CodeLiturgy.Dashboard/BlueWest.Api/Controllers/AuthController.cs

using System;
using System.Security.Claims;
using System.Threading.Tasks;
using BlueWest.Cryptography;
using BlueWest.Data.Application;
using BlueWest.WebApi.Context.Users;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Cors;
using Microsoft.AspNetCore.Identity;
using Microsoft.AspNetCore.Mvc;

namespace BlueWest.WebApi.Controllers;

/// <summary>
/// Auth controller
/// </summary>
    [ApiController]
    [Route("api/[controller]")]

    [Authorize(Policy = "ApiUser")]

/*[EnableCors(Constants.CorsPolicyName)]*/
    public class AuthController : Controller
    {
        private readonly IAuthManager _authManager;
        private readonly IUserManager _userManager;
        private readonly ISessionManager _sessionManager;

        /// <summary>
        /// 
        /// </summary>
        /// <param name="authManager"></param>
        /// <param name="userManager"></param>
        public AuthController(  IAuthManager authManager, IUserManager userManager, ISessionManager sessionManager)
        {
            _authManager = authManager;
            _userManager = userManager;
            _sessionManager = sessionManager;
        }

        
        /// <summary>
        /// Signup user
        /// </summary>
        /// <param name="registerViewModel"></param>
        /// <returns></returns>
        [AllowAnonymous]
        [HttpPost("register")]
        public async Task<ActionResult<IdentityResult>> SignupUserAsync(RegisterViewModel registerViewModel)
        {
            return await _authManager.CreateUserAsync(registerViewModel);
        }

        
        
        /// <summary>
        /// Gets a bearer token
        /// </summary>
        /// <param name="loginViewModel"></param>
        /// <returns></returns>
        [AllowAnonymous]
        [HttpPost("token")]
        public async Task<ActionResult<IdentityResult>> GetTokenAsync(LoginRequest loginViewModel)
        {
            var (success, sessionToken, token) =  await _authManager.GetToken(loginViewModel);

            if (success)
            {
                return Ok(new {sessionToken, token});

            }
            return Problem();
        }
        

        /// <summary>
        /// Check if user is logged in
        /// </summary>
        /// <returns></returns>
        [HttpGet("isLoggedIn")]

        public ActionResult<bool> IsLoggedIn()
        {
            var identity = new ClaimsIdentity(CookieAuthenticationDefaults.AuthenticationScheme);
           
            if (identity.IsAuthenticated)
            {
                return Ok(true);
            }

            return Ok(false);
        }
        
        /// <summary>
        /// Checks if the session is authorized 
        /// </summary>
        /// <param name="hash"></param>
        /// <returns></returns>
        [HttpGet("isAuthorized")]

        public ActionResult IsAuthorized(string hash)
        {
            var isAuthorized = _sessionManager.IsAuthorized(hash);

            return Ok(isAuthorized ? new {authenticated = true} : new {authenticated = false});
        }
        
        
            
        /// <summary>
        /// Do Cookie based login. 
        /// </summary>
        /// <param name="loginDto"></param>
        /// <returns></returns>
        [AllowAnonymous]
        [HttpPost("login")]
        public async Task<ActionResult> DoLoginAsync(LoginRequest loginDto)
        {
            var (success, identity, sessionToken) = await _authManager.DoLogin(loginDto);

            if (success)
            {
                await HttpContext.SignInAsync(
                    CookieAuthenticationDefaults.AuthenticationScheme, 
                    new ClaimsPrincipal(identity),
                    new AuthenticationProperties
                    {
                        IsPersistent = true,
                        ExpiresUtc = DateTime.UtcNow.AddDays(1)
                    });
                
                return Ok(new {authenticated = true, sessionToken});
            }

            return new ForbidResult(CookieAuthenticationDefaults.AuthenticationScheme);
        }
            
        /// <summary>
        /// Do Cookie based logout
        /// </summary>
        /// <param name="loginDto"></param>
        /// <returns></returns>
        [AllowAnonymous]
        [HttpPost("logout")]
        public async Task DoLogoutAsync()
        {
             await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
        }

    }
Session wip 2022-09-17 22:13:35 +03:00			`using System;`
Add Users code 2022-09-10 00:33:17 +03:00			`using System.Security.Claims;`
			`using System.Threading.Tasks;`
Session wip 2022-09-17 22:13:35 +03:00			`using BlueWest.Cryptography;`
			`using BlueWest.Data.Application;`
Add Users code 2022-09-10 00:33:17 +03:00			`using BlueWest.WebApi.Context.Users;`
			`using Microsoft.AspNetCore.Authentication;`
			`using Microsoft.AspNetCore.Authentication.Cookies;`
			`using Microsoft.AspNetCore.Authentication.JwtBearer;`
			`using Microsoft.AspNetCore.Authorization;`
Credentials working in the frontend 2022-09-12 17:57:37 +03:00			`using Microsoft.AspNetCore.Cors;`
Add Users code 2022-09-10 00:33:17 +03:00			`using Microsoft.AspNetCore.Identity;`
			`using Microsoft.AspNetCore.Mvc;`

			`namespace BlueWest.WebApi.Controllers;`

ok 2022-09-10 07:12:03 +03:00			`/// <summary>`
			`/// Auth controller`
			`/// </summary>`
Add Users code 2022-09-10 00:33:17 +03:00			`[ApiController]`
Session wip 2022-09-17 22:13:35 +03:00			`[Route("api/[controller]")]`

