Esempio n. 1
0
        public async Task <ActionResult <AuthDto> > Register([FromBody] RegisterDto model)
        {
            var user = new AppUser
            {
                UserName = model.Name,
                Email    = model.Email
            };
            var result = await _userManager.CreateAsync(user, model.Password);

            if (result.Succeeded)
            {
                await _signInManager.SignInAsync(user, false);

                AuthDto auth = new AuthDto
                {
                    Token  = GenerateJwtToken(model.Email, user),
                    UserId = user.Id
                };
                return(Ok(auth));
            }
            else
            {
                return(BadRequest());
            }
        }
Esempio n. 2
0
        public IActionResult Index(AuthDto dto, string returnUrl = null)
        {
            try
            {
                if (!ModelState.IsValid)
                {
                    TempData.Add(TempDataModelStateKey, ModelState);
                    return(RedirectToAction("Index"));
                }

                _usersDomain.Authenticate(dto);

                if (!string.IsNullOrEmpty(returnUrl))
                {
                    returnUrl = HttpUtility.UrlDecode(returnUrl);
                    if (Url.IsLocalUrl(returnUrl))
                    {
                        return(Redirect(returnUrl));
                    }
                }

                return(RedirectToAction("Index", "BlogAdmin"));
            }
            catch (ShakerDomainException ex)
            {
                TempData.Add(TempDataErrorMessageKey, ex.Message);
                return(RedirectToAction("Index"));
            }
            catch (Exception ex)
            {
                _logger.LogCritical(ex.Message);
                TempData.Add(TempDataErrorMessageKey, MessagesGetter.Get(ErrorPresentationMessages.DefaultErrorMessage));
                return(RedirectToAction("Index"));
            }
        }
        public ActionResult Register(UserForRegisterDto userForRegisterDto)
        {
            var userExists = _authService.UserExists(userForRegisterDto.Email);

            if (!userExists.Success)
            {
                return(BadRequest(userExists));
            }

            var registerResult = _authService.Register(userForRegisterDto, userForRegisterDto.Password);
            var tokenResult    = _authService.CreateAccessToken(registerResult.Data);

            if (!tokenResult.Success)
            {
                return(BadRequest(tokenResult));
            }
            var loginDto = new UserForLoginDto
            {
                Email    = userForRegisterDto.Email,
                Password = userForRegisterDto.Password
            };
            var     userToLogin = _authService.Login(loginDto).Data.Id;
            AuthDto authDto     = new AuthDto
            {
                UserId     = userToLogin,
                FirstName  = registerResult.Data.FirstName,
                LastName   = registerResult.Data.LastName,
                Token      = tokenResult.Data.Token,
                Expiration = tokenResult.Data.Expiration
            };
            var result = new SuccessDataResult <AuthDto>(authDto, registerResult.Message);

            return(Ok(result));
        }
Esempio n. 4
0
        public async Task <IActionResult> PostUser(/* in case [Apicontroller not using then we need to specify 'FromBody']*/
            AuthDto creds)
        {
            // first check the state in case we are not using [apicontroller]
            // if (!ModelState.IsValid)
            //    return BadRequest("Username and password is required field!");

            // we do not have explicitly check the validate state as [apicontroller] do things for us.

            // for the irrespective of the case used by user
            creds.UserName = creds.UserName.ToLower();

            // if user already exist or not
            if (await _repo.UserExist(creds.UserName))
            {
                return(BadRequest("User already exist with this username"));
            }

            // now we create new user
            var newUser = _mapper.Map <User>(creds);


            var userCreated = await _repo.Register(newUser, creds.Password);

            var userToReturn = _mapper.Map <UserDetailDto>(userCreated);


