public async Task <object> LoginAsync(LoginViewModel loginViewModel)
{
var result = await SignInManager.PasswordSignInAsync(loginViewModel.Email, loginViewModel.Password, loginViewModel.RememberMe, lockoutOnFailure : false);
if (result.Succeeded)
{
var identity = await GetClaimsIdentity(loginViewModel.Email);
if (identity == null)
{
throw new InternalServerErrorHttpException("Fehler beim Ausstellen des JWT.");
}
var jwt = await JwtTokens.GenerateJwt(identity, JwtFactory, loginViewModel.Email, JwtOptions, new JsonSerializerSettings { Formatting = Formatting.Indented });
return(jwt);
}
else
{
if (result.IsLockedOut)
{
throw new AccountLockedHttpException("Account wurde gesperrt, weil das Passwort zu oft falsch eingegeben wurde. Bitte beim Support melden.");
}
else
{
throw new InvalidEmailAndPasswordCombinationHttpException();
}
}
}
public async Task <IActionResult> Login(LoginViewModel model, string returnUrl = null)
{
ViewData["ReturnUrl"] = returnUrl;
if (ModelState.IsValid)
{
// This doesn't count login failures towards account lockout
// To enable password failures to trigger account lockout, set lockoutOnFailure: true
var result = await _signInManager.PasswordSignInAsync(model.Email, model.Password, model.RememberMe, lockoutOnFailure : false);
if (result.Succeeded)
{
_logger.LogInformation("User logged in.");
//return RedirectToLocal(returnUrl);
var identity = await GetClaimsIdentity(model.Email, model.Password);
if (identity == null)
{
ModelState.AddModelError(string.Empty, "Invalid login attempt.");
return(BadRequest());
}
var jwt = await JwtTokens.GenerateJwt(identity, _jwtFactory, model.Email, _jwtOptions, new JsonSerializerSettings { Formatting = Formatting.Indented });
ApplicationUser usr = await _userManager.FindByNameAsync(model.Email);
var jwtObj = JsonConvert.DeserializeObject <Jwt>(jwt);
usr.accessToken = jwtObj.auth_token;
await _userManager.UpdateAsync(usr);
return(RedirectToLocal(returnUrl));
}
if (result.RequiresTwoFactor)
{
return(RedirectToAction(nameof(LoginWith2fa), new { returnUrl, model.RememberMe }));
}
if (result.IsLockedOut)
{
_logger.LogWarning("User account locked out.");
return(RedirectToAction(nameof(Lockout)));
}
else
{
ModelState.AddModelError(string.Empty, "Invalid login attempt.");
return(View(model));
}
}
// If we got this far, something failed, redisplay form
return(View(model));
}
private static object CreateToken(ApplicationUser user) => new
{
JwtConstants.TokenType,
AccessToken = JwtTokens.GenerateToken(user.Id, user.UserName)
};
public LoginResponse(JwtTokens tokens)
{
this.AccessToken = tokens.GetAccessToken();
this.IdToken = tokens.GetIdToken();
}
