public async Task <ClientWalletList> GetWalletsByClient(JetClientIdentity clientId)
{
_logger.LogInformation("Request wallets for Broker/Brand/Client: {brokerId}/{clientId}",
clientId.BrokerId, clientId.ClientId);
clientId.BrokerId.AddToActivityAsTag("brokerId");
clientId.ClientId.AddToActivityAsTag("clientId");
_logger.LogInformation("Request to get wallets. clientId: {clientText}", JsonSerializer.Serialize(clientId));
using var activity = MyTelemetry.StartActivity($"Use DB context {DatabaseContext.Schema}")?.AddTag("db-schema", DatabaseContext.Schema);
await using var ctx = new DatabaseContext(_dbContextOptionsBuilder.Options);
var list = await ctx.ClientWallet.Where(e => e.BrokerId == clientId.BrokerId && e.ClientId == clientId.ClientId)
.ToListAsync();
if (!list.Any())
{
using var _ = MyTelemetry.StartActivity($"Create a new wallet");
var wallet = new ClientWallet()
{
IsDefault = true,
IsInternal = false,
EnableEarnProgram = true,
Name = "spot",
WalletId = GenerateDefaultWalletId(clientId.ClientId),
CreatedAt = DateTime.UtcNow,
BaseAsset = Program.Settings.BaseAssetSymbol,
EnableUseTestNet = Program.Settings.EnableUseTestNetByDefault
};
wallet.WalletId.AddToActivityAsTag("walletId");
var entity = new ClientWalletEntity(clientId.BrokerId, clientId.ClientId, wallet);
await ctx.UpsetAsync(new [] { entity });
list.Add(entity);
_logger.LogInformation("Created default wallet. Wallet: {walletJson}", JsonSerializer.Serialize(entity));
}
foreach (var clientWalletEntity in list.Where(e => string.IsNullOrWhiteSpace(e.BaseAsset)))
{
clientWalletEntity.BaseAsset = Program.Settings.BaseAssetSymbol;
}
await UpdateCache(clientId.ClientId, clientId.BrokerId, list);
return(new ClientWalletList()
{
Wallets = list.Select(e => new ClientWallet()
{
IsDefault = e.IsDefault, Name = e.Name,
WalletId = e.WalletId, CreatedAt = e.CreatedAt, BaseAsset = e.BaseAsset,
EnableUseTestNet = e.EnableUseTestNet, IsInternal = e.IsInternal, EnableEarnProgram = e.EnableEarnProgram
}).ToList()
});
}
public async Task <ClientWalletList> GetWalletsByClient(JetClientIdentity clientId)
{
var entity = _reader.Get(ClientWalletNoSqlEntity.GeneratePartitionKey(clientId.BrokerId),
ClientWalletNoSqlEntity.GenerateRowKey(clientId.ClientId));
if (entity != null)
{
return new ClientWalletList()
{
Wallets = entity.Wallets
}
}
;
var wallets = await _grpcService.GetWalletsByClient(clientId);
return(wallets);
}
public async Task <AuthorizationResponse> AuthorizationAsync(AuthorizationRequest request)
{
using var activity = MyTelemetry.StartActivity("Authorization base on session token");
if (string.IsNullOrEmpty(request.Token) ||
string.IsNullOrEmpty(request.BrandId) ||
string.IsNullOrEmpty(request.BrokerId))
{
return(new AuthorizationResponse()
{
Result = false
});
}
var(result, baseToken) = TokensManager.ParseBase64Token <JetWalletToken>(request.Token, AuthConst.GetSessionEncodingKey(), DateTime.UtcNow);
if (result != TokenParseResult.Ok)
{
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
if (!string.IsNullOrEmpty(baseToken.SessionRootId))
{
_logger.LogWarning("Cannot Authorization session base on token with existing RootSession: {rootIdText}", baseToken.SessionRootId);
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
var token = new JetWalletToken()
{
Id = baseToken.Id,
Expires = DateTime.UtcNow.AddMinutes(_settings.SessionLifeTimeMinutes),
SessionRootId = Guid.NewGuid().ToString("N"),
SessionId = Guid.NewGuid().ToString("N"),
BrandId = request.BrandId,
BrokerId = request.BrokerId
};
token.Id.AddToActivityAsTag("clientId");
token.BrokerId.AddToActivityAsTag("brokerId");
token.BrandId.AddToActivityAsTag("brandId");
token.SessionRootId.AddToActivityAsTag("sessionRootId");
var clientIdentity = new JetClientIdentity(request.BrokerId, request.BrandId, baseToken.Id);
var response = await _clientRegistrationService.GetOrRegisterClientAsync(clientIdentity);
if (response.Result != ClientRegistrationResponse.RegistrationResult.Ok)
{
_logger.LogError("Cannot register client. Client already register with another brand. BrokerId/BrandId/ClientId: {brokerId}/{brandId}/{clientId}",
clientIdentity.BrokerId, clientIdentity.BrandId, clientIdentity.ClientId);
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
ClientWallet wallet = null;
var wallets = await _clientWalletService.GetWalletsByClient(clientIdentity);
if (string.IsNullOrEmpty(request.WalletId))
{
wallet = wallets?.Wallets?.FirstOrDefault(w => w.IsDefault) ?? wallets?.Wallets?.FirstOrDefault();
}
else
{
wallet = wallets?.Wallets?.FirstOrDefault(w => w.WalletId == request.WalletId);
}
if (wallet == null)
{
request.WalletId.AddToActivityAsTag("walletId");
_logger.LogWarning("Cannot Authorization session, wallet do not found. WalletId {walletId}. ClientId: {clientId}", request.WalletId, token.Id);
