jbourdon/social-media
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merged PR 39: Oauth with google

Browse Source
This commit is contained in:
Dominic Villemure
2024-06-16 15:02:21 +00:00
parent 1c6fbed405 568a5c99ca
commit 0a9c3ec94c
18 changed files with 465 additions and 618 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
Directory.Packages.props
View File

@@ -7,12 +7,16 @@
<PackageVersion Include="Ardalis.GuardClauses" Version="4.2.0" /> <PackageVersion Include="Ardalis.GuardClauses" Version="4.2.0" />
<PackageVersion Include="AutoMapper" Version="13.0.1" /> <PackageVersion Include="AutoMapper" Version="13.0.1" />
<PackageVersion Include="Azure.Extensions.AspNetCore.Configuration.Secrets" Version="1.3.0" /> <PackageVersion Include="Azure.Extensions.AspNetCore.Configuration.Secrets" Version="1.3.0" />
<PackageVersion Include="Azure.Identity" Version="1.10.4" /> <PackageVersion Include="Azure.Identity" Version="1.11.0" />
<PackageVersion Include="coverlet.collector" Version="6.0.0" /> <PackageVersion Include="coverlet.collector" Version="6.0.0" />
<PackageVersion Include="FluentAssertions" Version="6.12.0" /> <PackageVersion Include="FluentAssertions" Version="6.12.0" />
<PackageVersion Include="FluentValidation.AspNetCore" Version="11.3.0" /> <PackageVersion Include="FluentValidation.AspNetCore" Version="11.3.0" />
<PackageVersion Include="FluentValidation.DependencyInjectionExtensions" Version="11.8.1" /> <PackageVersion Include="FluentValidation.DependencyInjectionExtensions" Version="11.8.1" />
<PackageVersion Include="Google.Apis.Oauth2.v2" Version="1.67.0.1869" />
<PackageVersion Include="MediatR" Version="12.2.0" /> <PackageVersion Include="MediatR" Version="12.2.0" />
<PackageVersion Include="Microsoft.AspNetCore.Authentication.Facebook" Version="8.0.4" />
<PackageVersion Include="Microsoft.AspNetCore.Authentication.Google" Version="8.0.4" />
<PackageVersion Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="8.0.6" />
<PackageVersion Include="Microsoft.AspNetCore.Diagnostics.EntityFrameworkCore" Version="8.0.3" /> <PackageVersion Include="Microsoft.AspNetCore.Diagnostics.EntityFrameworkCore" Version="8.0.3" />
<PackageVersion Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" Version="8.0.3" /> <PackageVersion Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" Version="8.0.3" />
<PackageVersion Include="Microsoft.AspNetCore.Mvc.Testing" Version="8.0.3" /> <PackageVersion Include="Microsoft.AspNetCore.Mvc.Testing" Version="8.0.3" />

1
src/Application/Application.csproj
View File

@@ -9,6 +9,7 @@
<PackageReference Include="Ardalis.GuardClauses" /> <PackageReference Include="Ardalis.GuardClauses" />
<PackageReference Include="AutoMapper" /> <PackageReference Include="AutoMapper" />
<PackageReference Include="FluentValidation.DependencyInjectionExtensions" /> <PackageReference Include="FluentValidation.DependencyInjectionExtensions" />
<PackageReference Include="Google.Apis.Oauth2.v2" />
<PackageReference Include="Microsoft.EntityFrameworkCore" /> <PackageReference Include="Microsoft.EntityFrameworkCore" />
</ItemGroup> </ItemGroup>

5
src/Application/Common/Interfaces/IIdentityService.cs
View File

@@ -1,4 +1,5 @@
using Hutopy.Application.Common.Models; using Google.Apis.Oauth2.v2.Data;
using Hutopy.Application.Common.Models;
namespace Hutopy.Application.Common.Interfaces; namespace Hutopy.Application.Common.Interfaces;
@@ -9,10 +10,12 @@ public interface IIdentityService
Task<UserModel?> FindUserByIdAsync(string id); Task<UserModel?> FindUserByIdAsync(string id);
Task<UserModel?> GetCurrentUserAsync(); Task<UserModel?> GetCurrentUserAsync();
Task<UserModel?> FindUserByEmailAsync(string id); Task<UserModel?> FindUserByEmailAsync(string id);
Task<string?> LoginAsync(string email, string password);
Task<UserModel?> GetUserByUserNameAsync(string userName); Task<UserModel?> GetUserByUserNameAsync(string userName);
Task<bool> IsInRoleAsync(string userId, string role); Task<bool> IsInRoleAsync(string userId, string role);
Task<bool> AuthorizeAsync(string userId, string policyName); Task<bool> AuthorizeAsync(string userId, string policyName);
Task<Result> AddRoleAsync(string userId, string role); Task<Result> AddRoleAsync(string userId, string role);
Task<IList<string>> GetCurrentUserRolesAsync(); Task<IList<string>> GetCurrentUserRolesAsync();
Task<(Result Result, string UserId)> CreateUserAsync(Userinfo userInfo);
Task<Result> DeleteUserAsync(string userId); Task<Result> DeleteUserAsync(string userId);
} }

