derek/auth-mistox
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Start OAuth required endpoints
Docker Build and Release Upload / build (push) Failing after 3m41s
Details

Browse Source
This commit is contained in:
Derek Holloway
2025-07-24 17:37:16 -07:00
parent 9f442eaab6
commit 834fcbbbcd
6 changed files with 107 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
database/mistox.sql
+1
View File
@@ -9,6 +9,7 @@ CREATE TABLE IF NOT EXISTS `Account` (
`Email` varchar(255) NOT NULL, `Email` varchar(255) NOT NULL,
`EmailVerified` boolean DEFAULT 0, `EmailVerified` boolean DEFAULT 0,
`PasswordHash` char(60) DEFAULT NULL, `PasswordHash` char(60) DEFAULT NULL,
`LoginToken` binary(16) DEFAULT NULL,
`FailedPasswordLock` boolean DEFAULT 0, `FailedPasswordLock` boolean DEFAULT 0,
`PasswordAttempts` int(11) DEFAULT NULL, `PasswordAttempts` int(11) DEFAULT NULL,
`CurrentPasswordAttempts` int(11) DEFAULT NULL, `CurrentPasswordAttempts` int(11) DEFAULT NULL,
src/Server/Controllers/OAuth.cs
Executable
+36
View File
@@ -0,0 +1,36 @@
using Microsoft.AspNetCore.Mvc;
using Auth.Services.DatabaseService;
using System.Web.Http;
using Auth.Entities;
namespace Auth.Controllers {
[ApiController]
[Route("api/oauth/")]
public class OAuthController : MistoxControllerBase {
public OAuthController(DatabaseService db) : base(db) {}
[HttpGet("/authorize")]
public async Task<ActionResult> Authorize([FromQuery] AuthorizationRequest request) {
try {
return NotFound("User is not logged in");
} catch (Exception ex) {
Console.WriteLine("Delete Error: " + ex.Message);
return NotFound("An internal server error has occured");
}
}
[HttpGet("/token")]
public async Task<ActionResult> Token([FromForm] TokenRequest request) {
try {
return NotFound("User is not logged in");
} catch (Exception ex) {
Console.WriteLine("Delete Error: " + ex.Message);
return NotFound("An internal server error has occured");
}
}
}
}
src/Server/Entities/Account.cs
+1
View File
@@ -5,6 +5,7 @@ namespace Auth.Entities {
public string Email { get; set; } = ""; public string Email { get; set; } = "";
public bool EmailVerified { get; set; } = false; public bool EmailVerified { get; set; } = false;
public string PasswordHash { get; set; } = ""; public string PasswordHash { get; set; } = "";
public Guid LoginToken { get; set; } = new Guid();
public bool FailedPasswordLock { get; set; } = false; public bool FailedPasswordLock { get; set; } = false;
public int PasswordAttempts { get; set; } = 5; public int PasswordAttempts { get; set; } = 5;
public int CurrentPasswordAttempts { get; set; } = 0; public int CurrentPasswordAttempts { get; set; } = 0;
src/Server/Entities/AuthorizationRequest.cs
+29
View File
@@ -0,0 +1,29 @@
using System.ComponentModel.DataAnnotations;
using Microsoft.AspNetCore.Mvc;
namespace Auth.Entities {
public class AuthorizationRequest {
[Required]
[FromQuery(Name = "response_type")]
public required string ResponseType { get; set; }
[Required]
[FromQuery(Name = "client_id")]
public required string ClientId { get; set; }
[FromQuery(Name = "redirect_uri")]
public string RedirectUri { get; set; } = "";
[FromQuery(Name = "scope")]
public string Scope { get; set; } = "";
[FromQuery(Name = "state")]
public string State { get; set; } = "";
[FromQuery(Name = "code_challenge")]
public string CodeChallenge { get; set; } = "";
[FromQuery(Name = "code_challenge_method")]
public string CodeChallengeMethod { get; set; } = "";
}
}
src/Server/Entities/TokenRequest.cs
+28
View File
@@ -0,0 +1,28 @@
using System.ComponentModel.DataAnnotations;
using Microsoft.AspNetCore.Mvc;
namespace Auth.Entities {
public class TokenRequest {
[Required]
[FromForm(Name = "grant_type")]
public required string GrantType { get; set; } = "";
[FromForm(Name = "code")]
public string Code { get; set; } = "";
[FromForm(Name = "redirect_uri")]
public string RedirectUri { get; set; } = "";
[FromForm(Name = "client_id")]
public string ClientId { get; set; } = "";
[FromForm(Name = "client_secret")]
public string ClientSecret { get; set; } = "";
[FromForm(Name = "code_verifier")]
public string CodeVerifier { get; set; } = "";
[FromForm(Name = "refresh_token")]
public string RefreshToken { get; set; } = "";
}
