Skip to content

101190- Reviewed and updated the content of JWT authentication #8376

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
kmkrish001 merged 7 commits into from
May 11, 2026
+23 −6
Merged

101190- Reviewed and updated the content of JWT authentication #8376

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
b0c0f1a
101190- Reviwed and updated the content of JWT authentication
Gayathri4135 May 10, 2026
8860551
Merge branch 'development' into jwt-101190-authentication
Gayathri4135 May 11, 2026
b7cf4ff
Updated the md file
Gayathri4135 May 11, 2026
07e6af3
Merge branch 'jwt-101190-authentication' of https://github.com/syncfu…
Gayathri4135 May 11, 2026
884c84e
Updated the md file
Gayathri4135 May 11, 2026
58bda31
Updated the md file
Gayathri4135 May 11, 2026
6e50c7f
Merge branch 'development' into jwt-101190-authentication
Gayathri4135 May 11, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
29 changes: 23 additions & 6 deletions blazor/common/authentication/blazor-jwt-authentication.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ This guide shows how to secure the [Syncfusion® Blazor DataGrid](https://www.sy

## Create a Blazor project

If you already have a Blazor project configured, you can skip this section and proceed to **Install required packages**.
If you already have a Blazor project configured, you can skip this section and proceed to [Install required packages](./blazor-jwt-authentication#install-required-packages).

Otherwise, create a new Blazor application by following the [Syncfusion® getting started guide](https://blazor.syncfusion.com/documentation/getting-started/blazor-web-app) for a **Blazor Web App (Interactive Server)**.

Expand Down Expand Up @@ -93,6 +93,7 @@ The **JWT** configuration specifies how the server signs and validates authentic

{
"Jwt": {
// Secret key used to create and validate JWT tokens; you can set your own random string with at least 32 characters.
"Key": "REPLACE_WITH_A_LONG_RANDOM_SECRET_32+_CHARS",
"Issuer": "BlazorJWT",
"Audience": "BlazorJWTClient"
Expand Down Expand Up @@ -176,6 +177,8 @@ public class AuthController : ControllerBase
private readonly TokenService _tokenService;
public AuthController(TokenService tokenService) => _tokenService = tokenService;

// This endpoint is intended for demonstration purposes only.
// For production, you can use validation mechanisms such as verifying user credentials before issuing tokens.
[HttpPost("token")]
public IActionResult Token([FromQuery] string user = "user123")
{
Expand All @@ -192,7 +195,7 @@ public class AuthController : ControllerBase
Register **JWT** authentication and authorization middleware to validate incoming API requests. Add these configurations in `Program.cs`.

{% tabs %}
{% highlight razor tabtitle="~/Program.cs" %}
{% highlight csharp tabtitle="~/Program.cs" %}

using System.Text;
using YourProjectName.Components;
Expand All @@ -212,6 +215,13 @@ builder.Services.AddHttpClient();
builder.Services.AddSyncfusionBlazor();

var jwtKey = builder.Configuration["Jwt:Key"] ?? throw new InvalidOperationException("Jwt:Key missing");
var jwtIssuer = builder.Configuration["Jwt:Issuer"] ?? throw new InvalidOperationException("Jwt:Issuer missing");
var jwtAudience = builder.Configuration["Jwt:Audience"] ?? throw new InvalidOperationException("Jwt:Audience missing");

if (jwtKey.Length < 32)
{
throw new InvalidOperationException("Jwt:Key must be at least 32 characters for HS256 algorithm");
}

builder.Services
.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
Expand All @@ -224,8 +234,8 @@ builder.Services
ValidateIssuerSigningKey = true,
ValidateLifetime = true,
ClockSkew = TimeSpan.FromMinutes(5),
ValidIssuer = builder.Configuration["Jwt:Issuer"],
ValidAudience = builder.Configuration["Jwt:Audience"],
ValidIssuer = jwtIssuer,
ValidAudience = jwtAudience,
IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(jwtKey))
};
});
Expand Down Expand Up @@ -272,8 +282,8 @@ public class OrdersDetails
{
OrderID = i,
CustomerID = $"CUST-{i:000}",
ShipCity = i % 2 == 0 ? "Chennai" : "Bengaluru",
ShipCountry = "India"
ShipCity = i % 2 == 0 ? "New York" : "Los Angeles",
ShipCountry = "USA"
}).ToList();
}
return _data;
Expand Down Expand Up @@ -335,6 +345,13 @@ This example demonstrates how a **JWT** token is retrieved from the server and a

<button class="btn btn-primary" style="margin-bottom: 15px" @onclick="LoadGridWithToken">Load GridData</button>

@if (!string.IsNullOrEmpty(error))
{
<div class="alert alert-danger" role="alert">
<strong>Error:</strong> @error
</div>
}

<SfGrid TValue="OrdersDetails" @ref="grid" AllowPaging="true" AllowSorting="true" Width="100%">
@* Only render the DataManager after the token is fetched. *@
@if (isDataManagerEnabled)
Expand Down
Binary file modified blazor/common/authentication/images/jwt-authentication.webp
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.