Merge pull request #301 from hargata/Hargata/oidc.auth

Updated app version.
2024-02-15 20:12:23 -07:00 · 2024-02-15 20:11:39 -07:00 · 2024-02-15 20:08:54 -07:00 · 2024-02-15 19:10:38 -07:00 · 2024-02-15 19:09:50 -07:00 · 2024-02-15 19:07:14 -07:00
13 changed files with 134 additions and 13 deletions
--- a/CarCareTracker.csproj
+++ b/CarCareTracker.csproj
@@ -13,7 +13,8 @@
  <ItemGroup>
    <PackageReference Include="CsvHelper" Version="30.0.1" />
    <PackageReference Include="LiteDB" Version="5.0.17" />
-    <PackageReference Include="Npgsql" Version="8.0.1" />
+    <PackageReference Include="Npgsql" Version="8.0.2" />
    <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="7.3.1" />
  </ItemGroup>
 </Project>
--- a/Controllers/LoginController.cs
+++ b/Controllers/LoginController.cs
@@ -4,6 +4,8 @@ using CarCareTracker.Models;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.DataProtection;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.IdentityModel.Tokens;
 using System.IdentityModel.Tokens.Jwt;
 using System.Net;
 using System.Security.Cryptography;
 using System.Text;
@@ -15,16 +17,19 @@ namespace CarCareTracker.Controllers
    {
        private IDataProtector _dataProtector;
        private ILoginLogic _loginLogic;
        private IConfigHelper _config;
        private readonly ILogger<LoginController> _logger;
        public LoginController(
            ILogger<LoginController> logger,
            IDataProtectionProvider securityProvider,
-            ILoginLogic loginLogic
+            ILoginLogic loginLogic,
            IConfigHelper config
            )
        {
            _dataProtector = securityProvider.CreateProtector("login");
            _logger = logger;
            _loginLogic = loginLogic;
            _config = config;
        }
        public IActionResult Index(string redirectURL = "")
        {
@@ -42,6 +47,69 @@ namespace CarCareTracker.Controllers
        {
            return View();
        }
        public IActionResult GetRemoteLoginLink()
        {
            var remoteAuthURL = _config.GetOpenIDConfig().RemoteAuthURL;
            return Json(remoteAuthURL);
        }
        public async Task<IActionResult> RemoteAuth(string code)
        {
            try
            {
                if (!string.IsNullOrWhiteSpace(code))
                {
                    //received code from OIDC provider
                    //create http client to retrieve user token from OIDC
                    var httpClient = new HttpClient();
                    var openIdConfig = _config.GetOpenIDConfig();
                    var httpParams = new List<KeyValuePair<string, string>>
                {
                     new KeyValuePair<string, string>("code", code),
                     new KeyValuePair<string, string>("grant_type", "authorization_code"),
                     new KeyValuePair<string, string>("client_id", openIdConfig.ClientId),
                     new KeyValuePair<string, string>("client_secret", openIdConfig.ClientSecret),
                     new KeyValuePair<string, string>("redirect_uri", openIdConfig.RedirectURL)
                };
                    var httpRequest = new HttpRequestMessage(HttpMethod.Post, openIdConfig.TokenURL)
                    {
                        Content = new FormUrlEncodedContent(httpParams)
                    };
                    var tokenResult = await httpClient.SendAsync(httpRequest).Result.Content.ReadAsStringAsync();
                    var userJwt = JsonSerializer.Deserialize<OpenIDResult>(tokenResult)?.id_token ?? string.Empty;
                    if (!string.IsNullOrWhiteSpace(userJwt))
                    {
                        //validate JWT token
                        var tokenParser = new JwtSecurityTokenHandler();
                        var parsedToken = tokenParser.ReadJwtToken(userJwt);
                        var userEmailAddress = parsedToken.Claims.First(x => x.Type == "email").Value;
                        if (!string.IsNullOrWhiteSpace(userEmailAddress))
                        {
                            var userData = _loginLogic.ValidateOpenIDUser(new LoginModel() { EmailAddress = userEmailAddress });
                            if (userData.Id != default)
                            {
                                AuthCookie authCookie = new AuthCookie
                                {
                                    UserData = userData,
                                    ExpiresOn = DateTime.Now.AddDays(1)
                                };
                                var serializedCookie = JsonSerializer.Serialize(authCookie);
                                var encryptedCookie = _dataProtector.Protect(serializedCookie);
                                Response.Cookies.Append("ACCESS_TOKEN", encryptedCookie, new CookieOptions { Expires = new DateTimeOffset(authCookie.ExpiresOn) });
