DotBased/DotBased.ASP.Auth/Services/SecurityService.cs

using System.Security.Claims;
using DotBased.ASP.Auth.Domains;
using DotBased.ASP.Auth.Domains.Auth;
using DotBased.ASP.Auth.Domains.Identity;
using DotBased.Extensions;
using DotBased.Logging;
using Microsoft.AspNetCore.Components.Authorization;

namespace DotBased.ASP.Auth.Services;

public class SecurityService
{
    public SecurityService(IAuthDataRepository authDataRepository, AuthDataCache dataCache)
    {
        _authDataRepository = authDataRepository;
        _dataCache = dataCache;
        _logger = LogService.RegisterLogger(typeof(SecurityService));
    }

    private readonly IAuthDataRepository _authDataRepository;
    private readonly AuthDataCache _dataCache;
    private readonly ILogger _logger;

    public async Task<Result<AuthenticationState>> GetAuthenticationFromSession(string id)
    {
        if (id.IsNullOrWhiteSpace())
            return Result<AuthenticationState>.Failed("No valid id!");
        AuthenticationStateModel? authState = null;
        var stateCache = _dataCache.RequestSessionState(id);
        if (!stateCache.Success || stateCache.Value == null)
        {
            var stateResult = await _authDataRepository.GetAuthenticationStateAsync(id);
            if (stateResult is { Success: true, Value: not null })
                authState = stateResult.Value;
        }
        else
            authState = stateCache.Value;

        if (authState == null)
            return Result<AuthenticationState>.Failed("Failed to get state!");

        var userResult = await _authDataRepository.GetUserAsync(authState.UserId, string.Empty, string.Empty);
        if (userResult is not { Success: true, Value: not null })
            return Result<AuthenticationState>.Failed("Failed to get user from state!");
        var claims = new List<Claim>()
        {
            new(ClaimTypes.Name, userResult.Value.Name),
            new(ClaimTypes.NameIdentifier, userResult.Value.UserName),
            new(ClaimTypes.Surname, userResult.Value.FamilyName),
            new(ClaimTypes.Email, userResult.Value.Email)
        };
        claims.AddRange(userResult.Value.Roles.Select(role => new Claim(ClaimTypes.Role, role.Name)).ToList());
        var claimsIdentity = new ClaimsIdentity(claims, BasedAuthDefaults.AuthenticationScheme);
        var auth = new AuthenticationState(new ClaimsPrincipal(claimsIdentity));
        return Result<AuthenticationState>.Ok(auth);
    }

    public async Task<Result<AuthenticationStateModel>> LoginAsync(LoginModel login)
    {
        try
        {
            UserModel? user = null;
            Result<UserModel> usrResult;
            if (!login.UserName.IsNullOrWhiteSpace())
            {
                usrResult = await _authDataRepository.GetUserAsync(string.Empty, string.Empty, login.UserName);
                if (usrResult is { Success: true, Value: not null })
                    user = usrResult.Value;
            }
            else if (!login.Email.IsNullOrWhiteSpace())
            {
                usrResult = await _authDataRepository.GetUserAsync(string.Empty, login.Email, string.Empty);
                if (usrResult is { Success: true, Value: not null })
                    user = usrResult.Value;
            }
            else
                return Result<AuthenticationStateModel>.Failed("Username & Email is empty, cannot login!");

            if (user == null || !usrResult.Success)
                return Result<AuthenticationStateModel>.Failed("No user found!");

            if (user.PasswordHash != login.Password) //TODO: Hash password and compare
                return Result<AuthenticationStateModel>.Failed("Login failed, invalid password.");
            var state = new AuthenticationStateModel(user);
            var authResult = await _authDataRepository.CreateAuthenticationStateAsync(state);
            if (!authResult.Success)
                return Result<AuthenticationStateModel>.Failed("Failed to store session to database!");
            _dataCache.CacheSessionState(state);
            return Result<AuthenticationStateModel>.Ok(state);
        }
        catch (Exception e)
        {
            _logger.Error(e, "Failed to login!");
            return Result<AuthenticationStateModel>.Failed("Login failed, exception thrown!");
        }
    }

    public async Task<Result> LogoutAsync(string state)
    {
        try
        {
            if (state.IsNullOrWhiteSpace())
                return Result.Failed($"Argument {nameof(state)} is empty!");

            var stateResult = await _authDataRepository.GetAuthenticationStateAsync(state);
            if (!stateResult.Success || stateResult.Value == null)
                return stateResult;
            var authState = stateResult.Value;

            _dataCache.PurgeSessionState(state);
            var updatedStateResult = await _authDataRepository.DeleteAuthenticationStateAsync(authState);
            if (updatedStateResult.Success) return updatedStateResult;
            _logger.Warning(updatedStateResult.Message);
            return updatedStateResult;
        }
        catch (Exception e)
        {
            _logger.Error(e, "Failed to logout!");
            return Result.Failed("Failed to logout, exception thrown!");
        }
    }
}
Working base login 2024-11-02 01:57:25 +01:00			`using System.Security.Claims;`
			`using DotBased.ASP.Auth.Domains;`
			`using DotBased.ASP.Auth.Domains.Auth;`
			`using DotBased.ASP.Auth.Domains.Identity;`
			`using DotBased.Extensions;`
			`using DotBased.Logging;`
			`using Microsoft.AspNetCore.Components.Authorization;`

