Add 'backend/' from commit '040cfd7a75423d4e6136e58a67b40579af4ee966'

git-subtree-dir: backend git-subtree-mainline: ab911955ed git-subtree-split: 040cfd7a75
2025-01-15 15:24:30 -05:00
parent ab911955ed 040cfd7a75
commit 82ec07e98b
179 changed files with 14349 additions and 0 deletions
--- a/backend/src/Web/Controllers/FacebookController.cs
+++ b/backend/src/Web/Controllers/FacebookController.cs
@@ -0,0 +1,60 @@
+using System.Security.Claims;
+using Hutopy.Web.Common;
+using Hutopy.Web.Common.Security;
+using Hutopy.Web.Features.Users;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.Cookies;
+using Microsoft.AspNetCore.Authentication.Facebook;
+using Microsoft.AspNetCore.Mvc;
+
+namespace Hutopy.Web.Controllers;
+
+public class FacebookController(
+    IdentityService identityService)
+    : Controller
+{
+    [Microsoft.AspNetCore.Mvc.HttpGet("/api/facebook/sign-in")]
+    public async Task SignIn()
+    {
+        await HttpContext.ChallengeAsync(FacebookDefaults.AuthenticationScheme,
+            new AuthenticationProperties { RedirectUri = Url.Action("Authorize") });
+    }
+
+    public async Task<IActionResult> Authorize()
+    {
+        var authenticateResult = await HttpContext.AuthenticateAsync(FacebookDefaults.AuthenticationScheme);
+
+        if (!authenticateResult.Succeeded) return BadRequest();
+
+        var claims = authenticateResult.Principal.Claims.ToList();
+
+        var name = claims.FirstOrDefault(c => c.Type == ClaimTypes.Name)?.Value ?? "";
+        var email = claims.FirstOrDefault(c => c.Type == ClaimTypes.Email)?.Value ?? "";
+        var givenName = claims.FirstOrDefault(c => c.Type == ClaimTypes.GivenName)?.Value ?? "";
+        var familyName = claims.FirstOrDefault(c => c.Type == ClaimTypes.Surname)?.Value ?? "";
+
+        var claimsIdentity = new ClaimsIdentity(
+            new List<Claim>
+            {
+                new(ClaimTypes.Name, name),
+                new(ClaimTypes.Email, email),
+                new(ClaimTypes.GivenName, givenName),
+                new(ClaimTypes.Surname, familyName)
+            },
+            CookieAuthenticationDefaults.AuthenticationScheme);
+
+        if (await identityService.FindUserByEmailAsync(email) != null)
+        {
+            await HttpContext.SignInAsync(
+                CookieAuthenticationDefaults.AuthenticationScheme,
+                new ClaimsPrincipal(claimsIdentity));
+            return Redirect("/");
+        }
+
+        await identityService.CreateUserAsync(email, givenName, givenName, familyName,
+            PasswordGenerator.GeneratePassword(8, 10));
+        await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme,
+            new ClaimsPrincipal(claimsIdentity));
+        return Redirect("/");
+    }
+}