14575a4a6b
* add jwt expiry * start of 0.9 api impl * some stuff idk * some more impl * some cleanup * remove grouppair, add configuration, rework some pair drawing stuff * do some stuff * rework some ui * I don't even know anymore * add cancellationtoken * token bla * ui fixes etc * probably individual adding/removing now working fully as expected * add working report popup * I guess it's more syncshell shit or so * popup shit idk * work out most of the syncshell bullshit I guess * delete some old crap * are we actually getting closer to the end * update pair info stuff * more fixes/adjustments, idk * refactor some things * some rework * some more cleanup * cleanup * make menu buttons w i d e * better icon text buttons * add all syncshell folder and ordering fixes --------- Co-authored-by: rootdarkarchon <root.darkarchon@outlook.com>
118 lines
4.9 KiB
C#
118 lines
4.9 KiB
C#
using MareSynchronos.API.Routes;
|
|
using MareSynchronos.Services;
|
|
using MareSynchronos.Services.ServerConfiguration;
|
|
using MareSynchronos.Utils;
|
|
using Microsoft.Extensions.Logging;
|
|
using System.Collections.Concurrent;
|
|
using System.IdentityModel.Tokens.Jwt;
|
|
using System.Net.Http.Headers;
|
|
using System.Reflection;
|
|
|
|
namespace MareSynchronos.WebAPI.SignalR;
|
|
|
|
public sealed class TokenProvider : IDisposable
|
|
{
|
|
private readonly DalamudUtilService _dalamudUtil;
|
|
private readonly HttpClient _httpClient;
|
|
private readonly ILogger<TokenProvider> _logger;
|
|
private readonly ServerConfigurationManager _serverManager;
|
|
private readonly ConcurrentDictionary<JwtIdentifier, string> _tokenCache = new();
|
|
|
|
public TokenProvider(ILogger<TokenProvider> logger, ServerConfigurationManager serverManager, DalamudUtilService dalamudUtil)
|
|
{
|
|
_logger = logger;
|
|
_serverManager = serverManager;
|
|
_dalamudUtil = dalamudUtil;
|
|
_httpClient = new();
|
|
var ver = Assembly.GetExecutingAssembly().GetName().Version;
|
|
_httpClient.DefaultRequestHeaders.UserAgent.Add(new ProductInfoHeaderValue("MareSynchronos", ver!.Major + "." + ver!.Minor + "." + ver!.Build));
|
|
}
|
|
|
|
private JwtIdentifier CurrentIdentifier => new(_serverManager.CurrentApiUrl, _serverManager.GetSecretKey()!);
|
|
|
|
public void Dispose()
|
|
{
|
|
_httpClient.Dispose();
|
|
}
|
|
|
|
public async Task<string> GetNewToken(bool isRenewal, CancellationToken token)
|
|
{
|
|
Uri tokenUri;
|
|
string response = string.Empty;
|
|
HttpResponseMessage result;
|
|
|
|
try
|
|
{
|
|
if (!isRenewal)
|
|
{
|
|
_logger.LogDebug("GetNewToken: Requesting");
|
|
|
|
tokenUri = MareAuth.AuthFullPath(new Uri(_serverManager.CurrentApiUrl
|
|
.Replace("wss://", "https://", StringComparison.OrdinalIgnoreCase)
|
|
.Replace("ws://", "http://", StringComparison.OrdinalIgnoreCase)));
|
|
var secretKey = _serverManager.GetSecretKey()!;
|
|
var auth = secretKey.GetHash256();
|
|
result = await _httpClient.PostAsync(tokenUri, new FormUrlEncodedContent(new[]
|
|
{
|
|
new KeyValuePair<string, string>("auth", auth),
|
|
new KeyValuePair<string, string>("charaIdent", await _dalamudUtil.GetPlayerNameHashedAsync().ConfigureAwait(false)),
|
|
}), token).ConfigureAwait(false);
|
|
}
|
|
else
|
|
{
|
|
_logger.LogDebug("GetNewToken: Renewal");
|
|
|
|
tokenUri = MareAuth.RenewTokenFullPath(new Uri(_serverManager.CurrentApiUrl
|
|
.Replace("wss://", "https://", StringComparison.OrdinalIgnoreCase)
|
|
.Replace("ws://", "http://", StringComparison.OrdinalIgnoreCase)));
|
|
HttpRequestMessage request = new(HttpMethod.Get, tokenUri.ToString());
|
|
request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", _tokenCache[CurrentIdentifier]);
|
|
result = await _httpClient.SendAsync(request, token).ConfigureAwait(false);
|
|
}
|
|
|
|
response = await result.Content.ReadAsStringAsync().ConfigureAwait(false);
|
|
result.EnsureSuccessStatusCode();
|
|
_tokenCache[CurrentIdentifier] = response;
|
|
}
|
|
catch (HttpRequestException ex)
|
|
{
|
|
_tokenCache.TryRemove(CurrentIdentifier, out _);
|
|
|
|
_logger.LogError(ex, "GetNewToken: Failure to get token");
|
|
|
|
if (ex.StatusCode == System.Net.HttpStatusCode.Unauthorized)
|
|
{
|
|
throw new MareAuthFailureException(response);
|
|
}
|
|
|
|
throw;
|
|
}
|
|
|
|
var handler = new JwtSecurityTokenHandler();
|
|
var jwtToken = handler.ReadJwtToken(response);
|
|
_logger.LogTrace("GetNewToken: JWT {token}", response);
|
|
_logger.LogDebug("GetNewToken: Valid until {date}, ValidClaim until {date}", jwtToken.ValidTo,
|
|
new DateTime(long.Parse(jwtToken.Claims.Single(c => string.Equals(c.Type, "expiration_date", StringComparison.Ordinal)).Value), DateTimeKind.Utc));
|
|
return response;
|
|
}
|
|
|
|
public async Task<string?> GetOrUpdateToken(CancellationToken ct, bool forceRenew = false)
|
|
{
|
|
bool renewal = forceRenew;
|
|
if (!forceRenew && _tokenCache.TryGetValue(CurrentIdentifier, out var token))
|
|
{
|
|
var handler = new JwtSecurityTokenHandler();
|
|
var jwtToken = handler.ReadJwtToken(token);
|
|
if (jwtToken.ValidTo == DateTime.MinValue || jwtToken.ValidTo.Subtract(TimeSpan.FromMinutes(5)) > DateTime.UtcNow)
|
|
{
|
|
_logger.LogTrace("GetOrUpdate: Returning token from cache");
|
|
return token;
|
|
}
|
|
|
|
renewal = true;
|
|
}
|
|
|
|
_logger.LogTrace("GetOrUpdate: Getting new token");
|
|
return await GetNewToken(renewal, ct).ConfigureAwait(false);
|
|
}
|
|
} |