27
src/Application/Users/Commands/Login.cs Normal file
View File

@@ -0,0 +1,27 @@
using Hutopy.Application.Common.Interfaces;
namespace Hutopy.Application.Users.Commands;
public record LoginCommand : IRequest<string>
{
public required string EmailAddress { get; init; }
public required string Password { get; init; }
}
public class LoginCommandHandler : IRequestHandler<LoginCommand, string>
{
private readonly IApplicationDbContext _context;
private readonly IIdentityService _identityService;
public LoginCommandHandler(IApplicationDbContext context, IIdentityService identityService)
{
_context = context;
_identityService = identityService;
}
public async Task<string> Handle(LoginCommand request, CancellationToken cancellationToken)
{
var jwt = await _identityService.LoginAsync(request.EmailAddress, request.Password);
return jwt ?? "Invalid login credentials";
}
}

1
src/Domain/Domain.csproj
View File

@@ -6,6 +6,7 @@
</PropertyGroup> </PropertyGroup>
<ItemGroup> <ItemGroup>
<PackageReference Include="Google.Apis.Oauth2.v2" />
<PackageReference Include="MediatR" /> <PackageReference Include="MediatR" />
</ItemGroup> </ItemGroup>

15
src/Infrastructure/DependencyInjection.cs
View File

@@ -49,12 +49,19 @@ public static class DependencyInjection
services.AddAuthorizationBuilder(); services.AddAuthorizationBuilder();
// Might need to change and use AddIdentity<User, Role>() when we need to integrate connection via third party ( facebook, google ) services.AddIdentityCore<ApplicationUser>(options =>
services {
.AddIdentityCore<ApplicationUser>() options.Password.RequireDigit = false;
options.Password.RequireLowercase = false;
options.Password.RequireUppercase = false;
options.Password.RequireNonAlphanumeric = false;
options.Password.RequiredLength = 8;
})
.AddRoles<IdentityRole>() .AddRoles<IdentityRole>()
.AddEntityFrameworkStores<ApplicationDbContext>() .AddEntityFrameworkStores<ApplicationDbContext>()
.AddApiEndpoints(); .AddApiEndpoints()
.AddSignInManager<SignInManager<ApplicationUser>>()
.AddDefaultTokenProviders();
services.AddSingleton(TimeProvider.System); services.AddSingleton(TimeProvider.System);
services.AddScoped<IIdentityService, IdentityService>(); services.AddScoped<IIdentityService, IdentityService>();

43
src/Infrastructure/Identity/IdentityService.cs
View File

@@ -1,17 +1,22 @@
using Google.Apis.Oauth2.v2.Data;
using System.Security.Claims; using System.Security.Claims;
using Hutopy.Application.Common.Interfaces; using Hutopy.Application.Common.Interfaces;
using Hutopy.Application.Common.Models; using Hutopy.Application.Common.Models;
using Hutopy.Infrastructure.Utils;
using Microsoft.AspNetCore.Authorization; using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http; using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Identity; using Microsoft.AspNetCore.Identity;
using Microsoft.Extensions.Configuration;
namespace Hutopy.Infrastructure.Identity; namespace Hutopy.Infrastructure.Identity;
public class IdentityService( public class IdentityService(
UserManager<ApplicationUser> userManager, UserManager<ApplicationUser> userManager,
SignInManager<ApplicationUser> signInManager,
IUserClaimsPrincipalFactory<ApplicationUser> userClaimsPrincipalFactory, IUserClaimsPrincipalFactory<ApplicationUser> userClaimsPrincipalFactory,
IAuthorizationService authorizationService, IAuthorizationService authorizationService,
IHttpContextAccessor contextAccessor IHttpContextAccessor contextAccessor,
IConfiguration configuration
) )
: IIdentityService : IIdentityService
{ {
@@ -53,6 +58,23 @@ public class IdentityService(
return (result.ToApplicationResult(), user.Id); return (result.ToApplicationResult(), user.Id);
} }
public async Task<(Result Result, string UserId)> CreateUserAsync(Userinfo userInfo)
{
var user = new ApplicationUser
{
UserName = userInfo.Name,
Email = userInfo.Email,
FirstName = userInfo.GivenName,
LastName = userInfo.FamilyName
};
var password = Guid.NewGuid().ToString("N")[..32];
var result = await userManager.CreateAsync(user, password);
return (result.ToApplicationResult(), user.Id);
}
public async Task<Result> CreateUserAsync(string email, string userName, string firstName, string lastName, string password) public async Task<Result> CreateUserAsync(string email, string userName, string firstName, string lastName, string password)
{ {
var applicationUser = new ApplicationUser var applicationUser = new ApplicationUser
@@ -187,4 +209,23 @@ public class IdentityService(
return userRoles; return userRoles;
} }
public async Task<string?> LoginAsync(string userName, string password)
{
var result = await signInManager.PasswordSignInAsync(userName, password, isPersistent: false, lockoutOnFailure: false);
if (!result.Succeeded)
{
return null;
}
var user = await GetUserByUserNameAsync(userName);
var token = JwtTokenHelper.GenerateJwtToken(
issuer: configuration["Jwt-Issuer"] ?? "",
audience: configuration["Jwt-Audience"] ?? "",
key: configuration["Jwt-Key"] ?? "",
userId: user?.Id ?? "");
return token;
}
} }

