CodeLiturgy.Dashboard/BlueWest.Api/Users/Auth/AuthManager.cs

using System;
using System.Security.Claims;
using System.Threading;
using System.Threading.Tasks;
using BlueWest.Cryptography;
using BlueWest.Data.Application;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Identity;

namespace BlueWest.WebApi.Context.Users;

internal class AuthManager : IAuthManager
{
        private readonly ApplicationUserManager _userManager;
        private readonly UserRepository _usersRepo;
        private readonly ISessionManager _sessionManager;
        private readonly IHasher _hasher;
        private readonly IJwtFactory _jwtFactory;
        
        /// <summary>
        /// Auth manager constructor
        /// </summary>
        /// <param name="userManager"></param>
        /// <param name="hasher"></param>
        /// <param name="usersRepo"></param>
        /// <param name="jwtFactory"></param>
        public AuthManager(
            ApplicationUserManager userManager, 
            IHasher hasher, 
            UserRepository usersRepo, 
            ISessionManager sessionManager,
            IJwtFactory jwtFactory)
        {
            _userManager = userManager;
            _hasher = hasher;
            _usersRepo = usersRepo;
            _jwtFactory = jwtFactory;
            _sessionManager = sessionManager;
        }

        public async Task<(bool, ClaimsIdentity, SessionTokenUnique)> DoLogin(LoginRequest loginRequest)
        {
            var user = await _userManager.FindByEmailAsync(loginRequest.Email);

            if (user != null)
            {
                if(await _userManager.CheckPasswordAsync(user, loginRequest.Password))
                {
                    // Identity
                    var identity = new ClaimsIdentity(CookieAuthenticationDefaults.AuthenticationScheme);
                    identity.AddClaim(new Claim(ClaimTypes.Email, user.Email));
                    
                    // Session
                    var sessionToken = _sessionManager.GetSessionToken(loginRequest, user);
                    var sessionResponse = new SessionTokenUnique(sessionToken);
                    return (true, identity, sessionResponse);
                }
            }

            return (false, null, null);
        }
        
        /// <inheritdoc />
        public async Task<(bool, SessionTokenUnique, AccessToken)> GetToken(LoginRequest loginRequest)
        {
            if (!string.IsNullOrEmpty(loginRequest.Email) && !string.IsNullOrEmpty(loginRequest.Password))
            {
                var user = await _userManager.FindByEmailAsync(loginRequest.Email);
                if (user != null)
                {
                    if (await VerifyLoginByEmailAsync(loginRequest.Email,loginRequest.Password))
                    {
                        await _usersRepo.UpdateAsync(user, CancellationToken.None);
                        // Session
                        var sessionToken = _sessionManager.GetSessionToken(loginRequest, user);
                        var sessionResponse = new SessionTokenUnique(sessionToken);
                        
                        var token = await _jwtFactory.GenerateEncodedToken(user.Id, user.UserName);
                        var completed = await _userManager.SetAuthenticationTokenAsync(user, "ApiUser", "ApiUser", token.Token);

                        return (completed == IdentityResult.Success, sessionResponse, token);
                    }
                }
            }

            return (false, null, null);
        }
        
        /// <inheritdoc />
        public async Task<bool> VerifyLoginByEmailAsync(string email, string password)
        {
            var user = await _userManager.FindByEmailAsync(email);

            if (user == null)
            {
                return false; 
            }

            return await _userManager.CheckPasswordAsync(user, password);
        }

        private  RegisterViewModel FromSignupToUser(RegisterViewModel signupDto)
        {
            var pwd = signupDto.Password;
            var hash = _hasher.CreateHash(pwd, BaseCryptoItem.HashAlgorithm.SHA3_512);
            signupDto.Password = hash;
            return signupDto;
        }

        public async Task<IdentityResult> CreateUserAsync(RegisterViewModel userSignupDto)
        {
            RegisterViewModel userToCreate = FromSignupToUser(userSignupDto);
            return await _userManager.CreateAsync(userToCreate.ToUser());
        }

}
Session wip 2022-09-17 22:13:35 +03:00			`using System;`
			`using System.Security.Claims;`
Add Users code 2022-09-10 00:33:17 +03:00			`using System.Threading;`
			`using System.Threading.Tasks;`
			`using BlueWest.Cryptography;`
Session wip 2022-09-17 22:13:35 +03:00			`using BlueWest.Data.Application;`
			`using Microsoft.AspNetCore.Authentication.Cookies;`
			`using Microsoft.AspNetCore.Http;`
Add Users code 2022-09-10 00:33:17 +03:00			`using Microsoft.AspNetCore.Identity;`

