/
RecaptchaService.cs
131 lines (110 loc) · 4.64 KB
/
RecaptchaService.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
#region License
//Copyright(c) Paul Biccherai
//Licensed under the MIT license. See LICENSE file in the project root for full license information.
#endregion
using Microsoft.Extensions.Options;
using Newtonsoft.Json;
using Newtonsoft.Json.Linq;
using System.Collections.Generic;
using System.Net.Http;
using System.Threading.Tasks;
using System;
namespace PaulMiami.AspNetCore.Mvc.Recaptcha
{
public class RecaptchaService : IRecaptchaValidationService
{
private RecaptchaOptions _options;
private HttpClient _backChannel;
private RecaptchaControlSettings _controlSettings;
private string _validationMessage;
public RecaptchaService(IOptions<RecaptchaOptions> options)
{
options.CheckArgumentNull(nameof(options));
_options = options.Value;
_options.ResponseValidationEndpoint.CheckMandatoryOption(nameof(_options.ResponseValidationEndpoint));
_options.JavaScriptUrl.CheckMandatoryOption(nameof(_options.JavaScriptUrl));
_options.SiteKey.CheckMandatoryOption(nameof(_options.SiteKey));
_options.SecretKey.CheckMandatoryOption(nameof(_options.SecretKey));
_controlSettings = _options.ControlSettings ?? new RecaptchaControlSettings();
_validationMessage = _options.ValidationMessage ?? Resources.Default_ValidationMessage;
_backChannel = new HttpClient(_options.BackchannelHttpHandler ?? new HttpClientHandler());
_backChannel.Timeout = _options.BackchannelTimeout;
}
public string SiteKey
{
get
{
return _options.SiteKey;
}
}
public string JavaScriptUrl
{
get
{
return _options.JavaScriptUrl;
}
}
public string ValidationMessage
{
get
{
return _validationMessage;
}
}
public RecaptchaControlSettings ControlSettings
{
get
{
return _controlSettings;
}
}
public async Task ValidateResponseAsync(string response, string remoteIp)
{
var request = new HttpRequestMessage(HttpMethod.Post, RecaptchaDefaults.ResponseValidationEndpoint);
var paramaters = new Dictionary<string, string>();
paramaters["secret"] = _options.SecretKey;
paramaters["response"] = response;
paramaters["remoteip"] = remoteIp;
request.Content = new FormUrlEncodedContent(paramaters);
var resp = await _backChannel.SendAsync(request);
resp.EnsureSuccessStatusCode();
var responseText = await resp.Content.ReadAsStringAsync();
var validationResponse = await Task.Factory.StartNew(() => JsonConvert.DeserializeObject<RecaptchaValidationResponse>(responseText));
if (!validationResponse.Success)
throw new RecaptchaValidationException(GetErrrorMessage(validationResponse));
}
private string GetErrrorMessage(RecaptchaValidationResponse validationResponse)
{
var errorList = new List<string>();
if (validationResponse.ErrorCodes != null)
{
foreach (var error in validationResponse.ErrorCodes)
{
switch (error)
{
case "missing-input-secret":
errorList.Add(Resources.ValidateError_MissingInputSecret);
break;
case "invalid-input-secret":
errorList.Add(Resources.ValidateError_InvalidInputSecret);
break;
case "missing-input-response":
errorList.Add(Resources.ValidateError_MissingInputResponse);
break;
case "invalid-input-response":
errorList.Add(Resources.ValidateError_InvalidInputResponse);
break;
default:
errorList.Add(string.Format(Resources.ValidateError_Unknown, error));
break;
}
}
}
else
{
return Resources.ValidateError_UnspecifiedRemoteServerError;
}
return string.Join(Environment.NewLine, errorList);
}
}
}