C# (CSharp) ISetup.GenerateSessionKey Examples

Programming Language: C# (CSharp)

Class/Type: ISetup

Method/Function: GenerateSessionKey

Examples at hotexamples.com: 1

C# (CSharp) ISetup.GenerateSessionKey - 1 examples found. These are the top rated real world C# (CSharp) examples of ISetup.GenerateSessionKey extracted from open source projects. You can rate examples to help us improve the quality of examples.

Frequently Used Methods

Show Hide

Returns(30)

ReturnsAsync(15)

Callback(14)

ExecuteScript(8)

GetType(6)

ReturnsResponse(4)

Dispose(2)

Initialize(2)

AddController(1)

Run(1)

ReturnsTaskVerifiable(1)

ReturnsTask(1)

RemoveSessionKey(1)

PrivateForums(1)

GetShips(1)

Header(1)

AllowedMembers(1)

GetSetting(1)

GetConnection(1)

GenerateSessionKey(1)

DatabaseExists(1)

CreateUser(1)

CreateBlog(1)

CheckVersion(1)

ChangeDbOwner(1)

RunSetup(1)

Example #1

Show file

        public HttpResponseMessage Login(User user)
        {
            var response = new HttpResponseMessage();

            if (ModelState.IsValid)
            {
                if (setup.ValidateLogin(user))
                {
                    // --- stupid part starts here ---
                    var    context   = Request.Properties["MS_HttpContext"] as System.Web.HttpContextWrapper;
                    string useragent = context.Request.UserAgent;
                    string ip        = context.Request.UserHostAddress;

                    Random  rand    = new Random();
                    Session session = new Session()
                    {
                        User = user, Authorised = true, IP = ip, UserAgent = useragent
                    };

                    // here we'll generate some random color every time user logs in
                    // for the random value of the cookie
                    string color  = String.Format("{0:X6}", rand.Next(0x1000000));
                    string secret = setup.GenerateSessionKey(session, color);

                    response = new HttpResponseMessage(HttpStatusCode.OK);
                    response.Headers.Location = new Uri(Request.RequestUri.Authority + "/profile/index/" + user.Username);

                    if (secret != null)
                    {
                        System.Net.Http.Headers.CookieHeaderValue cookie = new System.Net.Http.Headers.CookieHeaderValue("filth.sid", secret);

                        // in case of 'remember me' ...
                        if (user.Remember)
                        {
                            cookie.Expires = DateTime.Now.AddMonths(12);
                        }

                        // some browsers (*IE) are sometimes strict about some exotic standards -
                        // 'localhost' can't be the name for cookie's domain
                        // more info at http://curl.haxx.se/rfc/cookie_spec.html
                        if (!Request.RequestUri.Host.Contains("localhost"))
                        {
                            cookie.Domain = Request.RequestUri.Host;
                        }

                        cookie.Path     = "/";
                        cookie.HttpOnly = true; // prevents JavaScript-based cookie theft

                        response.Headers.AddCookies(new System.Net.Http.Headers.CookieHeaderValue[] { cookie });
                    }
                    // --- stupid part ends here ---
                }
                else
                {
                    response = Request.CreateErrorResponse(HttpStatusCode.BadRequest, new Exception("Nope. Either you entered invalid combination or credentials doesn't exist."));
                }
            }
            else
            {
                response = Request.CreateErrorResponse(HttpStatusCode.BadRequest, ModelState);
            }

            return(response);
        }