The next thing to do is to define the Configuration keys we just added within the Startup.cs file in the appsettings.json file, just after the already existing Jwt entry:
"Auth": {
"Jwt": {
"Issuer": "http://www.testmakerfree.com/",
"Audience": "http://www.testmakerfree.com/",
"Key": "---your-jwt-key---",
"TokenExpirationInMinutes": 120
},
"Facebook": {
"AppId": "---your-app-id---",
"AppSecret": "---your-app-secret---"
}
},
IMPORTANT: Storing these values in plain text inside the appsettings.json file is not recommended, because they can be easily accessed by unauthorized people (network admins, server admins, and so on) or even checked into some public source control repositories by some developer's mistake. There are better alternatives nowadays, such as the Secret Manager Tool, granting a better level of security. For more information about how to use it, it's highly advisable to carefully read the following guide from the official ASP.NET Core documentation website, at https://docs.asp.net/en/latest/security/app-secrets.html.