2018-04-04 15:38:34 -04:00
|
|
|
|
using Microsoft.AspNetCore.Mvc;
|
|
|
|
|
using System.Threading.Tasks;
|
|
|
|
|
using Microsoft.AspNetCore.Authentication.Cookies;
|
|
|
|
|
using System.Security.Claims;
|
2018-04-05 00:38:45 -04:00
|
|
|
|
using System;
|
2018-04-08 02:44:42 -04:00
|
|
|
|
using Microsoft.AspNetCore.Authentication;
|
2018-04-04 15:38:34 -04:00
|
|
|
|
|
|
|
|
|
namespace WebfrontCore.Controllers
|
|
|
|
|
{
|
|
|
|
|
public class AccountController : BaseController
|
|
|
|
|
{
|
|
|
|
|
[HttpGet]
|
2018-04-05 18:50:04 -04:00
|
|
|
|
public async Task<IActionResult> LoginAsync(int clientId, string password)
|
2018-04-04 15:38:34 -04:00
|
|
|
|
{
|
2018-04-05 18:50:04 -04:00
|
|
|
|
if (clientId == 0 || string.IsNullOrEmpty(password))
|
2018-04-04 15:38:34 -04:00
|
|
|
|
{
|
|
|
|
|
return Unauthorized();
|
|
|
|
|
}
|
|
|
|
|
|
2018-04-05 00:38:45 -04:00
|
|
|
|
try
|
2018-04-04 15:38:34 -04:00
|
|
|
|
{
|
2018-04-05 18:50:04 -04:00
|
|
|
|
var client = IW4MAdmin.Program.ServerManager.PrivilegedClients[clientId];
|
2018-04-08 02:44:42 -04:00
|
|
|
|
string[] hashedPassword = await Task.FromResult(SharedLibraryCore.Helpers.Hashing.Hash(password, client.PasswordSalt));
|
2018-04-05 00:38:45 -04:00
|
|
|
|
|
|
|
|
|
if (hashedPassword[0] == client.Password)
|
2018-04-04 15:38:34 -04:00
|
|
|
|
{
|
2018-04-05 00:38:45 -04:00
|
|
|
|
var claims = new[]
|
|
|
|
|
{
|
2018-04-07 17:47:21 -04:00
|
|
|
|
new Claim(ClaimTypes.NameIdentifier, client.Name),
|
|
|
|
|
new Claim(ClaimTypes.Role, client.Level.ToString()),
|
|
|
|
|
new Claim(ClaimTypes.Sid, client.ClientId.ToString())
|
|
|
|
|
};
|
2018-04-04 15:38:34 -04:00
|
|
|
|
|
2018-04-05 00:38:45 -04:00
|
|
|
|
var claimsIdentity = new ClaimsIdentity(claims, "login");
|
|
|
|
|
var claimsPrinciple = new ClaimsPrincipal(claimsIdentity);
|
2018-04-08 02:44:42 -04:00
|
|
|
|
await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, claimsPrinciple, new AuthenticationProperties()
|
2018-04-05 00:38:45 -04:00
|
|
|
|
{
|
|
|
|
|
AllowRefresh = true,
|
|
|
|
|
ExpiresUtc = DateTime.UtcNow.AddDays(30),
|
|
|
|
|
IsPersistent = true,
|
|
|
|
|
IssuedUtc = DateTime.UtcNow
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
return Ok();
|
|
|
|
|
}
|
|
|
|
|
}
|
2018-04-04 15:38:34 -04:00
|
|
|
|
|
2018-04-05 00:38:45 -04:00
|
|
|
|
catch (Exception)
|
|
|
|
|
{
|
|
|
|
|
return Unauthorized();
|
2018-04-04 15:38:34 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return Unauthorized();
|
|
|
|
|
}
|
2018-04-05 18:50:04 -04:00
|
|
|
|
|
|
|
|
|
[HttpGet]
|
|
|
|
|
public async Task<IActionResult> LogoutAsync()
|
|
|
|
|
{
|
2018-04-08 02:44:42 -04:00
|
|
|
|
await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
|
2018-04-05 18:50:04 -04:00
|
|
|
|
return RedirectToAction("Index", "Home");
|
|
|
|
|
}
|
2018-04-04 15:38:34 -04:00
|
|
|
|
}
|
|
|
|
|
}
|