1
src/Infrastructure/Infrastructure.csproj
View File

@@ -4,6 +4,7 @@
<AssemblyName>Hutopy.Infrastructure</AssemblyName> <AssemblyName>Hutopy.Infrastructure</AssemblyName>
</PropertyGroup> </PropertyGroup>
<ItemGroup> <ItemGroup>
<PackageReference Include="Microsoft.AspNetCore.Authentication.Google" />
<PackageReference Include="Microsoft.AspNetCore.Diagnostics.EntityFrameworkCore" /> <PackageReference Include="Microsoft.AspNetCore.Diagnostics.EntityFrameworkCore" />
<PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" /> <PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" />
<PackageReference Include="Microsoft.EntityFrameworkCore.Design"> <PackageReference Include="Microsoft.EntityFrameworkCore.Design">

31
src/Infrastructure/Utils/GenerateJwtToken.cs Normal file
View File

@@ -0,0 +1,31 @@
using System.IdentityModel.Tokens.Jwt;
using System.Security.Claims;
using System.Text;
using Microsoft.IdentityModel.Tokens;
namespace Hutopy.Infrastructure.Utils;
public static class JwtTokenHelper
{
public static string GenerateJwtToken(string issuer, string audience, string key, string userId)
{
var claims = new[]
{
new Claim(JwtRegisteredClaimNames.Sub, userId),
new Claim(JwtRegisteredClaimNames.Jti, Guid.NewGuid().ToString()),
new Claim(ClaimTypes.NameIdentifier, userId)
};
var securityKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(key));
var credentials = new SigningCredentials(securityKey, SecurityAlgorithms.HmacSha256);
var token = new JwtSecurityToken(
issuer: issuer,
audience: audience,
claims: claims,
expires: DateTime.Now.AddMinutes(30),
signingCredentials: credentials);
return new JwtSecurityTokenHandler().WriteToken(token);
}
}

58
src/Infrastructure/Utils/RandomGenerator.cs Normal file
View File

@@ -0,0 +1,58 @@
using System.Text;
namespace Hutopy.Infrastructure.Utils;
// If we need to add special characters we can alternate between 2 pools.
public class RandomGenerator
{
// For the moment, numbers and special characters don't work because
// the random generator is designed to handle a single integer.
// We can modify this in the future.
private const string LetterBytes = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"
+ "0123456789"
+ "!@#$%^&*()_+"
+ "-=[];',./`~{}|:\"<>?";
private const int LetterIdxBits = 6;
private const int LetterIdxMask = 1 << LetterIdxBits;
private const int LetterIdxMax = 64 / LetterIdxBits;
private static readonly Random Src = new();
public static byte[] RandBytesMaskSrc(int n)
{
var b = new byte[n];
for (var i = n - 1; i >= 0;)
{
long cache = Src.NextInt64();
int remain = LetterIdxMax;
while (remain != 0)
{
if (i < 0)
break;
if (cache == 0)
cache = Src.NextInt64();
var idx = (int)(cache & LetterIdxMask);
if (idx < LetterBytes.Length)
{
b[i] = (byte)LetterBytes[idx];
i--;
}
cache >>= LetterIdxBits;
remain--;
}
}
return b;
}
public static string RandomString(int length)
{
var bytes = RandBytesMaskSrc(length);
return Encoding.UTF8.GetString(bytes); // Equivalent for *(string*)(&bytes[0])
}
}

