Add optional useCookies param to AddJwt extension

Vadim Belov · Vadim Belov · commit 3382e4cf0dfa · 2026-03-03T09:45:09.000-08:00
Add useCookies parameter to AddJwt for reading JWT from cookies if not found in query string. Update XML docs and token extraction logic to support this behavior.
diff --git a/Sources/EasyExtensions.AspNetCore.Authorization/Extensions/ServiceCollectionExtensions.cs b/Sources/EasyExtensions.AspNetCore.Authorization/Extensions/ServiceCollectionExtensions.cs
@@ -31,6 +31,7 @@ public static class ServiceCollectionExtensions
         /// Reads settings from JwtSettings section or flat fallback Jwt[Key] configuration values (see <see cref="ConfigurationExtensions.GetJwtSettings"/>).
         /// </summary>
         /// <param name="services"><see cref="IServiceCollection"/> instance.</param>
+        /// <param name="useCookies">If <c>true</c>, JWT token will be read from cookies (if not found in query string).</param>
         /// <returns>Current <see cref="IServiceCollection"/> instance.</returns>
         /// <exception cref="KeyNotFoundException">When required JWT settings are missing.</exception>
         /// <remarks>
@@ -67,7 +68,7 @@ public static class ServiceCollectionExtensions
         ///   <item><description><c>RequireHttpsMetadata = false</c> (adjust in production if needed).</description></item>
         /// </list>
         /// </remarks>
-        public static IServiceCollection AddJwt(this IServiceCollection services)
+        public static IServiceCollection AddJwt(this IServiceCollection services, bool useCookies = false)
         {
             services.AddScoped<ITokenProvider, JwtTokenProvider>();
             services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
@@ -102,7 +103,7 @@ public static IServiceCollection AddJwt(this IServiceCollection services)
                             {
                                 context.Token = accessToken;
                             }
-                            if (string.IsNullOrWhiteSpace(context.Token))
+                            else if (useCookies && string.IsNullOrWhiteSpace(context.Token))
                             {
                                 string? cookieToken = context.Request.Cookies[AccessTokenParamName];
                                 if (!string.IsNullOrEmpty(cookieToken))

Original file line number	Diff line number	Diff line change
`@@ -31,6 +31,7 @@ public static class ServiceCollectionExtensions`
`31`	`31`	`/// Reads settings from JwtSettings section or flat fallback Jwt[Key] configuration values (see <see cref="ConfigurationExtensions.GetJwtSettings"/>).`
`32`	`32`	`/// </summary>`
`33`	`33`	`/// <param name="services"><see cref="IServiceCollection"/> instance.</param>`
	`34`	`+ /// <param name="useCookies">If <c>true</c>, JWT token will be read from cookies (if not found in query string).</param>`
`34`	`35`	`/// <returns>Current <see cref="IServiceCollection"/> instance.</returns>`
`35`	`36`	`/// <exception cref="KeyNotFoundException">When required JWT settings are missing.</exception>`
`36`	`37`	`/// <remarks>`
`@@ -67,7 +68,7 @@ public static class ServiceCollectionExtensions`
`67`	`68`	`/// <item><description><c>RequireHttpsMetadata = false</c> (adjust in production if needed).</description></item>`
`68`	`69`	`/// </list>`
`69`	`70`	`/// </remarks>`
`70`		`- public static IServiceCollection AddJwt(this IServiceCollection services)`
	`71`	`+ public static IServiceCollection AddJwt(this IServiceCollection services, bool useCookies = false)`
`71`	`72`	`{`
`72`	`73`	`services.AddScoped<ITokenProvider, JwtTokenProvider>();`
`73`	`74`	`services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)`
`@@ -102,7 +103,7 @@ public static IServiceCollection AddJwt(this IServiceCollection services)`
`102`	`103`	`{`
`103`	`104`	`context.Token = accessToken;`
`104`	`105`	`}`
`105`		`- if (string.IsNullOrWhiteSpace(context.Token))`
	`106`	`+ else if (useCookies && string.IsNullOrWhiteSpace(context.Token))`
`106`	`107`	`{`
`107`	`108`	`string? cookieToken = context.Request.Cookies[AccessTokenParamName];`
`108`	`109`	`if (!string.IsNullOrEmpty(cookieToken))`