Refresh Token using Polly with Named Client

by

TL;DR: You need to define a communication protocol between a RetryPolicy, a DelegatingHandler and a TokenService.

In case of Typed Clients you can explicitly call the ExecuteAsync and use the Context to exchange data between the to-be-decorated method and the onRetry(Async) delegate.

This trick can’t be used in a named client situation. What you need to do instead:

  • Separate out the Token management into a dedicated service
  • Use a DelegatingHandler to intercept the HttpClient‘s communication

This sequence diagram depicts the communication between the different components

refreshing token in case of 401

Token Service

The DTO

public class Token
{
    public string Scheme { get; set; }
    public string AccessToken { get; set; }
}

The interface

public interface ITokenService
{
    Token GetToken();
    Task RefreshToken();
}

The dummy implementation

public class TokenService : ITokenService
{
    private DateTime lastRefreshed = DateTime.UtcNow;
    public Token GetToken()
        => new Token { Scheme = "Bearer", AccessToken = lastRefreshed.ToString("HH:mm:ss")}; 

    public Task RefreshToken()
    {
        lastRefreshed = DateTime.UtcNow;
        return Task.CompletedTask;
    }
}

The registration into the DI as Singleton

public void ConfigureServices(IServiceCollection services)
{
    services.AddSingleton<ITokenService, TokenService>();
    ...
}

Delegating Handler

The custom exception

public class OutdatedTokenException : Exception
{

}

The handler (interceptor)

public class TokenFreshnessHandler : DelegatingHandler
{
    private readonly ITokenService tokenService;
    public TokenFreshnessHandler(ITokenService service)
    {
        tokenService = service;
    }

    protected override async Task<HttpResponseMessage> SendAsync(HttpRequestMessage request, CancellationToken cancellationToken)
    {
        var token = tokenService.GetToken();
        request.Headers.Authorization = new AuthenticationHeaderValue(token.Scheme, token.AccessToken);

        var response = await base.SendAsync(request, cancellationToken);
        if (response.StatusCode == HttpStatusCode.Unauthorized)
        {
            throw new OutdatedTokenException();
        }
        return response;
    }
}
  • It retrieves the current token from the TokenService
  • It sets the authorization header
  • It executes the base method
  • It checks the response’s status
    • If 401 then it throws the custom exception
    • If other than 401 then it returns with the response

The registration into the DI as Transient

public void ConfigureServices(IServiceCollection services)
{
    services.AddSingleton<ITokenService, TokenService>();
    services.AddTransient<TokenFreshnessHandler>();
    ...
}

Retry Policy

The policy definition

public IAsyncPolicy<HttpResponseMessage> GetTokenRefresher(IServiceProvider provider)
{
    return Policy<HttpResponseMessage>
        .Handle<OutdatedTokenException>()
        .RetryAsync(async (_, __) => await provider.GetRequiredService<ITokenService>().RefreshToken());
}
  • It receives an IServiceProvider to be able to access the TokenService
  • It performs a single retry if an OutdatedTokenException was thrown
  • Inside the onRetryAsync delegate it calls the TokenService‘s RefreshToken method

Putting all things together

public void ConfigureServices(IServiceCollection services)
{
    services.AddSingleton<ITokenService, TokenService>();
    services.AddTransient<TokenFreshnessHandler>();
    services.AddHttpClient("TestClient")
        .AddPolicyHandler((provider, _) => GetTokenRefresher(provider))
        .AddHttpMessageHandler<TokenFreshnessHandler>();
    ...
}
  • Please bear in mind that the ordering of AddPolicyHandler and AddHttpMessageHandler matters
  • If you would call the AddHttpMessageHandler first and then the AddPolicyHandler in that case your retry would not be triggered

More Related Contents:

  1. AddTransient, AddScoped and AddSingleton Services Differences
  2. How to read AppSettings values from a .json file in ASP.NET Core
  3. Return file in ASP.Net Core Web API
  4. Return View as String in .NET Core
  5. Add client certificate to .NET Core HttpClient
  6. How to instantiate a DbContext in EF Core
  7. .NET Core DI, ways of passing parameters to constructor
  8. Automatic native and managed DLLs extracting from Nuget Package
  9. Send HTTP POST message in ASP.NET Core using HttpClient PostAsJsonAsync
  10. Hangfire – Multi tenant, ASP.NET Core – Resolving the correct tenant
  11. Command dotnet ef not found
  12. Switch between dotnet core SDK versions
  13. .NET Core and System.Drawing
  14. Inject service into Action Filter
  15. Proper way to register HostedService in ASP.NET Core. AddHostedService vs AddSingleton
  16. How to set json serializer settings in asp.net core 3?
  17. Setting the version number for .NET Core projects – CSPROJ – not JSON projects
  18. System.Text.Json: Deserialize JSON with automatic casting
  19. File permissions on Linux/Unix with .NET Core
  20. How to SetBasePath in ConfigurationBuilder in Core 2.0
  21. Replace service registration in ASP.NET Core built-in DI container?
  22. How do I reference a .NET Framework project in a .NET Core project?
  23. Using a Scoped service in a Singleton in an Asp.Net Core app
  24. How to use SqlClient in ASP.NET Core?
  25. Cannot find command ‘dotnet ef’
  26. How to change the port number for Asp.Net core app?
  27. Filter Serilog logs to different sinks depending on context source?
  28. ASP.NET Core modify/substitute request body
  29. How to resolve .net core build error NETDSDK1061 and warning MSB3277
  30. Net Core: Execute All Dependency Injection in Xunit Test for AppService, Repository, etc

Leave a Comment