вторизация пользователя

Author: bird_egop

BusinessLogic/BusinessLogic.csproj

@@ -14,6 +14,7 @@
         <PackageReference Include="Microsoft.Extensions.Configuration" Version="6.0.1" />
         <PackageReference Include="Microsoft.Extensions.DependencyInjection" Version="6.0.1" />
         <PackageReference Include="Newtonsoft.Json" Version="13.0.1" />
+        <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="6.10.0" />
     </ItemGroup>
 
     <ItemGroup>

BusinessLogic/Jwt/JwtGenerationResult.cs

@@ -0,0 +1,3 @@
+namespace BusinessLogic.Jwt;
+
+public record JwtGenerationResult(string Token, string RefreshToken);

BusinessLogic/Jwt/JwtGeneratorService.cs

@@ -0,0 +1,76 @@
+using System.IdentityModel.Tokens.Jwt;
+using System.Security.Claims;
+using System.Text;
+using BusinessLogic.Configs;
+using Microsoft.Extensions.Options;
+using Microsoft.IdentityModel.Tokens;
+
+namespace BusinessLogic.Jwt;
+
+public interface IJwtGeneratorService
+{
+    JwtGenerationResult GenerateToken(Guid userId);
+}
+
+public class JwtGeneratorService : IJwtGeneratorService
+{
+    private readonly JwtConfig _config;
+
+    private static readonly JwtSecurityTokenHandler JwtSecurityTokenHandler = new();
+
+    public JwtGeneratorService(IOptions<JwtConfig> options)
+    {
+        _config = options.Value;
+    }
+
+    public JwtGenerationResult GenerateToken(Guid userId)
+    {
+        var issuer = _config.Issuer;
+        var audience = _config.Audience;
+
+        var key = Encoding.ASCII.GetBytes(_config.Key);
+
+        var signingCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256);
+
+        var tokenJwt = new JwtSecurityToken(
+            issuer: issuer,
+            audience: audience,
+            notBefore: null,
+            claims: new[]
+            {
+                new Claim(KnownJwtClaims.UserId, userId.ToString()),
+                // the JTI is used for our refresh token which we will be covering in the next video
+                new Claim(
+                    JwtRegisteredClaimNames.Jti,
+                    Guid.NewGuid()
+                        .ToString()
+                )
+            },
+            expires: DateTime.UtcNow.AddSeconds(_config.LifetimeSeconds),
+            signingCredentials: signingCredentials
+        );
+
+        var refreshJwt = new JwtSecurityToken(
+            issuer: issuer,
+            audience: audience,
+            notBefore: null,
+            claims: new[]
+            {
+                new Claim(KnownJwtClaims.UserId, userId.ToString()),
+                // the JTI is used for our refresh token which we will be covering in the next video
+                new Claim(
+                    JwtRegisteredClaimNames.Jti,
+                    Guid.NewGuid()
+                        .ToString()
+                )
+            },
+            expires: DateTime.UtcNow.AddSeconds(_config.LifetimeSeconds),
+            signingCredentials: signingCredentials
+        );
+
+        var token = JwtSecurityTokenHandler.WriteToken(tokenJwt);
+        var refreshToken = JwtSecurityTokenHandler.WriteToken(refreshJwt);
+
+        return new(token, refreshToken);
+    }
+}

BusinessLogic/Jwt/JwtInfo.cs

@@ -0,0 +1,3 @@
+namespace BusinessLogic.Jwt;
+
+public record JwtInfo(long UserId);

BusinessLogic/KnownJwtClaims.cs

@@ -0,0 +1,6 @@
+namespace BusinessLogic;
+
+public class KnownJwtClaims
+{
+    public const string UserId = "user-id";
+}

BusinessLogic/Mediatr/LoginUser.cs

@@ -0,0 +1,65 @@
+using BusinessLogic.Jwt;
+using DataAccess.Models;
+using DataAccess.RepositoryNew;
+using FluentValidation;
+using MediatR;
+using Microsoft.EntityFrameworkCore;
+
+namespace BusinessLogic.Mediatr;
+
+public static class LoginUser
+{
+    public record Command(string Email, string Password) : IRequest<Response>;
+
+    public record Response(string Token, string RefreshToken);
+    
+    public class CommandValidator : AbstractValidator<Command>
+    {
+        public CommandValidator()
+        {
+            RuleFor(x => x.Email)
+                .NotEmpty()
+                .WithMessage("E-mail не должен быть пустым")
+                .EmailAddress()
+                .WithMessage("E-mail должен быть email адресом");
+
+            RuleFor(x => x.Password)
+                .NotEmpty()
+                .WithMessage("Пароль не должен быть пустым")
+                .Length(8, 50)
+                .WithMessage("Длина пароля должна быть от 8 до 50 символов");
+        }
+    }
+    
+    public class Handler : IRequestHandler<Command, Response>
+    {
+        private readonly IRepository<AppUser> _repository;
+        private readonly IJwtGeneratorService _jwtGeneratorService;
+
+        public Handler(IRepository<AppUser> repository, IJwtGeneratorService jwtGeneratorService)
+        {
+            _repository = repository;
+            _jwtGeneratorService = jwtGeneratorService;
+        }
+
+        public async Task<Response> Handle(Command request, CancellationToken cancellationToken)
+        {
+            var user = await _repository.GetAll()
+                .FirstOrDefaultAsync(x => x.Email == request.Email, cancellationToken);
+
+            if (user is null)
+            {
+                throw new BusinessException("Пользователь не найден");
+            }
+
+            if (user.Password != request.Password)
+            {
+                throw new BusinessException("Неверный пароль");
+            }
+
+            var jwtGenerationResult = _jwtGeneratorService.GenerateToken(user.Id);
+
+            return new Response(jwtGenerationResult.Token, jwtGenerationResult.RefreshToken);
+        }
+    }
+}

BusinessLogic/Mediatr/RegisterUser.cs

@@ -16,11 +16,15 @@ public CommandValidator()
         {
             RuleFor(x => x.Email)
                 .NotEmpty()
-                .EmailAddress();
+                .WithMessage("E-mail не должен быть пустым")
+                .EmailAddress()
+                .WithMessage("E-mail должен быть email адресом");
 
             RuleFor(x => x.Password)
                 .NotEmpty()
-                .Length(8, 50);
+                .WithMessage("Пароль не должен быть пустым")
+                .Length(8, 50)
+                .WithMessage("Длина пароля должна быть от 8 до 50 символов");
         }
     }
 

BusinessLogic/Registrar.cs

@@ -1,4 +1,5 @@
-using FluentValidation;
+using BusinessLogic.Jwt;
+using FluentValidation;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
 
@@ -14,6 +15,8 @@ public static IServiceCollection AddBLL(this IServiceCollection services, Config
 
         services.AddValidatorsFromAssembly(assembly);
 
+        services.AddTransient<IJwtGeneratorService, JwtGeneratorService>();
+        
         return services;
     }
 }

ProjectManager/Controllers/AuthController.cs

@@ -25,4 +25,13 @@ public async Task<ActionResult> Register([FromBody] RegisterUser.Command command
 
         return Ok();
     }
+    
+    [HttpPost]
+    [ProducesResponseType(typeof(LoginUser.Response), 200)]
+    public async Task<ActionResult<LoginUser.Response>> Login([FromBody] LoginUser.Command command, CancellationToken cancellationToken)
+    {
+        var response = await _mediator.Send(command, cancellationToken);
+
+        return Ok(response);
+    }
 }