Winsomnia/MireaBackend
2
0
Fork 0
Code Pull Requests Actions Projects Releases Activity

Release v1.0.0 #16

Merged
Wesser merged 492 commits from release/v1.0.0 into master 2025-02-12 09:19:32 +03:00
Conversation 0 Commits 492 Files Changed 301 +14713 -99
282 changed files with 14713 additions and 99 deletions
Showing only changes of commit 71c31c0bbb - Show all commits
.editorconfig.env
.gitea/workflows
deploy-stage.yamltest.yaml
.gitignore
ApiDto
ApiDto.csproj
Common
AuthRoles.csCacheType.csDatabaseType.csOAuthProvider.csPairPeriodTime.csPasswordPolicy.csTwoFactorAuthentication.cs
Requests
Configuration
CacheRequest.csDatabaseRequest.csEmailRequest.csLoggingRequest.csScheduleConfigurationRequest.cs
CreateUserRequest.csLoginRequest.csScheduleRequest.csTwoFactorAuthRequest.cs
Responses
AvailableOAuthProvidersResponse.csCampusBasicInfoResponse.csCampusDetailsResponse.cs
Configuration
CacheResponse.csDatabaseResponse.cs
DisciplineResponse.csFacultyResponse.csGroupDetailsResponse.csGroupResponse.csLectureHallDetailsResponse.csLectureHallResponse.csProfessorResponse.csScheduleResponse.csTotpKeyResponse.csUserResponse.cs
Backend.slnDockerfile
Endpoint
Backend.http
Common
Attributes
BadRequestResponseAttribute.csCacheMaxAgeAttribute.csLocalhostAttribute.csMaintenanceModeIgnoreAttribute.csNotFoundResponseAttribute.csSwaggerDefaultAttribute.csTokenAuthenticationAttribute.cs
Exceptions
ControllerArgumentException.csServerUnavailableException.cs
Interfaces
IMaintenanceModeNotConfigureService.csIMaintenanceModeService.csISetupToken.cs
MapperDto
AvailableProvidersConverter.csPairPeriodTimeConverter.csPasswordPolicyConverter.csTwoFactorAuthenticationConverter.cs
Services
MaintenanceModeNotConfigureService.csMaintenanceModeService.csPathBuilder.csScheduleSyncManager.cs
Security
DistributedCacheService.csJwtTokenService.csMemoryCacheService.csMemoryRevokedTokenService.cs
UrlHelper.cs
Configuration
Core
BackgroundTasks
ScheduleSyncService.cs
Middleware
CacheMaxAgeMiddleware.csCookieAuthorizationMiddleware.csCustomExceptionHandlerMiddleware.csJwtRevocationMiddleware.csMaintenanceModeMiddleware.cs
Startup
ApiVersioningConfiguration.csCacheConfiguration.csEnvironmentConfiguration.csJwtConfiguration.csLoggerConfiguration.csSecureConfiguration.csSwaggerConfiguration.cs
ISaveSettings.cs
Model
Admin.csGeneralConfig.cs
GeneralSettings
CacheSettings.csDbSettings.csEmailSettings.csLogSettings.csScheduleSettings.cs
SwaggerOptions
ConfigureSwaggerOptions.csSwaggerDefaultValues.csSwaggerExampleFilter.cs
Validation
Attributes
RequiredSettingsAttribute.cs
Interfaces
IIsConfigured.cs
SetupTokenService.cs
Validators
SettingsRequiredValidator.cs
Controllers
BaseController.cs
Configuration
SetupController.cs
V1
AuthController.csCampusController.csDisciplineController.csFacultyController.csGroupController.csImportController.csLectureHallController.csProfessorController.csScheduleController.csSecurityController.cs
WeatherForecastController.cs
Endpoint.csprojProgram.cs
Sync
Common
DataRepository.cs
ScheduleSynchronizer.cs
WeatherForecast.cs
wwwroot/css/swagger
SwaggerDark.css
README.md
Security
Common
CookieNames.cs
Domain
Caching
AuthToken.csFirstAuthToken.cs
CookieOptionsParameters.cs
OAuth2
OAuthProviderUrisData.csOAuthTokenResponse.cs
UserInfo
GoogleUserInfo.csMailRuUserInfo.csYandexUserInfo.cs
OAuthProvider.csOAuthUser.csPasswordPolicy.csRequestContextInfo.csTwoFactorAuthenticator.csUser.cs
Interfaces
IAccessToken.csICacheService.csIRevokedToken.csIUserInfo.cs
DependencyInjection.cs
Properties
launchSettings.json
Security.csproj
Services
AuthService.csGeneratorKey.csOAuthService.csPasswordHashService.csPasswordPolicyService.csTotpService.cs
SqlData
Application
Application.csproj
Common
Behaviors
