CodeLiturgy.Dashboard/BlueWest.Api/Users/Auth/AuthManager.cs

using System;
using System.Security.Claims;
using System.Threading.Tasks;
using BlueWest.Cryptography;
using BlueWest.Data.Application;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Identity;
using static BlueWest.WebApi.Context.Users.AuthConsts;

namespace BlueWest.WebApi.Context.Users
{
    internal class AuthManager : IAuthManager
    {
        private readonly ApplicationUserManager _userManager;
        private readonly IHasher _hasher;
        private readonly IJwtFactory _jwtFactory;
        private readonly ISessionCache _sessionCache;

        /// <summary>
        /// Auth manager constructor
        /// </summary>
        /// <param name="userManager"></param>
        /// <param name="hasher"></param>
        /// <param name="jwtFactory"></param>
        /// <param name="sessionCache"></param>
        public AuthManager(
            ApplicationUserManager userManager,
            IHasher hasher,
            IJwtFactory jwtFactory,
            ISessionCache sessionCache)
        {
            _userManager = userManager;
            _hasher = hasher;
            _jwtFactory = jwtFactory;
            _sessionCache = sessionCache;
        }

        private async Task<SessionToken> GetSessionToken(LoginRequest loginRequest)
        {
            var uuid = loginRequest.GetUuid();
            var hashUuid = GetHashFromUuid(uuid);
            var sessionToken = await _sessionCache.GetSessionTokenByIdAsync(hashUuid);
            return sessionToken;
        }

        private string GetHashFromUuid(string uuid)
        {
            return _hasher.CreateHash(uuid, BaseCryptoItem.HashAlgorithm.SHA2_512);
        }

        private SessionToken GetNewSessionToken(LoginRequest loginRequest, ApplicationUser user, string token)
        {
            long timeNow = DateTimeOffset.Now.ToUnixTimeMilliseconds();
            
            var newToken = new SessionToken
            {
                Id = GetHashFromUuid(loginRequest.GetUuid()),
                UserId = user.Id,
                CreatedDate = timeNow,
                IsValid = true,
                ValidFor = SessionConstants.DefaultSessionMaxAge.Milliseconds,
                AccessToken = token
            };
            
            return newToken;
        }

        public bool SessionTokenIsValid(SessionToken token)
        {
            var hasChanges = token.Validate();
            
            if (hasChanges)
            {
                _sessionCache.SaveAsync();
            }

            return token.IsValid;
        }

        public async Task<(bool, SessionTokenUnique, ClaimsIdentity)> GetSessionTokenIdByLoginRequest(LoginRequest loginRequest)
        {
            var user = await _userManager.FindByEmailAsync(loginRequest.Email);

            if (user == null) return NegativeToken;

            if (!await _userManager.CheckPasswordAsync(user, loginRequest.Password)) return NegativeToken;

            var identity = new ClaimsIdentity(JwtBearerDefaults.AuthenticationScheme);
            identity.AddClaim(new Claim(ClaimTypes.Email, user.Email));

            var sessionToken = await GetSessionToken(loginRequest);

            if (sessionToken == null || !SessionTokenIsValid(sessionToken))
            {
                var (success, bearerToken) = await GenerateBearerToken(identity, user);
                var newSessionToken = GetNewSessionToken(loginRequest, user, bearerToken);
                await _sessionCache.AddSessionToken(newSessionToken);
                var tokenUnique = new SessionTokenUnique(newSessionToken);

                return OkAuth(tokenUnique, identity, success);
            }

            var response = new SessionTokenUnique(sessionToken);
            return OkAuth(response, identity);
        }

        private async Task<(bool, string)> GenerateBearerToken(ClaimsIdentity identity, ApplicationUser user)
        {
            var jwtToken = await _jwtFactory.GenerateEncodedToken(user.Id, user.UserName);
            var completed = await _userManager.SetAuthenticationTokenAsync(user, SessionConstants.ApiNamePolicy,
                SessionConstants.ApiNamePolicy, jwtToken.Token);
            return (completed == IdentityResult.Success, jwtToken.Token);
        }


        public async Task<bool> VerifyLoginByEmailAsync(string email, string password)
        {
            var user = await _userManager.FindByEmailAsync(email);
            return user != null && await _userManager.CheckPasswordAsync(user, password);
        }