53
src/Web/Controllers/FacebookController.cs Normal file
View File

@@ -0,0 +1,53 @@
using System.Security.Claims;
using Hutopy.Application.Common.Interfaces;
using Hutopy.Infrastructure.Utils;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Authentication.Facebook;
using Microsoft.AspNetCore.Mvc;
namespace Hutopy.Web.Controllers;
public class FacebookController(IIdentityService identityService) : Controller
{
[HttpGet("/api/facebook/sign-in")]
public async Task SignIn()
{
await HttpContext.ChallengeAsync(FacebookDefaults.AuthenticationScheme, new AuthenticationProperties
{
RedirectUri = Url.Action("Authorize")
});
}
public async Task<IActionResult> Authorize()
{
var authenticateResult = await HttpContext.AuthenticateAsync(FacebookDefaults.AuthenticationScheme);
if (!authenticateResult.Succeeded) return BadRequest();
var claims = authenticateResult.Principal.Claims.ToList();
var name = claims.FirstOrDefault(c => c.Type == ClaimTypes.Name)?.Value ?? "";
var email = claims.FirstOrDefault(c => c.Type == ClaimTypes.Email)?.Value ?? "";
var givenName = claims.FirstOrDefault(c => c.Type == ClaimTypes.GivenName)?.Value ?? "";
var familyName = claims.FirstOrDefault(c => c.Type == ClaimTypes.Surname)?.Value ?? "";
var claimsIdentity = new ClaimsIdentity(new List<Claim>
{
new(ClaimTypes.Name, name),
new(ClaimTypes.Email, email),
new(ClaimTypes.GivenName, givenName),
new(ClaimTypes.Surname, familyName)
}, CookieAuthenticationDefaults.AuthenticationScheme);
if (await identityService.FindUserByEmailAsync(email) != null)
{
await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, new ClaimsPrincipal(claimsIdentity));
return Redirect("/");
}
await identityService.CreateUserAsync(email, givenName, givenName, familyName, RandomGenerator.RandomString(24));
await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, new ClaimsPrincipal(claimsIdentity));
return Redirect("/");
}
}

77
src/Web/Controllers/GoogleController.cs Normal file
View File

@@ -0,0 +1,77 @@
using System.Security.Claims;
using Hutopy.Application.Common.Interfaces;
using Hutopy.Infrastructure.Utils;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Mvc;
using Newtonsoft.Json.Linq;
namespace Hutopy.Web.Controllers;
public class GoogleController(IIdentityService identityService, IHttpClientFactory httpClientFactory, IConfiguration configuration) : Controller
{
[HttpPost("/api/google/sign-in")]
public async Task<IActionResult> SignIn([FromBody] GoogleSignInRequest request)
{
var httpClient = httpClientFactory.CreateClient();
// Verify the token with Google
var response = await httpClient.GetAsync($"https://www.googleapis.com/oauth2/v1/userinfo?access_token={request.AccessToken}");
if (!response.IsSuccessStatusCode)
{
return BadRequest("Invalid Google token.");
}
var payload = JObject.Parse(await response.Content.ReadAsStringAsync());
var email = payload["email"]?.ToString() ?? "";
var name = payload["name"]?.ToString() ?? "";
var givenName = payload["given_name"]?.ToString() ?? "";
var familyName = payload["family_name"]?.ToString() ?? "";
if (string.IsNullOrEmpty(email))
{
return BadRequest("Google token did not contain an email.");
}
// Check if user exists or create a new one
var user = await identityService.FindUserByEmailAsync(email);
if (user == null)
{
await identityService.CreateUserAsync(email, email, givenName, familyName, RandomGenerator.RandomString(24));
user = await identityService.FindUserByEmailAsync(email);
}
if (user?.Id is null)
{
return BadRequest("Unable to find or create the user.");
}
// Sign in the user
var claims = new List<Claim>
{
new(ClaimTypes.Name, name),
new(ClaimTypes.Email, email),
new(ClaimTypes.GivenName, givenName),
new(ClaimTypes.Surname, familyName)
};
var claimsIdentity = new ClaimsIdentity(claims, CookieAuthenticationDefaults.AuthenticationScheme);
await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, new ClaimsPrincipal(claimsIdentity));
var issuer = configuration["Jwt-Issuer"] ??
throw new ArgumentNullException("The Jwt issuer is missing.");
var audience = configuration["Jwt-Audience"] ??
throw new ArgumentNullException("The Jwt audience is missing.");
var key = configuration["Jwt-Key"] ??
throw new ArgumentNullException("The Jwt key is missing.");
var jwtToken = JwtTokenHelper.GenerateJwtToken(issuer, audience, key, user.Id);
return Ok(new { accessToken = jwtToken, email });
}
public class GoogleSignInRequest
{
public required string AccessToken { get; set; }
}
}

