rbrayb · February 20, 2019 18:12
diff --git a/B2CPoCConsoleApp.cs b/B2CPoCConsoleApp.cs
 using System;
 using System.Collections.Generic;
 using System.IdentityModel.Tokens.Jwt;
 using System.Security.Claims;
 using System.Text;
 using Microsoft.IdentityModel.Tokens;

 namespace B2CPoCConsoleApp
 {
    class Program
    {
        static void Main(string[] args)
        {
            TimeSpan policyTokenLifetime;

            var clientSecret = "zg3*Tl#zlt5SV-l}]b%UqIjm";

            var issuer = "tenant.onmicrosoft.com";

            var redirectUri = "https://localhost:57478/";

            // ... Or set it to a default time of 20 minutes.
            policyTokenLifetime = new TimeSpan(0, 0, 20, 0);

            //ICollection<Claim> policyClaims = null;
            var policyClaims = new List<Claim>();
            var emailClaim = new Claim("email", "[email protected]");
            policyClaims.Add(emailClaim);

            // Create the JWT containing the list of claims and signed by the client secret.
            var selfIssuedToken = CreateSelfIssuedToken(
                issuer,
                redirectUri,
                policyTokenLifetime,
                clientSecret,
                policyClaims);

            Console.WriteLine(selfIssuedToken);
            Console.ReadLine();
        }

        public static string CreateSelfIssuedToken(
            string issuer,
            string audience,
            TimeSpan expiration,
            string signingSecret,
            ICollection<Claim> claims)
        {
            var tokenHandler = new JwtSecurityTokenHandler();
            var nowUtc = DateTime.UtcNow;
            var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(signingSecret));
            var signingCredentials = new SigningCredentials(key, "http://www.w3.org/2001/04/xmldsig-more#hmac-sha256");

            var tokenDescriptor = new SecurityTokenDescriptor
            {
                Audience = audience,
                Expires = nowUtc.Add(expiration),
                IssuedAt = nowUtc,
                Issuer = issuer,
                NotBefore = nowUtc,
                SigningCredentials = signingCredentials,
                Subject = new ClaimsIdentity(claims)
            };

            var token = tokenHandler.CreateToken(tokenDescriptor);
            return tokenHandler.WriteToken(token);
        }
    }
 }
	using System;
	using System.Collections.Generic;
	using System.IdentityModel.Tokens.Jwt;
	using System.Security.Claims;
	using System.Text;
	using Microsoft.IdentityModel.Tokens;

	namespace B2CPoCConsoleApp
	{
	class Program
	{
	static void Main(string[] args)
	{
	TimeSpan policyTokenLifetime;

	var clientSecret = "zg3*Tl#zlt5SV-l}]b%UqIjm";

	var issuer = "tenant.onmicrosoft.com";

	var redirectUri = "https://localhost:57478/";

	// ... Or set it to a default time of 20 minutes.
	policyTokenLifetime = new TimeSpan(0, 0, 20, 0);

	//ICollection<Claim> policyClaims = null;
	var policyClaims = new List<Claim>();
	var emailClaim = new Claim("email", "[email protected]");
	policyClaims.Add(emailClaim);

	// Create the JWT containing the list of claims and signed by the client secret.
	var selfIssuedToken = CreateSelfIssuedToken(
	issuer,
	redirectUri,
	policyTokenLifetime,
	clientSecret,
	policyClaims);

	Console.WriteLine(selfIssuedToken);
	Console.ReadLine();
	}

	public static string CreateSelfIssuedToken(
	string issuer,
	string audience,
	TimeSpan expiration,
	string signingSecret,
	ICollection<Claim> claims)
	{
	var tokenHandler = new JwtSecurityTokenHandler();
	var nowUtc = DateTime.UtcNow;
	var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(signingSecret));
	var signingCredentials = new SigningCredentials(key, "http://www.w3.org/2001/04/xmldsig-more#hmac-sha256");

	var tokenDescriptor = new SecurityTokenDescriptor
	{
	Audience = audience,
	Expires = nowUtc.Add(expiration),
	IssuedAt = nowUtc,
	Issuer = issuer,
	NotBefore = nowUtc,
	SigningCredentials = signingCredentials,
	Subject = new ClaimsIdentity(claims)
	};

	var token = tokenHandler.CreateToken(tokenDescriptor);
	return tokenHandler.WriteToken(token);
	}
	}
	}