        public async Task<IdentityResult> CreateUserAsync(RegisterViewModel userSignupDto)
        {
            userSignupDto.Password = _hasher.CreateHash(userSignupDto.Password, BaseCryptoItem.HashAlgorithm.SHA3_512);;
            var newUser = userSignupDto.ToUser();
            return await _userManager.CreateAsync(newUser);
        }
    }
}
Session wip 2022-09-17 22:13:35 +03:00			`using System;`
			`using System.Security.Claims;`
Add Users code 2022-09-10 00:33:17 +03:00			`using System.Threading.Tasks;`
			`using BlueWest.Cryptography;`
Session wip 2022-09-17 22:13:35 +03:00			`using BlueWest.Data.Application;`
Add views project 2022-09-19 05:50:15 +03:00			`using Microsoft.AspNetCore.Authentication.JwtBearer;`
Add Users code 2022-09-10 00:33:17 +03:00			`using Microsoft.AspNetCore.Identity;`
Add views project 2022-09-19 05:50:15 +03:00			`using static BlueWest.WebApi.Context.Users.AuthConsts;`
Add Users code 2022-09-10 00:33:17 +03:00
Redis working 2022-09-18 04:00:24 +03:00			`namespace BlueWest.WebApi.Context.Users`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Redis working 2022-09-18 04:00:24 +03:00			`internal class AuthManager : IAuthManager`
			`{`
Session wip 2022-09-17 22:13:35 +03:00			`private readonly ApplicationUserManager _userManager;`
Add Users code 2022-09-10 00:33:17 +03:00			`private readonly IHasher _hasher;`
			`private readonly IJwtFactory _jwtFactory;`
Redis working 2022-09-18 04:00:24 +03:00			`private readonly ISessionCache _sessionCache;`

ok 2022-09-10 07:12:03 +03:00			`/// <summary>`
			`/// Auth manager constructor`
			`/// </summary>`
			`/// <param name="userManager"></param>`
			`/// <param name="hasher"></param>`
			`/// <param name="jwtFactory"></param>`
Redis working 2022-09-18 04:00:24 +03:00			`/// <param name="sessionCache"></param>`
Session wip 2022-09-17 22:13:35 +03:00			`public AuthManager(`
Redis working 2022-09-18 04:00:24 +03:00			`ApplicationUserManager userManager,`
			`IHasher hasher,`
			`IJwtFactory jwtFactory,`
			`ISessionCache sessionCache)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
			`_userManager = userManager;`
			`_hasher = hasher;`
			`_jwtFactory = jwtFactory;`
Redis working 2022-09-18 04:00:24 +03:00			`_sessionCache = sessionCache;`
Session wip 2022-09-17 22:13:35 +03:00			`}`

Redis working 2022-09-18 04:00:24 +03:00			`private async Task<SessionToken> GetSessionToken(LoginRequest loginRequest)`
Session wip 2022-09-17 22:13:35 +03:00			`{`
Redis working 2022-09-18 04:00:24 +03:00			`var uuid = loginRequest.GetUuid();`
			`var hashUuid = GetHashFromUuid(uuid);`
			`var sessionToken = await _sessionCache.GetSessionTokenByIdAsync(hashUuid);`
Add views project 2022-09-19 05:50:15 +03:00			`return sessionToken;`
Redis working 2022-09-18 04:00:24 +03:00			`}`
Session wip 2022-09-17 22:13:35 +03:00
Redis working 2022-09-18 04:00:24 +03:00			`private string GetHashFromUuid(string uuid)`
			`{`
			`return _hasher.CreateHash(uuid, BaseCryptoItem.HashAlgorithm.SHA2_512);`
			`}`

			`private SessionToken GetNewSessionToken(LoginRequest loginRequest, ApplicationUser user, string token)`
			`{`
Add views project 2022-09-19 05:50:15 +03:00			`long timeNow = DateTimeOffset.Now.ToUnixTimeMilliseconds();`

Redis working 2022-09-18 04:00:24 +03:00			`var newToken = new SessionToken`
Session wip 2022-09-17 22:13:35 +03:00			`{`
Redis working 2022-09-18 04:00:24 +03:00			`Id = GetHashFromUuid(loginRequest.GetUuid()),`
			`UserId = user.Id,`
Add views project 2022-09-19 05:50:15 +03:00			`CreatedDate = timeNow,`
Redis working 2022-09-18 04:00:24 +03:00			`IsValid = true,`
Add views project 2022-09-19 05:50:15 +03:00			`ValidFor = SessionConstants.DefaultSessionMaxAge.Milliseconds,`
Redis working 2022-09-18 04:00:24 +03:00			`AccessToken = token`
			`};`
Add views project 2022-09-19 05:50:15 +03:00
Redis working 2022-09-18 04:00:24 +03:00			`return newToken;`
			`}`

