Indeed the Bearer policy isn't registered now when Active Directory security is used. We will have to fix that. In the mean time you can register it manually in Startup.Audit.cs (you will have to import a few namespaces)
partial void OnConfigureServices(IServiceCollection services)
{
var tokenValidationParameters = new TokenValidationParameters
{
ValidateIssuerSigningKey = true,
IssuerSigningKey = TokenProviderOptions.Key,
ValidateIssuer = true,
ValidIssuer = TokenProviderOptions.Issuer,
ValidateAudience = true,
ValidAudience = TokenProviderOptions.Audience,
ValidateLifetime = true,
ClockSkew = TimeSpan.Zero
};
services.AddAuthentication(options =>
{
options.DefaultScheme = Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerDefaults.AuthenticationScheme;
}).AddJwtBearer(options =>
{
options.Audience = TokenProviderOptions.Audience;
options.ClaimsIssuer = TokenProviderOptions.Issuer;
options.TokenValidationParameters = tokenValidationParameters;
options.SaveToken = true;
});
var policy = new AuthorizationPolicyBuilder()
{
AuthenticationSchemes = new[] { "Bearer" }
}
.RequireAuthenticatedUser()
.Build();
services.AddMvc(options =>
{
options.Filters.Add(new AuthorizeFilter(policy));
});
}