            // we'll return the created user with route
            // getuser in string is name of the method of GetUser in usercontroller [http({id}, name="GetUser")]
            // to pass id we use GetUser method
            // we have to return detaildto object so we first mapped user to detail and then pass it as 3rd arg
            return(CreatedAtRoute("GetUser", new { Controller = "User", id = userCreated.Id }, userToReturn));
        }
Esempio n. 5
0
        public SMOperationResult <AuthDto, SMResult> Login(LoginDto loginDto)
        {
            var userEntity = GetUser(loginDto.Username);

            if (userEntity == null)
            {
                return(null);
            }
            var result = SignInManager.CheckPasswordSignInAsync
                             (userEntity, loginDto.Password, false);
            var roles = (UserManager.GetRolesAsync(userEntity));

            var authDto = new AuthDto()
            {
                Id = userEntity.Id, Roles = roles.Result
                                            .Select(role => (Role)Enum.Parse(typeof(Role), role))
                                            .ToList(),
                Username = userEntity.UserName
            };


            if (result.Result.Succeeded)
            {
                return(new SMOperationResult <AuthDto, SMResult>(authDto, SMResult.Success));
            }

            return(null);
        }
Esempio n. 6
0
        public async Task <EntityResponse <UserDto> > Login(AuthDto authDto)
        {
            try
            {
                string query = string.Format("SELECT * FROM Users where Username={0} and Password={1}", authDto.Username, authDto.Password);
                var    data  = await DbOperation.RunQueryAsync <UserDto>(query);

                if (data != null)
                {
                    return(new EntityResponse <UserDto> {
                        ResponseCode = ResponseCodes.Successful, EntityData = data.FirstOrDefault()
                    });
                }
                return(new EntityResponse <UserDto>()
                {
                    ResponseCode = ResponseCodes.IncorrectLoginCredentials, ResponseErrorMessage = "HATA"
                });
            }
            catch (Exception ex)
            {
                return(new EntityResponse <UserDto>()
                {
                    ResponseCode = ResponseCodes.IncorrectLoginCredentials, ResponseErrorMessage = ex.Message
                });
            }
        }
Esempio n. 7
0
        public BaseResponse <string> Register(AuthDto authDto)
        {
            if (FirstOrDefault(u => u.Email.Equals(authDto.Email, StringComparison.InvariantCultureIgnoreCase)) != null)
            {
                throw new BadRequestException("Tài khoản đã tồn tại.");
            }

            var(salt, hash) = PasswordHelper.GenerateSecurePassword(authDto.Password);
            var user = new User
            {
                Email        = authDto.Email,
                PasswordHash = hash,
                PasswordSalt = salt,
                DisplayName  = authDto.Email,
            };
            var response = Create(user, out var isSaved);

            var role = _roleService.FirstOrDefault(r => r.Name.Equals(DefaultRole.User));

            if (role == null)
            {
                throw new InternalServerErrorException($"Không có role {DefaultRole.User} tồn tại");
            }

            _userRoleService.Create(new UserRole {
                UserId = response.Id, RoleId = role.Id
            }, out isSaved);

            if (!isSaved)
            {
                throw new InternalServerErrorException("Không thể đăng ký, vui lòng thử lại");
            }

            return(new BaseResponse <string>(HttpStatusCode.OK, data: "Đăng ký thành công"));
        }
Esempio n. 8
0
        public async Task <ResultDto <AuthenticatedDto> > LoginAdmin(AuthDto authDto)
        {
            var success = await _signInManager.PasswordSignInAsync(authDto.Email, authDto.Senha, false, false);

            if (!success.Succeeded)
            {
                return(ResultDto <AuthenticatedDto> .Validation("Login ou senha inválidos!"));
            }

            var applicationUser = await GetUserByEmail(authDto.Email);

            if (applicationUser.Role != "Administrador")
            {
                return(ResultDto <AuthenticatedDto> .Validation("Perfil não é Administrador!"));
            }

            var userDto = new UserDto
            {
                Id     = applicationUser.Id,
                Nome   = applicationUser.Nome,
                Email  = applicationUser.Email,
                Role   = applicationUser.Role,
                Claims = applicationUser.Claims
            };

