public override async Task GrantResourceOwnerCredentials(Microsoft.Owin.Security.OAuth.OAuthGrantResourceOwnerCredentialsContext context) { context.OwinContext.Response.Headers.Add("Access-Control-Allow-Origin", new[] { "*" }); if (String.IsNullOrEmpty(context.UserName)) { context.SetError("invalid_grant", "The user name or password is incorrect."); context.Rejected(); return; } if (OTA.Protection.IpLimiting.Register(context.Request.RemoteIpAddress, ServerManager.MaxRequestsPerLapse, ServerManager.RequestLockoutDuration)) { //Prevent console spamming if (OTA.Protection.IpLimiting.GetJustLockedOut(context.Request.RemoteIpAddress)) { ProgramLog.Web.Log("API client reached request limit for user/ip {0}", context.UserName, context.Request.RemoteIpAddress); } context.SetError("request_limit", "You have reached the service limit"); context.Rejected(); return; } var user = await APIAccountManager.FindByNameAsync(context.UserName); if (user != null && user.ComparePassword(context.Password)) { var identity = new ClaimsIdentity(context.Options.AuthenticationType); identity.AddClaim(new Claim(ClaimTypes.Name, context.UserName)); //Load permissions for user foreach (var role in await APIAccountManager.GetRolesForAccount(user.Id)) { identity.AddClaim(new Claim(role.Type, role.Value)); // identity.AddClaim(new Claim(ClaimTypes.Role, "player")); } // var ticket = new AuthenticationTicket(identity, new AuthenticationProperties() // { // IsPersistent = true, // IssuedUtc = DateTime.UtcNow // }); context.Validated(identity); } else { context.SetError("invalid_grant", "The user name or password is incorrect."); context.Rejected(); } }
public override async Task GrantResourceOwnerCredentials(Microsoft.Owin.Security.OAuth.OAuthGrantResourceOwnerCredentialsContext context) { var userManager = context.OwinContext.GetUserManager <ApplicationUserManager>(); var data = await context.Request.ReadFormAsync(); ApplicationUser user = await userManager.FindAsync(context.UserName, context.Password); if (user == null) { context.SetError("invalid_grant", "Invalid Username/Password"); return; } var oAuthIdentity = await user.GenerateUserIdentityAsync(userManager, OAuthDefaults.AuthenticationType); ClaimsIdentity cookiesIdentity = await user.GenerateUserIdentityAsync(userManager, CookieAuthenticationDefaults.AuthenticationType); var properties = CreateProperties(user.UserName); AuthenticationTicket ticket = new AuthenticationTicket(oAuthIdentity, properties); context.Validated(ticket); context.Request.Context.Authentication.SignIn(cookiesIdentity); }