public IActionResult Authenticate([FromBody] UnifiedUserEntity userDto) { var user = _userService.Authenticate(userDto.UserName, userDto.Password); if (user == null) { return(BadRequest(new { message = "Username or password is incorrect" })); } var tokenHandler = new JwtSecurityTokenHandler(); var key = Encoding.ASCII.GetBytes(_appSettings.Secret); var tokenDescriptor = new SecurityTokenDescriptor { Subject = new ClaimsIdentity(new Claim[] { new Claim(ClaimTypes.Name, user.UserId.ToString()) }), Expires = DateTime.UtcNow.AddDays(7), SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature) }; var token = tokenHandler.CreateToken(tokenDescriptor); var tokenString = tokenHandler.WriteToken(token); // return basic user info (without password) and token to store client side return(Ok(new { UserId = user.UserId, UserName = user.UserName, Email = user.Email, FirstName = user.FirstName, LastName = user.LastName, Token = tokenString })); }
public IActionResult Register([FromBody] UnifiedUserEntity userDto) { // map dto to entity var user = _mapper.Map <UnifiedUserDto>(userDto); try { // save _userService.Create(user, userDto.Password); return(Ok()); } catch (AppException ex) { // return error message if there was an exception return(BadRequest(new { message = ex.Message })); } }