            return(ResultDto <AuthenticatedDto> .Success(TokenWrite.WriteToken(userDto, _tokenConfigurations, _signingConfigurations)));
        }
Esempio n. 9
0
        public async Task <AuthResponseDto> GetToken([FromBody] AuthDto model)
        {
            var user = await _userService.AuthValidate(model);

            if (user == null)
            {
                Response.StatusCode = StatusCodes.Status401Unauthorized;
                return(null);
            }

            var now = DateTime.Now;

            var jwt = new JwtSecurityToken(
                issuer: AuthConfig.ISSUER,
                audience: AuthConfig.AUDIENCE,
                notBefore: now,
                claims: new List <Claim>
            {
                new Claim(ClaimTypes.NameIdentifier, user.Id.ToString()),
                new Claim(ClaimTypes.Name, user.Username),
                new Claim(ClaimTypes.Role, user.Role.ToString())
            },
                expires: now.Add(TimeSpan.FromSeconds(AuthConfig.LIFETIME)),
                signingCredentials: new SigningCredentials(AuthConfig.GetSymmetricSecurityKey(), SecurityAlgorithms.HmacSha256));
            var encodedJwt = new JwtSecurityTokenHandler().WriteToken(jwt);

            return(new AuthResponseDto
            {
                Token = encodedJwt
            });
        }
Esempio n. 10
0
        public async Task <IActionResult> Register([FromBody] AuthDto userDto)
        {
            if (!ModelState.IsValid)
            {
                return(BadRequest("Something went wrong..."));
            }

            // set password
            var  password_hash_key = _repo.CreatePasswordWithEncryption(userDto.Password);
            User user = new User
            {
                UserName           = userDto.Email,
                Email              = userDto.Email,
                NormalizedUserName = userDto.Email.ToUpper().Normalize(),
                NormalizedEmail    = userDto.Email.ToUpper().Normalize()
            };

            var isUserEmail = await _user.FindByEmailAsync(user.Email);

            if (isUserEmail != null)
            {
                return(BadRequest("User exist with this email address. kindly provide different email id."));
            }

            var isUserAdded = await _user.CreateAsync(user, userDto.Password);

            if (!isUserAdded.Succeeded)
            {
                return(BadRequest("Something went wrong..."));
            }

            var newUser = _mapper.Map <LogInUserDto>(user);

            return(Created("api/auth/" + user.Id, newUser));
        }
Esempio n. 11
0
        public async Task <AuthDto> AuthenticateAsync(AuthLoginDto loginInfo)
        {
            var user = await _unitOfWork.UserRepository.FirstOrDefaultAsync(x => x.Username == loginInfo.Username && x.Password == loginInfo.Password);

            // return null if user not found
            if (user == null)
            {
                return(null);
            }

            // authentication successful so generate jwt token
            var tokenHandler    = new JwtSecurityTokenHandler();
            var key             = Encoding.ASCII.GetBytes(_appSettings.TokenEncryptionPassword);
            var tokenDescriptor = new SecurityTokenDescriptor
            {
                Subject = new ClaimsIdentity(new Claim[]
                {
                    new Claim(ClaimTypes.Name, user.Id.ToString())
                }),
                Expires            = DateTime.UtcNow.AddDays(7),
                SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature)
            };
            var token = tokenHandler.CreateToken(tokenDescriptor);

            var result = new AuthDto();

            result.Token = tokenHandler.WriteToken(token);
            return(result);
        }
Esempio n. 12
0
        public void Login_Failed_By_Invalid_Password_Test()
        {
            Mock <IAuthService> mockService = GetService();

            mockService
            .Setup(service => service.Authenticate(It.IsAny <String>(), It.IsAny <String>()))
            .Returns((string email, string password) =>
            {
                var response     = new DataDependentResult <User>();
                response.Data    = null;
                response.IsValid = false;
                response.Error   = new ErrorDto().Append("Password", "incorrect password");
                return(response);
            });