ValidationBehavior.cs
Exceptions
NotFoundException.cs
Cqrs
Campus/Queries
GetCampusBasicInfoList
CampusBasicInfoDto.csCampusBasicInfoVm.csGetCampusBasicInfoListQuery.csGetCampusBasicInfoListQueryHandler.cs
GetCampusDetails
CampusDetailsVm.csGetCampusDetailsQuery.csGetCampusDetailsQueryHandler.cs
Discipline/Queries
GetDisciplineDetails
DisciplineInfoVm.csGetDisciplineInfoQuery.csGetDisciplineInfoQueryHandler.cs
GetDisciplineList
DisciplineListVm.csDisciplineLookupDto.csGetDisciplineListQuery.csGetDisciplineListQueryHandler.cs
Faculty/Queries/GetFacultyList
FacultyListVm.csFacultyLookupDto.csGetFacultyListQuery.csGetFacultyListQueryHandler.cs
Group/Queries
GetGroupDetails
GetGroupInfoQuery.csGetGroupInfoQueryHandler.csGroupInfoVm.cs
GetGroupList
GetGroupListQuery.csGetGroupListQueryHandler.csGroupListVm.csGroupLookupDto.cs
LectureHall/Queries
GetLectureHallDetails
GetLectureHallInfoQuery.csGetLectureHallInfoQueryHandler.csLectureHallInfoVm.cs
GetLectureHallList
GetLectureHallListQuery.csGetLectureHallListQueryHandler.csLectureHallListVm.csLectureHallLookupDto.cs
Professor/Queries
GetProfessorDetails
GetProfessorInfoQuery.csGetProfessorInfoQueryHandler.csProfessorInfoVm.cs
GetProfessorDetailsBySearch
GetProfessorInfoSearchQuery.csGetProfessorInfoSearchQueryHandler.csProfessorInfoListVm.cs
GetProfessorList
GetProfessorListQuery.csGetProfessorListQueryHandler.csProfessorListVm.csProfessorLookupDto.cs
Schedule/Queries/GetScheduleList
GetScheduleListQuery.csGetScheduleListQueryHandler.csScheduleListVm.csScheduleLookupDto.cs
DependencyInjection.cs
Interfaces/DbContexts
IDbContextBase.cs
Schedule
ICampusDbContext.csIDisciplineDbContext.csIFacultyDbContext.csIGroupDbContext.csILectureHallDbContext.csILessonAssociationDbContext.csILessonDbContext.csIProfessorDbContext.csISpecificWeekDbContext.csITypeOfOccupationDbContext.cs
Domain
Domain.csproj
Schedule
Campus.csDiscipline.csFaculty.csGroup.csLectureHall.csLesson.csLessonAssociation.csProfessor.csSpecificWeek.csTypeOfOccupation.cs
Migrations
MysqlMigrations
Migrations
20240601023106_InitialMigration.Designer.cs20240601023106_InitialMigration.cs20241027034820_RemoveUnusedRef.Designer.cs20241027034820_RemoveUnusedRef.csUberDbContextModelSnapshot.cs
MysqlMigrations.csproj
PsqlMigrations
Migrations
20240601021702_InitialMigration.Designer.cs20240601021702_InitialMigration.cs20241027032753_RemoveUnusedRef.Designer.cs20241027032753_RemoveUnusedRef.csUberDbContextModelSnapshot.cs
PsqlMigrations.csproj
SqliteMigrations
Migrations
20240601015714_InitialMigration.Designer.cs20240601015714_InitialMigration.cs20241027032931_RemoveUnusedRef.Designer.cs20241027032931_RemoveUnusedRef.csUberDbContextModelSnapshot.cs
SqliteMigrations.csproj
Persistence
Common
BaseDbContext.csConfigurationResolver.csDatabaseProvider.csDbContextFactory.csModelBuilderExtensions.cs
Contexts/Schedule
CampusDbContext.csDisciplineDbContext.csFacultyDbContext.csGroupDbContext.csLectureHallDbContext.csLessonAssociationDbContext.csLessonDbContext.csProfessorDbContext.csSpecificWeekDbContext.csTypeOfOccupationDbContext.cs
DbInitializer.csDependencyInjection.cs
EntityTypeConfigurations
Mark.cs
Mysql/Schedule
CampusConfiguration.csDisciplineConfiguration.csFacultyConfiguration.csGroupConfiguration.csLectureHallConfiguration.csLessonAssociationConfiguration.csLessonConfiguration.csProfessorConfiguration.csSpecificWeekConfiguration.csTypeOfOccupationConfiguration.cs
Postgresql/Schedule
CampusConfiguration.csDisciplineConfiguration.csFacultyConfiguration.csGroupConfiguration.csLectureHallConfiguration.csLessonAssociationConfiguration.csLessonConfiguration.csProfessorConfiguration.csSpecificWeekConfiguration.csTypeOfOccupationConfiguration.cs
Sqlite/Schedule