			`namespace BlueWest.WebApi.Context.Users;`

Working state 2022-09-11 01:22:04 +03:00			`internal class AuthManager : IAuthManager`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Session wip 2022-09-17 22:13:35 +03:00			`private readonly ApplicationUserManager _userManager;`
ok 2022-09-10 07:12:03 +03:00			`private readonly UserRepository _usersRepo;`
Session wip 2022-09-17 22:13:35 +03:00			`private readonly ISessionManager _sessionManager;`
Add Users code 2022-09-10 00:33:17 +03:00			`private readonly IHasher _hasher;`
			`private readonly IJwtFactory _jwtFactory;`

ok 2022-09-10 07:12:03 +03:00			`/// <summary>`
			`/// Auth manager constructor`
			`/// </summary>`
			`/// <param name="userManager"></param>`
			`/// <param name="hasher"></param>`
			`/// <param name="usersRepo"></param>`
			`/// <param name="jwtFactory"></param>`
Session wip 2022-09-17 22:13:35 +03:00			`public AuthManager(`
			`ApplicationUserManager userManager,`
			`IHasher hasher,`
			`UserRepository usersRepo,`
			`ISessionManager sessionManager,`
			`IJwtFactory jwtFactory)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
			`_userManager = userManager;`
			`_hasher = hasher;`
			`_usersRepo = usersRepo;`
			`_jwtFactory = jwtFactory;`
Session wip 2022-09-17 22:13:35 +03:00			`_sessionManager = sessionManager;`
			`}`

			`public async Task<(bool, ClaimsIdentity, SessionTokenUnique)> DoLogin(LoginRequest loginRequest)`
			`{`
			`var user = await _userManager.FindByEmailAsync(loginRequest.Email);`

			`if (user != null)`
			`{`
			`if(await _userManager.CheckPasswordAsync(user, loginRequest.Password))`
			`{`
			`// Identity`
			`var identity = new ClaimsIdentity(CookieAuthenticationDefaults.AuthenticationScheme);`
			`identity.AddClaim(new Claim(ClaimTypes.Email, user.Email));`

			`// Session`
			`var sessionToken = _sessionManager.GetSessionToken(loginRequest, user);`
			`var sessionResponse = new SessionTokenUnique(sessionToken);`
			`return (true, identity, sessionResponse);`
			`}`
			`}`

			`return (false, null, null);`
Add Users code 2022-09-10 00:33:17 +03:00			`}`

ok 2022-09-10 07:12:03 +03:00			`/// <inheritdoc />`
Session wip 2022-09-17 22:13:35 +03:00			`public async Task<(bool, SessionTokenUnique, AccessToken)> GetToken(LoginRequest loginRequest)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Session wip 2022-09-17 22:13:35 +03:00			`if (!string.IsNullOrEmpty(loginRequest.Email) && !string.IsNullOrEmpty(loginRequest.Password))`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Session wip 2022-09-17 22:13:35 +03:00			`var user = await _userManager.FindByEmailAsync(loginRequest.Email);`
Add Users code 2022-09-10 00:33:17 +03:00			`if (user != null)`
			`{`
Session wip 2022-09-17 22:13:35 +03:00			`if (await VerifyLoginByEmailAsync(loginRequest.Email,loginRequest.Password))`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
			`await _usersRepo.UpdateAsync(user, CancellationToken.None);`
Session wip 2022-09-17 22:13:35 +03:00			`// Session`
			`var sessionToken = _sessionManager.GetSessionToken(loginRequest, user);`
			`var sessionResponse = new SessionTokenUnique(sessionToken);`

			`var token = await _jwtFactory.GenerateEncodedToken(user.Id, user.UserName);`
			`var completed = await _userManager.SetAuthenticationTokenAsync(user, "ApiUser", "ApiUser", token.Token);`
Add Users code 2022-09-10 00:33:17 +03:00
Session wip 2022-09-17 22:13:35 +03:00			`return (completed == IdentityResult.Success, sessionResponse, token);`
Add Users code 2022-09-10 00:33:17 +03:00			`}`
			`}`
			`}`

Session wip 2022-09-17 22:13:35 +03:00			`return (false, null, null);`
Add Users code 2022-09-10 00:33:17 +03:00			`}`

ok 2022-09-10 07:12:03 +03:00			`/// <inheritdoc />`
Session wip 2022-09-17 22:13:35 +03:00			`public async Task<bool> VerifyLoginByEmailAsync(string email, string password)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
			`var user = await _userManager.FindByEmailAsync(email);`

			`if (user == null)`
			`{`
Session wip 2022-09-17 22:13:35 +03:00			`return false;`
Add Users code 2022-09-10 00:33:17 +03:00			`}`

			`return await _userManager.CheckPasswordAsync(user, password);`
			`}`

			`private RegisterViewModel FromSignupToUser(RegisterViewModel signupDto)`
			`{`
			`var pwd = signupDto.Password;`
			`var hash = _hasher.CreateHash(pwd, BaseCryptoItem.HashAlgorithm.SHA3_512);`
			`signupDto.Password = hash;`
			`return signupDto;`
			`}`
ok 2022-09-10 07:12:03 +03:00
Add Users code 2022-09-10 00:33:17 +03:00			`public async Task<IdentityResult> CreateUserAsync(RegisterViewModel userSignupDto)`
			`{`
ok 2022-09-10 07:12:03 +03:00			`RegisterViewModel userToCreate = FromSignupToUser(userSignupDto);`
			`return await _userManager.CreateAsync(userToCreate.ToUser());`
Add Users code 2022-09-10 00:33:17 +03:00			`}`
ok 2022-09-10 07:12:03 +03:00
Add Users code 2022-09-10 00:33:17 +03:00			`}`