luticate2
/
luticate2-api
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 19 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
103 Revīzijas
4 Atzari
Koks: 15136fd711
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no '15136fd711'
${ noResults }
luticate2-api/Luticate2.Auth/Business/LuUsersBusiness.cs

LuUsersBusiness.cs 6.0KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158 
  1. using System;

  2. using System.Security.Cryptography;

  3. using System.Text;

  4. using Luticate2.Auth.DataAccess;

  5. using Luticate2.Auth.Dbo.Users;

  6. using Luticate2.Auth.Interfaces.Tokens;

  7. using Luticate2.Auth.Interfaces.Users;

  8. using Luticate2.Utils.Business;

  9. using Luticate2.Utils.Dbo.Basic;

  10. using Luticate2.Utils.Dbo.PaginatedRequest;

  11. using Luticate2.Utils.Dbo.Result;

  12. using Luticate2.Utils.Interfaces;

  13. using Luticate2.Utils.Utils;

  14. using Microsoft.AspNetCore.Cryptography.KeyDerivation;

  15. 

  16. namespace Luticate2.Auth.Business

  17. {

  18.     public class LuUsersBusiness : LuCrudBusiness<LuUsersDataAccess, LuUsersAddFullDbo, LuUsersFullDbo, LuUsersEditFullDbo, string>, ILuUsersBusiness

  19.     {

  20.         private readonly ILuTokensBusiness _luTokensBusiness;

  21.         private readonly ILuLoggedUserAccessor _luLoggedUserAccessor;

  22. 

  23.         public LuUsersBusiness(LuUsersDataAccess dataAccess, IServiceProvider serviceProvider,

  24.             ILuTokensBusiness luTokensBusiness, ILuLoggedUserAccessor luLoggedUserAccessor) : base(dataAccess, serviceProvider)

  25.         {

  26.             _luTokensBusiness = luTokensBusiness;

  27.             _luLoggedUserAccessor = luLoggedUserAccessor;

  28.         }

  29. 

  30.         public string GenerateSalt()

  31.         {

  32.             var salt = new byte[128 / 8];

  33.             using (var rng = RandomNumberGenerator.Create())

  34.             {

  35.                 rng.GetBytes(salt);

  36.             }

  37.             return Convert.ToBase64String(salt);

  38.         }

  39. 

  40.         public string HashPassword(string password, string salt)

  41.         {

  42.             var hashed = Convert.ToBase64String(KeyDerivation.Pbkdf2(password, Encoding.ASCII.GetBytes(salt),

  43.                 KeyDerivationPrf.HMACSHA1, 10000, 256 / 8));

  44.             return hashed;

  45.         }

  46. 

  47.         public bool VerifyPasswordHash(string password, string hash, string salt)

  48.         {

  49.             var newHash = HashPassword(password, salt);

  50.             return newHash == hash;

  51.         }

  52. 

  53.         public LuResult<LuUsersFullDbo> FindByUsername(string username)

  54.         {

  55.             return DataAccess.FindByUsername(username);

  56.         }

  57. 

  58.         public LuResult<LuUsersFullDbo> Register(LuUsersAddDbo user)

  59.         {

  60.             var userRes = FindByUsername(user.Username);

  61.             if (userRes)

  62.             {

  63.                 return LuResult<LuUsersFullDbo>.Error(LuStatus.InputError,

  64.                     $"username: {user.Username}", "Username already exists");

  65.             }

  66.             if (userRes.Status != LuStatus.NotFound)

  67.             {

  68.                 return userRes;

  69.             }

  70.             var salt = GenerateSalt();

  71.             var password = HashPassword(user.Password, salt);

  72.             return this.AddDbo(new LuUsersAddFullDbo

  73.             {

  74.                 AuthenticationSourceId = Guid.Empty.ToDbo(),

  75.                 Data = null,

  76.                 Password = password,

  77.                 Salt = salt,

  78.                 Username = user.Username

  79.             });

  80.         }

  81. 

  82.         public LuResult<LuUsersFullDbo> Edit(string id, LuUsersEditDbo user)

  83.         {

  84.             throw new NotImplementedException();

  85.         }

  86. 

  87.         public LuResult<LuUsersLoginResultDbo> Login(string username, string password)

  88.         {

  89.             var userRes = FindByUsername(username);

  90.             if (userRes.Status == LuStatus.NotFound)

  91.             {

  92.                 return LuResult<LuUsersLoginResultDbo>.Error(LuStatus.LoginError,

  93.                     $"unknown username; username: {username}", "Invalid username or password");

  94.             }

  95.             if (!userRes)

  96.             {

  97.                 return userRes.To<LuUsersLoginResultDbo>();

  98.             }

  99.             if (userRes.Data.Password == null)

  100.             {

  101.                 return LuResult<LuUsersLoginResultDbo>.Error(LuStatus.LoginError,

  102.                     $"null password; username: {username}", "Invalid username or password");

  103.             }

  104.             if (!VerifyPasswordHash(password, userRes.Data.Password, userRes.Data.Salt))

  105.             {

  106.                 return LuResult<LuUsersLoginResultDbo>.Error(LuStatus.LoginError,

  107.                     $"invalid password; username: {username}", "Invalid username or password");

  108.             }

  109. 

  110.             var tokenRes = _luTokensBusiness.GenerateToken(userRes.Data.ToLite());

  111.             if (!tokenRes)

  112.             {

  113.                 return tokenRes.To<LuUsersLoginResultDbo>();

  114.             }

  115. 

  116.             return LuResult<LuUsersLoginResultDbo>.Ok(new LuUsersLoginResultDbo

  117.             {

  118.                 Token = tokenRes.Data,

  119.                 User = userRes.Data.ToLite()

  120.             });

  121.         }

  122. 

  123.         public LuResult<bool> Logout(string token)

  124.         {

  125.             if (token == null)

  126.             {

  127.                 return LuResult<bool>.Ok(true);

  128.             }

  129.             return _luTokensBusiness.UnRegisterToken(token).To(usersToken => true);

  130.         }

  131. 

  132.         public LuResult<LuUsersFullDbo> Me()

  133.         {

  134.             return LuResult<LuUsersFullDbo>.Ok(_luLoggedUserAccessor.GetLoggedUser());

  135.         }

  136. 

  137.         LuResult<T> ILuCrudInterface<LuUsersAddFullDbo, LuUsersFullDbo, LuUsersEditFullDbo, string>.DeleteSingleById<T>(string id, Func<LuUsersFullDbo, T> returnFunc)

  138.         {

  139.             var loggedUser = _luLoggedUserAccessor.GetLoggedUser();

  140.             if (id == Guid.Empty.ToDbo())

  141.             {

  142.                 return LuResult<T>.Error(LuStatus.InputError,

  143.                     $"loggedUser: {loggedUser.Username}", "Can not remove anonymous user");

  144.             }

  145.             if (id == loggedUser.Id)

  146.             {

  147.                 return LuResult<T>.Error(LuStatus.InputError,

  148.                     $"loggedUser: {loggedUser.Username}", "Can not remove yourself");

  149.             }

  150.             return base.DeleteSingleById(id, returnFunc);

  151.         }

  152. 

  153.         public LuResult<LuPaginatedDbo<LuUsersTokenDbo>> Sessions(LuPaginatedRequestDbo paginatedRequestDbo)

  154.         {

  155.             return _luTokensBusiness.GetTokensForUser(_luLoggedUserAccessor.GetLoggedUser().ToLite(), paginatedRequestDbo);

  156.         }

  157.     }

  158. }