35 lines
1.2 KiB
C#
35 lines
1.2 KiB
C#
using System.Security.Claims;
|
|
using HopFrame.Database;
|
|
using HopFrame.Security.Authentication;
|
|
using HopFrame.Security.Claims;
|
|
using HopFrame.Security.Services;
|
|
using HopFrame.Web.Services;
|
|
using Microsoft.AspNetCore.Http;
|
|
|
|
namespace HopFrame.Web;
|
|
|
|
public sealed class AuthMiddleware(IAuthService auth, IPermissionService perms) : IMiddleware {
|
|
public async Task InvokeAsync(HttpContext context, RequestDelegate next) {
|
|
var loggedIn = await auth.IsLoggedIn();
|
|
|
|
if (!loggedIn) {
|
|
var token = await auth.RefreshLogin();
|
|
if (token is null) {
|
|
await next.Invoke(context);
|
|
return;
|
|
}
|
|
|
|
var claims = new List<Claim> {
|
|
new(HopFrameClaimTypes.AccessTokenId, token.Token),
|
|
new(HopFrameClaimTypes.UserId, token.UserId)
|
|
};
|
|
|
|
var permissions = await perms.GetFullPermissions(token.UserId);
|
|
claims.AddRange(permissions.Select(perm => new Claim(HopFrameClaimTypes.Permission, perm)));
|
|
|
|
context.User.AddIdentity(new ClaimsIdentity(claims, HopFrameAuthentication<HopDbContextBase>.SchemeName));
|
|
}
|
|
|
|
await next?.Invoke(context);
|
|
}
|
|
} |