58 lines
1.9 KiB
C#
58 lines
1.9 KiB
C#
using System.IdentityModel.Tokens.Jwt;
|
|
using BeReadyBackend.DTO.Auth;
|
|
using BeReadyBackend.Models;
|
|
using BeReadyBackend.Repositories;
|
|
using BeReadyBackend.Specifications.Users;
|
|
using FastEndpoints;
|
|
using FastEndpoints.Security;
|
|
|
|
|
|
namespace BeReadyBackend.Endpoints.Auth;
|
|
|
|
public class RefreshTokenEndpoint(UsersRepository usersRepository, AutoMapper.IMapper mapper) : Endpoint<RefreshTokenDto, GetTokenDto>
|
|
{
|
|
public override void Configure()
|
|
{
|
|
Post("/Auth/RefreshToken");
|
|
AllowAnonymous();
|
|
}
|
|
|
|
public override async Task HandleAsync(RefreshTokenDto req, CancellationToken ct)
|
|
{
|
|
try
|
|
{
|
|
JwtSecurityTokenHandler handler = new();
|
|
JwtSecurityToken? token = handler.ReadJwtToken(req.Token);
|
|
string? username = token.Claims.FirstOrDefault(c => c.Type == "Username")?.Value;
|
|
|
|
if (string.IsNullOrWhiteSpace(username))
|
|
{
|
|
await Send.UnauthorizedAsync(ct);
|
|
return;
|
|
}
|
|
|
|
User? user = await usersRepository.FirstOrDefaultAsync(new GetUserByUsernameSpec(username), ct);
|
|
if (user is null)
|
|
{
|
|
await Send.UnauthorizedAsync(ct);
|
|
return;
|
|
}
|
|
|
|
string jwtToken = JwtBearer.CreateToken(o =>
|
|
{
|
|
o.SigningKey = "v9!Qx7#Lk2@pZ8$wR6!tN5%uF3&cD9^mH1*eY4";
|
|
o.ExpireAt = DateTime.UtcNow.AddDays(15);
|
|
o.User.Claims.Add(("Username", user.Username)!);
|
|
o.User.Claims.Add(("FullName", user.FirstName + user.Name));
|
|
o.User.Claims.Add(("UserId", user.Id.ToString()));
|
|
}
|
|
);
|
|
|
|
await Send.OkAsync(new GetTokenDto { Token = jwtToken }, ct);
|
|
}
|
|
catch
|
|
{
|
|
await Send.UnauthorizedAsync(ct);
|
|
}
|
|
}
|
|
} |