			`namespace DotBased.ASP.Auth.Services;`

			`public class SecurityService`
			`{`
			`public SecurityService(IAuthDataRepository authDataRepository, AuthDataCache dataCache)`
			`{`
			`_authDataRepository = authDataRepository;`
			`_dataCache = dataCache;`
			`_logger = LogService.RegisterLogger(typeof(SecurityService));`
			`}`

			`private readonly IAuthDataRepository _authDataRepository;`
			`private readonly AuthDataCache _dataCache;`
			`private readonly ILogger _logger;`

			`public async Task<Result<AuthenticationState>> GetAuthenticationFromSession(string id)`
			`{`
			`if (id.IsNullOrWhiteSpace())`
			`return Result<AuthenticationState>.Failed("No valid id!");`
			`AuthenticationStateModel? authState = null;`
			`var stateCache = _dataCache.RequestSessionState(id);`
			`if (!stateCache.Success \|\| stateCache.Value == null)`
			`{`
			`var stateResult = await _authDataRepository.GetAuthenticationStateAsync(id);`
			`if (stateResult is { Success: true, Value: not null })`
			`authState = stateResult.Value;`
			`}`
			`else`
			`authState = stateCache.Value;`

			`if (authState == null)`
			`return Result<AuthenticationState>.Failed("Failed to get state!");`

			`var userResult = await _authDataRepository.GetUserAsync(authState.UserId, string.Empty, string.Empty);`
			`if (userResult is not { Success: true, Value: not null })`
			`return Result<AuthenticationState>.Failed("Failed to get user from state!");`
			`var claims = new List<Claim>()`
			`{`
			`new(ClaimTypes.Name, userResult.Value.Name),`
			`new(ClaimTypes.NameIdentifier, userResult.Value.UserName),`
			`new(ClaimTypes.Surname, userResult.Value.FamilyName),`
			`new(ClaimTypes.Email, userResult.Value.Email)`
			`};`
			`claims.AddRange(userResult.Value.Roles.Select(role => new Claim(ClaimTypes.Role, role.Name)).ToList());`
			`var claimsIdentity = new ClaimsIdentity(claims, BasedAuthDefaults.AuthenticationScheme);`
			`var auth = new AuthenticationState(new ClaimsPrincipal(claimsIdentity));`
			`return Result<AuthenticationState>.Ok(auth);`
			`}`

			`public async Task<Result<AuthenticationStateModel>> LoginAsync(LoginModel login)`
			`{`
			`try`
			`{`
			`UserModel? user = null;`
			`Result<UserModel> usrResult;`
			`if (!login.UserName.IsNullOrWhiteSpace())`
			`{`
			`usrResult = await _authDataRepository.GetUserAsync(string.Empty, string.Empty, login.UserName);`
			`if (usrResult is { Success: true, Value: not null })`
			`user = usrResult.Value;`
			`}`
			`else if (!login.Email.IsNullOrWhiteSpace())`
			`{`
			`usrResult = await _authDataRepository.GetUserAsync(string.Empty, login.Email, string.Empty);`
			`if (usrResult is { Success: true, Value: not null })`
			`user = usrResult.Value;`
			`}`
			`else`
			`return Result<AuthenticationStateModel>.Failed("Username & Email is empty, cannot login!");`

			`if (user == null \|\| !usrResult.Success)`
			`return Result<AuthenticationStateModel>.Failed("No user found!");`

			`if (user.PasswordHash != login.Password) //TODO: Hash password and compare`
			`return Result<AuthenticationStateModel>.Failed("Login failed, invalid password.");`
			`var state = new AuthenticationStateModel(user);`
			`var authResult = await _authDataRepository.CreateAuthenticationStateAsync(state);`
			`if (!authResult.Success)`
			`return Result<AuthenticationStateModel>.Failed("Failed to store session to database!");`
			`_dataCache.CacheSessionState(state);`
			`return Result<AuthenticationStateModel>.Ok(state);`
			`}`
			`catch (Exception e)`
			`{`
			`_logger.Error(e, "Failed to login!");`
			`return Result<AuthenticationStateModel>.Failed("Login failed, exception thrown!");`
			`}`
			`}`

			`public async Task<Result> LogoutAsync(string state)`
			`{`
			`try`
			`{`
			`if (state.IsNullOrWhiteSpace())`
			`return Result.Failed($"Argument {nameof(state)} is empty!");`

			`var stateResult = await _authDataRepository.GetAuthenticationStateAsync(state);`
			`if (!stateResult.Success \|\| stateResult.Value == null)`
			`return stateResult;`
			`var authState = stateResult.Value;`

			`_dataCache.PurgeSessionState(state);`
			`var updatedStateResult = await _authDataRepository.DeleteAuthenticationStateAsync(authState);`
			`if (updatedStateResult.Success) return updatedStateResult;`
			`_logger.Warning(updatedStateResult.Message);`
			`return updatedStateResult;`
			`}`
			`catch (Exception e)`
			`{`
			`_logger.Error(e, "Failed to logout!");`
			`return Result.Failed("Failed to logout, exception thrown!");`
			`}`
			`}`
			`}`