public UserDTO Authenticate(string username, string password) { var user = _userFinder.getByUsername(username); if (user == null) { return(null); } if (!HashHandle.CheckMatch(user.Password, password)) { return(null); } // authentication successful so generate jwt token var tokenHandler = new JwtSecurityTokenHandler(); var key = Encoding.ASCII.GetBytes(_authSettings.SecretKey); var tokenDescriptor = new SecurityTokenDescriptor { Subject = new ClaimsIdentity(new Claim[] { new Claim(ClaimTypes.Name, user.Id.ToString()) }), Expires = DateTime.UtcNow.AddDays(7), SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature) }; var token = tokenHandler.CreateToken(tokenDescriptor); var userDTO = _baseService.ConvertToDTO <User, UserDTO>(user); userDTO.Token = tokenHandler.WriteToken(token); userDTO.Password = null; return(userDTO); }
public PersonModule(IBaseModuleService baseModuleService, IPersonFinder personFinder, IUserFinder userFinder, IUserService userService) : base("person", baseModuleService, personFinder) { Post("/register", async ctx => { var userDTO = await ctx.Request.Bind <UserDTO>(); var person = new Person() { Email = userDTO.Username }; personFinder.Insert(person); var user = new User() { Username = userDTO.Username, Password = HashHandle.CalculateHash(userDTO.Password), UserTypeId = person.Id }; userFinder.Insert(user); userDTO = userService.Authenticate(userDTO.Username, userDTO.Password); await baseModuleService.RespondWithEntitiyDTO(ctx, userDTO); }); Post("/{id:int}/addItem", async ctx => { var person = this.GetById <Person>(ctx.GetRouteData().As <int>("id"), personFinder); var itemDTO = await ctx.Request.Bind <ItemDTO>(); var item = baseModuleService.ConvertToEntity <ItemDTO, Item>(itemDTO); item.Creation = DateTime.Now; item.ItemState = new ItemState() { State = State.New, Changed = DateTime.Now }; person.Items.Add(item); personFinder.Update(person); await baseModuleService.RespondWithEntitiyDTO <Item, ItemDTO>(ctx, item); }); }
public void Dispose() { HashHandle?.Dispose(); AlgorithmHandle?.Dispose(); }