Hi,
I am using IdentityServer for some other apps (clients app over identity server) And I use your existing /Chat/GetUploadedObject service for some other purposes (to uplaod some files). there was no token control before (previous versions) just file id and type was enough and I see there is encrypted token check at AuthConfigurer.cs so the clients not having token can not reach the file that is OK but Idendity server does not provide Encrypted token?
is there any way to send encrypted toke or do I need to update
context.Token = SimpleStringCipher.Instance.Decrypt(qsAuthToken, AppConsts.DefaultPassPhrase);
to accept token directly from a new parameter if exists instead of enc_auth_token?
have you got any question about this before?
1 Answer(s)
-
0
Hi @tugrulkarakaya
If you want apps without a token to access these files you can modify the code here https://github.com/aspnetzero/aspnet-zero-core/blob/dev/aspnet-core/src/MyCompanyName.AbpZeroTemplate.Web.Host/Startup/AuthConfigurer.cs#L91