feat: add debug registration endpoint, fix snowflake serialization

2024-06-04 17:38:59 +02:00 · 2024-06-04 17:38:59 +02:00 · 588afeec20
commit 588afeec20
parent 852036a6f7
14 changed files with 646 additions and 10 deletions
--- a/Foxnouns.Backend/Services/AuthService.cs
+++ b/Foxnouns.Backend/Services/AuthService.cs
@ -0,0 +1,57 @@
+using System.Security.Cryptography;
+using Foxnouns.Backend.Database;
+using Foxnouns.Backend.Database.Models;
+using Foxnouns.Backend.Utils;
+using Microsoft.AspNetCore.Identity;
+using NodaTime;
+
+namespace Foxnouns.Backend.Services;
+
+public class AuthService(ILogger logger, DatabaseContext db, ISnowflakeGenerator snowflakeGenerator)
+{
+    private readonly PasswordHasher<User> _passwordHasher = new();
+
+    /// <summary>
+    /// Creates a new user with the given email address and password.
+    /// This method does <i>not</i> save the resulting user, the caller must still call <see cref="M:Microsoft.EntityFrameworkCore.DbContext.SaveChanges" />.
+    /// </summary>
+    public async Task<User> CreateUserWithPasswordAsync(string username, string email, string password)
+    {
+        var user = new User
+        {
+            Id = snowflakeGenerator.GenerateSnowflake(),
+            Username = username,
+            AuthMethods = { new AuthMethod { Id = snowflakeGenerator.GenerateSnowflake(), AuthType = AuthType.Email, RemoteId = email } }
+        };
+
+        db.Add(user);
+        user.Password = await Task.Run(() => _passwordHasher.HashPassword(user, password));
+
+        return user;
+    }
+
+    public (string, Token) GenerateToken(User user, Application application, string[] scopes, Instant expires)
+    {
+        if (!OauthUtils.ValidateScopes(application, scopes))
+            throw new ApiError.BadRequest("Invalid scopes requested for this token");
+
+        var (token, hash) = GenerateToken();
+        return (token, new Token
+        {
+            Id = snowflakeGenerator.GenerateSnowflake(),
+            Hash = hash,
+            Application = application,
+            User = user,
+            ExpiresAt = expires,
+            Scopes = scopes
+        });
+    }
+
+    private static (string, byte[]) GenerateToken()
+    {
+        var token = OauthUtils.RandomToken(48);
+        var hash = SHA512.HashData(Convert.FromBase64String(token));
+
+        return (token, hash);
+    }
+}