IW4M-Admin/WebfrontCore/Controllers/AccountController.cs

using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.AspNetCore.Mvc;
using System;
using System.Security.Claims;
using System.Threading.Tasks;

namespace WebfrontCore.Controllers
{
    public class AccountController : BaseController
    {
        /// <summary>
        /// life span in months
        /// </summary>
        private const int COOKIE_LIFESPAN = 3;

        [HttpGet]
        public async Task<IActionResult> LoginAsync(int clientId, string password)
        {
            if (clientId == 0 || string.IsNullOrEmpty(password))
            {
                return Unauthorized();
            }

            try
            {
                var client = Manager.GetPrivilegedClients()[clientId];

                bool loginSuccess = Manager.TokenAuthenticator.AuthorizeToken(client.NetworkId, password) ||
                    (await Task.FromResult(SharedLibraryCore.Helpers.Hashing.Hash(password, client.PasswordSalt)))[0] == client.Password;

                if (loginSuccess)
                {
                    var claims = new[]
                    {
                        new Claim(ClaimTypes.NameIdentifier, client.Name),
                        new Claim(ClaimTypes.Role, client.Level.ToString()),
                        new Claim(ClaimTypes.Sid, client.ClientId.ToString()),
                        new Claim(ClaimTypes.PrimarySid, client.NetworkId.ToString())
                    };

                    var claimsIdentity = new ClaimsIdentity(claims, "login");
                    var claimsPrinciple = new ClaimsPrincipal(claimsIdentity);
                    await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, claimsPrinciple, new AuthenticationProperties()
                    {
                        AllowRefresh = true,
                        ExpiresUtc = DateTime.UtcNow.AddMonths(COOKIE_LIFESPAN),
                        IsPersistent = true,
                        IssuedUtc = DateTime.UtcNow
                    });

                    return Ok();
                }
            }

            catch (Exception)
            {
                return Unauthorized();
            }

            return Unauthorized();
        }

        [HttpGet]
        public async Task<IActionResult> LogoutAsync()
        {
            await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
            return RedirectToAction("Index", "Home");
        }
    }
}
-												begin implementation of token authentication
replacing password authentication ingame
precompile views for webfront
issue #66
issue #52

											
										
										
											2019-02-15 23:19:59 -05:00
+								using Microsoft.AspNetCore.Authentication;
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								using Microsoft.AspNetCore.Authentication.Cookies;
-												begin implementation of token authentication
replacing password authentication ingame
precompile views for webfront
issue #66
issue #52

											
										
										
											2019-02-15 23:19:59 -05:00
+								using Microsoft.AspNetCore.Mvc;
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								using System;
-												begin implementation of token authentication
replacing password authentication ingame
precompile views for webfront
issue #66
issue #52

											
										
										
											2019-02-15 23:19:59 -05:00
+								using System.Security.Claims;
 								using System.Threading.Tasks;
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
 								namespace WebfrontCore.Controllers
 								{
 								    public class AccountController : BaseController
 								    {
-												re-enable login to webfront with password
update cookie to last 3 months
add configuration option to limit # of rss feed items
prevent database tracking of bots if ignore bots requested
add last map and last server played to profile

											
										
										
											2019-02-22 20:06:51 -05:00
+								        /// <summary>
 								        /// life span in months
 								        /// </summary>
 								        private const int COOKIE_LIFESPAN = 3;
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								        [HttpGet]
-												fix accidental improper name for login ClientId
added label field to InputInfo
added logout button
revert graph color

											
										
										
											2018-04-05 18:50:04 -04:00
+								        public async Task<IActionResult> LoginAsync(int clientId, string password)
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								        {
-												fix accidental improper name for login ClientId
added label field to InputInfo
added logout button
revert graph color

											
										
										
											2018-04-05 18:50:04 -04:00
+								            if (clientId == 0 || string.IsNullOrEmpty(password))
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								            {
 								                return Unauthorized();
 								            }
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								            try
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								            {
-												Seperated the application back into a seperate project
webfront is just a library now

											
										
										
											2018-04-08 14:48:40 -04:00
+								                var client = Manager.GetPrivilegedClients()[clientId];
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
-												re-enable login to webfront with password
update cookie to last 3 months
add configuration option to limit # of rss feed items
prevent database tracking of bots if ignore bots requested
add last map and last server played to profile

											
										
										
											2019-02-22 20:06:51 -05:00
+								                bool loginSuccess = Manager.TokenAuthenticator.AuthorizeToken(client.NetworkId, password) ||
 								                    (await Task.FromResult(SharedLibraryCore.Helpers.Hashing.Hash(password, client.PasswordSalt)))[0] == client.Password;
-												fix damage event not including log line
complete initiall implementation for "2FA"
issue #52
issue #66

											
										
										
											2019-02-16 16:04:40 -05:00
-												re-enable login to webfront with password
update cookie to last 3 months
add configuration option to limit # of rss feed items
prevent database tracking of bots if ignore bots requested
add last map and last server played to profile

											
										
										
											2019-02-22 20:06:51 -05:00
+								                if (loginSuccess)
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								                {
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								                    var claims = new[]
 								                    {
-												don't migrate context on MySql

											
										
										
											2018-04-07 17:47:21 -04:00
+								                        new Claim(ClaimTypes.NameIdentifier, client.Name),
 								                        new Claim(ClaimTypes.Role, client.Level.ToString()),
-												fix duplicate bot welcomes
fix prompt bool incorrect default value
rename GameEvent.Remote to GameEvent.IsRemote
include NetworkId in webfront claims
fix non descript error message appearing when something fails and localization is not initialized

											
										
										
											2019-01-03 15:39:22 -05:00
+								                        new Claim(ClaimTypes.Sid, client.ClientId.ToString()),
 								                        new Claim(ClaimTypes.PrimarySid, client.NetworkId.ToString())
-												don't migrate context on MySql

											
										
										
											2018-04-07 17:47:21 -04:00
+								                    };
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								                    var claimsIdentity = new ClaimsIdentity(claims, "login");
 								                    var claimsPrinciple = new ClaimsPrincipal(claimsIdentity);
-												migrating to .NET Core 2.0

											
										
										
											2018-04-08 02:44:42 -04:00
+								                    await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, claimsPrinciple, new AuthenticationProperties()
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								                    {
 								                        AllowRefresh = true,
-												re-enable login to webfront with password
update cookie to last 3 months
add configuration option to limit # of rss feed items
prevent database tracking of bots if ignore bots requested
add last map and last server played to profile

											
										
										
											2019-02-22 20:06:51 -05:00
+								                        ExpiresUtc = DateTime.UtcNow.AddMonths(COOKIE_LIFESPAN),
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								                        IsPersistent = true,
 								                        IssuedUtc = DateTime.UtcNow
 								                    });
 								                    return Ok();
 								                }
 								            }
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								            catch (Exception)
 								            {
 								                return Unauthorized();
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								            }
 								            return Unauthorized();
 								        }
-												fix accidental improper name for login ClientId
added label field to InputInfo
added logout button
revert graph color

											
										
										
											2018-04-05 18:50:04 -04:00
 								        [HttpGet]
 								        public async Task<IActionResult> LogoutAsync()
 								        {
-												migrating to .NET Core 2.0

											
										
										
											2018-04-08 02:44:42 -04:00
+								            await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
-												fix accidental improper name for login ClientId
added label field to InputInfo
added logout button
revert graph color

											
										
										
											2018-04-05 18:50:04 -04:00
+								            return RedirectToAction("Index", "Home");
 								        }
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								    }
 								}