添加项目文件。
This commit is contained in:
SpecialX
287
TechHelper.Server/Controllers/AccountController.cs
Normal file
287
TechHelper.Server/Controllers/AccountController.cs
Normal file
@@ -0,0 +1,287 @@
|
||||
using TechHelper.Context;
|
||||
using TechHelper.Services;
|
||||
using Entities.DTO;
|
||||
using Microsoft.AspNetCore.Http;
|
||||
using Microsoft.AspNetCore.Identity;
|
||||
using Microsoft.AspNetCore.Mvc;
|
||||
using TechHelper.Features;
|
||||
using Microsoft.AspNetCore.WebUtilities;
|
||||
using Entities.Contracts;
|
||||
|
||||
namespace TechHelper.Controllers
|
||||
{
|
||||
[Route("api/account")]
|
||||
[ApiController]
|
||||
public class AccountController : ControllerBase
|
||||
{
|
||||
private readonly UserManager<User> _userManager;
|
||||
private readonly IUserRegistrationService _userRegistrationService;
|
||||
private IAuthenticationService _authenticationService;
|
||||
private readonly IEmailSender _emailSender;
|
||||
|
||||
public AccountController(UserManager<User> userManager,
|
||||
IUserRegistrationService userRegistrationService,
|
||||
IEmailSender emailSender,
|
||||
IAuthenticationService authenticationService)
|
||||
{
|
||||
_userManager = userManager;
|
||||
this._userRegistrationService = userRegistrationService;
|
||||
_emailSender = emailSender;
|
||||
_authenticationService = authenticationService;
|
||||
}
|
||||
|
||||
[HttpPost("register")]
|
||||
public async Task<IActionResult> RegisterUsesr(
|
||||
[FromBody] UserForRegistrationDto userForRegistrationDto)
|
||||
{
|
||||
#region V1
|
||||
//if (userForRegistrationDto == null || !ModelState.IsValid)
|
||||
// return BadRequest();
|
||||
|
||||
//var user = new User
|
||||
//{
|
||||
// UserName = userForRegistrationDto.Name,
|
||||
// Email = userForRegistrationDto.Email,
|
||||
// PhoneNumber = userForRegistrationDto.PhoneNumber,
|
||||
// Address = userForRegistrationDto.HomeAddress
|
||||
//};
|
||||
|
||||
//var result = await _userManager.CreateAsync(user, userForRegistrationDto.Password);
|
||||
//if (!result.Succeeded)
|
||||
//{
|
||||
// var errors = result.Errors.Select(e => e.Description);
|
||||
// return BadRequest(new ResponseDto { Errors = errors });
|
||||
//}
|
||||
|
||||
//await _userManager.SetTwoFactorEnabledAsync(user, true);
|
||||
//var token = await _userManager.GenerateEmailConfirmationTokenAsync(user);
|
||||
|
||||
//var param = new Dictionary<string, string>
|
||||
//{
|
||||
// {"token", token},
|
||||
// {"email", userForRegistrationDto.Email}
|
||||
//};
|
||||
|
||||
//var callback = QueryHelpers.AddQueryString(userForRegistrationDto.ClientURI, param);
|
||||
//try
|
||||
//{
|
||||
// await _emailSender.SendEmailAsync(user.Email.ToString(), "Email Confirmation token", callback);
|
||||
//}
|
||||
//catch (Exception ex)
|
||||
//{
|
||||
//}
|
||||
|
||||
//await _userManager.AddToRoleAsync(user, userForRegistrationDto.Roles.ToString());
|
||||
|
||||
//return StatusCode(201);
|
||||
#endregion
|
||||
#region V2
|
||||
|
||||
if (!ModelState.IsValid)
|
||||
return BadRequest(new ApiResponse(false, ModelState));
|
||||
|
||||
var response = await _userRegistrationService.RegisterNewUserAsync(userForRegistrationDto);
|
||||
|
||||
if (response.Status)
|
||||
{
|
||||
