robin.thoni
/
nuget-3ie
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
93 коммитов
5 Ветки
Дерево: 77f3d10a7a
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из '77f3d10a7a'
${ noResults }
nuget-3ie/Authentication/Business/JWT/TokenValidationHandler.cs

TokenValidationHandler.cs 4.1KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104 
  1. using System;

  2. using System.Configuration;

  3. using System.IdentityModel.Tokens;

  4. using System.Linq;

  5. using System.Net;

  6. using System.Net.Http;

  7. using System.Security.Claims;

  8. using System.ServiceModel.Security.Tokens;

  9. using System.Threading;

  10. using System.Threading.Tasks;

  11. using iiie.Authentication.DBO;

  12. using iiie.Logs.DataAccess;

  13. using iiie.Logs.DBO;

  14. using Newtonsoft.Json;

  15. 

  16. namespace iiie.Authentication.Business.JWT

  17. {

  18.     /// <summary>

  19.     /// Handler for token authentication

  20.     /// </summary>

  21.     public abstract class TokenValidationHandler

  22.          : DelegatingHandler

  23.     {

  24.         /// <summary>

  25.         /// Gets the token from the HTTP AUthorization header

  26.         /// </summary>

  27.         /// <param name="request">The HTTP request</param>

  28.         /// <param name="token">The variable to store the token</param>

  29.         /// <returns>True if the token has been found, false otherwise</returns>

  30.         private static bool TryRetrieveToken(HttpRequestMessage request, out string token)

  31.         {

  32.             token = null;

  33.             var auth = request.Headers.Authorization;

  34.             if (auth == null || auth.Scheme != "Bearer")

  35.                 return false;

  36.             token = auth.Parameter;

  37.             return true;

  38.         }

  39. 

  40.         /// <summary>

  41.         /// Contructs a user dbo from the specified username and salt

  42.         /// </summary>

  43.         /// <param name="username">The username of the verified token</param>

  44.         /// <param name="salt">The salt in the token</param>

  45.         /// <returns>The user dbo, or null if user is not valid</returns>

  46.         protected abstract BasicUserDbo GetUserDbo(string username, string salt);

  47. 

  48.         /// <summary>

  49.         /// Attempts to verify user token

  50.         /// </summary>

  51.         /// <param name="request">The HTTP request</param>

  52.         /// <param name="cancellationToken">Token used for cancelation</param>

  53.         /// <returns>The HTTP response</returns>

  54.         protected override Task<HttpResponseMessage> SendAsync(HttpRequestMessage request, CancellationToken cancellationToken)

  55.         {

  56.             OpResult<bool> error;

  57.             string token;

  58. 

  59.             if (!TryRetrieveToken(request, out token))

  60.             {

  61.                 return base.SendAsync(request, cancellationToken);

  62.             }

  63. 

  64.             try

  65.             {

  66.                 var claim = TokenManager.ParseToken(token);

  67.                 Thread.CurrentPrincipal = claim;

  68. 

  69.                 var name = ((ClaimsIdentity)claim.Identity).Claims.FirstOrDefault(x => x.Type == ClaimTypes.Name);

  70.                 var salt = ((ClaimsIdentity)claim.Identity).Claims.FirstOrDefault(x => x.Type == ClaimTypes.Authentication);

  71.                 var data = ((ClaimsIdentity)claim.Identity).Claims.FirstOrDefault(x => x.Type == ClaimTypes.UserData);

  72. 

  73.                 if (name == null || salt == null)

  74.                 {

  75.                     error = OpResult<bool>.Error(ResultStatus.LoginError, string.Format("Incomplete token; username is present: {0}; salt is present {1}", name != null, salt != null), "Incomplete token").Log();

  76.                 }

  77.                 else

  78.                 {

  79.                     var user = GetUserDbo(name.Value, salt.Value);

  80.                     if (user == null)

  81.                     {

  82.                         error = OpResult<bool>.Error(ResultStatus.LoginError,

  83.                             string.Format("Username {0} not found", name.Value), "").Log();

  84.                     }

  85.                     else

  86.                     {

  87.                         if (data != null)

  88.                         {

  89.                             user.TokenData = JsonConvert.DeserializeObject(data.Value);

  90.                         }

  91.                         UserStorage.BasicUserDbo = user;

  92.                         return base.SendAsync(request, cancellationToken);

  93.                     }

  94.                 }

  95.             }

  96.             catch (Exception e)

  97.             {

  98.                 error = OpResult<bool>.Error(ResultStatus.LoginError, e, "Failed to validate token").Log();

  99.             }

  100.             var resp = request.CreateErrorResponse(HttpStatusCode.Unauthorized, error.PublicDetails);

  101.             return Task<HttpResponseMessage>.Factory.StartNew(() => resp, cancellationToken);

  102.         }

  103.     }

  104. }