public static PartnerAuthTokens ToPartnerAuthToken(this OauthGrant oauthGrant, string authId) { if (oauthGrant.IsNull()) { return(default(PartnerAuthTokens)); } return(new PartnerAuthTokens { auth_id = authId, oauth_code = oauthGrant.code, oauth_type = oauthGrant.type, oauth_expired_in = DateTime.Now.AddSeconds(280) }); }
public async Task <ActionResult> Index(string returnUrl = "") { Console.WriteLine("Login Controller- Index"); string resourceId = HttpContext.GetClaimValue(ClaimTypes.NameIdentifier); if (string.IsNullOrEmpty(resourceId)) { TempData["httpStatusCode"] = HttpStatusCode.Unauthorized; TempData["errorMessage"] = "You are not authenticated due to heroku auth token not accessed."; return(RedirectToAction("forbidden", "home")); } HerokuAuthToken authToken = default(HerokuAuthToken); OauthGrant oathGrant = default(OauthGrant); var partnerAuthToken = _partnerAuthTokenRepository.Find(resourceId); if (partnerAuthToken == null || (partnerAuthToken != null && (partnerAuthToken.expires_in == DateTime.MinValue || (partnerAuthToken.expires_in != DateTime.MinValue && partnerAuthToken.expires_in?.AddSeconds(-300) < DateTime.Now)))) { oathGrant = await HerokuApi.GetOauthGrant(resourceId).ConfigureAwait(false); if (oathGrant.IsNull()) { TempData["httpStatusCode"] = HttpStatusCode.Unauthorized; TempData["errorMessage"] = "You are not authenticated due to heroku auth token not accessed."; return(RedirectToAction("forbidden", "home")); } //update heroku auth token partnerAuthToken = oathGrant.ToPartnerAuthToken(resourceId); partnerAuthToken = _partnerAuthTokenRepository.Add(partnerAuthToken); //Get heroku auth token authToken = await HerokuApi.GetAddonAccessToken(partnerAuthToken.oauth_code, partnerAuthToken.oauth_type).ConfigureAwait(false); if (authToken.IsNull()) { Response.StatusCode = (int)HttpStatusCode.Unauthorized; TempData["httpStatusCode"] = HttpStatusCode.Unauthorized; TempData["errorMessage"] = "You are not authenticated due to heroku auth token not received."; return(RedirectToAction("forbidden", "home")); } //assign current resourceId as auth_id authToken.auth_id = resourceId; partnerAuthToken = authToken.ToPartnerAuthToken(); if (partnerAuthToken != null) { //update heroku auth token partnerAuthToken = _partnerAuthTokenRepository.Add(partnerAuthToken); } } if (partnerAuthToken == null) { Response.StatusCode = (int)HttpStatusCode.Unauthorized; TempData["httpStatusCode"] = HttpStatusCode.Unauthorized; TempData["errorMessage"] = "You are not authenticated due to heroku auth token not received."; return(RedirectToAction("forbidden", "home")); } else if (partnerAuthToken.Resource != null) { var claims = new List <Claim>(); claims.Add(new Claim(ClaimTypes.NameIdentifier, partnerAuthToken.Resource.uuid)); claims.Add(new Claim(ClaimTypes.Version, partnerAuthToken.Resource.plan.ToString())); claims.Add(new Claim(ClaimTypes.Country, partnerAuthToken.Resource.region)); if (!string.IsNullOrEmpty(partnerAuthToken.Resource.user_email)) { claims.Add(new Claim(Constants.HEROKU_USER_EMAIL, partnerAuthToken.Resource.user_email)); } if (!string.IsNullOrEmpty(partnerAuthToken.Resource.app_name)) { claims.Add(new Claim(Constants.HEROKU_MAIN_APP_NAME, partnerAuthToken.Resource.app_name)); } claims.Add(new Claim(Constants.HEROKU_ACCESS_TOKEN, partnerAuthToken.access_token)); claims.Add(new Claim(Constants.HEROKU_REFRESH_TOKEN, partnerAuthToken.refresh_token)); claims.Add(new Claim(Constants.HEROKU_AUTH_USERID, partnerAuthToken.user_id)); if (partnerAuthToken.expires_in.HasValue) { claims.Add(new Claim(Constants.HEROKU_TOKEN_EXPIREDIN, partnerAuthToken.expires_in.Value.ToString())); } HttpContext.AddUpdateClaims(claims); } //redirect to url if (string.IsNullOrEmpty(returnUrl) || (!string.IsNullOrEmpty(returnUrl) && (returnUrl.Contains("localhost")) || !Uri.IsWellFormedUriString(returnUrl, UriKind.RelativeOrAbsolute))) { return(RedirectToAction("index", "home")); } else { //Redirect to home page return(Redirect(HttpUtility.UrlDecode(returnUrl))); } }