CampusConfiguration.csDisciplineConfiguration.csFacultyConfiguration.csGroupConfiguration.csLectureHallConfiguration.csLessonAssociationConfiguration.csLessonConfiguration.csProfessorConfiguration.csSpecificWeekConfiguration.csTypeOfOccupationConfiguration.cs
Persistence.csprojUberDbContext.cs
nuget.config

50
Security/Services/AuthService.cs

@ -24,6 +24,7 @@ public class AuthService(ICacheService cache, IAccessToken accessTokenService, I
private static string GetAuthCacheKey(string fingerprint) => $"{fingerprint}_auth_token";
private static string GetFirstAuthCacheKey(string fingerprint) => $"{fingerprint}_auth_token_first";
private static string GetAttemptFailedCountKey(string fingerprint) => $"{fingerprint}_login_failed";
private Task SetAuthTokenDataToCache(AuthToken data, CancellationToken cancellation) =>
cache.SetAsync(
@ -47,34 +48,47 @@ public class AuthService(ICacheService cache, IAccessToken accessTokenService, I
private Task RevokeAccessToken(string token) =>
revokedToken.AddTokenToRevokedAsync(token, accessTokenService.GetExpireDateTime(token));
private async Task VerifyUserOrThrowError(RequestContextInfo requestContext, User user, string password, string username,
CancellationToken cancellation = default)
private async Task RecordFailedLoginAttempt(string fingerprint, string userId, CancellationToken cancellation)
{
if ((user.Email.Equals(username, StringComparison.OrdinalIgnoreCase) || user.Username.Equals(username, StringComparison.OrdinalIgnoreCase)) &&
passwordService.VerifyPassword(password, user.Salt, user.PasswordHash))
return;
var failedLoginAttemptsCount = await cache.GetAsync<int?>(GetAttemptFailedCountKey(fingerprint), cancellation) ?? 1;
var failedLoginCacheExpiration = TimeSpan.FromHours(1);
var failedLoginCacheName = $"{requestContext.Fingerprint}_login_failed";
var countFailedLogin = await cache.GetAsync<int?>(failedLoginCacheName, cancellation) ?? 1;
var cacheSaveTime = TimeSpan.FromHours(1);
await cache.SetAsync(failedLoginCacheName, countFailedLogin + 1, slidingExpiration: cacheSaveTime, cancellationToken: cancellation);
if (countFailedLogin > 5)
if (failedLoginAttemptsCount > 5)
{
logger.LogWarning(
"Multiple unsuccessful login attempts for user ID {UserId}. Attempt count: {AttemptNumber}.",
user.Id,
countFailedLogin);
"Multiple unsuccessful login attempts for user ID {UserId}. Fingerprint: {Fingerprint}. Attempt count: {AttemptNumber}.",
userId,
fingerprint,
failedLoginAttemptsCount);
throw new SecurityException("Too many unsuccessful login attempts. Please try again later.");
}
logger.LogInformation(
"Login attempt failed for user ID {UserId}. Fingerprint: {Fingerprint}. Attempt count: {AttemptNumber}.",
user.Id,
requestContext.Fingerprint,
countFailedLogin);
userId,
fingerprint,
failedLoginAttemptsCount);
await cache.SetAsync(GetAttemptFailedCountKey(fingerprint), failedLoginAttemptsCount + 1,
slidingExpiration: failedLoginCacheExpiration, cancellationToken: cancellation);
}
private Task ResetFailedLoginAttempts(string fingerprint, CancellationToken cancellation) =>
cache.RemoveAsync(GetAttemptFailedCountKey(fingerprint), cancellation);
private async Task VerifyUserOrThrowError(RequestContextInfo requestContext, User user, string password, string username,
CancellationToken cancellation = default)
{
if ((user.Email.Equals(username, StringComparison.OrdinalIgnoreCase) ||
user.Username.Equals(username, StringComparison.OrdinalIgnoreCase)) &&
passwordService.VerifyPassword(password, user.Salt, user.PasswordHash))
{
await ResetFailedLoginAttempts(requestContext.Fingerprint, cancellation);
return;
}
await RecordFailedLoginAttempt(requestContext.Fingerprint, user.Id, cancellation);
throw new SecurityException("Authentication failed. Please check your credentials.");
}