IW4M-Admin/WebfrontCore/Controllers/AccountController.cs

using Microsoft.AspNetCore.Mvc;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Authentication.Cookies;
using System.Security.Claims;
using System;
using Microsoft.AspNetCore.Authentication;

namespace WebfrontCore.Controllers
{
    public class AccountController : BaseController
    {
        [HttpGet]
        public async Task<IActionResult> LoginAsync(int clientId, string password)
        {
            if (clientId == 0 || string.IsNullOrEmpty(password))
            {
                return Unauthorized();
            }

            try
            {
                var client = Manager.GetPrivilegedClients()[clientId];
                string[] hashedPassword = await Task.FromResult(SharedLibraryCore.Helpers.Hashing.Hash(password, client.PasswordSalt));

                if (hashedPassword[0] == client.Password)
                {
                    var claims = new[]
                    {
                        new Claim(ClaimTypes.NameIdentifier, client.Name),
                        new Claim(ClaimTypes.Role, client.Level.ToString()),
                        new Claim(ClaimTypes.Sid, client.ClientId.ToString())
                    };

                    var claimsIdentity = new ClaimsIdentity(claims, "login");
                    var claimsPrinciple = new ClaimsPrincipal(claimsIdentity);
                    await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, claimsPrinciple, new AuthenticationProperties()
                    {
                        AllowRefresh = true,
                        ExpiresUtc = DateTime.UtcNow.AddDays(30),
                        IsPersistent = true,
                        IssuedUtc = DateTime.UtcNow
                    });

                    return Ok();
                }
            }

            catch (Exception)
            {
                return Unauthorized();
            }

            return Unauthorized();
        }

        [HttpGet]
        public async Task<IActionResult> LogoutAsync()
        {
            await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
            return RedirectToAction("Index", "Home");
        }
    }
}
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								using Microsoft.AspNetCore.Mvc;
 								using System.Threading.Tasks;
 								using Microsoft.AspNetCore.Authentication.Cookies;
 								using System.Security.Claims;
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								using System;
-												migrating to .NET Core 2.0

											
										
										
											2018-04-08 02:44:42 -04:00
+								using Microsoft.AspNetCore.Authentication;
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
 								namespace WebfrontCore.Controllers
 								{
 								    public class AccountController : BaseController
 								    {
 								        [HttpGet]
-												fix accidental improper name for login ClientId
added label field to InputInfo
added logout button
revert graph color

											
										
										
											2018-04-05 18:50:04 -04:00
+								        public async Task<IActionResult> LoginAsync(int clientId, string password)
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								        {
-												fix accidental improper name for login ClientId
added label field to InputInfo
added logout button
revert graph color

											
										
										
											2018-04-05 18:50:04 -04:00
+								            if (clientId == 0 || string.IsNullOrEmpty(password))
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								            {
 								                return Unauthorized();
 								            }
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								            try
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								            {
-												Seperated the application back into a seperate project
webfront is just a library now

											
										
										
											2018-04-08 14:48:40 -04:00
+								                var client = Manager.GetPrivilegedClients()[clientId];
-												migrating to .NET Core 2.0

											
										
										
											2018-04-08 02:44:42 -04:00
+								                string[] hashedPassword = await Task.FromResult(SharedLibraryCore.Helpers.Hashing.Hash(password, client.PasswordSalt));
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
 								                if (hashedPassword[0] == client.Password)
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								                {
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								                    var claims = new[]
 								                    {
-												don't migrate context on MySql

											
										
										
											2018-04-07 17:47:21 -04:00
+								                        new Claim(ClaimTypes.NameIdentifier, client.Name),
 								                        new Claim(ClaimTypes.Role, client.Level.ToString()),
 								                        new Claim(ClaimTypes.Sid, client.ClientId.ToString())
 								                    };
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								                    var claimsIdentity = new ClaimsIdentity(claims, "login");
 								                    var claimsPrinciple = new ClaimsPrincipal(claimsIdentity);
-												migrating to .NET Core 2.0

											
										
										
											2018-04-08 02:44:42 -04:00
+								                    await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, claimsPrinciple, new AuthenticationProperties()
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								                    {
 								                        AllowRefresh = true,
 								                        ExpiresUtc = DateTime.UtcNow.AddDays(30),
 								                        IsPersistent = true,
 								                        IssuedUtc = DateTime.UtcNow
 								                    });
 								                    return Ok();
 								                }
 								            }
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
-												auth cookie expires after 30 days
only check hit offset when distance > 3 meters
fix null reference on unauthorized user
fixed stats not showing on profile if anticheat disabled
server client history turns red server is unresponsive

											
										
										
											2018-04-05 00:38:45 -04:00
+								            catch (Exception)
 								            {
 								                return Unauthorized();
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								            }
 								            return Unauthorized();
 								        }
-												fix accidental improper name for login ClientId
added label field to InputInfo
added logout button
revert graph color

											
										
										
											2018-04-05 18:50:04 -04:00
 								        [HttpGet]
 								        public async Task<IActionResult> LogoutAsync()
 								        {
-												migrating to .NET Core 2.0

											
										
										
											2018-04-08 02:44:42 -04:00
+								            await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
-												fix accidental improper name for login ClientId
added label field to InputInfo
added logout button
revert graph color

											
										
										
											2018-04-05 18:50:04 -04:00
+								            return RedirectToAction("Index", "Home");
 								        }
-												RCon error handling is clearer
Show chat on mobile view of server overview
basic authentication
switched to extreme-ip-lookup for ip lookups (SSL)

											
										
										
											2018-04-04 15:38:34 -04:00
+								    }
 								}