mirror of
https://github.com/LBPUnion/ProjectLighthouse.git
synced 2025-04-19 19:14:51 +00:00
84 lines
No EOL
2.8 KiB
C#
84 lines
No EOL
2.8 KiB
C#
#nullable enable
|
|
using LBPUnion.ProjectLighthouse.PlayerData;
|
|
using LBPUnion.ProjectLighthouse.PlayerData.Profiles;
|
|
using LBPUnion.ProjectLighthouse.Types;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.EntityFrameworkCore;
|
|
|
|
namespace LBPUnion.ProjectLighthouse.Servers.Website.Controllers.ExternalAuth;
|
|
|
|
[ApiController]
|
|
[Route("/authentication")]
|
|
public class AuthenticationController : ControllerBase
|
|
{
|
|
private readonly Database database;
|
|
|
|
public AuthenticationController(Database database)
|
|
{
|
|
this.database = database;
|
|
}
|
|
|
|
[HttpGet("approve/{id:int}")]
|
|
public async Task<IActionResult> Approve(int id)
|
|
{
|
|
User? user = this.database.UserFromWebRequest(this.Request);
|
|
if (user == null) return this.Redirect("/login");
|
|
|
|
AuthenticationAttempt? authAttempt = await this.database.AuthenticationAttempts.Include
|
|
(a => a.GameToken)
|
|
.FirstOrDefaultAsync(a => a.AuthenticationAttemptId == id);
|
|
if (authAttempt == null) return this.NotFound();
|
|
|
|
if (authAttempt.GameToken.UserId != user.UserId) return this.StatusCode(403, "");
|
|
|
|
authAttempt.GameToken.Approved = true;
|
|
this.database.AuthenticationAttempts.Remove(authAttempt);
|
|
|
|
await this.database.SaveChangesAsync();
|
|
|
|
return this.Redirect("~/authentication");
|
|
}
|
|
|
|
[HttpGet("deny/{id:int}")]
|
|
public async Task<IActionResult> Deny(int id)
|
|
{
|
|
User? user = this.database.UserFromWebRequest(this.Request);
|
|
if (user == null) return this.Redirect("/login");
|
|
|
|
AuthenticationAttempt? authAttempt = await this.database.AuthenticationAttempts.Include
|
|
(a => a.GameToken)
|
|
.FirstOrDefaultAsync(a => a.AuthenticationAttemptId == id);
|
|
if (authAttempt == null) return this.NotFound();
|
|
|
|
if (authAttempt.GameToken.UserId != user.UserId) return this.StatusCode(403, "");
|
|
|
|
this.database.GameTokens.Remove(authAttempt.GameToken);
|
|
this.database.AuthenticationAttempts.Remove(authAttempt);
|
|
|
|
await this.database.SaveChangesAsync();
|
|
|
|
return this.Redirect("~/authentication");
|
|
}
|
|
|
|
[HttpGet("denyAll")]
|
|
public async Task<IActionResult> DenyAll()
|
|
{
|
|
User? user = this.database.UserFromWebRequest(this.Request);
|
|
if (user == null) return this.Redirect("/login");
|
|
|
|
List<AuthenticationAttempt> authAttempts = await this.database.AuthenticationAttempts.Include
|
|
(a => a.GameToken)
|
|
.Where(a => a.GameToken.UserId == user.UserId)
|
|
.ToListAsync();
|
|
|
|
foreach (AuthenticationAttempt authAttempt in authAttempts)
|
|
{
|
|
this.database.GameTokens.Remove(authAttempt.GameToken);
|
|
this.database.AuthenticationAttempts.Remove(authAttempt);
|
|
}
|
|
|
|
await this.database.SaveChangesAsync();
|
|
|
|
return this.Redirect("~/authentication");
|
|
}
|
|
} |