rdt-client/server/RdtClient.Web/Controllers/AuthController.cs
2022-05-13 18:51:04 -06:00

175 lines
No EOL
4.3 KiB
C#

using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;
using RdtClient.Service.Services;
namespace RdtClient.Web.Controllers;
[Route("Api/Authentication")]
public class AuthController : Controller
{
private readonly Authentication _authentication;
private readonly Settings _settings;
public AuthController(Authentication authentication, Settings settings)
{
_authentication = authentication;
_settings = settings;
}
[AllowAnonymous]
[Route("IsLoggedIn")]
[HttpGet]
public async Task<ActionResult> IsLoggedIn()
{
if (User.Identity?.IsAuthenticated == false)
{
var user = await _authentication.GetUser();
if (user == null)
{
return StatusCode(402, "Setup required");
}
return Unauthorized();
}
return Ok();
}
[AllowAnonymous]
[Route("Create")]
[HttpPost]
public async Task<ActionResult> Create([FromBody] AuthControllerLoginRequest? request)
{
if (request == null)
{
return BadRequest();
}
var user = await _authentication.GetUser();
if (user != null)
{
return StatusCode(401);
}
if (String.IsNullOrEmpty(request.UserName) || String.IsNullOrEmpty(request.Password))
{
return BadRequest("Invalid UserName or Password");
}
var registerResult = await _authentication.Register(request.UserName, request.Password);
if (!registerResult.Succeeded)
{
return BadRequest(registerResult.Errors.First().Description);
}
await _authentication.Login(request.UserName, request.Password);
return Ok();
}
[AllowAnonymous]
[Route("SetupProvider")]
[HttpPost]
public async Task<ActionResult> SetupProvider([FromBody] AuthControllerSetupProviderRequest? request)
{
if (request == null)
{
return BadRequest();
}
if (!String.IsNullOrEmpty(Settings.Get.Provider.ApiKey))
{
return StatusCode(401);
}
await _settings.Update("Provider:Provider", request.Provider);
await _settings.Update("Provider:ApiKey", request.Token);
return Ok();
}
[AllowAnonymous]
[Route("Login")]
[HttpPost]
public async Task<ActionResult> Login([FromBody] AuthControllerLoginRequest? request)
{
if (request == null)
{
return BadRequest();
}
var user = await _authentication.GetUser();
if (user == null)
{
return StatusCode(402);
}
if (String.IsNullOrEmpty(request.UserName) || String.IsNullOrEmpty(request.Password))
{
return BadRequest("Invalid credentials");
}
var result = await _authentication.Login(request.UserName, request.Password);
if (!result.Succeeded)
{
return BadRequest("Invalid credentials");
}
return Ok();
}
[Route("Logout")]
[HttpPost]
public async Task<ActionResult> Logout()
{
await _authentication.Logout();
return Ok();
}
[Route("Update")]
[HttpPost]
public async Task<ActionResult> Update([FromBody] AuthControllerUpdateRequest? request)
{
if (request == null)
{
return BadRequest();
}
if (String.IsNullOrEmpty(request.UserName) || String.IsNullOrEmpty(request.Password))
{
return BadRequest("Invalid UserName or Password");
}
var updateResult = await _authentication.Update(request.UserName, request.Password);
if (!updateResult.Succeeded)
{
return BadRequest(updateResult.Errors.First().Description);
}
return Ok();
}
}
public class AuthControllerLoginRequest
{
public String? UserName { get; set; }
public String? Password { get; set; }
}
public class AuthControllerSetupProviderRequest
{
public Int32 Provider { get; set; }
public String? Token { get; set; }
}
public class AuthControllerUpdateRequest
{
public String? UserName { get; set; }
public String? Password { get; set; }
}