return StatusCode(201, response);
|
||||
}
|
||||
else
|
||||
{
|
||||
return BadRequest(response);
|
||||
}
|
||||
#endregion
|
||||
}
|
||||
|
||||
[HttpPost("login")]
|
||||
public async Task<IActionResult> Logion(
|
||||
[FromBody] UserForAuthenticationDto userForAuthentication)
|
||||
{
|
||||
var user = await _userManager.FindByEmailAsync(userForAuthentication.Email);
|
||||
|
||||
if (user == null )
|
||||
{
|
||||
return Unauthorized(new AuthResponseDto
|
||||
{
|
||||
ErrorMessage = "Invalid Request"
|
||||
});
|
||||
}
|
||||
|
||||
//if(!await _userManager.IsEmailConfirmedAsync(user))
|
||||
// return Unauthorized(new AuthResponseDto
|
||||
// {
|
||||
// ErrorMessage = "Email is not confirmed"
|
||||
// });
|
||||
|
||||
if(await _userManager.IsLockedOutAsync(user))
|
||||
return Unauthorized(new AuthResponseDto
|
||||
{
|
||||
ErrorMessage = "This account is locked out"
|
||||
});
|
||||
|
||||
if (!await _userManager.CheckPasswordAsync(user,
|
||||
userForAuthentication.Password))
|
||||
{
|
||||
await _userManager.AccessFailedAsync(user);
|
||||
|
||||
if(await _userManager.IsLockedOutAsync(user))
|
||||
{
|
||||
var content = $"Your account is locked out."
|
||||
+ $"if you want to reset the password, you can use Forgot password link On the login page";
|
||||
|
||||
await _emailSender.SendEmailAsync(user.Email, "Locked out account information" ,content );
|
||||
}
|
||||
|
||||
return Unauthorized(new AuthResponseDto
|
||||
{
|
||||
ErrorMessage = "Invalid Authentication"
|
||||
});
|
||||
}
|
||||
|
||||
if(await _userManager.GetTwoFactorEnabledAsync(user))
|
||||
return await GenerateOTPFor2StepVerification(user);
|
||||
|
||||
var token = await _authenticationService.GetToken(user);
|
||||
|
||||
user.RefreshToken = _authenticationService.GenerateRefreshToken();
|
||||
user.RefreshTokenExpiryTime = DateTime.Now.AddDays(7);
|
||||
await _userManager.UpdateAsync(user);
|
||||
|
||||
|
||||
await _userManager.ResetAccessFailedCountAsync(user);
|
||||
|
||||
return Ok(new AuthResponseDto
|
||||
{
|
||||
IsAuthSuccessful = true,
|
||||
Token = token,
|
||||
RefreshToken = user.RefreshToken
|
||||
});
|
||||
}
|
||||
|
||||
private async Task<IActionResult> GenerateOTPFor2StepVerification(User user)
|
||||
{
|
||||
var providers = await _userManager.GetValidTwoFactorProvidersAsync(user);
|
||||
if(!providers.Contains("Email"))
|
||||
{
|
||||
return Unauthorized(new AuthResponseDto
|
||||
{
|
||||
ErrorMessage = "Invalid 2-Step verification Provider"
|
||||
});
|
||||
}
|
||||
|
||||
var token = await _userManager.GenerateTwoFactorTokenAsync(user, "Email");
|
||||
|
||||
await _emailSender.SendEmailAsync(user.Email, "Authentication token", token);
|
||||
|
||||
return Ok(new AuthResponseDto
|
||||
{
|
||||
Is2StepVerificationRequired = true,
|
||||
Provider = "Email"
|
||||
});
|
||||
}
|
||||
|
||||
[HttpPost("forgotPassword")]
|
||||
public async Task<IActionResult> ForgotPassword(
|
||||
[FromBody] ForgotPasswordDto forgotPasswordDto)
|
||||
{
|
||||
var user = await _userManager.FindByEmailAsync(forgotPasswordDto.Email);
|
||||
if (user == null)
|
||||
return BadRequest("Invalid Request");
|
||||
|
||||
var token = await _userManager.GeneratePasswordResetTokenAsync(user);
|
||||
|
||||
