Página Principal Explorar Ajuda
Registe-se Iniciar Sessão
midas
/
jsonjumble
1
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Árvore: d0231fd91e
Ramos Etiquetas
jsonjumble
/
Server
/
Controllers
/
JwtAuthController.cs

JwtAuthController.cs 2.1 KB
Histórico Em bruto

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. using System;
    2. 

  2. using System.Collections.Generic;
    3. 

  3. using System.IdentityModel.Tokens.Jwt;
    4. 

  4. using System.Security.Claims;
    5. 

  5. using System.Text;
    6. 

  6. using jsonjumble.Library;
    7. 

  7. using Microsoft.AspNetCore.Mvc;
    8. 

  8. using Microsoft.Extensions.Configuration;
    9. 

  9. using Microsoft.Extensions.Logging;
    10. 

  10. using Microsoft.IdentityModel.Tokens;
    11. 

  11. 

  12. namespace jsonjumble.Controllers
    13. 

  13. {
    14. 

  14. 	[ApiController]
    15. 

  15. 	[Route("jwt")]
    16. 

  16. 	[Produces("application/json")]
    17. 

  17. 	public class JwtAuthController : ControllerBase
    18. 

  18. 	{
    19. 

  19. 		private readonly ILogger<JwtAuthController> Logger;
    20. 

  20. 		private readonly IConfiguration Configuration;
    21. 

  21. 		private readonly SHA256HashGenerator sha256HashGenerator;
    22. 

  22. 

  23. 		public JwtAuthController(ILogger<JwtAuthController> logger, IConfiguration configuration)
    24. 

  24. 		{
    25. 

  25. 			Logger = logger;
    26. 

  26. 			Configuration = configuration;
    27. 

  27. 			sha256HashGenerator = Library.SHA256HashGenerator.GetInstance();
    28. 

  28. 		}
    29. 

  29. 

  30. 		[HttpPost]
    31. 

  31. 		[Route("login")]
    32. 

  32. 		public IActionResult Login([FromBody] LoginModel model)
    33. 

  33. 		{
    34. 

  34. 			List<LoginModel> usersList = Configuration.GetSection("AdminUsers").Get<List<LoginModel>>();
    35. 

  35. 			var hashedPassword = sha256HashGenerator.Get(model.Password);
    36. 

  36. 

  37. 			if (!usersList.Exists(x => x.Username.Equals(model.Username) && x.Password.Equals(hashedPassword)))
    38. 

  38. 			{
    39. 

  39. 				return Unauthorized();
    40. 

  40. 			}
    41. 

  41. 

  42. 			var authClaims = new List<Claim>
    43. 

  43. 			{
    44. 

  44. 				new Claim(ClaimTypes.Name, model.Username),
    45. 

  45. 				new Claim("path", model.Username),
    46. 

  46. 				new Claim(JwtRegisteredClaimNames.Jti, Guid.NewGuid().ToString()),
    47. 

  47. 			};
    48. 

  48. 

  49. 			var authSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(Configuration["JwtSettings:SecretKey"]));
    50. 

  50. 

  51. 			var token = new JwtSecurityToken(
    52. 

  52. 				issuer: Configuration["JwtSettings:Issuer"],
    53. 

  53. 				audience: Configuration["JwtSettings:Audience"],
    54. 

  54. 				expires: DateTime.Now.AddHours(Configuration.GetValue<int>("JwtSettings:ExpirationInHours")),
    55. 

  55. 				claims: authClaims,
    56. 

  56. 				signingCredentials: new SigningCredentials(authSigningKey, SecurityAlgorithms.HmacSha256)
    57. 

  57. 			);
    58. 

  58. 

  59. 			return Ok(new
    60. 

  60. 			{
    61. 

  61. 				token = new JwtSecurityTokenHandler().WriteToken(token),
    62. 

  62. 				expiration = token.ValidTo
    63. 

  63. 			});
    64. 

  64. 		}
    65. 

  65. 		public class LoginModel
    66. 

  66. 		{
    67. 

  67. 			public string Username { get; set; }
    68. 

  68. 			public string Password { get; set; }
    69. 

  69. 		}
    70. 

  70. 	}
    71. 

  71. }
    72.