2025-07-08 23:06:19 +08:00
|
|
|
// Licensed to the .NET Foundation under one or more agreements.
|
|
|
|
|
// The .NET Foundation licenses this file to you under the MIT license.
|
|
|
|
|
#nullable disable
|
|
|
|
|
|
|
|
|
|
using System;
|
|
|
|
|
using System.Collections.Generic;
|
|
|
|
|
using System.ComponentModel.DataAnnotations;
|
|
|
|
|
using System.Linq;
|
2025-07-11 16:17:31 +08:00
|
|
|
using System.Security.Claims;
|
2025-07-08 23:06:19 +08:00
|
|
|
using System.Threading.Tasks;
|
|
|
|
|
using Microsoft.AspNetCore.Authorization;
|
|
|
|
|
using AGSS.Models.Entities;
|
|
|
|
|
using AGSS.Utilities;
|
2025-07-11 16:17:31 +08:00
|
|
|
using asg_form;
|
2025-07-08 23:06:19 +08:00
|
|
|
using Microsoft.AspNetCore.Authentication;
|
|
|
|
|
using Microsoft.AspNetCore.Identity;
|
|
|
|
|
using Microsoft.AspNetCore.Identity.UI.Services;
|
|
|
|
|
using Microsoft.AspNetCore.Mvc;
|
|
|
|
|
using Microsoft.AspNetCore.Mvc.RazorPages;
|
|
|
|
|
using Microsoft.Extensions.Logging;
|
2025-07-11 16:17:31 +08:00
|
|
|
using Microsoft.Extensions.Options;
|
2025-07-08 23:06:19 +08:00
|
|
|
|
|
|
|
|
namespace AGSS.Areas.Identity.Pages.Account
|
|
|
|
|
{
|
|
|
|
|
public class LoginModel : PageModel
|
|
|
|
|
{
|
|
|
|
|
|
|
|
|
|
private readonly SignInManager<UserModel> _signInManager;
|
|
|
|
|
private readonly ILogger<LoginModel> _logger;
|
|
|
|
|
private readonly UserManager<UserModel> _userManager;
|
|
|
|
|
private readonly Jwt _jwt;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public LoginModel(SignInManager<UserModel> signInManager, ILogger<LoginModel> logger,UserManager<UserModel> userManager,Jwt jwt
|
|
|
|
|
)
|
|
|
|
|
{
|
|
|
|
|
_signInManager = signInManager;
|
|
|
|
|
_logger = logger;
|
|
|
|
|
_userManager = userManager;
|
|
|
|
|
_jwt = jwt;
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
|
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
|
|
|
/// </summary>
|
|
|
|
|
[BindProperty]
|
|
|
|
|
public InputModel Input { get; set; }
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
|
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
|
|
|
/// </summary>
|
|
|
|
|
public IList<AuthenticationScheme> ExternalLogins { get; set; }
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
|
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
|
|
|
/// </summary>
|
|
|
|
|
public string ReturnUrl { get; set; }
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
|
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
|
|
|
/// </summary>
|
|
|
|
|
[TempData]
|
|
|
|
|
public string ErrorMessage { get; set; }
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
|
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
|
|
|
/// </summary>
|
|
|
|
|
public class InputModel
|
|
|
|
|
{
|
|
|
|
|
/// <summary>
|
|
|
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
|
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
|
|
|
/// </summary>
|
|
|
|
|
[Required]
|
|
|
|
|
[EmailAddress]
|
|
|
|
|
public string Email { get; set; }
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
|
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
|
|
|
/// </summary>
|
|
|
|
|
[Required]
|
|
|
|
|
[DataType(DataType.Password)]
|
|
|
|
|
public string Password { get; set; }
|
|
|
|
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
|
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
|
|
|
/// </summary>
|
|
|
|
|
[Display(Name = "Remember me?")]
|
|
|
|
|
public bool RememberMe { get; set; }
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public async Task OnGetAsync(string returnUrl = null)
|
|
|
|
|
{
|
|
|
|
|
if (!string.IsNullOrEmpty(ErrorMessage))
|
|
|
|
|
{
|
|
|
|
|
ModelState.AddModelError(string.Empty, ErrorMessage);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
returnUrl ??= Url.Content("~/");
|
|
|
|
|
|
|
|
|
|
// Clear the existing external cookie to ensure a clean login process
|
|
|
|
|
await HttpContext.SignOutAsync(IdentityConstants.ExternalScheme);
|
|
|
|
|
|
|
|
|
|
ExternalLogins = (await _signInManager.GetExternalAuthenticationSchemesAsync()).ToList();
|
|
|
|
|
|
|
|
|
|
ReturnUrl = returnUrl;
|
|
|
|
|
}
|
|
|
|
|
|
2025-07-11 16:17:31 +08:00
|
|
|
public async Task<IActionResult> OnPostAsync([FromServices] IOptions<JWTOptions> jwtOptions,string returnUrl = null)
|
2025-07-08 23:06:19 +08:00
|
|
|
{
|
|
|
|
|
returnUrl ??= Url.Content("~/");
|
|
|
|
|
|
|
|
|
|
ExternalLogins = (await _signInManager.GetExternalAuthenticationSchemesAsync()).ToList();
|
|
|
|
|
|
|
|
|
|
if (ModelState.IsValid)
|
|
|
|
|
{
|
|
|
|
|
// This doesn't count login failures towards account lockout
|
|
|
|
|
// To enable password failures to trigger account lockout, set lockoutOnFailure: true
|
|
|
|
|
var result = await _signInManager.PasswordSignInAsync(Input.Email, Input.Password, Input.RememberMe, lockoutOnFailure: false);
|
|
|
|
|
if (result.Succeeded)
|
|
|
|
|
{
|
|
|
|
|
_logger.LogInformation("User logged in.");
|
|
|
|
|
var user = await _userManager.FindByEmailAsync(Input.Email);
|
2025-07-11 16:17:31 +08:00
|
|
|
|
|
|
|
|
var claims = new List<Claim>();
|
|
|
|
|
claims.Add(new Claim(ClaimTypes.NameIdentifier, user.Id.ToString()));
|
|
|
|
|
claims.Add(new Claim(ClaimTypes.Name, user.UserName));
|
2025-07-09 13:57:43 +08:00
|
|
|
var roles = await _userManager.GetRolesAsync(user);
|
2025-07-11 16:17:31 +08:00
|
|
|
foreach (string role in roles)
|
|
|
|
|
{
|
|
|
|
|
claims.Add(new Claim(ClaimTypes.Role, role));
|
|
|
|
|
}
|
|
|
|
|
string jwtToken = _jwt.BuildToken(claims, jwtOptions.Value);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
var frontendCallback = $"{Request.Query["frontendCallback"]}?token={jwtToken}";
|
2025-07-08 23:06:19 +08:00
|
|
|
|
|
|
|
|
return Redirect(frontendCallback);
|
|
|
|
|
}
|
|
|
|
|
if (result.RequiresTwoFactor)
|
|
|
|
|
{
|
|
|
|
|
return RedirectToPage("./LoginWith2fa", new { ReturnUrl = returnUrl, RememberMe = Input.RememberMe });
|
|
|
|
|
}
|
|
|
|
|
if (result.IsLockedOut)
|
|
|
|
|
{
|
|
|
|
|
_logger.LogWarning("User account locked out.");
|
|
|
|
|
return RedirectToPage("./Lockout");
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
ModelState.AddModelError(string.Empty, "Invalid login attempt.");
|
|
|
|
|
return Page();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If we got this far, something failed, redisplay form
|
|
|
|
|
return Page();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