            AuthController controller = new AuthController(mockService.Object);
            var            request    = new AuthDto()
            {
                Email = "*****@*****.**", Password = "******"
            };
            var actionResult = controller.Login(request) as UnauthorizedObjectResult;

            Assert.NotNull(actionResult);

            var errorDto = actionResult.Value as ErrorDto;

            Assert.NotNull(errorDto);
        }
Esempio n. 13
0
        public void Login_Success_Test()
        {
            Mock <IAuthService> mockService = GetService();

            mockService
            .Setup(service => service.Authenticate(It.IsAny <String>(), It.IsAny <String>()))
            .Returns((string email, string password) =>
            {
                var response  = new DataDependentResult <User>();
                response.Data = new User()
                {
                    Id = 1
                };
                response.IsValid = true;
                response.Error   = null;
                return(response);
            });

            AuthController controller = new AuthController(mockService.Object);
            var            request    = new AuthDto()
            {
                Email = "*****@*****.**", Password = "******"
            };
            var actionResult = controller.Login(request) as OkObjectResult;

            Assert.NotNull(actionResult);

            var tokenDto = actionResult.Value as TokenDto;

            Assert.NotNull(tokenDto);
            Assert.IsType <string>(tokenDto.Bearer);
        }
Esempio n. 14
0
        public async Task <User> SignIn(AuthDto authData)
        {
            using (var client = new HttpClient())
            {
                client.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));

                var json = JsonConvert.SerializeObject(authData);
                Debug.WriteLine(json);
                var response = await client.PostAsync(SignInUri, new StringContent(json, Encoding.UTF8, "application/json"));

                var jsonString = await response.Content.ReadAsStringAsync();

                Debug.WriteLine(jsonString);

                if (string.IsNullOrEmpty(jsonString))
                {
                    ServerAuthorizationError = new ErrorsDto <AuthErrorDto>
                    {
                        Message = "Нет ответа от сервера"
                    };
                    return(null);
                }

                if (response.IsSuccessStatusCode)
                {
                    var jsonData = JsonConvert.DeserializeObject <JsonResponseDto <UserDto> >(jsonString);
                    return(_mapper.Map <User>(jsonData.Data));
                }

                var jsonError = JsonConvert.DeserializeObject <ErrorsDto <AuthErrorDto> >(jsonString);
                ServerAuthorizationError = jsonError;
                return(null);
            }
        }
Esempio n. 15
0
        public async Task <ActionResult <dynamic> > Authenticate([FromBody] AuthDto model)
        {
            try
            {
                var user = userRepository.GetUserLogin(model.Login.ToLower());

                if (user == null)
                {
                    return(NotFound(new { message = "User not found with this login" }));
                }

                var isEqualPass = BCryptService.PasswordCompare(model.Password, user.Password);

                if (!isEqualPass)
                {
                    return(NotFound(new { message = "Password incorrect" }));
                }

                var token = TokenService.GenerateToken(user);
                user.Password = "";
                return(new
                {
                    user = user,
                    token = token
                });
            }
            catch (Exception ex)
            {
                return(CatchError(ex, "Authentication user"));
            }
        }
Esempio n. 16
0
        public async Task <ResultDto <AuthenticatedDto> > Login(AuthDto authDto)
        {
            var success = await _signInManager.PasswordSignInAsync(authDto.Email, authDto.Senha, false, false);

            if (!success.Succeeded)
            {
                return(ResultDto <AuthenticatedDto> .Validation("Login ou senha inválidos!"));
            }

            var applicationUser = await GetUserByEmail(authDto.Email);

            if (!applicationUser.Estabelecimentos.Any(x => x.EstabelecimentoId == authDto.EstabelecimentoId))
            {
                return(ResultDto <AuthenticatedDto> .Validation("Usuário não vinculado ao estabalecimento!"));
            }