54
src/Web/DependencyInjection.cs
View File

@@ -1,8 +1,14 @@
using Azure.Identity; using System.Text;
using Azure.Identity;
using Hutopy.Application.Common.Interfaces; using Hutopy.Application.Common.Interfaces;
using Hutopy.Infrastructure.Data; using Hutopy.Infrastructure.Data;
using Hutopy.Web.Services; using Hutopy.Web.Services;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Authentication.Facebook;
using Microsoft.AspNetCore.Authentication.Google;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Mvc; using Microsoft.AspNetCore.Mvc;
using Microsoft.IdentityModel.Tokens;
using NSwag; using NSwag;
using NSwag.Generation.Processors.Security; using NSwag.Generation.Processors.Security;
@@ -25,6 +31,8 @@ public static class DependencyInjection
services.AddRazorPages(); services.AddRazorPages();
services.AddHttpClient();
// Customise default API behaviour // Customise default API behaviour
services.Configure<ApiBehaviorOptions>(options => services.Configure<ApiBehaviorOptions>(options =>
options.SuppressModelStateInvalidFilter = true); options.SuppressModelStateInvalidFilter = true);
@@ -62,4 +70,48 @@ public static class DependencyInjection
return services; return services;
} }
public static IServiceCollection AddAuthorizationAndAuthentication(this IServiceCollection services, ConfigurationManager configuration)
{
services.AddAuthentication(options =>
{
options.DefaultScheme = JwtBearerDefaults.AuthenticationScheme;
options.DefaultChallengeScheme = CookieAuthenticationDefaults.AuthenticationScheme;
})
.AddCookie("Identity.Application", options =>
{
options.LoginPath = "/api/Users/login";
})
.AddCookie()
.AddJwtBearer(JwtBearerDefaults.AuthenticationScheme, jwtBearerOptions =>
{
jwtBearerOptions.Authority = "https://hutopy.com";
jwtBearerOptions.TokenValidationParameters = new TokenValidationParameters
{
ValidateIssuer = true,
ValidIssuer = configuration["Jwt-Issuer"],
ValidateAudience = true,
ValidAudience = configuration["Jwt-Audience"],
ValidateLifetime = true,
IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(configuration["Jwt-Key"] ??
throw new ArgumentNullException("The Jwt Key is missing.")))
};
})
.AddGoogle(GoogleDefaults.AuthenticationScheme, options =>
{
options.ClientId = configuration["Google-ClientId"] ??
throw new ArgumentNullException("The Google ClientId is missing.");;
options.ClientSecret = configuration["Google-ClientSecret"] ??
throw new ArgumentNullException("The Google ClientSecret is missing.");;
})
.AddFacebook(FacebookDefaults.AuthenticationScheme, options =>
{
options.ClientId = configuration["Facebook-ClientId"] ??
throw new ArgumentNullException("The Facebook ClientId is missing.");
options.ClientSecret = configuration["Facebook-ClientSecret"] ??
throw new ArgumentNullException("The Facebook ClientSecret is missing.");
});
return services;
}
} }

10
src/Web/Endpoints/Users.cs
View File

@@ -1,6 +1,5 @@
using Hutopy.Application.Users.Commands; using Hutopy.Application.Users.Commands;
using Hutopy.Application.Users.Queries.GetMinimalUser; using Hutopy.Application.Users.Queries.GetMinimalUser;
using Hutopy.Infrastructure.Identity;
namespace Hutopy.Web.Endpoints; namespace Hutopy.Web.Endpoints;
@@ -10,9 +9,8 @@ public class Users : EndpointGroupBase
{ {
app.MapGroup(this) app.MapGroup(this)
.MapPost(CreateUser) .MapPost(CreateUser)
.MapGet(GetMinimalUser) .MapPost(Login, "/login")
.MapIdentityApi<ApplicationUser>(); .MapGet(GetMinimalUser);
} }
private static async Task<Guid> CreateUser(ISender sender, CreateUserCommand command) private static async Task<Guid> CreateUser(ISender sender, CreateUserCommand command)
@@ -25,4 +23,8 @@ public class Users : EndpointGroupBase
return await sender.Send(query); return await sender.Send(query);
} }
private static async Task<string> Login(ISender sender, LoginCommand command)
{
return await sender.Send(command);
}
} }

