Permalink
Cannot retrieve contributors at this time
Name already in use
A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
AngularASPNETCoreAuthentication/src/dotnetGigs/Controllers/AuthController.cs
Go to fileThis commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
86 lines (73 sloc)
2.91 KB
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| using Microsoft.AspNetCore.Mvc; | |
| using Microsoft.AspNetCore.Identity; | |
| using Newtonsoft.Json; | |
| using DotNetGigs.Models.Entities; | |
| using DotNetGigs.Models; | |
| using DotNetGigs.Auth; | |
| using Microsoft.Extensions.Options; | |
| using System.Threading.Tasks; | |
| using DotNetGigs.Helpers; | |
| using System.Security.Claims; | |
| using System.Linq; | |
| namespace DotNetGigs.Controllers | |
| { | |
| [Route("api/[controller]")] | |
| public class AuthController : Controller | |
| { | |
| private readonly UserManager<AppUser> _userManager; | |
| private readonly IJwtFactory _jwtFactory; | |
| private readonly JsonSerializerSettings _serializerSettings; | |
| private readonly JwtIssuerOptions _jwtOptions; | |
| public AuthController(UserManager<AppUser> userManager, IJwtFactory jwtFactory, IOptions<JwtIssuerOptions> jwtOptions) | |
| { | |
| _userManager = userManager; | |
| _jwtFactory = jwtFactory; | |
| _jwtOptions = jwtOptions.Value; | |
| _serializerSettings = new JsonSerializerSettings | |
| { | |
| Formatting = Formatting.Indented | |
| }; | |
| } | |
| // POST api/auth/login | |
| [HttpPost("login")] | |
| public async Task<IActionResult> Post([FromBody]CredentialsViewModel credentials) | |
| { | |
| if (!ModelState.IsValid) | |
| { | |
| return BadRequest(ModelState); | |
| } | |
| var identity = await GetClaimsIdentity(credentials.UserName, credentials.Password); | |
| if (identity == null) | |
| { | |
| return BadRequest(Errors.AddErrorToModelState("login_failure", "Invalid username or password.", ModelState)); | |
| } | |
| // Serialize and return the response | |
| var response = new | |
| { | |
| id=identity.Claims.Single(c=>c.Type=="id").Value, | |
| auth_token = await _jwtFactory.GenerateEncodedToken(credentials.UserName, identity), | |
| expires_in = (int)_jwtOptions.ValidFor.TotalSeconds | |
| }; | |
| var json = JsonConvert.SerializeObject(response, _serializerSettings); | |
| return new OkObjectResult(json); | |
| } | |
| private async Task<ClaimsIdentity> GetClaimsIdentity(string userName, string password) | |
| { | |
| if (!string.IsNullOrEmpty(userName) && !string.IsNullOrEmpty(password)) | |
| { | |
| // get the user to verifty | |
| var userToVerify = await _userManager.FindByNameAsync(userName); | |
| if (userToVerify != null) | |
| { | |
| // check the credentials | |
| if (await _userManager.CheckPasswordAsync(userToVerify, password)) | |
| { | |
| return await Task.FromResult(_jwtFactory.GenerateClaimsIdentity(userName,userToVerify.Id)); | |
| } | |
| } | |
| } | |
| // Credentials are invalid, or account doesn't exist | |
| return await Task.FromResult<ClaimsIdentity>(null); | |
| } | |
| } | |
| } |