                                return new RedirectResult("/Home");
                            } else
                            {
                                _logger.LogInformation($"User {userEmailAddress} tried to login via OpenID but is not a registered user in LubeLogger.");
                            }
                        }
                    }
                }
            } catch (Exception ex)
            {
                _logger.LogError(ex.Message);
                return new RedirectResult("/Login");
            }
            return new RedirectResult("/Login");
        }
        [HttpPost]
        public IActionResult Login(LoginModel credentials)
        {
--- a/External/Implementations/Postgres/ExtraFieldDataAccess.cs
+++ b/External/Implementations/Postgres/ExtraFieldDataAccess.cs
@@ -58,11 +58,7 @@ namespace CarCareTracker.External.Implementations
            try
            {
                var existingRecord = GetExtraFieldsById(record.Id);
-                string cmd = $"INSERT INTO app.{tableName} (id, data) VALUES(@id, CAST(@data AS jsonb))";
+                string cmd = $"INSERT INTO app.{tableName} (id, data) VALUES(@id, CAST(@data AS jsonb)) ON CONFLICT(id) DO UPDATE SET data = CAST(@data AS jsonb)";
                if (existingRecord.ExtraFields != null)
                {
                    cmd = $"UPDATE app.{tableName} SET data = CAST(@data AS jsonb) WHERE id = @id";
                }
                using (var ctext = pgDataSource.CreateCommand(cmd))
                {
                    ctext.Parameters.AddWithValue("id", record.Id);
--- a/Helper/ConfigHelper.cs
+++ b/Helper/ConfigHelper.cs
@@ -7,6 +7,7 @@ namespace CarCareTracker.Helper
 {
    public interface IConfigHelper
    {
        OpenIDConfig GetOpenIDConfig();
        UserConfig GetUserConfig(ClaimsPrincipal user);
        bool SaveUserConfig(ClaimsPrincipal user, UserConfig configData);
        string GetLogoUrl();
@@ -28,6 +29,11 @@ namespace CarCareTracker.Helper
            _userConfig = userConfig;
            _cache = memoryCache;
        }
        public OpenIDConfig GetOpenIDConfig()
        {
            OpenIDConfig openIdConfig = _config.GetSection("OpenIDConfig").Get<OpenIDConfig>() ?? new OpenIDConfig();
            return openIdConfig;
        }
        public string GetLogoUrl()
        {
            var logoUrl = _config["LUBELOGGER_LOGO_URL"];
--- a/Logic/LoginLogic.cs
+++ b/Logic/LoginLogic.cs
@@ -21,6 +21,7 @@ namespace CarCareTracker.Logic
        OperationResponse ResetPasswordByUser(LoginModel credentials);
        OperationResponse ResetUserPassword(LoginModel credentials);
        UserData ValidateUserCredentials(LoginModel credentials);
        UserData ValidateOpenIDUser(LoginModel credentials);
        bool CheckIfUserIsValid(int userId);
        bool CreateRootUserCredentials(LoginModel credentials);
        bool DeleteRootUserCredentials();
@@ -193,6 +194,19 @@ namespace CarCareTracker.Logic
                }
            }
        }
        public UserData ValidateOpenIDUser(LoginModel credentials)
        {
            var result = _userData.GetUserRecordByEmailAddress(credentials.EmailAddress);
            if (result.Id != default)
            {
                result.Password = string.Empty;
                return result;
            }
            else
            {
                return new UserData();
            }
        }
        #region "Admin Functions"
        public bool MakeUserAdmin(int userId, bool isAdmin)
        {
--- a/Models/OIDC/OpenIDConfig.cs
+++ b/Models/OIDC/OpenIDConfig.cs
@@ -0,0 +1,14 @@
 namespace CarCareTracker.Models
 {
    public class OpenIDConfig
    {
        public string Name { get; set; }
        public string ClientId { get; set; }
        public string ClientSecret { get; set; }
        public string AuthURL { get; set; }
        public string TokenURL { get; set; }
        public string RedirectURL { get; set; }
        public string Scope { get; set; }
        public string RemoteAuthURL { get { return $"{AuthURL}?client_id={ClientId}&response_type=code&redirect_uri={RedirectURL}&scope={Scope}"; } }
    }
 }
--- a/Models/OIDC/OpenIDResult.cs
+++ b/Models/OIDC/OpenIDResult.cs
@@ -0,0 +1,7 @@
 namespace CarCareTracker.Models
 {
    public class OpenIDResult
    {
        public string id_token { get; set; }
    }
 }
--- a/Views/Home/_Settings.cshtml
+++ b/Views/Home/_Settings.cshtml
@@ -201,7 +201,7 @@
            <img src="/defaults/lubelogger_logo.png" />
        </div>
        <div class="d-flex justify-content-center">
-            <small class="text-body-secondary">Version 1.1.6</small>
+            <small class="text-body-secondary">Version 1.1.9</small>
        </div>
        <p class="lead">
            Proudly developed in the rural town of Price, Utah by Hargata Softworks.