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
token.WalletId = wallet.WalletId;
token.WalletId.AddToActivityAsTag("walletId");
var session = token.IssueTokenAsBase64String(AuthConst.GetSessionEncodingKey());
var dueData = DateTime.UtcNow.AddHours(_settings.RootSessionLifeTimeHours);
var publicKey = MyRsa.ReadPublicKeyFromPem(request.PublicKeyPem);
var entity = SpotSessionNoSql.Create(request.BrokerId, request.BrandId, baseToken.Id, dueData, publicKey, token.SessionRootId);
await _writer.InsertOrReplaceAsync(entity);
await _sessionAuditService.NewSessionAudit(baseToken, token, request.UserAgent, request.Ip);
_logger.LogInformation("Session Authorization is success. RootSessionId: {rootIdText}. ClientId:{clientId}", token.SessionRootId, token.ClientId());
return(new AuthorizationResponse()
{
Result = true,
Token = session
});
}
public async Task <AuthorizationResponse> RefreshSessionAsync(RefreshSessionRequest request)
{
using var activity = MyTelemetry.StartActivity("Refresh Session");
if (string.IsNullOrEmpty(request.Token) || string.IsNullOrEmpty(request.SignatureBase64))
{
activity.AddTag("message", "bad request");
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
if (DateTime.UtcNow < request.RequestTimestamp || request.RequestTimestamp < DateTime.UtcNow.AddSeconds(-_settings.RequestTimeLifeSec))
{
activity.AddTag("message", "request expired");
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
var(result, token) = TokensManager.ParseBase64Token <JetWalletToken>(request.Token, AuthConst.GetSessionEncodingKey(), DateTime.UtcNow);
if (result != TokenParseResult.Ok && result != TokenParseResult.Expired)
{
activity.AddTag("message", "wrong token");
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
token.Id.AddToActivityAsTag("clientId");
token.BrokerId.AddToActivityAsTag("brokerId");
token.BrandId.AddToActivityAsTag("brandId");
token.WalletId.AddToActivityAsTag("walletId");
token.SessionRootId.AddToActivityAsTag("sessionRootId");
var entity = await _writer.GetAsync(SpotSessionNoSql.GeneratePartitionKey(token.ClientId()), SpotSessionNoSql.GenerateRowKey(token.SessionRootId));
if (entity == null)
{
activity.AddTag("message", "root session do not exist");
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
if (DateTime.UtcNow >= entity.DiedDateTime)
{
activity.AddTag("message", "root session is died");
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
if (DateTime.UtcNow <= entity.CreateDateTime.AddSeconds(_settings.TimeoutToRefreshNewSessionInSec))
{
activity.AddTag("message", "the session is very young, for renewal");
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
var signContent = $"{request.Token}_{request.RequestTimestamp:yyyy-MM-ddTHH:mm:ss}_{request.NewWalletId}";
var verifySignature = MyRsa.ValidateSignature(signContent, request.SignatureBase64, entity.PublicKeyBase64);
if (!verifySignature)
{
activity.AddTag("message", "wrong signature");
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
var walletId = token.WalletId;
if (!string.IsNullOrEmpty(request.NewWalletId))
{
var clientIdentity = new JetClientIdentity(token.BrokerId, token.BrandId, token.Id);
var wallets = await _clientWalletService.GetWalletsByClient(clientIdentity);
var wallet = wallets?.Wallets?.FirstOrDefault(w => w.WalletId == request.NewWalletId);
if (wallet == null)
{
request.NewWalletId.AddToActivityAsTag("walletId");
_logger.LogWarning("Cannot Refresh session, NewWallet do not found. WalletId {walletId}. ClientId: {clientId}", request.NewWalletId, token.Id);
activity.SetStatus(Status.Error);
return(new AuthorizationResponse()
{
Result = false
});
}
walletId = wallet.WalletId;
_logger.LogInformation("Client update session to new walletId. SessionRootId: {sessionRootId}; ClientId: {clientId}; WalletId: {walletId}",
token.SessionRootId, token.Id, walletId);
}
walletId.AddToActivityAsTag("walletId");
var newToken = new JetWalletToken()
{
Id = token.Id,
Expires = DateTime.UtcNow.AddMinutes(_settings.SessionLifeTimeMinutes),
SessionRootId = token.SessionRootId,
SessionId = Guid.NewGuid().ToString("N"),
BrandId = token.BrandId,
BrokerId = token.BrokerId,
WalletId = walletId
};
await _sessionAuditService.RefreshSessionAudit(token, newToken, request.UserAgent, request.Ip);
_logger.LogInformation("Refresh session is success. SessionRootId: {sessionRootId}; SessionId: {sessionId}; PrevSessionId: {prevSessionId}; ClientId: {clientId}; WalletId: {walletId}",
newToken.SessionRootId, newToken.SessionId, token.SessionId, newToken.ClientId(), newToken.WalletId);
return(new AuthorizationResponse()
{
Token = newToken.IssueTokenAsBase64String(AuthConst.GetSessionEncodingKey()),
Result = true
});
}
