using Manager.Interfaces.DTO;
using Manager.Services;
using ManagerService.Service.Services;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Logging;
using Microsoft.Net.Http.Headers;
using Mqtt.Client.AspNetCore.Services;
using NSwag.Annotations;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Net;
using System.Threading.Tasks;
namespace ManagerService.Service.Controllers
{
///
/// Authentication controller
///
[ApiController, Route("api/[controller]")]
[Authorize]
[OpenApiTag("Authentication", Description = "Authentication management")]
public class AuthenticationController : ControllerBase
{
private readonly ILogger _logger;
private readonly TokensService _tokensService;
private readonly UserDatabaseService _UserDatabaseService;
private readonly DeviceDatabaseService _DeviceDatabaseService;
private readonly ConfigurationDatabaseService _ConfigurationDatabaseService;
public AuthenticationController(ILogger logger, TokensService tokensService, UserDatabaseService UserDatabaseService, DeviceDatabaseService DeviceDatabaseService, ConfigurationDatabaseService ConfigurationDatabaseService)
{
_logger = logger;
_tokensService = tokensService;
_UserDatabaseService = UserDatabaseService;
_DeviceDatabaseService = DeviceDatabaseService;
_ConfigurationDatabaseService = ConfigurationDatabaseService;
}
///
/// Authenticate (business)
///
/// user email
/// user password
/// Token descriptor
private ObjectResult Authenticate(string email, string password)
{
try
{
#if DEBUG
email = "test@email.be";
password = "W/7aj4NB60i3YFKJq50pbw=="; // password = "kljqsdkljqsd";
#endif
// Set user token ?
var user = _UserDatabaseService.GetByEmail(email.ToLower());
if (user == null)
throw new KeyNotFoundException("User not found");
var token = _tokensService.Authenticate(user, password);
MqttClientService.SetServices(_DeviceDatabaseService, _ConfigurationDatabaseService);
return new OkObjectResult(token);
}
catch (UnauthorizedAccessException ex)
{
_logger?.LogError(ex, $"Authentication error for user '{email}': unauthorized access");
return Unauthorized(ex);
}
catch (Exception ex)
{
_logger?.LogError(ex, $"Authenticate error for user '{email}'");
return Problem($"Authenticate error for user '{email}': {ex.Message}");
}
}
///
/// Authenticate with form parameters (used by Swagger test client)
///
/// Swagger token request
/// Token descriptor
[AllowAnonymous]
[HttpPost("Token")]
[Consumes("application/x-www-form-urlencoded")]
[ProducesResponseType(typeof(TokenDTO), (int) HttpStatusCode.OK)]
[ProducesResponseType(typeof(string), (int) HttpStatusCode.Unauthorized)]
[ProducesResponseType(typeof(string), (int) HttpStatusCode.InternalServerError)]
public ObjectResult AuthenticateWithForm([FromForm] SwaggerTokenRequest tokenRequest)
{
return Authenticate(tokenRequest.username, tokenRequest.password);
}
///
/// Authenticate with Json parameters (used by most clients)
///
/// Login DTO
/// Token descriptor
[AllowAnonymous]
[HttpPost("Authenticate")]
[Consumes("application/json")]
[ProducesResponseType(typeof(TokenDTO), (int)HttpStatusCode.OK)]
[ProducesResponseType(typeof(string), (int)HttpStatusCode.Unauthorized)]
[ProducesResponseType(typeof(string), (int)HttpStatusCode.InternalServerError)]
public ObjectResult AuthenticateWithJson([FromBody] LoginDTO login)
{
return Authenticate(login.email.ToLower(), login.password);
}
}
}