Added login/register function. Implemented authentication. Started authorization

2024-10-01 11:29:19 +02:00
parent 73bf27d222
commit ef2e6c9a20
23 changed files with 741 additions and 27 deletions
--- a/Moonlight.ApiServer/Services/AuthService.cs
+++ b/Moonlight.ApiServer/Services/AuthService.cs
@@ -0,0 +1,83 @@
+using MoonCore.Attributes;
+using MoonCore.Exceptions;
+using MoonCore.Extended.Abstractions;
+using MoonCore.Extended.Helpers;
+using MoonCore.Services;
+using Moonlight.ApiServer.Configuration;
+using Moonlight.ApiServer.Database.Entities;
+
+namespace Moonlight.ApiServer.Services;
+
+[Scoped]
+public class AuthService
+{
+    private readonly DatabaseRepository<User> UserRepository;
+    private readonly ConfigService<AppConfiguration> ConfigService;
+    private readonly JwtHelper JwtHelper;
+
+    public AuthService(
+        DatabaseRepository<User> userRepository,
+        ConfigService<AppConfiguration> configService,
+        JwtHelper jwtHelper)
+    {
+        UserRepository = userRepository;
+        ConfigService = configService;
+        JwtHelper = jwtHelper;
+    }
+
+    public Task<User> Register(string username, string email, string password)
+    {
+        // Reformat values
+        username = username.ToLower().Trim();
+        email = email.ToLower().Trim();
+        
+        // Check for users with the same values
+        if (UserRepository.Get().Any(x => x.Username == username))
+            throw new HttpApiException("A user with that username already exists", 400);
+        
+        if (UserRepository.Get().Any(x => x.Email == email))
+            throw new HttpApiException("A user with that email address already exists", 400);
+        
+        // Build model and add it to the database
+        var user = new User()
+        {
+            Username = username,
+            Email = email,
+            Password = HashHelper.Hash(password),
+            PermissionsJson = "[]",
+            TokenValidTimestamp = DateTime.UtcNow
+        };
+
+        UserRepository.Add(user);
+        
+        return Task.FromResult(user);
+    }
+
+    public Task<User> Login(string email, string password)
+    {
+        // Reformat values
+        email = email.ToLower().Trim();
+        
+        var user = UserRepository
+            .Get()
+            .FirstOrDefault(x => x.Email == email);
+
+        if (user == null)
+            throw new HttpApiException("Invalid email or password", 400);
+
+        if(!HashHelper.Verify(password, user.Password))
+            throw new HttpApiException("Invalid email or password", 400);
+        
+        return Task.FromResult(user);
+    }
+
+    public async Task<string> GenerateToken(User user)
+    {
+        var authConfig = ConfigService.Get().Authentication;
+
+        return await JwtHelper.Create(authConfig.Secret, data =>
+        {
+            data.Add("userId", user.Id.ToString());
+        }, "login", TimeSpan.FromDays(authConfig.TokenDuration));
+    }
+}