DiunaBI/WebAPI/Controllers/AuthController.cs

using Google.Apis.Auth;
using Microsoft.AspNetCore.Mvc;
using Microsoft.EntityFrameworkCore;
using Microsoft.IdentityModel.Tokens;
using System.IdentityModel.Tokens.Jwt;
using System.Security.Claims;
using System.Text;
using WebAPI.Models;

namespace WebAPI.Controllers;

[ApiController]
[Route("api/[controller]")]
// [Authorize]
public class AuthController : Controller
{
    private readonly AppDbContext _db;
    private readonly IConfiguration _configuration;
    public AuthController(
        AppDbContext db, IConfiguration configuration)
    { _db = db; _configuration = configuration; }

    [HttpPost]
    [Route("apiToken")]
    public async Task<IActionResult> ApiToken([FromBody] string credential)
    {
        var settings = new GoogleJsonWebSignature.ValidationSettings
        {
            Audience = new List<string> { _configuration.GetValue<string>("GoogleClientId")! }
        };
        var payload = await GoogleJsonWebSignature.ValidateAsync(credential, settings);
        var user = _db.Users.AsNoTracking().FirstOrDefault(x => x.Email == payload.Email);
        return user != null ? (IActionResult)Ok(JwtGenerator(user)) : Unauthorized();
    }

    private dynamic JwtGenerator(User user)
    {
        var key = Encoding.ASCII.GetBytes(_configuration.GetValue<string>("Secret")!);
        var expirationTime = DateTime.UtcNow.AddMinutes(5);
        var tokenDescriptor = new SecurityTokenDescriptor
        {
            Subject = new ClaimsIdentity(new[]
            {
                new Claim("Id", Guid.NewGuid().ToString()),
                new Claim(JwtRegisteredClaimNames.Sub, user.Id.ToString()),
                new Claim(JwtRegisteredClaimNames.Jti,
                    Guid.NewGuid().ToString())
            }),
            Expires = expirationTime,
            SigningCredentials = new SigningCredentials
            (new SymmetricSecurityKey(key),
                SecurityAlgorithms.HmacSha512Signature)
        };
        var tokenHandler = new JwtSecurityTokenHandler();
        var token = tokenHandler.CreateToken(tokenDescriptor);
        var stringToken = tokenHandler.WriteToken(token);
        return new { token = stringToken, id = user.Id, expirationTime };
    }
}
?? 2023-02-22 12:12:38 +01:00			`using Google.Apis.Auth;`
			`using Microsoft.AspNetCore.Mvc;`
AsNoTracking() 2025-02-19 13:14:06 +01:00			`using Microsoft.EntityFrameworkCore;`
?? 2023-02-22 12:12:38 +01:00			`using Microsoft.IdentityModel.Tokens;`
			`using System.IdentityModel.Tokens.Jwt;`
			`using System.Security.Claims;`
			`using System.Text;`
			`using WebAPI.Models;`

WIP: refactor 2024-06-18 19:40:16 +02:00			`namespace WebAPI.Controllers;`

			`[ApiController]`
			`[Route("api/[controller]")]`
			`// [Authorize]`
			`public class AuthController : Controller`
?? 2023-02-22 12:12:38 +01:00			`{`
WIP: refactor 2024-06-18 19:40:16 +02:00			`private readonly AppDbContext _db;`
			`private readonly IConfiguration _configuration;`
			`public AuthController(`
			`AppDbContext db, IConfiguration configuration)`
			`{ _db = db; _configuration = configuration; }`
?? 2023-02-22 12:12:38 +01:00
WIP: refactor 2024-06-18 19:40:16 +02:00			`[HttpPost]`
			`[Route("apiToken")]`
			`public async Task<IActionResult> ApiToken([FromBody] string credential)`
			`{`
			`var settings = new GoogleJsonWebSignature.ValidationSettings`
?? 2023-02-22 12:12:38 +01:00			`{`
WIP: refactor 2024-06-18 19:40:16 +02:00			`Audience = new List<string> { _configuration.GetValue<string>("GoogleClientId")! }`
			`};`
			`var payload = await GoogleJsonWebSignature.ValidateAsync(credential, settings);`
AsNoTracking() 2025-02-19 13:14:06 +01:00			`var user = _db.Users.AsNoTracking().FirstOrDefault(x => x.Email == payload.Email);`
WIP: refactor 2024-06-18 19:40:16 +02:00			`return user != null ? (IActionResult)Ok(JwtGenerator(user)) : Unauthorized();`
			`}`
?? 2023-02-22 12:12:38 +01:00
WIP: refactor 2024-06-18 19:40:16 +02:00			`private dynamic JwtGenerator(User user)`
			`{`
			`var key = Encoding.ASCII.GetBytes(_configuration.GetValue<string>("Secret")!);`
			`var expirationTime = DateTime.UtcNow.AddMinutes(5);`
			`var tokenDescriptor = new SecurityTokenDescriptor`
?? 2023-02-22 12:12:38 +01:00			`{`
WIP: refactor 2024-06-18 19:40:16 +02:00			`Subject = new ClaimsIdentity(new[]`
?? 2023-02-22 12:12:38 +01:00			`{`
			`new Claim("Id", Guid.NewGuid().ToString()),`
			`new Claim(JwtRegisteredClaimNames.Sub, user.Id.ToString()),`
			`new Claim(JwtRegisteredClaimNames.Jti,`
WIP: refactor 2024-06-18 19:40:16 +02:00			`Guid.NewGuid().ToString())`
			`}),`
			`Expires = expirationTime,`
			`SigningCredentials = new SigningCredentials`
			`(new SymmetricSecurityKey(key),`
?? 2023-02-22 12:12:38 +01:00			`SecurityAlgorithms.HmacSha512Signature)`
WIP: refactor 2024-06-18 19:40:16 +02:00			`};`
			`var tokenHandler = new JwtSecurityTokenHandler();`
			`var token = tokenHandler.CreateToken(tokenDescriptor);`
			`var stringToken = tokenHandler.WriteToken(token);`
			`return new { token = stringToken, id = user.Id, expirationTime };`
?? 2023-02-22 12:12:38 +01:00			`}`
WIP: backend protection 2022-12-06 12:27:09 +01:00			`}`