Add Blazor WebAssembly Admin Page (#426)

* Added Blazor Client Configured PublicAPI CORS to allow traffic from client * Make admin page home page; remove extra pages Add CatalogType list endpoint * Wired up Types and Brands in the API and the admin list page * Adding a custom HttpClient to talk securely to API * Ardalis/blazor (#419) * Login added * AuthService will handel http request secure and not secure. * Logout added * CatalogBrandService in it is own service * Get token from localstorage when refresh. * used GetAsync * Fixed Login and Logout switch. * CatalogItemService added * CatalogTypeService added & Auth for CatalogType. using not used removed. * Made BlazorComponent and BlazorLayoutComponent for refresh. Index now small enough to be in one file. * Removed the service from program main and use lazy singleton. * used OnInitialized * Refactoring and detecting login status in login.razor * Refactoring login to redirect if user is already logged in * Blazor login with MVC (#420) * Blazor login with MVC * return back the PasswordSignInAsync in Login page * CRUD added (#422) * CRUD added * Unit Test changed to meet new redirect /admin * CreateCatalogItemRequest added. * Action caption added. * Validation added for name and price. * Updated port of api Redirect to returnUrl from login * Add username to /admin; link to my profile * Working on authorization of /admin * Working on custom auth locking down /admin page * Microsoft authorize working.Login.razor removed.Login from SignInMana… (#425) * Microsoft authorize working.Login.razor removed.Login from SignInManager and create token from it.unit test fixed. * GetTokenFromController function used in CustomAuthStateProvider * Cleaned up button styles Refactored to use codebehind for List component Updated Not Authorized view Co-authored-by: Shady Nagy <shadynagi@gmail.com>
2020-07-24 12:36:47 -04:00
parent 4253660bc3
commit 8d3ac693d4
86 changed files with 3268 additions and 82 deletions
--- a/src/Web/Controllers/UserController.cs
+++ b/src/Web/Controllers/UserController.cs
@@ -0,0 +1,63 @@
+using System.Collections.Generic;
+using System.Linq;
+using System.Security.Claims;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using Shared.Authorization;
+
+namespace Microsoft.eShopWeb.Web.Controllers
+{
+    [Route("[controller]")]
+    [ApiController]
+    public class UserController : ControllerBase
+    {
+        [HttpGet]
+        [Authorize]
+        [AllowAnonymous]
+        public IActionResult GetCurrentUser() =>
+            Ok(User.Identity.IsAuthenticated ? CreateUserInfo(User) : UserInfo.Anonymous);
+
+        private UserInfo CreateUserInfo(ClaimsPrincipal claimsPrincipal)
+        {
+            if (!claimsPrincipal.Identity.IsAuthenticated)
+            {
+                return UserInfo.Anonymous;
+            }
+
+            var userInfo = new UserInfo
+            {
+                IsAuthenticated = true
+            };
+
+            if (claimsPrincipal.Identity is ClaimsIdentity claimsIdentity)
+            {
+                userInfo.NameClaimType = claimsIdentity.NameClaimType;
+                userInfo.RoleClaimType = claimsIdentity.RoleClaimType;
+            }
+            else
+            {
+                userInfo.NameClaimType = "name";
+                userInfo.RoleClaimType = "role";
+            }
+
+            if (claimsPrincipal.Claims.Any())
+            {
+                var claims = new List<ClaimValue>();
+                var nameClaims = claimsPrincipal.FindAll(userInfo.NameClaimType);
+                foreach (var claim in nameClaims)
+                {
+                    claims.Add(new ClaimValue(userInfo.NameClaimType, claim.Value));
+                }
+
+                foreach (var claim in claimsPrincipal.Claims.Except(nameClaims))
+                {
+                    claims.Add(new ClaimValue(claim.Type, claim.Value));
+                }
+
+                userInfo.Claims = claims;
+            }
+
+            return userInfo;
+        }
+    }
+}