12
src/Web/Program.cs
View File

@@ -3,6 +3,7 @@ using Hutopy.Infrastructure;
using Hutopy.Infrastructure.Data; using Hutopy.Infrastructure.Data;
using Hutopy.Web; using Hutopy.Web;
using Azure.Identity; using Azure.Identity;
using Microsoft.AspNetCore.HttpOverrides;
var builder = WebApplication.CreateBuilder(args); var builder = WebApplication.CreateBuilder(args);
@@ -44,13 +45,22 @@ builder.Services.AddKeyVaultIfConfigured(builder.Configuration);
builder.Services.AddApplicationServices(); builder.Services.AddApplicationServices();
builder.Services.AddInfrastructureServices(builder.Configuration); builder.Services.AddInfrastructureServices(builder.Configuration);
builder.Services.AddWebServices(); builder.Services.AddWebServices();
builder.Services.AddAuthorizationAndAuthentication(builder.Configuration);
builder.Services.AddControllers();
var app = builder.Build(); var app = builder.Build();
app.UseForwardedHeaders(
new ForwardedHeadersOptions { ForwardedHeaders = ForwardedHeaders.XForwardedProto }
);
app.UseCors("AllowAll"); app.UseCors("AllowAll");
app.UseCors("AllowHutopyUi"); app.UseCors("AllowHutopyUi");
app.UseCors("AllowHutopyUiPreview"); app.UseCors("AllowHutopyUiPreview");
app.UseAuthentication();
app.UseAuthorization();
// Initialize and seed the db. // Initialize and seed the db.
await app.InitialiseDatabaseAsync(); await app.InitialiseDatabaseAsync();
@@ -75,8 +85,6 @@ app.MapControllerRoute(
name: "default", name: "default",
pattern: "{controller}/{action=Index}/{id?}"); pattern: "{controller}/{action=Index}/{id?}");
app.MapRazorPages();
app.MapFallbackToFile("index.html"); app.MapFallbackToFile("index.html");
app.UseExceptionHandler(options => { }); app.UseExceptionHandler(options => { });

3
src/Web/Web.csproj
View File

@@ -14,6 +14,9 @@
<ItemGroup> <ItemGroup>
<PackageReference Include="Azure.Extensions.AspNetCore.Configuration.Secrets" /> <PackageReference Include="Azure.Extensions.AspNetCore.Configuration.Secrets" />
<PackageReference Include="Azure.Identity" /> <PackageReference Include="Azure.Identity" />
<PackageReference Include="Microsoft.AspNetCore.Authentication.Facebook" />
<PackageReference Include="Microsoft.AspNetCore.Authentication.Google" />
<PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" />
<PackageReference Include="Microsoft.AspNetCore.Diagnostics.EntityFrameworkCore" /> <PackageReference Include="Microsoft.AspNetCore.Diagnostics.EntityFrameworkCore" />
<PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" /> <PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" />
<PackageReference Include="Microsoft.AspNetCore.OpenApi" /> <PackageReference Include="Microsoft.AspNetCore.OpenApi" />

26
src/Web/appsettings.Development.dist
View File

@@ -7,23 +7,11 @@
"Microsoft.Hosting.Lifetime": "Information" "Microsoft.Hosting.Lifetime": "Information"
} }
}, },
"Google": { "Google-ClientId": "",
"ClientId": "", "Google-ClientSecret": "",
"ClientSecret": "", "Facebook-ClientId": "",
"ProjectId": "", "Facebook-ClientSecret": "",
"AuthUri": "", "Jwt-Audience": "",
"TokenUri": "", "Jwt-Issuer": "",
"AuthProviderX509CertUrl": "", "Jwt-Key": "",
"RedirectUris": [
"https://hutopy.ca",
"https://hutopy.com",
"http://localhost"
],
"JavascriptOrigins": [
"https://hutopy.ca",
"https://hutopy.com",
"http://localhost"
]
}
} }

