61d2d6cdd0
* fix redirect to login for admin page fix logout * add admin part url Co-authored-by: cedri <cedri@BAS>
106 lines
3.5 KiB
C#
106 lines
3.5 KiB
C#
using System.Security.Claims;
|
|
using BlazorShared.Authorization;
|
|
using Microsoft.AspNetCore.Authentication;
|
|
using Microsoft.AspNetCore.Authentication.Cookies;
|
|
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.eShopWeb.ApplicationCore.Interfaces;
|
|
using Microsoft.eShopWeb.Infrastructure.Identity;
|
|
using Microsoft.eShopWeb.Web.Configuration;
|
|
using Microsoft.Extensions.Caching.Memory;
|
|
|
|
namespace Microsoft.eShopWeb.Web.Controllers;
|
|
|
|
[Route("[controller]")]
|
|
[ApiController]
|
|
public class UserController : ControllerBase
|
|
{
|
|
private readonly ITokenClaimsService _tokenClaimsService;
|
|
private readonly SignInManager<ApplicationUser> _signInManager;
|
|
private readonly ILogger<UserController> _logger;
|
|
private readonly IMemoryCache _cache;
|
|
|
|
public UserController(ITokenClaimsService tokenClaimsService,
|
|
SignInManager<ApplicationUser> signInManager,
|
|
ILogger<UserController> logger,
|
|
IMemoryCache cache)
|
|
{
|
|
_tokenClaimsService = tokenClaimsService;
|
|
_signInManager = signInManager;
|
|
_logger = logger;
|
|
_cache = cache;
|
|
}
|
|
|
|
[HttpGet]
|
|
[Authorize]
|
|
[AllowAnonymous]
|
|
public async Task<IActionResult> GetCurrentUser() =>
|
|
Ok(await CreateUserInfo(User));
|
|
|
|
[Route("Logout")]
|
|
[HttpPost]
|
|
[Authorize]
|
|
[AllowAnonymous]
|
|
public async Task<IActionResult> Logout()
|
|
{
|
|
await _signInManager.SignOutAsync();
|
|
await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
|
|
var userId = _signInManager.Context.User.Claims.First(c => c.Type == ClaimTypes.Name);
|
|
var identityKey = _signInManager.Context.Request.Cookies[ConfigureCookieSettings.IdentifierCookieName];
|
|
_cache.Set($"{userId.Value}:{identityKey}", identityKey, new MemoryCacheEntryOptions
|
|
{
|
|
AbsoluteExpiration = DateTime.Now.AddMinutes(ConfigureCookieSettings.ValidityMinutesPeriod)
|
|
});
|
|
|
|
_logger.LogInformation("User logged out.");
|
|
return Ok();
|
|
}
|
|
|
|
private async Task<UserInfo> CreateUserInfo(ClaimsPrincipal claimsPrincipal)
|
|
{
|
|
if (claimsPrincipal.Identity == null || claimsPrincipal.Identity.Name == null || !claimsPrincipal.Identity.IsAuthenticated)
|
|
{
|
|
return UserInfo.Anonymous;
|
|
}
|
|
|
|
var userInfo = new UserInfo
|
|
{
|
|
IsAuthenticated = true
|
|
};
|
|
|
|
if (claimsPrincipal.Identity is ClaimsIdentity claimsIdentity)
|
|
{
|
|
userInfo.NameClaimType = claimsIdentity.NameClaimType;
|
|
userInfo.RoleClaimType = claimsIdentity.RoleClaimType;
|
|
}
|
|
else
|
|
{
|
|
userInfo.NameClaimType = "name";
|
|
userInfo.RoleClaimType = "role";
|
|
}
|
|
|
|
if (claimsPrincipal.Claims.Any())
|
|
{
|
|
var claims = new List<ClaimValue>();
|
|
var nameClaims = claimsPrincipal.FindAll(userInfo.NameClaimType);
|
|
foreach (var claim in nameClaims)
|
|
{
|
|
claims.Add(new ClaimValue(userInfo.NameClaimType, claim.Value));
|
|
}
|
|
|
|
foreach (var claim in claimsPrincipal.Claims.Except(nameClaims))
|
|
{
|
|
claims.Add(new ClaimValue(claim.Type, claim.Value));
|
|
}
|
|
|
|
userInfo.Claims = claims;
|
|
}
|
|
|
|
var token = await _tokenClaimsService.GetTokenAsync(claimsPrincipal.Identity.Name);
|
|
userInfo.Token = token;
|
|
|
|
return userInfo;
|
|
}
|
|
}
|