diff options
Diffstat (limited to 'Timeline/Authentication')
| -rw-r--r-- | Timeline/Authentication/Attribute.cs | 21 | ||||
| -rw-r--r-- | Timeline/Authentication/AuthHandler.cs | 99 | ||||
| -rw-r--r-- | Timeline/Authentication/PrincipalExtensions.cs | 13 |
3 files changed, 0 insertions, 133 deletions
diff --git a/Timeline/Authentication/Attribute.cs b/Timeline/Authentication/Attribute.cs deleted file mode 100644 index 370b37e1..00000000 --- a/Timeline/Authentication/Attribute.cs +++ /dev/null @@ -1,21 +0,0 @@ -using Microsoft.AspNetCore.Authorization;
-using Timeline.Entities;
-
-namespace Timeline.Authentication
-{
- public class AdminAuthorizeAttribute : AuthorizeAttribute
- {
- public AdminAuthorizeAttribute()
- {
- Roles = UserRoles.Admin;
- }
- }
-
- public class UserAuthorizeAttribute : AuthorizeAttribute
- {
- public UserAuthorizeAttribute()
- {
- Roles = UserRoles.User;
- }
- }
-}
diff --git a/Timeline/Authentication/AuthHandler.cs b/Timeline/Authentication/AuthHandler.cs deleted file mode 100644 index 2b457eb1..00000000 --- a/Timeline/Authentication/AuthHandler.cs +++ /dev/null @@ -1,99 +0,0 @@ -using Microsoft.AspNetCore.Authentication;
-using Microsoft.Extensions.Logging;
-using Microsoft.Extensions.Options;
-using Microsoft.Net.Http.Headers;
-using System;
-using System.Linq;
-using System.Security.Claims;
-using System.Text.Encodings.Web;
-using System.Threading.Tasks;
-using Timeline.Models;
-using Timeline.Services;
-using static Timeline.Resources.Authentication.AuthHandler;
-
-namespace Timeline.Authentication
-{
- static class AuthConstants
- {
- public const string Scheme = "Bearer";
- public const string DisplayName = "My Jwt Auth Scheme";
- }
-
- public class AuthOptions : AuthenticationSchemeOptions
- {
- /// <summary>
- /// The query param key to search for token. If null then query params are not searched for token. Default to <c>"token"</c>.
- /// </summary>
- public string TokenQueryParamKey { get; set; } = "token";
- }
-
- public class AuthHandler : AuthenticationHandler<AuthOptions>
- {
- private readonly ILogger<AuthHandler> _logger;
- private readonly IUserService _userService;
-
- public AuthHandler(IOptionsMonitor<AuthOptions> options, ILoggerFactory logger, UrlEncoder encoder, ISystemClock clock, IUserService userService)
- : base(options, logger, encoder, clock)
- {
- _logger = logger.CreateLogger<AuthHandler>();
- _userService = userService;
- }
-
- // return null if no token is found
- private string? ExtractToken()
- {
- // check the authorization header
- string header = Request.Headers[HeaderNames.Authorization];
- if (!string.IsNullOrEmpty(header) && header.StartsWith("Bearer ", StringComparison.InvariantCultureIgnoreCase))
- {
- var token = header.Substring("Bearer ".Length).Trim();
- _logger.LogInformation(LogTokenFoundInHeader, token);
- return token;
- }
-
- // check the query params
- var paramQueryKey = Options.TokenQueryParamKey;
- if (!string.IsNullOrEmpty(paramQueryKey))
- {
- string token = Request.Query[paramQueryKey];
- if (!string.IsNullOrEmpty(token))
- {
- _logger.LogInformation(LogTokenFoundInQuery, paramQueryKey, token);
- return token;
- }
- }
-
- // not found anywhere then return null
- return null;
- }
-
- protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
- {
- var token = ExtractToken();
- if (string.IsNullOrEmpty(token))
- {
- _logger.LogInformation(LogTokenNotFound);
- return AuthenticateResult.NoResult();
- }
-
- try
- {
- var userInfo = await _userService.VerifyToken(token);
-
- var identity = new ClaimsIdentity(AuthConstants.Scheme);
- identity.AddClaim(new Claim(identity.NameClaimType, userInfo.Username, ClaimValueTypes.String));
- identity.AddClaims(UserRoleConvert.ToArray(userInfo.Administrator).Select(role => new Claim(identity.RoleClaimType, role, ClaimValueTypes.String)));
-
- var principal = new ClaimsPrincipal();
- principal.AddIdentity(identity);
-
- return AuthenticateResult.Success(new AuthenticationTicket(principal, AuthConstants.Scheme));
- }
- catch (Exception e) when (!(e is ArgumentException))
- {
- _logger.LogInformation(e, LogTokenValidationFail);
- return AuthenticateResult.Fail(e);
- }
- }
- }
-}
diff --git a/Timeline/Authentication/PrincipalExtensions.cs b/Timeline/Authentication/PrincipalExtensions.cs deleted file mode 100644 index 8d77ab62..00000000 --- a/Timeline/Authentication/PrincipalExtensions.cs +++ /dev/null @@ -1,13 +0,0 @@ -using System.Security.Principal;
-using Timeline.Entities;
-
-namespace Timeline.Authentication
-{
- internal static class PrincipalExtensions
- {
- internal static bool IsAdministrator(this IPrincipal principal)
- {
- return principal.IsInRole(UserRoles.Admin);
- }
- }
-}
|