Exemplo n.º 1
0
        private async Task <IActionResult> HandleImplicitGrantAsync(AuthorizationRequestModel model)
        {
            var command = new ImplicitGrantCommand
            {
                ClientId    = model.ClientId,
                ScopeNames  = model.Scope.Split(' '),
                RedirectUri = model.RedirectUri
            };

            if (User.Identity.IsAuthenticated)
            {
                command.UserName = User.Identity.Name;
            }

            var result = await _sagaBus.InvokeAsync <ImplicitGrantCommand, OAuth20Result>(command);

            var context = _dataProtector.Protect(result.SagaId.ToString());

            switch (result.State)
            {
            case OAuth20State.RequireSignIn:
                return(View("SignIn", new OAuthSignInModel {
                    ProtectedOAuthContext = context
                }));

            case OAuth20State.RequirePermissionGrant:
                return(PermissionGrantView(result));

            case OAuth20State.Finished:
                return(ImplictRedirect(result));

            default:
                return(BadRequest());
            }
        }
Exemplo n.º 2
0
        public async Task <IActionResult> Post([FromBody] ClientCreationDto dto)
        {
            var cmd = new CreateClientCommand {
                DisplayName = dto.DisplayName, RedirectUri = dto.RedirectUri
            };
            var result = await _sagaBus.InvokeAsync <CreateClientCommand, ClientCreationResult>(cmd);

            if (result.Succeed)
            {
                var url = Url.Action(nameof(GetById), new { id = result.Id });
                return(Created(url, null));
            }
            return(StatusCode(412, result.Message));
        }
Exemplo n.º 3
0
        public async Task <IActionResult> Post([FromBody] UserCreationDto dto)
        {
            var cmd = new CreateUserCommand {
                UserName = dto.UserName, Password = dto.Password
            };
            var result = await _sagaBus.InvokeAsync <CreateUserCommand, UserCreationResult>(cmd);

            if (result.Succeed)
            {
                return(Created(Url.Action(nameof(GetById), new { id = result.UserId }), null));
            }
            // currently, the only reason for failure is that a user of the same username exists.
            return(StatusCode(412, result.Message));
        }
Exemplo n.º 4
0
        public async Task <IActionResult> Post([FromBody] ScopeCreationDto dto)
        {
            var cmd = new CreateScopeCommand
            {
                ClaimTypes  = dto.ClaimTypes,
                Description = dto.Description,
                DisplayName = dto.DisplayName,
                ScopeName   = dto.ScopeName
            };

            var result = await _sagaBus.InvokeAsync <CreateScopeCommand, ScopeCreationResult>(cmd);

            if (result.Succeed)
            {
                return(Created(Url.Action(nameof(GetById), new { id = result.Id }), null));
            }
            return(StatusCode(412, result.Message));
        }
Exemplo n.º 5
0
        public async Task <IActionResult> SignIn([FromForm] SignInViewModel model)
        {
            var command = new PasswordAuthenticateCommand
            {
                UserName = model.UserName,
                Password = model.Password
            };
            var authResult = await _sagaBus.InvokeAsync <PasswordAuthenticateCommand, AuthenticationResult>(command);

            if (!authResult.IsCredentialVaild)
            {
                ModelState.AddModelError(nameof(SignInViewModel.UserName), "Invaild user name");
                ModelState.AddModelError(nameof(SignInViewModel.Password), "Or invaild password");
                return(View("SignIn"));
            }
            await _signinService.CookieSignInAsync(AuthenticationSchemes.PortalCookie, authResult.User, model.RememberMe);

            return(Redirect(model.ReturnUrl));
        }