mycorerepository/MyCore/Controllers/AuthenticationController.cs

using MyCore.Interfaces.DTO;
using MyCore.Service.Services;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Logging;
using Microsoft.Net.Http.Headers;
using NSwag.Annotations;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Net;
using System.Threading.Tasks;
using Mqtt.Client.AspNetCore.Services;
using MyCore.Services.MyControlPanel;
using MyCore.Services;
using MyCore.Services.Devices;

namespace MyCore.Service.Controllers
{
    /// <summary>
    /// Authentication controller
    /// </summary>
    [ApiController, Route("api/[controller]")]
    [Authorize]
    [OpenApiTag("Authentication", Description = "Authentication management")]
    public class AuthenticationController : ControllerBase
    {
        private readonly ILogger<AuthenticationController> _logger;
        private readonly TokensService _tokensService;
        private readonly DeviceDatabaseService _DeviceDatabaseService;
        private readonly GroupDatabaseService _GroupDatabaseService;
        private readonly ProviderDatabaseService _ProviderDatabaseService;
        private readonly LocationDatabaseService _LocationDatabaseService;
        private readonly UserDatabaseService _UserDatabaseService;
        private readonly ActionService _ActionService;
        private readonly AutomationDatabaseService _AutomationDatabaseService;
        private readonly IMqttClientService _mqttClientService;
        //private readonly IMqttOnlineClientService _mqttOnlineClientService;

        public AuthenticationController(ILogger<AuthenticationController> logger, TokensService tokensService, DeviceDatabaseService DeviceDatabaseService, GroupDatabaseService GroupDatabaseService, ProviderDatabaseService ProviderDatabaseService, LocationDatabaseService LocationDatabaseService, UserDatabaseService UserDatabaseService, ActionService ActionService, AutomationDatabaseService AutomationDatabaseService, MqttClientServiceProvider provider)//, MqttClientOnlineServiceProvider onlineProvider)
        {
            _logger = logger;
            _tokensService = tokensService;
            _DeviceDatabaseService = DeviceDatabaseService;
            _GroupDatabaseService = GroupDatabaseService;
            _ProviderDatabaseService = ProviderDatabaseService;
            _LocationDatabaseService = LocationDatabaseService;
            _UserDatabaseService = UserDatabaseService;
            _ActionService = ActionService;
            _AutomationDatabaseService = AutomationDatabaseService;
            _mqttClientService = provider.MqttClientService;
            //_mqttOnlineClientService = onlineProvider.MqttOnlineClientService;
        }

        /// <summary>
        /// Authenticate (business)
        /// </summary>
        /// <param name="email">user email</param>
        /// <param name="password">user password</param>
        /// <returns>Token descriptor</returns>
        private ObjectResult Authenticate(string email, string password)
        {
            try
            {
                // For TEST
                email = "test@email.be";
                password = "kljqsdkljqsd";
                var token = _tokensService.Authenticate(email.ToLower(), password);

                // Set user token ? 
                var user = _UserDatabaseService.GetByEmail(email.ToLower());

                if (user == null)
                    throw new KeyNotFoundException("User not found");

                System.Console.WriteLine($"Init userId for MqqClientService ! {user.Email}");
                MqttClientService.SetServices(_DeviceDatabaseService, _GroupDatabaseService, _ProviderDatabaseService, _LocationDatabaseService, _ActionService, _AutomationDatabaseService, user.Id);

                return new OkObjectResult(token);
            }
            catch (UnauthorizedAccessException ex)
            {
                _logger?.LogError(ex, $"Authentication error for user '{email}': unauthorized access");
                return Unauthorized(ex);
            }
            catch (Exception ex)
            {
                _logger?.LogError(ex, $"Authenticate error for user '{email}'");
                return Problem($"Authenticate error for user '{email}': {ex.Message}");
            }
        }

        /// <summary>
        /// Authenticate with form parameters (used by Swagger test client)
        /// </summary>
        /// <param name="tokenRequest">Swagger token request</param>
        /// <returns>Token descriptor</returns>
        [AllowAnonymous]
        [HttpPost("Token")]
        [Consumes("application/x-www-form-urlencoded")]
        [ProducesResponseType(typeof(TokenDTO), (int) HttpStatusCode.OK)]
        [ProducesResponseType(typeof(string), (int) HttpStatusCode.Unauthorized)]
        [ProducesResponseType(typeof(string), (int) HttpStatusCode.InternalServerError)]
        public ObjectResult AuthenticateWithForm([FromForm] SwaggerTokenRequest tokenRequest)
        {
            return Authenticate(tokenRequest.username, tokenRequest.password);
        }

        /// <summary>
        /// Authenticate with Json parameters (used by most clients)
        /// </summary>
        /// <param name="login">Login DTO</param>
        /// <returns>Token descriptor</returns>
        [AllowAnonymous]
        [HttpPost("Authenticate")]
        [Consumes("application/json")]
        [ProducesResponseType(typeof(TokenDTO), (int)HttpStatusCode.OK)]
        [ProducesResponseType(typeof(string), (int)HttpStatusCode.Unauthorized)]
        [ProducesResponseType(typeof(string), (int)HttpStatusCode.InternalServerError)]
        public ObjectResult AuthenticateWithJson([FromBody] LoginDTO login)
        {
            return Authenticate(login.Email.ToLower(), login.Password);
        }
    }
}