zeroframework/Services/Identity/ZeroFramework.IdentityServer.API/Controllers/UserClaimsController.cs

84 lines
3.1 KiB
C#
Raw Permalink Normal View History

2023-12-05 09:22:48 +00:00
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Identity;
using Microsoft.AspNetCore.Mvc;
using System.Security.Claims;
using ZeroFramework.IdentityServer.API.Constants;
using ZeroFramework.IdentityServer.API.IdentityStores;
using ZeroFramework.IdentityServer.API.Models.Users;
namespace ZeroFramework.IdentityServer.API.Controllers
{
[Route("api/[controller]")]
[ApiController]
[Authorize(AuthorizeConstants.TenantOwnerPolicyName, AuthenticationSchemes = JwtBearerDefaults.AuthenticationScheme)]
public class UserClaimsController(UserManager<ApplicationUser> userManager) : ControllerBase
{
private readonly UserManager<ApplicationUser> _userManager = userManager;
[HttpGet("{userId}")]
public async Task<ActionResult<IEnumerable<UserClaimModel>>> GetUserClaims(int userId)
{
ApplicationUser? user = await _userManager.FindByIdAsync(userId.ToString());
if (user == null)
{
return NotFound();
}
IList<Claim> claims = await _userManager.GetClaimsAsync(user);
return claims.Select(c => new UserClaimModel(c.Type, c.Value)).ToList();
}
[HttpPost("{userId}")]
public async Task<ActionResult<IEnumerable<UserClaimModel>>> PostUserClaims(int userId, IEnumerable<UserClaimModel> userClaims)
{
ApplicationUser? user = await _userManager.FindByIdAsync(userId.ToString());
if (user is null)
{
return NotFound();
}
IList<Claim> claims = await _userManager.GetClaimsAsync(user);
var newClaims = userClaims.Select(uc => new Claim(uc.ClaimType, uc.ClaimValue));
newClaims = newClaims.Where(nc => !claims.Any(c => c.Type == nc.Type && c.Value == nc.Value));
IdentityResult identityResult = await _userManager.AddClaimsAsync(user, newClaims);
if (!identityResult.Succeeded)
{
identityResult.Errors.ToList().ForEach(e => ModelState.AddModelError(string.Empty, e.Description));
return ValidationProblem(ModelState);
}
return CreatedAtAction("GetUserClaims", new { userId = user.Id }, userClaims);
}
[HttpDelete("{userId}")]
public async Task<IActionResult> DeleteUserClaims(int userId, IEnumerable<UserClaimModel> userClaims)
{
ApplicationUser? user = await _userManager.FindByIdAsync(userId.ToString());
if (user is null)
{
return NotFound();
}
var claims = userClaims.Select(uc => new Claim(uc.ClaimType, uc.ClaimValue));
IdentityResult identityResult = await _userManager.RemoveClaimsAsync(user, claims);
if (!identityResult.Succeeded)
{
identityResult.Errors.ToList().ForEach(e => ModelState.AddModelError(string.Empty, e.Description));
return ValidationProblem(ModelState);
}
return NoContent();
}
}
}