MireaBackend/Security/Services/PreAuthService.cs

using Mirea.Api.Security.Common.Domain;
using Mirea.Api.Security.Common.Dto.Requests;
using Mirea.Api.Security.Common.Dto.Responses;
using Mirea.Api.Security.Common.Interfaces;
using System;
using System.Security;
using System.Text.Json;
using System.Threading;
using System.Threading.Tasks;

namespace Mirea.Api.Security.Services;

public class PreAuthService(ICacheService cache)
{
    public TimeSpan Lifetime { private get; init; }

    private static string GeneratePreAuthToken() => Guid.NewGuid().ToString().Replace("-", "") +
                                                      GeneratorKey.GenerateString(16);

    private static string GetPreAuthCacheKey(string fingerprint) => $"{fingerprint}_pre_auth_token";

    public async Task<PreAuthTokenResponse> GeneratePreAuthTokenAsync(TokenRequest request, string userId, CancellationToken cancellation = default)
    {
        var preAuthToken = GeneratePreAuthToken();

        var preAuthTokenStruct = new PreAuthToken
        {
            Fingerprint = request.Fingerprint,
            UserId = userId,
            UserAgent = request.UserAgent,
            Token = preAuthToken,
            Ip = request.Ip
        };

        await cache.SetAsync(
            GetPreAuthCacheKey(request.Fingerprint),
            JsonSerializer.SerializeToUtf8Bytes(preAuthTokenStruct),
            absoluteExpirationRelativeToNow: Lifetime,
            cancellationToken: cancellation);

        return new PreAuthTokenResponse
        {
            Token = preAuthToken,
            ExpiresIn = DateTime.UtcNow.Add(Lifetime)
        };
    }
    public async Task<string> MatchToken(TokenRequest request, string preAuthToken, CancellationToken cancellation = default)
    {
        var preAuthTokenStruct = await cache.GetAsync<PreAuthToken>(GetPreAuthCacheKey(request.Fingerprint), cancellation)
            ?? throw new SecurityException($"The token was not found using fingerprint \"{request.Fingerprint}\"");

        if (preAuthTokenStruct == null ||
            preAuthTokenStruct.Token != preAuthToken ||
            (preAuthTokenStruct.UserAgent != request.UserAgent &&
             preAuthTokenStruct.Ip != request.Ip))
        {
            throw new SecurityException("It was not possible to verify the authenticity of the token");
        }

        await cache.RemoveAsync(GetPreAuthCacheKey(request.Fingerprint), cancellation);

        return preAuthTokenStruct.UserId;
    }
}
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
+								using Mirea.Api.Security.Common.Domain;
 								using Mirea.Api.Security.Common.Dto.Requests;
 								using Mirea.Api.Security.Common.Dto.Responses;
 								using Mirea.Api.Security.Common.Interfaces;
 								using System;
-												feat: add match token

											
										
										
											2024-05-29 05:27:49 +03:00
+								using System.Security;
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
+								using System.Text.Json;
 								using System.Threading;
 								using System.Threading.Tasks;
 								namespace Mirea.Api.Security.Services;
 								public class PreAuthService(ICacheService cache)
 								{
 								    public TimeSpan Lifetime { private get; init; }
-												feat: add sliding expiration for cache

											
										
										
											2024-05-29 05:30:00 +03:00
+								    private static string GeneratePreAuthToken() => Guid.NewGuid().ToString().Replace("-", "") +
-												sec: complicate the token

											
										
										
											2024-05-29 04:55:34 +03:00
+								                                                      GeneratorKey.GenerateString(16);
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
-												fix: add key for save pre auth token

											
										
										
											2024-05-29 04:57:44 +03:00
+								    private static string GetPreAuthCacheKey(string fingerprint) => $"{fingerprint}_pre_auth_token";
-												style: rename variables

											
										
										
											2024-05-29 04:58:21 +03:00
 								    public async Task<PreAuthTokenResponse> GeneratePreAuthTokenAsync(TokenRequest request, string userId, CancellationToken cancellation = default)
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
+								    {
-												style: rename variables

											
										
										
											2024-05-29 04:58:21 +03:00
+								        var preAuthToken = GeneratePreAuthToken();
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
-												style: rename variables

											
										
										
											2024-05-29 04:58:21 +03:00
+								        var preAuthTokenStruct = new PreAuthToken
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
+								        {
 								            Fingerprint = request.Fingerprint,
 								            UserId = userId,
 								            UserAgent = request.UserAgent,
-												feat: add ip to struct

											
										
										
											2024-05-29 05:27:27 +03:00
+								            Token = preAuthToken,
 								            Ip = request.Ip
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
+								        };
 								        await cache.SetAsync(
-												fix: add key for save pre auth token

											
										
										
											2024-05-29 04:57:44 +03:00
+								            GetPreAuthCacheKey(request.Fingerprint),
-												style: rename variables

											
										
										
											2024-05-29 04:58:21 +03:00
+								            JsonSerializer.SerializeToUtf8Bytes(preAuthTokenStruct),
-												feat: add sliding expiration for cache

											
										
										
											2024-05-29 05:30:00 +03:00
+								            absoluteExpirationRelativeToNow: Lifetime,
 								            cancellationToken: cancellation);
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
 								        return new PreAuthTokenResponse
 								        {
-												style: rename variables

											
										
										
											2024-05-29 04:58:21 +03:00
+								            Token = preAuthToken,
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
+								            ExpiresIn = DateTime.UtcNow.Add(Lifetime)
 								        };
 								    }
-												feat: add match token

											
										
										
											2024-05-29 05:27:49 +03:00
+								    public async Task<string> MatchToken(TokenRequest request, string preAuthToken, CancellationToken cancellation = default)
 								    {
 								        var preAuthTokenStruct = await cache.GetAsync<PreAuthToken>(GetPreAuthCacheKey(request.Fingerprint), cancellation)
 								            ?? throw new SecurityException($"The token was not found using fingerprint \"{request.Fingerprint}\"");
 								        if (preAuthTokenStruct == null ||
 								            preAuthTokenStruct.Token != preAuthToken ||
 								            (preAuthTokenStruct.UserAgent != request.UserAgent &&
 								             preAuthTokenStruct.Ip != request.Ip))
 								        {
 								            throw new SecurityException("It was not possible to verify the authenticity of the token");
 								        }
 								        await cache.RemoveAsync(GetPreAuthCacheKey(request.Fingerprint), cancellation);
 								        return preAuthTokenStruct.UserId;
 								    }
-												feat: add pre-auth service

											
										
										
											2024-05-29 04:31:47 +03:00
+								}