            var userDto = new UserDto
            {
                Id                     = applicationUser.Id,
                Nome                   = applicationUser.Nome,
                Email                  = applicationUser.Email,
                Role                   = applicationUser.Role,
                Claims                 = applicationUser.Claims,
                EstabelecimentoId      = authDto.EstabelecimentoId,
                EstabelecimentoNomeUrl = applicationUser.Estabelecimentos.FirstOrDefault(x => x.EstabelecimentoId == authDto.EstabelecimentoId).Url,
                EstabelecimentoNome    = applicationUser.Estabelecimentos.FirstOrDefault(x => x.EstabelecimentoId == authDto.EstabelecimentoId).Nome
            };

            return(ResultDto <AuthenticatedDto> .Success(TokenWrite.WriteToken(userDto, _tokenConfigurations, _signingConfigurations)));
        }
Esempio n. 17
0
        public async Task <IHttpActionResult> LoginUsernamePassword([FromBody] AuthDto authDto)
        {
            if (DtoNotValid(authDto))
            {
                return(BadRequest("One of the parameters was missing"));
            }

            try
            {
                var token = await _authManager.LoginUser(authDto.Email, authDto.Password);

                return(Ok(token));
            }
            catch (ArgumentException ex)
            {
                return(BadRequest("Incorrect email address and / or password"));
            }
            catch (UserBlockedException ex)
            {
                return(BadRequest(ex.Message));
            }
            catch (Exception ex)
            {
                return(BadRequest("Internal server error"));
            }
        }
Esempio n. 18
0
        public IActionResult Auth([FromBody] AuthDto authDto)
        {
            var user = this.Context.Users.Where(c => c.Email == authDto.EMail && c.Password == authDto.Password).FirstOrDefault();

            if (user == null)
            {
                return(NotFound());
            }
            else
            {
                var climes = new List <Claim>();
                climes.Add(new Claim("UserID", user.Id.ToString()));
                var tokenDescriptor = new SecurityTokenDescriptor
                {
                    Expires            = DateTime.UtcNow.AddDays(99999),
                    SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(Encoding.UTF8.GetBytes("this is my custom Secret key for authnetication")), SecurityAlgorithms.HmacSha256Signature),
                    Subject            = new ClaimsIdentity(climes)
                };
                var tokenHandler  = new JwtSecurityTokenHandler();
                var securityToken = tokenHandler.CreateToken(tokenDescriptor);
                var token         = tokenHandler.WriteToken(securityToken);
                return(Ok(new AuthDto()
                {
                    Id = user.Id,
                    EMail = user.Email,
                    IsAdmin = user.IsAdmin,
                    Name = user.Name,
                    Token = token
                }));
            }
        }
        public ActionResult Login(UserForLoginDto userForLoginDto)
        {
            var userToLogin = _authService.Login(userForLoginDto);

            if (!userToLogin.Success)
            {
                return(BadRequest(userToLogin));
            }

            var tokenResult = _authService.CreateAccessToken(userToLogin.Data);

            if (!tokenResult.Success)
            {
                return(BadRequest(tokenResult));
            }
            AuthDto authDto = new AuthDto
            {
                UserId     = userToLogin.Data.Id,
                FirstName  = userToLogin.Data.FirstName,
                LastName   = userToLogin.Data.LastName,
                Token      = tokenResult.Data.Token,
                Expiration = tokenResult.Data.Expiration,
            };
            var result = new SuccessDataResult <AuthDto>(authDto, userToLogin.Message);

            return(Ok(result));
        }
Esempio n. 20
0
        public async Task <IActionResult> Login([FromBody] AuthDto authUser)
        {
            var user = await _usersRep.Authenticate(authUser.Username, authUser.Password);

            if (user == null)
            {
                return(Unauthorized());
            }

            var tokenHandler = new JwtSecurityTokenHandler();

            var secretKey         = new SymmetricSecurityKey(Encoding.ASCII.GetBytes(_appSettings.Secret));
            var signinCredentials = new SigningCredentials(secretKey, SecurityAlgorithms.HmacSha512Signature);

