public async Task <IActionResult> Login([FromBody] UserForLoginDto userForLoginDto) { var userFromRepo = await AuthUow.Login(userForLoginDto.Username.ToLower(), userForLoginDto.Password); if (userFromRepo == null) { return(Unauthorized()); } // generate token var tokenHandler = new JwtSecurityTokenHandler(); var key = Encoding.ASCII.GetBytes(appSettingsConfig.Token); var tokenDescriptor = new SecurityTokenDescriptor { Subject = new ClaimsIdentity(new Claim[] { new Claim(ClaimTypes.NameIdentifier, userFromRepo.UserId.ToString()), new Claim(ClaimTypes.Name, userFromRepo.UserName), AddClaim(userFromRepo.UserRole) }), Expires = DateTime.Now.AddDays(1), SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha512Signature) }; var token = tokenHandler.CreateToken(tokenDescriptor); var tokenString = tokenHandler.WriteToken(token); return(Ok(new { tokenString })); }
public async Task <IActionResult> Register([FromBody] UserForRegisterDto userForRegisterDto) { try { userForRegisterDto.Username = userForRegisterDto.Username.ToLower(); if (await AuthUow.UserExists(userForRegisterDto.Username)) { ModelState.AddModelError("Username", "Username already exists"); } // validate request if (!ModelState.IsValid) { return(BadRequest(ModelState)); } var userToCreate = new User { UserName = userForRegisterDto.Username, Email = userForRegisterDto.Email, FirstName = userForRegisterDto.FirstName, LastName = userForRegisterDto.LastName }; var createUser = await AuthUow.Register(userToCreate, userForRegisterDto.Password); return(StatusCode(201)); } catch (Exception) { throw; } }