			`public bool SessionTokenIsValid(SessionToken token)`
			`{`
Add views project 2022-09-19 05:50:15 +03:00			`var hasChanges = token.Validate();`
Redis working 2022-09-18 04:00:24 +03:00
Add views project 2022-09-19 05:50:15 +03:00			`if (hasChanges)`
Redis working 2022-09-18 04:00:24 +03:00			`{`
			`_sessionCache.SaveAsync();`
Session wip 2022-09-17 22:13:35 +03:00			`}`

Redis working 2022-09-18 04:00:24 +03:00			`return token.IsValid;`
Add Users code 2022-09-10 00:33:17 +03:00			`}`
Redis working 2022-09-18 04:00:24 +03:00
Add views project 2022-09-19 05:50:15 +03:00			`public async Task<(bool, SessionTokenUnique, ClaimsIdentity)> GetSessionTokenIdByLoginRequest(LoginRequest loginRequest)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Redis working 2022-09-18 04:00:24 +03:00			`var user = await _userManager.FindByEmailAsync(loginRequest.Email);`

Add views project 2022-09-19 05:50:15 +03:00			`if (user == null) return NegativeToken;`
Redis working 2022-09-18 04:00:24 +03:00
Add views project 2022-09-19 05:50:15 +03:00			`if (!await _userManager.CheckPasswordAsync(user, loginRequest.Password)) return NegativeToken;`
Redis working 2022-09-18 04:00:24 +03:00
Add views project 2022-09-19 05:50:15 +03:00			`var identity = new ClaimsIdentity(JwtBearerDefaults.AuthenticationScheme);`
Redis working 2022-09-18 04:00:24 +03:00			`identity.AddClaim(new Claim(ClaimTypes.Email, user.Email));`

			`var sessionToken = await GetSessionToken(loginRequest);`

Add views project 2022-09-19 05:50:15 +03:00			`if (sessionToken == null \|\| !SessionTokenIsValid(sessionToken))`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
Add views project 2022-09-19 05:50:15 +03:00			`var (success, bearerToken) = await GenerateBearerToken(identity, user);`
			`var newSessionToken = GetNewSessionToken(loginRequest, user, bearerToken);`
			`await _sessionCache.AddSessionToken(newSessionToken);`
			`var tokenUnique = new SessionTokenUnique(newSessionToken);`
Add Users code 2022-09-10 00:33:17 +03:00
Add views project 2022-09-19 05:50:15 +03:00			`return OkAuth(tokenUnique, identity, success);`
			`}`
Redis working 2022-09-18 04:00:24 +03:00
Add views project 2022-09-19 05:50:15 +03:00			`var response = new SessionTokenUnique(sessionToken);`
			`return OkAuth(response, identity);`
Add Users code 2022-09-10 00:33:17 +03:00			`}`
Redis working 2022-09-18 04:00:24 +03:00
			`private async Task<(bool, string)> GenerateBearerToken(ClaimsIdentity identity, ApplicationUser user)`
			`{`
			`var jwtToken = await _jwtFactory.GenerateEncodedToken(user.Id, user.UserName);`
			`var completed = await _userManager.SetAuthenticationTokenAsync(user, SessionConstants.ApiNamePolicy,`
			`SessionConstants.ApiNamePolicy, jwtToken.Token);`
			`return (completed == IdentityResult.Success, jwtToken.Token);`
			`}`


Session wip 2022-09-17 22:13:35 +03:00			`public async Task<bool> VerifyLoginByEmailAsync(string email, string password)`
Add Users code 2022-09-10 00:33:17 +03:00			`{`
			`var user = await _userManager.FindByEmailAsync(email);`
Add views project 2022-09-19 05:50:15 +03:00			`return user != null && await _userManager.CheckPasswordAsync(user, password);`
Add Users code 2022-09-10 00:33:17 +03:00			`}`

ok 2022-09-10 07:12:03 +03:00
Add Users code 2022-09-10 00:33:17 +03:00			`public async Task<IdentityResult> CreateUserAsync(RegisterViewModel userSignupDto)`
			`{`
Add views project 2022-09-19 05:50:15 +03:00			`userSignupDto.Password = _hasher.CreateHash(userSignupDto.Password, BaseCryptoItem.HashAlgorithm.SHA3_512);;`
			`var newUser = userSignupDto.ToUser();`
			`return await _userManager.CreateAsync(newUser);`
Add Users code 2022-09-10 00:33:17 +03:00			`}`
Redis working 2022-09-18 04:00:24 +03:00			`}`
Add Users code 2022-09-10 00:33:17 +03:00			`}`