            var tokenDescriptor = new SecurityTokenDescriptor
            {
                Subject = new ClaimsIdentity(new Claim[]
                {
                    new Claim(ClaimTypes.Name, user.Id.ToString())
                }),
                Expires            = DateTime.UtcNow.AddDays(3),
                SigningCredentials = signinCredentials
            };

            var token       = tokenHandler.CreateToken(tokenDescriptor);
            var tokenString = tokenHandler.WriteToken(token);

            return(Ok(new AuthUserDto {
                Name = user.Name,
                Token = tokenString
            }));
        }
Esempio n. 21
0
        public async Task <ActionResult <UserDto> > Login(AuthDto loginDto)
        {
            if (String.IsNullOrEmpty(loginDto.Email))
            {
                return(BadRequest(new APIResponse(400, "email is not allowed to be empty")));
            }

            if (String.IsNullOrEmpty(loginDto.Password))
            {
                return(BadRequest(new APIResponse(400, "password is not allowed to be empty")));
            }

            var user = await _userManager.FindByEmailAsync(loginDto.Email);

            if (user == null)
            {
                return(Unauthorized(new APIResponse(401)));
            }

            var result = await _signInManager.CheckPasswordSignInAsync(user, loginDto.Password, false);

            if (!result.Succeeded)
            {
                return(Unauthorized(new APIResponse(401)));
            }

            return(new UserDto
            {
                Id = user.Id,
                Token = _tokenService.CreateToken(user),
                UserName = user.UserName
            });
        }
Esempio n. 22
0
        public IActionResult Authenticate([FromBody] AuthDto authDto)
        {
            var author = _authorService.Authenticate(authDto.Username, authDto.Password);

            if (author == null)
            {
                var errorMessage = "Username or password is incorrect.";
                return(Unauthorized(new ErrorResponseDto
                {
                    InternalErrorMessage = errorMessage,
                    DisplayErrorMessage = errorMessage
                }));
            }
            else if (!author.IsDeleted.HasValue || author.IsDeleted.Value)
            {
                var errorMessage = "This username has been permanently deactiviated.";
                return(Unauthorized(new ErrorResponseDto
                {
                    InternalErrorMessage = errorMessage,
                    DisplayErrorMessage = errorMessage
                }));
            }
            else if (!author.IsLocked.HasValue || author.IsLocked.Value)
            {
                var errorMessage = "This user has been locked.  Please contact system administrator.";
                return(Unauthorized(new ErrorResponseDto
                {
                    InternalErrorMessage = errorMessage,
                    DisplayErrorMessage = errorMessage
                }));
            }

            var tokenExpiration        = DateTime.Now.AddDays(7);
            var refreshTokenExpiration = DateTime.Now.AddDays(30);
            var tokenHandler           = new JwtSecurityTokenHandler();
            var keyBytes        = Encoding.ASCII.GetBytes(_authConfig.Secret);
            var securityKey     = new SymmetricSecurityKey(keyBytes);
            var tokenDescriptor = new SecurityTokenDescriptor
            {
                Issuer   = _authConfig.Issuer,
                Audience = _authConfig.Audience,
                Subject  = new ClaimsIdentity(new Claim[]
                {
                    new Claim(ClaimTypes.NameIdentifier, author.AuthorId.ToString()),
                    new Claim(ClaimTypes.Expiration, tokenExpiration.ToString())
                }),
                Expires            = tokenExpiration,
                SigningCredentials = new SigningCredentials(securityKey, SecurityAlgorithms.HmacSha256Signature),
            };
            var token       = tokenHandler.CreateToken(tokenDescriptor);
            var responseDto = _mapper.Map <AuthResponseDto>(author);

            responseDto.Token = tokenHandler.WriteToken(token);
            responseDto.TokenExpirationDate        = tokenExpiration;
            responseDto.RefreshTokenExpirationDate = refreshTokenExpiration;
            responseDto.RefreshToken = _authorService.EncodeRefreshToken(author.Username, refreshTokenExpiration);

            return(Ok(responseDto));
        }
Esempio n. 23
0
 public UserEntity Login(LoginEntity loginParam)
 {
     if (_AuthDal.Login(loginParam.Username, loginParam.Password).Result != null)
     {
         auth = _AuthDal.Login(loginParam.Username, loginParam.Password).Result;
         return(new UserEntity().UserDTOToUser(GetLoggedInUser()));
     }
     return(null);
 }
Esempio n. 24
0
        public BaseResponse <Passport> Login(AuthDto authDto)
        {
            var user = FindUser(authDto.UserName);

