.Configuration);

var app = builder.Build();

app.UseAuthentication();
app.UseAuthorization();

app.MapControllers();

app.Run();

4. Secure Your API

[Authorize]
[ApiController]
[Route("api/[controller]")]
public class PlumbingController : ControllerBase
{
    [HttpGet]
    public IActionResult Get()
    {
        return Ok("Secure data accessed successfully.");
    }
}

🔐 How It Works

Identity Provider issues a JWT token with an aud (audience) claim
Each microservice defines its expected audience
The library validates:
- Token signature
- Issuer (Authority)
- Audience match
If audience mismatch → request is rejected (401 Unauthorized)

🧭 Audience Mapping Example

API Service	Expected Audience
Plumbing API	`plumbing-api`
Ecommerce API	`ecommerce-api`
Notification Service	`notification-service`

🧪 Example Token Request (Client Credentials)

curl --location 'https://your-identity-server.com/connect/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'client_id=plumbing-api' \
--data-urlencode 'client_secret=your-secret' \
--data-urlencode 'grant_type=client_credentials'

Response

{
  "access_token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9...",
  "token_type": "Bearer",
  "expires_in": 3600
}

🏗️ Architecture Overview

Client / Service
      ↓
Identity Provider (JWT Issuance)
      ↓
Afrisys.JwtAuthKit (Validation Layer)
      ↓
Protected API Resource

⚙️ Requirements

.NET 8 or later
ASP.NET Core Web API
Any JWT-compatible Identity Provider

📄 License

MIT License

❤️ Built For

Developers building secure, scalable, and clean microservice architectures.

Product	Compatible and additional computed target framework versions.
.NET	net10.0 is compatible. net10.0-android was computed. net10.0-browser was computed. net10.0-ios was computed. net10.0-maccatalyst was computed. net10.0-macos was computed. net10.0-tvos was computed. net10.0-windows was computed.

Compatible target framework(s)

Included target framework(s) (in package)

Learn more about Target Frameworks and .NET Standard.

net10.0
- Microsoft.AspNetCore.Authentication.JwtBearer (>= 10.0.7)

NuGet packages

This package is not used by any NuGet packages.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version	Downloads	Last Updated
1.0.1	103	4/26/2026
1.0.0	99	4/25/2026

Fixed JWT validation issue caused by dependency conflicts with Microsoft.IdentityModel packages.