			`[Authorize(Policy = "ApiUser")]`

			`/[EnableCors(Constants.CorsPolicyName)]/`
			`public class AuthController : Controller`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
			`private readonly IAuthManager _authManager;`
			`private readonly IUserManager _userManager;`
Session wip 2022-09-17 22:13:35 +03:00			`private readonly ISessionManager _sessionManager;`
Add Users code 2022-09-10 00:33:17 +03:00
ok 2022-09-10 07:12:03 +03:00			`/// <summary>`
			`///`
			`/// </summary>`
			`/// <param name="authManager"></param>`
			`/// <param name="userManager"></param>`
Session wip 2022-09-17 22:13:35 +03:00			`public AuthController( IAuthManager authManager, IUserManager userManager, ISessionManager sessionManager)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
			`_authManager = authManager;`
			`_userManager = userManager;`
Session wip 2022-09-17 22:13:35 +03:00			`_sessionManager = sessionManager;`
Add Users code 2022-09-10 00:33:17 +03:00			`}`


ok 2022-09-10 07:12:03 +03:00			`/// <summary>`
			`/// Signup user`
			`/// </summary>`
			`/// <param name="registerViewModel"></param>`
			`/// <returns></returns>`
Add Users code 2022-09-10 00:33:17 +03:00			`[AllowAnonymous]`
			`[HttpPost("register")]`
			`public async Task<ActionResult<IdentityResult>> SignupUserAsync(RegisterViewModel registerViewModel)`
			`{`
			`return await _authManager.CreateUserAsync(registerViewModel);`
			`}`


Session wip 2022-09-17 22:13:35 +03:00
Working state 2022-09-11 01:22:04 +03:00			`/// <summary>`
			`/// Gets a bearer token`
			`/// </summary>`
			`/// <param name="loginViewModel"></param>`
			`/// <returns></returns>`
Add Users code 2022-09-10 00:33:17 +03:00			`[AllowAnonymous]`
Session wip 2022-09-17 22:13:35 +03:00			`[HttpPost("token")]`
			`public async Task<ActionResult<IdentityResult>> GetTokenAsync(LoginRequest loginViewModel)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Session wip 2022-09-17 22:13:35 +03:00			`var (success, sessionToken, token) = await _authManager.GetToken(loginViewModel);`
Add Users code 2022-09-10 00:33:17 +03:00
Session wip 2022-09-17 22:13:35 +03:00			`if (success)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Session wip 2022-09-17 22:13:35 +03:00			`return Ok(new {sessionToken, token});`
Add Users code 2022-09-10 00:33:17 +03:00
			`}`
			`return Problem();`
			`}`

Session wip 2022-09-17 22:13:35 +03:00
			`/// <summary>`
			`/// Check if user is logged in`
			`/// </summary>`
			`/// <returns></returns>`
			`[HttpGet("isLoggedIn")]`

			`public ActionResult<bool> IsLoggedIn()`
			`{`
			`var identity = new ClaimsIdentity(CookieAuthenticationDefaults.AuthenticationScheme);`

			`if (identity.IsAuthenticated)`
			`{`
			`return Ok(true);`
			`}`

			`return Ok(false);`
			`}`

			`/// <summary>`
			`/// Checks if the session is authorized`
			`/// </summary>`
			`/// <param name="hash"></param>`
			`/// <returns></returns>`
			`[HttpGet("isAuthorized")]`

			`public ActionResult IsAuthorized(string hash)`
			`{`
			`var isAuthorized = _sessionManager.IsAuthorized(hash);`

			`return Ok(isAuthorized ? new {authenticated = true} : new {authenticated = false});`
			`}`


Add Users code 2022-09-10 00:33:17 +03:00
Working state 2022-09-11 01:22:04 +03:00			`/// <summary>`
			`/// Do Cookie based login.`
			`/// </summary>`
			`/// <param name="loginDto"></param>`
			`/// <returns></returns>`
Add Users code 2022-09-10 00:33:17 +03:00			`[AllowAnonymous]`
Session wip 2022-09-17 22:13:35 +03:00			`[HttpPost("login")]`
			`public async Task<ActionResult> DoLoginAsync(LoginRequest loginDto)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Session wip 2022-09-17 22:13:35 +03:00			`var (success, identity, sessionToken) = await _authManager.DoLogin(loginDto);`

			`if (success)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Session wip 2022-09-17 22:13:35 +03:00			`await HttpContext.SignInAsync(`
			`CookieAuthenticationDefaults.AuthenticationScheme,`
			`new ClaimsPrincipal(identity),`
			`new AuthenticationProperties`
			`{`
			`IsPersistent = true,`
			`ExpiresUtc = DateTime.UtcNow.AddDays(1)`
			`});`

			`return Ok(new {authenticated = true, sessionToken});`
Add Users code 2022-09-10 00:33:17 +03:00			`}`

Session wip 2022-09-17 22:13:35 +03:00			`return new ForbidResult(CookieAuthenticationDefaults.AuthenticationScheme);`
Add Users code 2022-09-10 00:33:17 +03:00			`}`

Working state 2022-09-11 01:22:04 +03:00			`/// <summary>`
			`/// Do Cookie based logout`
			`/// </summary>`
			`/// <param name="loginDto"></param>`
			`/// <returns></returns>`
Add Users code 2022-09-10 00:33:17 +03:00			`[AllowAnonymous]`
			`[HttpPost("logout")]`
Session wip 2022-09-17 22:13:35 +03:00			`public async Task DoLogoutAsync()`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Session wip 2022-09-17 22:13:35 +03:00			`await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);`
Add Users code 2022-09-10 00:33:17 +03:00			`}`

			`}`