WEP
/
WEP_V2.1.3


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117
							using System;
using System.Security.Claims;
using System.Threading.Tasks;
using System.Web.Http;
using Abp.UI;
using Abp.Web.Models;
using Abp.WebApi.Controllers;
using IwbZero;
using IwbZero.Authorization.Base;
using IwbZero.ToolCommon.StringModel;
using Microsoft.Extensions.Internal;
using Microsoft.Owin.Security;
using Microsoft.Owin.Security.OAuth;
using WeEngine.Api.Models;

namespace WeEngine.Api.Controllers
{
    public class AccountController : AbpApiController
    {
        public static OAuthBearerAuthenticationOptions OAuthBearerOptions { get; }

        //private readonly LogInManager _logInManager;

        static AccountController()
        {
            OAuthBearerOptions = new OAuthBearerAuthenticationOptions();
        }

        public AccountController()
        {
            //_logInManager = logInManager;
            LocalizationSourceName = IwbZeroConsts.LocalizationSourceName;
        }

        [HttpPost]
        public async Task<AjaxResponse> Authenticate(LoginModel loginModel)
        {
            CheckModelState();

            //var loginResult = await GetLoginResultAsync(
            //    loginModel.UsernameOrEmailAddress,
            //    loginModel.Password,
            //    loginModel.TenancyName
            //    );
            var loginResult = await Login(loginModel);
            var ticket = new AuthenticationTicket(loginResult, new AuthenticationProperties());

            var currentUtc = new SystemClock().UtcNow;
            ticket.Properties.IssuedUtc = currentUtc;
            ticket.Properties.ExpiresUtc = currentUtc.Add(TimeSpan.FromMinutes(30));

            return new AjaxResponse(OAuthBearerOptions.AccessTokenFormat.Protect(ticket));
        }

        private Task<ClaimsIdentity> Login(LoginModel loginModel)
        {
            if (loginModel.UsernameOrEmailAddress.IsEmpty()|| loginModel.Password.IsEmpty())
            {
                throw new UserFriendlyException("用户名或密码不能为空。");
            }

            //检查用户登录
            var flag = "Y".ValB();
            if (!flag)
            {
                throw new UserFriendlyException("密码验证失败。");
            }
            var claim = new ClaimsIdentity();
            claim.AddClaim(new Claim(ClaimTypes.Name, loginModel.UsernameOrEmailAddress));
            return Task.FromResult(claim);
        }

        //private async Task<IwbLoginResult<Tenant, User>> GetLoginResultAsync(string usernameOrEmailAddress, string password, string tenancyName)
        //{
        //    var loginResult = await _logInManager.LoginAsync(usernameOrEmailAddress, password, tenancyName);

        //    switch (loginResult.Result)
        //    {
        //        case IwbLoginResultType.Success:
        //            return loginResult;
        //        default:
        //            throw CreateExceptionForFailedLoginAttempt(loginResult.Result, usernameOrEmailAddress, tenancyName);
        //    }
        //}

        private Exception CreateExceptionForFailedLoginAttempt(IwbLoginResultType result, string usernameOrEmailAddress, string tenancyName)
        {
            switch (result)
            {
                case IwbLoginResultType.Success:
                    return new ApplicationException("Don't call this method with a success result!");
                case IwbLoginResultType.InvalidUserNameOrEmailAddress:
                case IwbLoginResultType.InvalidPassword:
                    return new UserFriendlyException(L("LoginFailed"), L("InvalidUserNameOrPassword"));
                case IwbLoginResultType.InvalidTenancyName:
                    return new UserFriendlyException(L("LoginFailed"), L("ThereIsNoTenantDefinedWithName{0}", tenancyName));
                case IwbLoginResultType.TenantIsNotActive:
                    return new UserFriendlyException(L("LoginFailed"), L("TenantIsNotActive", tenancyName));
                case IwbLoginResultType.UserIsNotActive:
                    return new UserFriendlyException(L("LoginFailed"), L("UserIsNotActiveAndCanNotLogin", usernameOrEmailAddress));
                case IwbLoginResultType.UserEmailIsNotConfirmed:
                    return new UserFriendlyException(L("LoginFailed"), "Your email address is not confirmed. You can not login"); //TODO: localize message
                default: //Can not fall to default actually. But other result types can be added in the future and we may forget to handle it
                    Logger.Warn("Unhandled login fail reason: " + result);
                    return new UserFriendlyException(L("LoginFailed"));
            }
        }

        protected virtual void CheckModelState()
        {
            if (!ModelState.IsValid)
            {
                throw new UserFriendlyException("Invalid request!");
            }
        }
    }
}