using AutoMapper;
using CacheManager.Core;
using Hangfire;
using Masuit.MyBlogs.Core.Configs;
using Masuit.MyBlogs.Core.Extensions.Firewall;
using Masuit.MyBlogs.Core.Extensions.Hangfire;
using Masuit.Tools.Mime;
using Masuit.Tools.AspNetCore.ResumeFileResults.Extensions;
using Masuit.Tools.Logging;
using Microsoft.AspNetCore.Mvc;
using System.Net;
using System.Web;
namespace Masuit.MyBlogs.Core.Controllers;
///
/// 登录授权
///
[ApiExplorerSettings(IgnoreApi = true), ServiceFilter(typeof(FirewallAttribute))]
public sealed class PassportController : Controller
{
///
/// 用户
///
public IUserInfoService UserInfoService { get; set; }
public IFirewallRepoter FirewallRepoter { get; set; }
public IMapper Mapper { get; set; }
///
/// 客户端的真实IP
///
public string ClientIP => HttpContext.Connection.RemoteIpAddress.ToString();
///
///
///
///
///
///
///
private ActionResult ResultData(object data, bool isTrue = true, string message = "")
{
return Json(new
{
Success = isTrue,
Message = message,
Data = data
});
}
///
/// 登录页
///
///
public ActionResult Login()
{
var keys = RsaCrypt.GenerateRsaKeys(RsaKeyType.PKCS1);
Response.Cookies.Append(nameof(keys.PublicKey), keys.PublicKey, new CookieOptions()
{
SameSite = SameSiteMode.Lax
});
HttpContext.Session.Set(nameof(keys.PrivateKey), keys.PrivateKey);
string from = Request.Query["from"];
if (!string.IsNullOrEmpty(from))
{
from = HttpUtility.UrlDecode(from);
Response.Cookies.Append("refer", from, new CookieOptions()
{
SameSite = SameSiteMode.Lax
});
}
if (HttpContext.Session.Get(SessionKey.UserInfo) != null)
{
if (string.IsNullOrEmpty(from))
{
return RedirectToAction("Index", "Home");
}
return LocalRedirect(from);
}
if (Request.Cookies.Count > 2)
{
string name = Request.Cookies["username"];
string pwd = Request.Cookies["password"]?.DesDecrypt(AppConfig.BaiduAK);
var userInfo = UserInfoService.Login(name, pwd);
if (userInfo != null)
{
Response.Cookies.Append("username", name, new CookieOptions()
{
Expires = DateTime.Now.AddYears(1),
SameSite = SameSiteMode.Lax
});
Response.Cookies.Append("password", Request.Cookies["password"], new CookieOptions()
{
Expires = DateTime.Now.AddYears(1),
SameSite = SameSiteMode.Lax
});
HttpContext.Session.Set(SessionKey.UserInfo, userInfo);
BackgroundJob.Enqueue(job => job.LoginRecord(userInfo, ClientIP, LoginType.Default));
if (string.IsNullOrEmpty(from))
{
return RedirectToAction("Index", "Home");
}
return LocalRedirect(from);
}
}
return View();
}
///
/// 登陆检查
///
///
///
///
///
///
[HttpPost, ValidateAntiForgeryToken]
public ActionResult Login([FromServices] ICacheManager cacheManager, string username, string password, string valid, string remem)
{
string validSession = HttpContext.Session.Get("valid") ?? string.Empty; //将验证码从Session中取出来,用于登录验证比较
if (string.IsNullOrEmpty(validSession) || !valid.Trim().Equals(validSession, StringComparison.InvariantCultureIgnoreCase))
{
return ResultData(null, false, "验证码错误");
}
HttpContext.Session.Remove("valid"); //验证成功就销毁验证码Session,非常重要
if (string.IsNullOrEmpty(username.Trim()) || string.IsNullOrEmpty(password.Trim()))
{
return ResultData(null, false, "用户名或密码不能为空");
}
try
{
var privateKey = HttpContext.Session.Get(nameof(RsaKey.PrivateKey));
password = password.RSADecrypt(privateKey);
}
catch (Exception)
{
LogManager.Info("登录失败,私钥:" + HttpContext.Session.Get(nameof(RsaKey.PrivateKey)));
throw;
}
var userInfo = UserInfoService.Login(username, password);
if (userInfo == null)
{
var times = cacheManager.AddOrUpdate("LoginError:" + ClientIP, 1, i => i + 1, 5);
if (times > 30)
{
FirewallRepoter.ReportAsync(IPAddress.Parse(ClientIP)).ContinueWith(_ => LogManager.Info($"多次登录用户名或密码错误,疑似爆破行为,已上报IP{ClientIP}至:" + FirewallRepoter.ReporterName));
}
return ResultData(null, false, "用户名或密码错误");
}
HttpContext.Session.Set(SessionKey.UserInfo, userInfo);
if (remem.Trim().Contains(new[] { "on", "true" })) //是否记住登录
{
Response.Cookies.Append("username", HttpUtility.UrlEncode(username.Trim()), new CookieOptions()
{
Expires = DateTime.Now.AddYears(1),
SameSite = SameSiteMode.Lax
});
Response.Cookies.Append("password", password.Trim().DesEncrypt(AppConfig.BaiduAK), new CookieOptions()
{
Expires = DateTime.Now.AddYears(1),
SameSite = SameSiteMode.Lax
});
}
BackgroundJob.Enqueue(job => job.LoginRecord(userInfo, ClientIP, LoginType.Default));
string refer = Request.Cookies["refer"];
Response.Cookies.Delete(nameof(RsaKey.PublicKey), new CookieOptions()
{
SameSite = SameSiteMode.Lax
});
Response.Cookies.Delete("refer", new CookieOptions()
{
SameSite = SameSiteMode.Lax
});
HttpContext.Session.Remove(nameof(RsaKey.PrivateKey));
return ResultData(null, true, string.IsNullOrEmpty(refer) ? "/" : refer);
}
///
/// 生成验证码
///
///
public ActionResult ValidateCode()
{
string code = Tools.Strings.ValidateCode.CreateValidateCode(6);
HttpContext.Session.Set("valid", code); //将验证码生成到Session中
using var buffer = code.CreateValidateGraphic();
return this.ResumeFile(buffer, ContentType.Jpeg, "验证码.jpg");
}
///
/// 检查验证码
///
///
///
[HttpPost]
public ActionResult CheckValidateCode(string code)
{
string validSession = HttpContext.Session.Get("valid");
if (string.IsNullOrEmpty(validSession) || !code.Trim().Equals(validSession, StringComparison.InvariantCultureIgnoreCase))
{
return ResultData(null, false, "验证码错误");
}
return ResultData(null, false, "验证码正确");
}
///
/// 获取用户信息
///
///
public ActionResult GetUserInfo()
{
var user = HttpContext.Session.Get(SessionKey.UserInfo);
#if DEBUG
user = Mapper.Map(UserInfoService.GetByUsername("masuit"));
#endif
return ResultData(user);
}
///
/// 注销登录
///
///
public ActionResult Logout()
{
HttpContext.Session.Remove(SessionKey.UserInfo);
Response.Cookies.Delete("username", new CookieOptions()
{
SameSite = SameSiteMode.Lax
});
Response.Cookies.Delete("password", new CookieOptions()
{
SameSite = SameSiteMode.Lax
});
HttpContext.Session.Clear();
return Request.Method.Equals(HttpMethods.Get) ? RedirectToAction("Index", "Home") : ResultData(null, message: "注销成功!");
}
}