authentication - Asp.Net core AddJwtBearer default caching of JWKS?

Question

Welcome To Ask or Share your Answers For Others

authentication - Asp.Net core AddJwtBearer default caching of JWKS?

asked Feb 19, 2021 in Technique[技术] by 深蓝 (71.8m points)

authentication - Asp.Net core AddJwtBearer default caching of JWKS?

I have configured the AddJwtBearer with basic settings and the authority is an OpenID-connect identity server. It is working fine but what is the default caching implementation of the JWKS URL, its timeout, and how to configure the caching timeout?

services.AddAuthentication().AddJwtBearer(options =>
{
    options.Authority = Configuration["Authority"];
    options.Audience = Configuration["Audience"];
});

与恶龙缠斗过久,自身亦成为恶龙；凝视深渊过久,深渊将回以凝视…

1 Answer

深蓝 · Answer 1 · 2021-02-19T04:08:33+0000

I assume you ask asking for the caching duration.

The class that is in charge of the caching of the JWKS data is the ConfigurationManager class and You can find the source code for the class here.

The default caching time is 24 hours.

To set it in your API, you can control it in .NET 5 using:

services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme) .AddJwtBearer(opt => { ...

    //set refresh interval to 1 hour
    opt.AutomaticRefreshInterval = new TimeSpan(1, 0, 0);
});

Before .NET 5 this was readonly, but they made it editable in .NET 5.

Categories

authentication - Asp.Net core AddJwtBearer default caching of JWKS?

authentication - Asp.Net core AddJwtBearer default caching of JWKS?

Please log in or register to add a comment.

Please log in or register to answer this question.

1 Answer

Please log in or register to add a comment.

Just Browsing Browsing

Most popular tags