            CheckUserPassword(authDto.Password, user);
            var passport = CreatePassport(user);

            return(new SuccessResponse <Passport>(passport));
        }
Esempio n. 25
0
        public async Task <IActionResult> Login([FromBody] AuthDto logInUserDto)
        {
            if (!ModelState.IsValid)
            {
                return(BadRequest("Something went wrong..."));
            }

            var user = await _user.FindByNameAsync(logInUserDto.Email);

            if (user == null)
            {
                return(BadRequest("No such user exist, please signup!"));
            }

            var isPassword = await _user.CheckPasswordAsync(user, logInUserDto.Password);

            if (isPassword == false)
            {
                return(BadRequest("Incorrect UserName or Password."));
            }

            var isLogin = await _signInUser.PasswordSignInAsync(logInUserDto.Email, logInUserDto.Password, false, false);

            if (isLogin.Succeeded)
            {
                var claims = new[]
                {
                    new Claim(ClaimTypes.NameIdentifier, user.Id),
                    new Claim(ClaimTypes.Name, user.UserName)
                };

                var key = new SymmetricSecurityKey(
                    System.Text.Encoding.UTF8.GetBytes(_config.GetSection("AppSettings:Token").Value));

                var creds = new SigningCredentials(key, SecurityAlgorithms.HmacSha512Signature);

                var tokenDescriptor = new SecurityTokenDescriptor
                {
                    Subject            = new ClaimsIdentity(claims),
                    Expires            = DateTime.UtcNow.AddMinutes(2000),
                    SigningCredentials = creds
                };

                var tokenHandler = new JwtSecurityTokenHandler();

                var token = tokenHandler.CreateToken(tokenDescriptor);

                var returnUser = _mapper.Map <LogInUserDto>(user);
                return(Ok(new
                {
                    token = tokenHandler.WriteToken(token),
                    user = returnUser,
                    message = "Login Successfully"
                }));
            }
            return(BadRequest("Incorrect UserName or Password"));
        }
Esempio n. 26
0
        private dynamic Authenticate(AuthDto authDto)
        {
            if (Authentication.Components.Auth.Authenticate(authDto.User, authDto.Pass).IsValid())
            {
                return(HttpStatusCode.Accepted);
            }

            return(HttpStatusCode.Unauthorized);
        }
Esempio n. 27
0
        public async Task <User> GetUserByCredentials(AuthDto auth)
        {
            var user = await _context.Users.FirstOrDefaultAsync(u =>
                                                                u.Email == auth.Email &&
                                                                u.Password == auth.Password
                                                                );

            return(user);
        }
Esempio n. 28
0
        public async Task <UserDto> Login(AuthDto credentials)
        {
            var user = await _usersRepository.GetByUserName(credentials.Username);

            if (user == null || !await IsPaswordValid(credentials.Password, user.UserPassword))
            {
                return(null);
            }
            return(new UserDto(user));
        }
Esempio n. 29
0
 private bool DtoNotValid(AuthDto authDto)
 {
     if (authDto == null ||
         string.IsNullOrWhiteSpace(authDto.Email) ||
         string.IsNullOrWhiteSpace(authDto.Password))
     {
         return(true);
     }
     return(false);
 }
Esempio n. 30
0
        public ActionResult Post(AuthDto dto)
        {
            var user = _auth.Execute(dto);

            var stringObjekat = JsonConvert.SerializeObject(user);

            var encrypted = _enc.EncryptString(stringObjekat);

            return(Ok(new { token = encrypted }));
        }