NOF.Infrastructure.Extension.Authorization.Jwt 9.0.0

.NET 10.0 This package targets .NET 10.0. The package is compatible with this framework or higher. 
dotnet add package NOF.Infrastructure.Extension.Authorization.Jwt --version 9.0.0
                    


                    

                
NuGet\Install-Package NOF.Infrastructure.Extension.Authorization.Jwt -Version 9.0.0
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="NOF.Infrastructure.Extension.Authorization.Jwt" Version="9.0.0" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="NOF.Infrastructure.Extension.Authorization.Jwt" Version="9.0.0" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="NOF.Infrastructure.Extension.Authorization.Jwt" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add NOF.Infrastructure.Extension.Authorization.Jwt --version 9.0.0
                    


                    

                
#r "nuget: NOF.Infrastructure.Extension.Authorization.Jwt, 9.0.0"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#:package NOF.Infrastructure.Extension.Authorization.Jwt@9.0.0
#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package. 
#addin nuget:?package=NOF.Infrastructure.Extension.Authorization.Jwt&version=9.0.0
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=NOF.Infrastructure.Extension.Authorization.Jwt&version=9.0.0
                    


                            Install as a Cake Tool

NOF.Infrastructure.Extension.Authorization.Jwt

JWT authorization and authority extension for the NOF Framework.

Overview

Provides JWT infrastructure for NOF applications as a resource server (token validation) and as an optional JWT authority (token issuance). Outbound token propagation is provided separately by NOF.Hosting.Extension.Authorization.Jwt. No ASP.NET Core dependency; works with any NOF host.

Features

Resource Server

  • JWKS Client - AddJwtResourceServer() registers NOF.Contract.Extension.Authorization.Jwt.HttpJwksService as the default IJwksService client
  • JWKS Provider - IJwksProvider caches signing keys locally and serves validation from cache; when the host also acts as an authority it refreshes directly from local signing keys instead of re-calling IJwksService
  • Token Validation - JwtResourceServerInboundMiddleware validates Bearer tokens with configurable issuer, audience, and lifetime checks
  • Outbound Propagation - resource server setup also enables JWT token propagation for downstream NOF calls
  • Key Rotation Refresh - RefreshJwksOnKeyRotation refreshes cached keys when JwtKeyRotationNotification is received

Authority (Server)

  • Token Issuance - generate access and refresh token pairs with kid in JWT header
  • Key Management - ISigningKeyService with RSA key rotation and retired key retention
  • JWKS Publishing - expose keys through IJwksService
  • Refresh Token Lifecycle - validate and revoke refresh tokens with cache-based revocation
  • Automatic Key Rotation - background service rotates keys on a configurable interval

Usage

As a Resource Server

builder.AddJwtResourceServer(options =>
{
    options.JwksEndpoint = "https://auth.example.com/.well-known/jwks.json";
    options.Issuer = "your-app";
    options.Audience = "your-audience";
});

The configuration type for this package is JwtResourceServerOptions. JwksEndpoint is required, and by default the endpoint must use HTTPS. If you provide your own IJwksService, AddJwtResourceServer() will keep it and still layer IJwksProvider on top for local caching.

If you only need outbound propagation and do not need inbound token validation, reference NOF.Hosting.Extension.Authorization.Jwt and use:

builder.AddJwtTokenPropagation();

Configure via application settings:

{
  "NOF": {
    "JwtResourceServer": {
      "JwksEndpoint": "https://auth.example.com/.well-known/jwks.json",
      "Issuer": "your-app",
      "Audience": "your-audience"
    }
  }
}

As a JWT Authority

builder.AddJwtAuthority();

Configure via application settings:

{
  "NOF": {
    "Authority": {
      "Issuer": "your-app"
    }
  }
}

Dependencies

Installation

dotnet add package NOF.Infrastructure.Extension.Authorization.Jwt

License

Apache-2.0

Product Compatible and additional computed target framework versions.
.NET net10.0 is compatible.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages

This package is not used by any NuGet packages.

GitHub repositories

This package is not used by any popular GitHub repositories.