podnoms/server/Services/Auth/AuthenticationMiddleware.cs

using System.Linq;
using System.Security.Claims;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.Extensions.Logging;
using PodNoms.Api.Models;
using PodNoms.Api.Persistence;
using RestSharp;

namespace PodNoms.Api.Services.Auth {
    public class AuthenticationMiddleware {
        public async static Task<bool> OnTokenValidated (TokenValidatedContext context) {
            var userRepository = (IUserRepository) context.HttpContext.RequestServices.GetService (typeof (IUserRepository));
            var unitOfWork = (IUnitOfWork) context.HttpContext.RequestServices.GetService (typeof (IUnitOfWork));
            var claimsIdentity = context.Principal.Identity as ClaimsIdentity;
            if (claimsIdentity != null && context.Request.Headers.ContainsKey ("Authorization")) {
                var claimToken = context.Request.Headers["Authorization"][0].Substring (context.Scheme.Name.Length + 1);
                claimsIdentity.AddClaim (new Claim ("id_token", claimToken));

                var picture = claimsIdentity.Claims.FirstOrDefault (c => c.Type == "picture") ? .Value;
                var name = claimsIdentity.Claims.FirstOrDefault (c => c.Type == "name") ? .Value;

                var data = new {
                    Name = name,
                    EmailAddress = claimsIdentity.Claims.FirstOrDefault (c => c.Type == ClaimTypes.Email) ? .Value,
                    Sid = claimsIdentity.Claims.FirstOrDefault (c => c.Type == ClaimTypes.Sid) ? .Value,
                    UserId = claimsIdentity.Claims.FirstOrDefault (c => c.Type == "subject") ? .Value,
                    ProfileImage = picture
                };
                var refreshToken = await _getRefreshToken ();
                userRepository.UpdateRegistration (data.EmailAddress, data.Name, data.Sid, data.UserId,
                    data.ProfileImage, refreshToken);

                await unitOfWork.CompleteAsync ();
                return true;
            }
            return false;
        }

        private static async Task<string> _getRefreshToken () {
            var client = new RestClient ("https://podnoms.eu.auth0.com/oauth/token");
            var request = new RestRequest (Method.POST);
            request.AddHeader ("content-type", "application/json");
            request.AddParameter (
                "application/json", 
                "{\"grant_type\":\"authorization_code\"," +
                "\"client_id\": \"Fx6Z3kZoheEpXhZO97ioAg1asbHDdCtr\"," +
                "\"client_secret\": \"g9wwXHppw7eNOIpD_r9z-7ttcvuzYz-8QlxXd_n6l8QiSW5VpIrlSwTn7w5uflP_\"," +
                "\"code\": \"YOUR_AUTHORIZATION_CODE\"," +
                "\"redirect_uri\": \"http://localhost:4200/callback\"}", 
                ParameterType.RequestBody);

            IRestResponse response = await client.ExecuteTaskAsync (request);
            if (response.IsSuccessful) {
                return response.Content;
            }

            return string.Empty;
        }
    }
}