aboutsummaryrefslogtreecommitdiff
path: root/Backend/Api/Api/Controllers/AuthController.cs
blob: b63665bd65416874d6c45f921eedbeff686d4dda (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134

using Api.Interfaces;
using Api.Models;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;

namespace Api.Controllers
{
    [Route("api/auth/")]
    public class AuthController : Controller
    {
        private readonly IUserService _userService;
        private readonly IJwtService _jwtService;
        public AuthController(IUserService userService,IJwtService jwtService)
        {
            _userService = userService;
            _jwtService = jwtService;
        }

        [HttpPost("registerdeprecated")]
        public async Task<ActionResult<string>> Register([FromBody] Register creds)
        {
            //this is beyond scuffed and will be cleaned up later, when users,login and controllers are made
            User novi = new User();
            novi.email = creds.email;
            novi.password = creds.password;
            novi.username = creds.username;
            novi.name = creds.name;
            novi.verified = true;
            novi.creationDate = DateTime.Now.ToUniversalTime();
            novi._id = "";

            int ret= await _userService.createUser(novi);
            if (ret == -1)
                return BadRequest("email already exists");
            if (ret == -2)
                return BadRequest("username already exists");

            return Ok();
        }
        [HttpPost("refreshJwt")]
        [Authorize(Roles ="User")]
        public async Task<ActionResult<string>> refreshJwt()
        {
            var jwt = await _userService.RenewToken();
            if (jwt != null)
            {
                return Ok(jwt);
            }
            return BadRequest("Pogresno uneti podaci");
        }
        [HttpPost("login")]
        public async Task<ActionResult<string>> Login([FromBody] Login creds)
        {
            var id = await _userService.UserIdFromJwt();
            if (id != null) return Forbid();

            var jwt= await _userService.Login(creds);
            if (jwt != null)
            {
                return Ok(jwt);
            }
            return BadRequest("Pogresno uneti podaci");
        }
        [HttpPost("register")]
        public async Task<ActionResult<string>> RegisterActual([FromBody] Register creds)
        {
            var msg = await _userService.Register(creds);
            switch (msg)
            {
                case "User Registered":
                    return Ok(msg);
                default:
                    return BadRequest(msg);
            }
        }
        [HttpPost("verify")]
        public async Task<ActionResult<string>> VerifyEmail([FromBody] VerifyUser creds)
        {
            var vrfchk = new Login();
            vrfchk.email = creds.email;
            vrfchk.password = creds.password;
            if (await _userService.CheckVerification(vrfchk))
                return Ok("User already verified");
            var uspeh = await _userService.VerifyUser(creds);
            if (!uspeh)
                return BadRequest("Kod netacan ili istekao");
            return Ok("Uspesno verifikovan");
        }
        [HttpPost("resetpass")]
        public async Task<ActionResult<string>> ResetPass([FromBody] ResetPass creds)
        {
            var uspeh = await _userService.ResetPassword(creds);
            if (!uspeh)
                return BadRequest("Kod netacan ili istekao");
            return Ok("Sifra uspesno resetovana");
        }
        [HttpPost("forgotpass")]
        public async Task<ActionResult<string>> ForgotPass([FromBody] JustMail justMail)
        {
            if (await _userService.ForgotPassword(justMail))
                return Ok("Email poslat");
            return BadRequest("Email nema registrovan nalog");
        }
        [HttpGet("verifytoken/{token}")]
        public async Task<ActionResult<string>> VerifyEmailToken(string token)
        {
            var username =_jwtService.EmailTokenToClaim(token,"username");
            string html;
            if (username == null)
            {
                html = await System.IO.File.ReadAllTextAsync(@"./Assets/VerifyFailed.html");
                return base.Content(html, "text/html");
            }
            else
            {
                html = await System.IO.File.ReadAllTextAsync(@"./Assets/VerifySuccess.html");
                html = html.Replace("{{name}}", username);

                await _userService.VerifyFromToken(token);
                return base.Content(html, "text/html");
            }
        }
        [HttpGet("jwttoid")]
        [Authorize(Roles = "User")]
        public async Task<ActionResult<string>> JwtToUserId()
        {
            var userid = await _userService.UserIdFromJwt();
            if (userid != null)
                return Ok(userid);
            return BadRequest();
        }

    }
}
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-19 18:43:08 +0000