var param = new Dictionary<string, string>
|
||||
{
|
||||
{"token", token},
|
||||
{"email", forgotPasswordDto.Email}
|
||||
};
|
||||
|
||||
var callback = QueryHelpers.AddQueryString(forgotPasswordDto.ClientURI, param);
|
||||
await _emailSender.SendEmailAsync( user.Email.ToString() , "Reset Password Token", callback);
|
||||
|
||||
return Ok();
|
||||
}
|
||||
|
||||
|
||||
[HttpPost("resetPassword")]
|
||||
public async Task<IActionResult> ResetPassword(
|
||||
[FromBody] ResetPasswordDto resetPasswordDto)
|
||||
{
|
||||
var errorResponse = new ResetPasswordResponseDto
|
||||
{
|
||||
Errors = new string[] { "Reset Password Failed" }
|
||||
};
|
||||
if (!ModelState.IsValid)
|
||||
return BadRequest(errorResponse);
|
||||
|
||||
var user = await _userManager.FindByEmailAsync(resetPasswordDto.Email);
|
||||
if (user == null) return BadRequest(errorResponse);
|
||||
|
||||
var resetPassResult = await _userManager.ResetPasswordAsync(user,
|
||||
resetPasswordDto.Token, resetPasswordDto.Password);
|
||||
|
||||
if (!resetPassResult.Succeeded)
|
||||
{
|
||||
var errors = resetPassResult.Errors.Select(e => e.Description);
|
||||
return BadRequest(new ResetPasswordResponseDto { Errors = errors });
|
||||
}
|
||||
|
||||
await _userManager.SetLockoutEndDateAsync(user, null);
|
||||
|
||||
return Ok(new ResetPasswordResponseDto { IsResetPasswordSuccessful = true});
|
||||
}
|
||||
|
||||
[HttpGet("emailconfirmation")]
|
||||
public async Task<IActionResult> EmailConfirmaation([FromQuery] string email,
|
||||
[FromQuery] string token)
|
||||
{
|
||||
var user = await _userManager.FindByEmailAsync(email);
|
||||
if (user == null) return BadRequest();
|
||||
|
||||
var confimResult = await _userManager.ConfirmEmailAsync(user, token);
|
||||
if (!confimResult.Succeeded) return BadRequest();
|
||||
|
||||
return Ok();
|
||||
}
|
||||
|
||||
|
||||
[HttpPost("TwoStepVerification")]
|
||||
public async Task<IActionResult> TwoStepVerification(
|
||||
[FromBody] TwoFactorVerificationDto twoFactorVerificationDto)
|
||||
{
|
||||
if(!ModelState.IsValid) return BadRequest(
|
||||
new AuthResponseDto
|
||||
{
|
||||
ErrorMessage = "Invalid Request"
|
||||
});
|
||||
|
||||
|
||||
var user = await _userManager.FindByEmailAsync(twoFactorVerificationDto.Email);
|
||||
if(user == null) return BadRequest(
|
||||
new AuthResponseDto
|
||||
{
|
||||
ErrorMessage = "Invalid Request"
|
||||
});
|
||||
|
||||
var validVerification = await _userManager.VerifyTwoFactorTokenAsync(user, twoFactorVerificationDto.Provider, twoFactorVerificationDto.TwoFactorToken);
|
||||
if(!validVerification) return BadRequest(
|
||||
new AuthResponseDto
|
||||
{
|
||||
ErrorMessage = "Invalid Request"
|
||||
});
|
||||
|
||||
var token = await _authenticationService.GetToken(user);
|
||||
user.RefreshToken = _authenticationService.GenerateRefreshToken();
|
||||
user.RefreshTokenExpiryTime = DateTime.Now.AddDays(7);
|
||||
await _userManager.UpdateAsync(user);
|
||||
await _userManager.ResetAccessFailedCountAsync(user);
|
||||
|
||||
return Ok(new AuthResponseDto
|
||||
{
|
||||
IsAuthSuccessful = true,
|
||||
Token = token,
|
||||
RefreshToken = user.RefreshToken
|
||||
});
|
||||
}
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user