Why is 401 always returned in JwtBearerEvent OnChallenge?

[emilwkarlsson]

When adding authentication in AddIdentityInfrastructure() in ServiceExtensions.cs, the code clearly states it should return 401 when OnChallenge event is invoked. Why is that? Nothing bad has really happened?

OnChallenge = context =>
                        {
                            context.HandleResponse();
                            context.Response.StatusCode = 401;
                            context.Response.ContentType = "application/json";
                            var result = JsonConvert.SerializeObject(new Response<string>("You are not Authorized"));
                            return context.Response.WriteAsync(result);
                        }

https://docs.microsoft.com/en-us/dotnet/api/microsoft.aspnetcore.authentication.jwtbearer.jwtbearerevents.onchallenge?view=aspnetcore-3.0

[hanatharesh2712]

@emilwkarlsson Make sure you are passing auth token with prefix like "Bearer {YOUR TOKEN HERE}". and it will resolve your issue

[sak1065]

@emilwkarlsson"Taşıyıcı {KENDİNİZ BURADAKİ TOKEN}" gibi bir ön ek ile yetkilendirme belirtecini ilettiğinizden emin olun. ve sorununuzu çözecektir

hi, i sent expired token to api.
statuscode cannot be set because the response has already started.

what are you know this problem ?

thanks

[IldarY1]

@emilwkarlsson Make sure you are passing auth token with prefix like "Bearer {YOUR TOKEN HERE}". and it will resolve your issue

Maaaan, so many thanks to you!