Mare 0.9 (#27)

* add jwt expiry * update api * merge * start rework permissions * ok so in theory this compiles * make it work I guess * reuse some permissions * fix intermediate connectivity issues * fixes * whatever * some fixes I guess * fix some stuff * idk some random fixes I guess * change some defaults * update nuget * adjust order of operations * adjust deletion of account * remove todo --------- Co-authored-by: rootdarkarchon <root.darkarchon@outlook.com>
2023-10-17 21:36:33 +02:00
parent 2c9d432fed
commit 302e6ffb62
39 changed files with 3564 additions and 454 deletions
--- a/MareSynchronosServer/MareSynchronosShared/RequirementHandlers/ValidTokenHubRequirementHandler.cs
+++ b/MareSynchronosServer/MareSynchronosShared/RequirementHandlers/ValidTokenHubRequirementHandler.cs
@@ -0,0 +1,50 @@
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.SignalR;
+using MareSynchronosShared.Utils;
+using System.Globalization;
+
+namespace MareSynchronosShared.RequirementHandlers;
+
+public class ValidTokenRequirementHandler : AuthorizationHandler<ValidTokenRequirement>
+{
+    protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, ValidTokenRequirement requirement)
+    {
+        var expirationClaimValue = context.User.Claims.Single(r => string.Equals(r.Type, MareClaimTypes.Expires, StringComparison.Ordinal))?.Value;
+        if (expirationClaimValue == null)
+        {
+            context.Fail();
+        }
+
+        DateTime expirationDate = new(long.Parse(expirationClaimValue, CultureInfo.InvariantCulture), DateTimeKind.Utc);
+        if (expirationDate < DateTime.UtcNow)
+        {
+            context.Fail();
+        }
+
+        context.Succeed(requirement);
+
+        return Task.CompletedTask;
+    }
+}
+
+public class ValidTokenHubRequirementHandler : AuthorizationHandler<ValidTokenRequirement, HubInvocationContext>
+{
+    protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, ValidTokenRequirement requirement, HubInvocationContext resource)
+    {
+        var expirationClaimValue = context.User.Claims.Single(r => string.Equals(r.Type, MareClaimTypes.Expires, StringComparison.Ordinal))?.Value;
+        if (expirationClaimValue == null)
+        {
+            context.Fail();
+        }
+
+        DateTime expirationDate = new(long.Parse(expirationClaimValue, CultureInfo.InvariantCulture), DateTimeKind.Utc);
+        if (expirationDate < DateTime.UtcNow)
+        {
+            context.Fail();
+        }
+
+        context.Succeed(requirement);
+
+        return Task.CompletedTask;
+    }
+}
--- a/MareSynchronosServer/MareSynchronosShared/RequirementHandlers/ValidTokenRequirement.cs
+++ b/MareSynchronosServer/MareSynchronosShared/RequirementHandlers/ValidTokenRequirement.cs
@@ -0,0 +1,5 @@
+using Microsoft.AspNetCore.Authorization;
+
+namespace MareSynchronosShared.RequirementHandlers;
+
+public class ValidTokenRequirement : IAuthorizationRequirement { }