--- a/Views/Login/Index.cshtml
+++ b/Views/Login/Index.cshtml
@@ -5,6 +5,7 @@
@{
    var logoUrl = config.GetLogoUrl();
    var userLanguage = config.GetServerLanguage();
    var openIdConfigName = config.GetOpenIDConfig().Name;
 }
@{
    ViewData["Title"] = "LubeLogger - Login";
@@ -31,6 +32,12 @@
            <div class="d-grid">
                <button type="button" class="btn btn-warning mt-2" onclick="performLogin()"><i class="bi bi-box-arrow-in-right me-2"></i>@translator.Translate(userLanguage, "Login")</button>
            </div>
            @if (!string.IsNullOrWhiteSpace(openIdConfigName))
            {
                <div class="d-grid">
                    <button type="button" class="btn btn-secondary mt-2" onclick="remoteLogin()"><i class="bi bi-box-arrow-in-right me-2"></i>@($"{translator.Translate(userLanguage, "Login via")} {openIdConfigName}")</button>
                </div>
            }
            <div class="d-grid">
                <a href="/Login/ForgotPassword" class="btn btn-link mt-2">@translator.Translate(userLanguage, "Forgot Password")</a>
            </div>
@@ -41,7 +48,7 @@
    </div>
 </div>
 <script>
-    function getRedirectURL(){
+    function getRedirectURL() {
        return { url: decodeHTMLEntities('@Model') };
    }
 </script>
--- a/wwwroot/css/site.css
+++ b/wwwroot/css/site.css
@@ -304,7 +304,7 @@ input[type="file"] {
 .override-hide{
    display: none !important;
 }
-.reminderCalendarViewContent + .datepicker, .datepicker-inline, .datepicker-days, .table-condensed {
+.reminderCalendarViewContent .datepicker, .reminderCalendarViewContent .datepicker-inline, .reminderCalendarViewContent .datepicker-days, .reminderCalendarViewContent .table-condensed {
    width: 100%;
    height: 100%;
    table-layout: fixed;
--- a/wwwroot/defaults/en_US.json
+++ b/wwwroot/defaults/en_US.json
--- a/wwwroot/js/garage.js
+++ b/wwwroot/js/garage.js
@@ -150,7 +150,7 @@ function initCalendar() {
        format: getShortDatePattern().pattern,
        todayHighlight: true,
        beforeShowDay: function (date) {
-            var reminderDateIndex = groupedDates.findIndex(x => x.date == date.getTime());
+            var reminderDateIndex = groupedDates.findIndex(x => (x.date == date.getTime() || x.date == (date.getTime() - date.getTimezoneOffset() * 60000))); //take into account server timezone offset
            if (reminderDateIndex > -1) {
                return {
                    enabled: true,
--- a/wwwroot/js/login.js
+++ b/wwwroot/js/login.js
@@ -60,3 +60,11 @@ function handlePasswordKeyPress(event) {
        performLogin();
    }
 }
 function remoteLogin() {
    $.get('/Login/GetRemoteLoginLink', function (data) {
        if (data) {
            window.location.href = data;
        }
    })
 }
Author	SHA1	Message	Date
Hargata Softworks	9f73068a9e	Merge pull request #301 from hargata/Hargata/oidc.auth Updated app version.	2024-02-15 20:12:23 -07:00
$DESKTOP-GENO133\IvanPlex$ DESKTOP-GENO133\IvanPlex	779b18802b	Updated app version.	2024-02-15 20:11:39 -07:00
Hargata Softworks	dce9acf47f	Merge pull request #300 from hargata/Hargata/oidc.auth Hargata/OIDC.auth	2024-02-15 20:08:54 -07:00
$DESKTOP-GENO133\IvanPlex$ DESKTOP-GENO133\IvanPlex	c9a925f548	Updated section name	2024-02-15 19:10:38 -07:00
$DESKTOP-GENO133\IvanPlex$ DESKTOP-GENO133\IvanPlex	4eeec7887a	Updated wording	2024-02-15 19:09:50 -07:00
Hargata Softworks	156c781bd7	Merge pull request #297 from hargata/Hargata/bugfix Fixed ExtraFields upsert query.	2024-02-15 19:07:14 -07:00
$DESKTOP-T0O5CDB\DESK-555BD$ DESKTOP-T0O5CDB\DESK-555BD	296cf92022	added error handling for users not registered with LubeLogger	2024-02-15 19:02:11 -07:00
$DESKTOP-T0O5CDB\DESK-555BD$ DESKTOP-T0O5CDB\DESK-555BD	d5f0e57c3b	Added OpenID login.	2024-02-15 18:57:22 -07:00
$DESKTOP-GENO133\IvanPlex$ DESKTOP-GENO133\IvanPlex	86ba6200fc	Fixed ExtraFields upsert query.	2024-02-15 09:26:01 -07:00
Hargata Softworks	ac4ea07319	Merge pull request #291 from hargata/Hargata/further.improvements styling changes.	2024-02-14 12:22:03 -07:00
$DESKTOP-T0O5CDB\DESK-555BD$ DESKTOP-T0O5CDB\DESK-555BD	6d380de603	styling changes.	2024-02-14 12:21:39 -07:00
Hargata Softworks	e789bc6925	Merge pull request #290 from hargata/Hargata/further.improvements server timezone offset.	2024-02-14 12:15:05 -07:00
$DESKTOP-T0O5CDB\DESK-555BD$ DESKTOP-T0O5CDB\DESK-555BD	f7481be91c	Updated version.	2024-02-14 12:14:10 -07:00
$DESKTOP-T0O5CDB\DESK-555BD$ DESKTOP-T0O5CDB\DESK-555BD	a8151bcf0e	server timezone offset.	2024-02-14 12:12:49 -07:00