Added UserModel, Added Login and Logout and authorization, Made dark mode default

2025-12-20 06:51:55 +00:00 · 2025-09-29 21:51:32 +02:00
parent 11c37376ad
commit 5c633bd17c
11 changed files with 246 additions and 20 deletions
--- a/src/Controllers/HomeController.cs
+++ b/src/Controllers/HomeController.cs
@@ -1,9 +1,12 @@
 using Microsoft.AspNetCore.Mvc;
-using System;
-using System.Threading.Tasks;
 using Berufsschule_HAM.Models;
-using Novell.Directory.Ldap;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.Cookies;
+using System.Security.Claims;
 using Berufsschule_HAM.Services;
+using ElmahCore;
+using Berufsschule_HAM.Exceptions;
+using Microsoft.AspNetCore.Authorization;

 [ApiExplorerSettings(IgnoreApi = true)]
 [Route("[controller]")]
@@ -16,11 +19,72 @@ public class HomeController : Controller
        _ldap = ldap ?? throw new ArgumentNullException(nameof(ldap));
    }

-    // GET: /Assets
+    [Authorize]
    [HttpGet("Index")]
    [HttpGet("/")]
    public IActionResult Index()
    {
        return View();
    }
+
+    [HttpPost("Login")]
+    public async Task<ActionResult> Login(string username, string password)
+    {
+        var authenticationResult = await _ldap.AuthenticateUser(username, password);
+        if (authenticationResult.Success)
+        {
+            List<Claim> claims =
+            [
+                new(ClaimTypes.Name, username)
+            ];
+
+            var claimsIdentity = new ClaimsIdentity(
+                claims,
+                CookieAuthenticationDefaults.AuthenticationScheme);
+
+            var authProperties = new AuthenticationProperties
+            {
+                IsPersistent = true,
+                ExpiresUtc = DateTimeOffset.UtcNow.AddMinutes(300)
+            };
+
+            await HttpContext.SignInAsync(
+                CookieAuthenticationDefaults.AuthenticationScheme,
+                new ClaimsPrincipal(claimsIdentity),
+                authProperties);
+
+            return RedirectToAction("Index", "Home");
+        }
+        switch (authenticationResult.AuthenticationState)
+        {
+            case UserNotAuthenticatedReason.InvalidCredentials:
+                return View(new LoginViewModel() { ErrorText = "Invalid login credentials" }); // TODO add localization (e.g. T["Invalid login credentials"]; see: https://learn.microsoft.com/de-de/dotnet/core/extensions/localization)
+            case UserNotAuthenticatedReason.UserLockedOut:
+                return View(new LoginViewModel() { ErrorText = "Your account has been locked. Wait a few minutes or ask an administrator to unlock you" }); // TODO add localization (e.g. T["Invalid login credentials"]; see: https://learn.microsoft.com/de-de/dotnet/core/extensions/localization)
+            case UserNotAuthenticatedReason.UserNotAuthorized:
+                return View(new LoginViewModel() { ErrorText = "You are not authorized for login. Ask an administrator to authorize you." }); // TODO add localization (e.g. T["Invalid login credentials"]; see: https://learn.microsoft.com/de-de/dotnet/core/extensions/localization)
+            default:
+                await HttpContext.RaiseError(new HellFrozeOverException());
+                return View(new LoginViewModel() { ErrorText = "Hell froze over. Make a screenshot and send it to an administrator." }); // TODO add localization (e.g. T["Invalid login credentials"]; see: https://learn.microsoft.com/de-de/dotnet/core/extensions/localization)
+        }
+    }
+
+    [HttpGet("Login")]
+    public ActionResult Login()
+    {
+        return View(new LoginViewModel());
+    }
+
+    [HttpGet("Logout")]
+    public ActionResult Logout()
+    {
+        HttpContext.SignOutAsync();
+        return RedirectToAction("Index", "Home");
+    }
+
+    [HttpGet("AccessDenied")]
+    public ActionResult AccessDenied()
+    {
+        return View();
+    }
 }