654
src/Web/wwwroot/api/specification.json
View File

@@ -281,75 +281,22 @@
} }
} }
}, },
"/api/Users/register": {
"post": {
"tags": [
"Users"
],
"operationId": "PostApiUsersRegister",
"requestBody": {
"x-name": "registration",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/RegisterRequest"
}
}
},
"x-position": 1
},
"responses": {
"200": {
"description": ""
},
"400": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/HttpValidationProblemDetails"
}
}
}
}
}
}
},
"/api/Users/login": { "/api/Users/login": {
"post": { "post": {
"tags": [ "tags": [
"Users" "Users"
], ],
"operationId": "PostApiUsersLogin", "operationId": "Login",
"parameters": [
{
"name": "useCookies",
"in": "query",
"schema": {
"type": "boolean",
"nullable": true
},
"x-position": 2
},
{
"name": "useSessionCookies",
"in": "query",
"schema": {
"type": "boolean",
"nullable": true
},
"x-position": 3
}
],
"requestBody": { "requestBody": {
"x-name": "login", "x-name": "command",
"content": { "content": {
"application/json": { "application/json": {
"schema": { "schema": {
"$ref": "#/components/schemas/LoginRequest" "$ref": "#/components/schemas/LoginCommand"
} }
} }
}, },
"required": true,
"x-position": 1 "x-position": 1
}, },
"responses": { "responses": {
@@ -358,7 +305,7 @@
"content": { "content": {
"application/json": { "application/json": {
"schema": { "schema": {
"$ref": "#/components/schemas/AccessTokenResponse" "type": "string"
} }
} }
} }
@@ -366,305 +313,6 @@
} }
} }
}, },
"/api/Users/refresh": {
"post": {
"tags": [
"Users"
],
"operationId": "PostApiUsersRefresh",
"requestBody": {
"x-name": "refreshRequest",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/RefreshRequest"
}
}
},
"x-position": 1
},
"responses": {
"200": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/AccessTokenResponse"
}
}
}
}
}
}
},
"/api/Users/confirmEmail": {
"get": {
"tags": [
"Users"
],
"operationId": "GetApiUsersConfirmEmail",
"parameters": [
{
"name": "userId",
"in": "query",
"schema": {
"type": "string",
"nullable": true
},
"x-position": 1
},
{
"name": "code",
"in": "query",
"schema": {
"type": "string",
"nullable": true
},
"x-position": 2
},
{
"name": "changedEmail",
"in": "query",
"schema": {
"type": "string",
"nullable": true
},
"x-position": 3
}
],
"responses": {
"200": {
"description": ""
}
}
}
},
"/api/Users/resendConfirmationEmail": {
"post": {
"tags": [
"Users"
],
"operationId": "PostApiUsersResendConfirmationEmail",
"requestBody": {
"x-name": "resendRequest",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/ResendConfirmationEmailRequest"
}
}
},
"x-position": 1
},
"responses": {
"200": {
"description": ""
}
}
}
},
"/api/Users/forgotPassword": {
"post": {
"tags": [
"Users"
],
"operationId": "PostApiUsersForgotPassword",
"requestBody": {
"x-name": "resetRequest",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/ForgotPasswordRequest"
}
}
},
"x-position": 1
},
"responses": {
"200": {
"description": ""
},
"400": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/HttpValidationProblemDetails"
}
}
}
}
}
}
},
"/api/Users/resetPassword": {
"post": {
"tags": [
"Users"
],
"operationId": "PostApiUsersResetPassword",
"requestBody": {
"x-name": "resetRequest",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/ResetPasswordRequest"
}
}
},
"x-position": 1
},
"responses": {
"200": {
"description": ""
},
"400": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/HttpValidationProblemDetails"
}
}
}
}
}
}
},
"/api/Users/manage/2fa": {
"post": {
"tags": [
"Users"
],
"operationId": "PostApiUsersManage2fa",
"requestBody": {
"x-name": "tfaRequest",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/TwoFactorRequest"
}
}
},
"x-position": 1
},
"responses": {
"200": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/TwoFactorResponse"
}
}
}
},
"400": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/HttpValidationProblemDetails"
}
}
}
},
"404": {
"description": ""
}
},
"security": [
{
"JWT": []
}
]
}
},
"/api/Users/manage/info": {
"get": {
"tags": [
"Users"
],
"operationId": "GetApiUsersManageInfo",
"responses": {
"200": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/InfoResponse"
}
}
}
},
"400": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/HttpValidationProblemDetails"
}
}
}
},
"404": {
"description": ""
}
},
"security": [
{
"JWT": []
}
]
},
"post": {
"tags": [
"Users"
],
"operationId": "PostApiUsersManageInfo",
"requestBody": {
"x-name": "infoRequest",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/InfoRequest"
}
}
},
"x-position": 1
},
"responses": {
"200": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/InfoResponse"
