mirror of
https://github.com/LBPUnion/ProjectLighthouse.git
synced 2025-05-02 17:08:21 +00:00
ce0fe9edee
* Added user invite system * Added user invite system * Revert recent migrations and try again * stopped implicitly assigning token variables * Added correct context to migrations * Apply suggestions from code review Some grammar changes, etc. Co-authored-by: Jayden <jvyden@jvyden.xyz> * Updated the API key page * Removed enabled field from APIKey * Removed reference to APIKey.Enabled * Add creation guide text * Fix this.Forbid() usage Causes an exception on my machine for some reason, always has. * Fix more forbid usages * Return 404 if trying to generate token when private registration is disabled * Capture authentication schema more cleanly Co-authored-by: Jayden <jvyden@jvyden.xyz>
133 lines
No EOL
4.3 KiB
C#
133 lines
No EOL
4.3 KiB
C#
using System.Diagnostics.CodeAnalysis;
|
|
using JetBrains.Annotations;
|
|
using LBPUnion.ProjectLighthouse.Configuration;
|
|
using LBPUnion.ProjectLighthouse.Extensions;
|
|
using LBPUnion.ProjectLighthouse.Helpers;
|
|
using LBPUnion.ProjectLighthouse.PlayerData;
|
|
using LBPUnion.ProjectLighthouse.PlayerData.Profiles;
|
|
using LBPUnion.ProjectLighthouse.Servers.Website.Pages.Layouts;
|
|
using LBPUnion.ProjectLighthouse.Types;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.EntityFrameworkCore;
|
|
|
|
namespace LBPUnion.ProjectLighthouse.Servers.Website.Pages;
|
|
|
|
public class RegisterForm : BaseLayout
|
|
{
|
|
public RegisterForm(Database database) : base(database)
|
|
{ }
|
|
|
|
public string? Error { get; private set; }
|
|
|
|
[UsedImplicitly]
|
|
[SuppressMessage("ReSharper", "SpecifyStringComparison")]
|
|
public async Task<IActionResult> OnPost(string username, string password, string confirmPassword, string emailAddress)
|
|
{
|
|
if (ServerConfiguration.Instance.Authentication.PrivateRegistration)
|
|
{
|
|
if (this.Request.Query.ContainsKey("token"))
|
|
{
|
|
if (!this.Database.IsRegistrationTokenValid(this.Request.Query["token"]))
|
|
return this.StatusCode(403, "Invalid Token");
|
|
}
|
|
else
|
|
{
|
|
return this.NotFound();
|
|
}
|
|
}
|
|
else if (!ServerConfiguration.Instance.Authentication.RegistrationEnabled)
|
|
{
|
|
return this.NotFound();
|
|
}
|
|
|
|
if (string.IsNullOrWhiteSpace(username))
|
|
{
|
|
this.Error = "The username field is blank.";
|
|
return this.Page();
|
|
}
|
|
|
|
if (string.IsNullOrWhiteSpace(password))
|
|
{
|
|
this.Error = "Password field is required.";
|
|
return this.Page();
|
|
}
|
|
|
|
if (string.IsNullOrWhiteSpace(emailAddress) && ServerConfiguration.Instance.Mail.MailEnabled)
|
|
{
|
|
this.Error = "Email address field is required.";
|
|
return this.Page();
|
|
}
|
|
|
|
if (password != confirmPassword)
|
|
{
|
|
this.Error = "Passwords do not match!";
|
|
return this.Page();
|
|
}
|
|
|
|
if (await this.Database.Users.FirstOrDefaultAsync(u => u.Username.ToLower() == username.ToLower()) != null)
|
|
{
|
|
this.Error = "The username you've chosen is already taken.";
|
|
return this.Page();
|
|
}
|
|
|
|
if (ServerConfiguration.Instance.Mail.MailEnabled &&
|
|
await this.Database.Users.FirstOrDefaultAsync(u => u.EmailAddress != null && u.EmailAddress.ToLower() == emailAddress.ToLower()) != null)
|
|
{
|
|
this.Error = "The email address you've chosen is already taken.";
|
|
return this.Page();
|
|
}
|
|
|
|
if (!await this.Request.CheckCaptchaValidity())
|
|
{
|
|
this.Error = "You must complete the captcha correctly.";
|
|
return this.Page();
|
|
}
|
|
|
|
if (this.Request.Query.ContainsKey("token"))
|
|
{
|
|
await Database.RemoveRegistrationToken(this.Request.Query["token"]);
|
|
}
|
|
|
|
User user = await this.Database.CreateUser(username, CryptoHelper.BCryptHash(password), emailAddress);
|
|
|
|
WebToken webToken = new()
|
|
{
|
|
UserId = user.UserId,
|
|
UserToken = CryptoHelper.GenerateAuthToken(),
|
|
};
|
|
|
|
this.Database.WebTokens.Add(webToken);
|
|
await this.Database.SaveChangesAsync();
|
|
|
|
this.Response.Cookies.Append("LighthouseToken", webToken.UserToken);
|
|
|
|
if (ServerConfiguration.Instance.Mail.MailEnabled) return this.Redirect("~/login/sendVerificationEmail");
|
|
|
|
return this.RedirectToPage(nameof(LandingPage));
|
|
}
|
|
|
|
[UsedImplicitly]
|
|
[SuppressMessage("ReSharper", "SpecifyStringComparison")]
|
|
public IActionResult OnGet()
|
|
{
|
|
this.Error = string.Empty;
|
|
if (ServerConfiguration.Instance.Authentication.PrivateRegistration)
|
|
{
|
|
if (this.Request.Query.ContainsKey("token"))
|
|
{
|
|
if (!this.Database.IsRegistrationTokenValid(this.Request.Query["token"]))
|
|
return this.StatusCode(403, "Invalid Token");
|
|
}
|
|
else
|
|
{
|
|
return this.NotFound();
|
|
}
|
|
}
|
|
else if (!ServerConfiguration.Instance.Authentication.RegistrationEnabled)
|
|
{
|
|
return this.NotFound();
|
|
}
|
|
|
|
return this.Page();
|
|
}
|
|
} |