}
src/Server/Services/DatabaseService/Account.cs
+12 -2
View File
@@ -34,12 +34,16 @@ namespace Auth.Services.DatabaseService {
string _emailtoken = reader.GetString( "EmailToken" ); string _emailtoken = reader.GetString( "EmailToken" );
string _dataserver = reader.GetString( "DataServer" ); string _dataserver = reader.GetString( "DataServer" );
byte[] _loginToken = new byte[16];
reader.GetBytes( reader.GetOrdinal("LoginToken"), 0, _loginToken, 0, 16);
account = new Account() { account = new Account() {
ID = _id, ID = _id,
UserName = _username, UserName = _username,
Email = _email, Email = _email,
EmailVerified = _emailVerified, EmailVerified = _emailVerified,
PasswordHash = _passwordhash, PasswordHash = _passwordhash,
LoginToken = new Guid(_loginToken),
CurrentPasswordAttempts = _curpasswordattempts, CurrentPasswordAttempts = _curpasswordattempts,
PasswordAttempts = _passwordattempts, PasswordAttempts = _passwordattempts,
EmailToken = _emailtoken, EmailToken = _emailtoken,
@@ -83,12 +87,16 @@ namespace Auth.Services.DatabaseService {
string _emailtoken = reader.GetString( "EmailToken" ); string _emailtoken = reader.GetString( "EmailToken" );
string _dataserver = reader.GetString("DataServer"); string _dataserver = reader.GetString("DataServer");
byte[] _loginToken = new byte[16];
reader.GetBytes( reader.GetOrdinal("LoginToken"), 0, _loginToken, 0, 16);
account = new Account() { account = new Account() {
ID = _id, ID = _id,
UserName = _username, UserName = _username,
Email = _email, Email = _email,
EmailVerified = _emailVerified, EmailVerified = _emailVerified,
PasswordHash = _passwordhash, PasswordHash = _passwordhash,
LoginToken = new Guid(_loginToken),
CurrentPasswordAttempts = _passwordattempts, CurrentPasswordAttempts = _passwordattempts,
PasswordAttempts = _passwordattempts, PasswordAttempts = _passwordattempts,
EmailToken = _emailtoken, EmailToken = _emailtoken,
@@ -108,14 +116,15 @@ namespace Auth.Services.DatabaseService {
string command = @" string command = @"
INSERT INTO Account INSERT INTO Account
(ID,UserName,Email,EmailVerified,PasswordHash,FailedPasswordLock,PasswordAttempts,CurrentPasswordAttempts,Role,EmailToken,DataServer) (ID,UserName,Email,EmailVerified,PasswordHash,LoginToken,FailedPasswordLock,PasswordAttempts,CurrentPasswordAttempts,Role,EmailToken,DataServer)
VALUES VALUES
(@ID,@UserName,@Email,@EmailVerified,@PasswordHash,@FailedPasswordLock,@PasswordAttempts,@CurrentPasswordAttempts,@Role,@EmailToken,@DataServer) (@ID,@UserName,@Email,@EmailVerified,@PasswordHash,@LoginToken,@FailedPasswordLock,@PasswordAttempts,@CurrentPasswordAttempts,@Role,@EmailToken,@DataServer)
ON DUPLICATE KEY UPDATE ON DUPLICATE KEY UPDATE
UserName = @UserName, UserName = @UserName,
Email = @Email, Email = @Email,
EmailVerified = @EmailVerified, EmailVerified = @EmailVerified,
PasswordHash = @PasswordHash, PasswordHash = @PasswordHash,
LoginToken = @LoginToken,
FailedPasswordLock = @FailedPasswordLock, FailedPasswordLock = @FailedPasswordLock,
PasswordAttempts = @PasswordAttempts, PasswordAttempts = @PasswordAttempts,
CurrentPasswordAttempts = @CurrentPasswordAttempts, CurrentPasswordAttempts = @CurrentPasswordAttempts,
@@ -130,6 +139,7 @@ namespace Auth.Services.DatabaseService {
cmd.Parameters.AddWithValue("@Email", Profile.Email); cmd.Parameters.AddWithValue("@Email", Profile.Email);
cmd.Parameters.AddWithValue("@EmailVerified", Profile.EmailVerified); cmd.Parameters.AddWithValue("@EmailVerified", Profile.EmailVerified);
cmd.Parameters.AddWithValue("@PasswordHash", Profile.PasswordHash); cmd.Parameters.AddWithValue("@PasswordHash", Profile.PasswordHash);
cmd.Parameters.AddWithValue("@LoginToken", Profile.LoginToken.ToByteArray());
cmd.Parameters.AddWithValue("@FailedPasswordLock", Profile.FailedPasswordLock); cmd.Parameters.AddWithValue("@FailedPasswordLock", Profile.FailedPasswordLock);
cmd.Parameters.AddWithValue("@PasswordAttempts", Profile.PasswordAttempts); cmd.Parameters.AddWithValue("@PasswordAttempts", Profile.PasswordAttempts);
cmd.Parameters.AddWithValue("@CurrentPasswordAttempts", Profile.CurrentPasswordAttempts); cmd.Parameters.AddWithValue("@CurrentPasswordAttempts", Profile.CurrentPasswordAttempts);