Esempio n. 1
0
        /// <summary>
        ///     This is to check user identity
        /// </summary>
        /// <param name="email"></param>
        /// <param name="password"></param>
        /// <returns></returns>
        /// <exception cref="ArgumentException"></exception>
        public TokenResponse GetIdentity(string email, string password)
        {
            Account account = AccountRepository.Get(x => x.Email == email).SingleOrDefault();

            if (account == null)
            {
                throw new ArgumentNullException($"Email not found {email}");
            }

            bool isValidPassword = passwordSalter.EqualsSequence(password, account.Hash);

            if (!isValidPassword)
            {
                throw new ArgumentException("Invalid password");
            }

            string nameId = account.AccountId.ToString();

            email = account.Email;
            string defaultRole = account.Role.ToString();

            IEnumerable <Claim> claims = new List <Claim>
            {
                new Claim(ClaimTypes.NameIdentifier, nameId),
                new Claim(ClaimsIdentity.DefaultRoleClaimType, defaultRole)
            };

            var claimsIdentity = new ClaimsIdentity(claims);

            var response = new TokenResponse(claimsIdentity);

            return(response);
        }
Esempio n. 2
0
        /// <summary>
        ///
        /// </summary>
        /// <param name="request"></param>
        /// <param name="cancellationToken"></param>
        /// <exception cref="ArgumentNullException">Account not found</exception>
        /// <exception cref="ArgumentException">Password not match</exception>
        /// <returns></returns>
        public override Task <TokenReply> HandleRequest(RequestObject <TokenRequest, TokenReply> request,
                                                        CancellationToken cancellationToken = default)
        {
            return(Task.Run(() =>
            {
                TokenRequest tokenRequest = request.Value;
                // check username and password
                var requestedAccount = Context
                                       .Accounts
                                       .Where(a => a.Email.Equals(tokenRequest.Email, StringComparison.InvariantCultureIgnoreCase))
                                       .Select(c => new { c.AccountId, c.Role, c.Hash })
                                       .SingleOrDefault();

                if (requestedAccount == null || !passwordSalter.EqualsSequence(tokenRequest.Password, requestedAccount.Hash))
                {
                    request.StatusCode = StatusCode.NotFound;
                    request.Detail = $"{nameof(tokenRequest.Password)} is not match";
                    return new TokenReply();
                }

                TokenResponse tokenResponce = new TokenResponse(requestedAccount.AccountId, requestedAccount.Role, jwtProvider);

                TokenReply tokenReply = new TokenReply()
                {
                    UserId = tokenResponce.UserId,
                    Token = tokenResponce.Token
                };

                return tokenReply;
            }));
        }
Esempio n. 3
0
        /// <summary>
        ///     This is to check user identity
        /// </summary>
        /// <param name="email"></param>
        /// <param name="password"></param>
        /// <returns></returns>
        /// <exception cref="ArgumentException"></exception>
        public Task <TokenResponse> GetIdentity(string email, string password)
        {
            // find account by email
            Account account = accountRepository
                              .GetWithInclude(
                x => x.Email.Equals(email) &&
                passwordSalter.EqualsSequence(password, x.Hash),
                u => u.User)
                              .SingleOrDefault();

            return(GetIdentity(account));
        }