}
}
}
},
"400": {
"description": "",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/HttpValidationProblemDetails"
}
}
}
},
"404": {
"description": ""
}
},
"security": [
{
"JWT": []
}
]
}
},
"/api/WeatherForecasts": { "/api/WeatherForecasts": {
"get": { "get": {
"tags": [ "tags": [
@@ -692,6 +340,52 @@
} }
] ]
} }
},
"/api/facebook/sign-in": {
"get": {
"tags": [
"Facebook"
],
"operationId": "Facebook_SignIn",
"responses": {
"200": {
"description": ""
}
}
}
},
"/api/google/sign-in": {
"post": {
"tags": [
"Google"
],
"operationId": "Google_SignIn",
"requestBody": {
"x-name": "request",
"content": {
"application/json": {
"schema": {
"$ref": "#/components/schemas/GoogleSignInRequest"
}
}
},
"required": true,
"x-position": 1
},
"responses": {
"200": {
"description": "",
"content": {
"application/octet-stream": {
"schema": {
"type": "string",
"format": "binary"
}
}
}
}
}
}
} }
}, },
"components": { "components": {
@@ -968,6 +662,18 @@
} }
} }
}, },
"LoginCommand": {
"type": "object",
"additionalProperties": false,
"properties": {
"emailAddress": {
"type": "string"
},
"password": {
"type": "string"
}
}
},
"MinimalUserDto": { "MinimalUserDto": {
"type": "object", "type": "object",
"additionalProperties": false, "additionalProperties": false,
@@ -983,231 +689,6 @@
} }
} }
}, },
"HttpValidationProblemDetails": {
"allOf": [
{
"$ref": "#/components/schemas/ProblemDetails"
},
{
"type": "object",
"additionalProperties": {
"nullable": true
},
"properties": {
"errors": {
"type": "object",
"additionalProperties": {
"type": "array",
"items": {
"type": "string"
}
}
}
}
}
]
},
"ProblemDetails": {
"type": "object",
"additionalProperties": {
"nullable": true
},
"properties": {
"type": {
"type": "string",
"nullable": true
},
"title": {
"type": "string",
"nullable": true
},
"status": {
"type": "integer",
"format": "int32",
"nullable": true
},
"detail": {
"type": "string",
"nullable": true
},
"instance": {
"type": "string",
"nullable": true
}
}
},
"RegisterRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"email": {
"type": "string"
},
"password": {
"type": "string"
}
}
},
"AccessTokenResponse": {
"type": "object",
"additionalProperties": false,
"properties": {
"tokenType": {
"type": "string"
},
"accessToken": {
"type": "string"
},
"expiresIn": {
"type": "integer",
"format": "int64"
},
"refreshToken": {
"type": "string"
}
}
},
"LoginRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"email": {
"type": "string"
},
"password": {
"type": "string"
},
"twoFactorCode": {
"type": "string",
"nullable": true
},
"twoFactorRecoveryCode": {
"type": "string",
"nullable": true
}
}
},
"RefreshRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"refreshToken": {
"type": "string"
}
}
},
"ResendConfirmationEmailRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"email": {
"type": "string"
}
}
},
"ForgotPasswordRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"email": {
"type": "string"
}
}
},
"ResetPasswordRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"email": {
"type": "string"
},
"resetCode": {
"type": "string"
},
"newPassword": {
"type": "string"
}
}
},
"TwoFactorResponse": {
"type": "object",
"additionalProperties": false,
"properties": {
"sharedKey": {
"type": "string"
},
"recoveryCodesLeft": {
"type": "integer",
"format": "int32"
},
"recoveryCodes": {
"type": "array",
"nullable": true,
"items": {
"type": "string"
}
},
"isTwoFactorEnabled": {
"type": "boolean"
},
"isMachineRemembered": {
"type": "boolean"
}
}
},
"TwoFactorRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"enable": {
"type": "boolean",
"nullable": true
},
"twoFactorCode": {
"type": "string",
"nullable": true
},
"resetSharedKey": {
"type": "boolean"
},
"resetRecoveryCodes": {
"type": "boolean"
},
"forgetMachine": {
"type": "boolean"
}
}
},
"InfoResponse": {
"type": "object",
"additionalProperties": false,
"properties": {
"email": {
"type": "string"
},
"isEmailConfirmed": {
"type": "boolean"
}
}
},
"InfoRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"newEmail": {
"type": "string",
"nullable": true
},
"newPassword": {
"type": "string",
"nullable": true
},
"oldPassword": {
"type": "string",
"nullable": true
}
}
},
"WeatherForecast": { "WeatherForecast": {
"type": "object", "type": "object",
"additionalProperties": false, "additionalProperties": false,
@@ -1229,6 +710,15 @@
"nullable": true "nullable": true
} }
} }
},
"GoogleSignInRequest": {
"type": "object",
"additionalProperties": false,
"properties": {
"accessToken": {
"type": "string"
}
}
} }
}, },
"securitySchemes": { "securitySchemes": {