using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
using SharedLibraryCore.Dtos;
using SharedLibraryCore.Interfaces;
using System;
using System.Collections.Generic;
using System.ComponentModel.DataAnnotations;
using System.Linq;
using System.Security.Claims;
using System.Threading.Tasks;
using Data.Models;
using Humanizer;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;
using Microsoft.Extensions.Logging;
using SharedLibraryCore;
using SharedLibraryCore.Events.Management;
using SharedLibraryCore.Helpers;
using SharedLibraryCore.Services;
using WebfrontCore.Controllers.API.Dtos;
using ILogger = Microsoft.Extensions.Logging.ILogger;
namespace WebfrontCore.Controllers.API
{
///
/// api controller for client operations
///
[ApiController]
[Route("api/[controller]")]
public class ClientController(
ILogger logger,
IResourceQueryHelper clientQueryHelper,
ClientService clientService,
IManager manager,
IMetaServiceV2 metaService)
: BaseController(manager)
{
private readonly ILogger _logger = logger;
[HttpGet("find")]
[ProducesResponseType(StatusCodes.Status200OK)]
[ProducesResponseType(StatusCodes.Status400BadRequest)]
[ProducesResponseType(StatusCodes.Status500InternalServerError)]
public async Task FindAsync([FromQuery] FindClientRequest request)
{
if (!ModelState.IsValid)
{
return BadRequest(new ErrorResponse
{
Messages = ModelState.Values
.SelectMany(value => value.Errors.Select(error => error.ErrorMessage)).ToArray()
});
}
try
{
var results = await clientQueryHelper.QueryResource(request);
return Ok(new FindClientResponse
{
TotalFoundClients = results.TotalResultCount,
Clients = results.Results
});
}
catch (Exception e)
{
_logger.LogWarning(e, "Failed to retrieve clients with query - {@Request}", request);
return StatusCode(StatusCodes.Status500InternalServerError, new ErrorResponse { Messages = [e.Message] });
}
}
[HttpGet("{clientId:int}")]
[ProducesResponseType(StatusCodes.Status200OK)]
[ProducesResponseType(StatusCodes.Status400BadRequest)]
public async Task GetPlayerInfoAsync([FromRoute] int clientId)
{
try
{
var clientInfo = await clientService.Get(clientId);
if (clientInfo is null)
{
return BadRequest("Could not find client");
}
var metaResult = await metaService
.GetPersistentMetaByLookup(EFMeta.ClientTagV2, EFMeta.ClientTagNameV2, clientInfo.ClientId);
return Ok(new ClientInfoResult
{
ClientId = clientInfo.ClientId,
Name = clientInfo.CleanedName,
Level = clientInfo.Level.ToLocalizedLevelName(),
NetworkId = clientInfo.NetworkId,
GameName = clientInfo.GameName.ToString(),
Tag = metaResult?.Value,
FirstConnection = clientInfo.FirstConnection,
LastConnection = clientInfo.LastConnection,
TotalConnectionTime = clientInfo.TotalConnectionTime,
Connections = clientInfo.Connections,
});
}
catch (Exception e)
{
_logger.LogWarning(e, "Failed to retrieve information for Client - {ClientId}", clientId);
return StatusCode(StatusCodes.Status500InternalServerError, new ErrorResponse { Messages = [e.Message] });
}
}
[HttpPost("{clientId:int}/login")]
[ProducesResponseType(StatusCodes.Status200OK)]
[ProducesResponseType(StatusCodes.Status400BadRequest)]
[ProducesResponseType(StatusCodes.Status401Unauthorized)]
[ProducesResponseType(StatusCodes.Status500InternalServerError)]
public async Task Login([FromRoute] int clientId, [FromBody, Required] PasswordRequest request)
{
if (clientId is 0)
{
return Unauthorized();
}
if (Authorized)
{
return Ok();
}
try
{
var privilegedClient = await clientService.GetClientForLogin(clientId);
var loginSuccess = false;
if (!Authorized)
{
var tokenData = new TokenIdentifier
{
ClientId = clientId,
Token = request.Password
};
loginSuccess = Manager.TokenAuthenticator.AuthorizeToken(tokenData) ||
(await Task.FromResult(Hashing.Hash(request.Password, privilegedClient.PasswordSalt)))[0] ==
privilegedClient.Password;
}
if (loginSuccess)
{
List claims =
[
new Claim(ClaimTypes.NameIdentifier, privilegedClient.Name),
new Claim(ClaimTypes.Role, privilegedClient.Level.ToString()),
new Claim(ClaimTypes.Sid, privilegedClient.ClientId.ToString()),
new Claim(ClaimTypes.PrimarySid, privilegedClient.NetworkId.ToString("X"))
];
var claimsIdentity = new ClaimsIdentity(claims, "login");
var claimsPrinciple = new ClaimsPrincipal(claimsIdentity);
await SignInAsync(claimsPrinciple);
Manager.AddEvent(new GameEvent
{
Origin = privilegedClient,
Type = GameEvent.EventType.Login,
Owner = Manager.GetServers().First(),
Data = HttpContext.Request.Headers.TryGetValue("X-Forwarded-For", out var gameStringValues)
? gameStringValues.ToString()
: HttpContext.Connection.RemoteIpAddress?.ToString()
});
Manager.QueueEvent(new LoginEvent
{
Source = this,
LoginSource = LoginEvent.LoginSourceType.Webfront,
EntityId = Client.ClientId.ToString(),
Identifier = HttpContext.Request.Headers.TryGetValue("X-Forwarded-For", out var loginStringValues)
? loginStringValues.ToString()
: HttpContext.Connection.RemoteIpAddress?.ToString()
});
return Ok();
}
}
catch (Exception)
{
return Unauthorized();
}
return Unauthorized();
}
[HttpPost("{clientId:int}/logout")]
[ProducesResponseType(StatusCodes.Status200OK)]
[ProducesResponseType(StatusCodes.Status500InternalServerError)]
public async Task Logout()
{
if (Authorized)
{
Manager.AddEvent(new GameEvent
{
Origin = Client,
Type = GameEvent.EventType.Logout,
Owner = Manager.GetServers().First(),
Data = HttpContext.Request.Headers.TryGetValue("X-Forwarded-For", out var gameStringValues)
? gameStringValues.ToString()
: HttpContext.Connection.RemoteIpAddress?.ToString()
});
Manager.QueueEvent(new LogoutEvent
{
Source = this,
LoginSource = LoginEvent.LoginSourceType.Webfront,
EntityId = Client.ClientId.ToString(),
Identifier = HttpContext.Request.Headers.TryGetValue("X-Forwarded-For", out var logoutStringValues)
? logoutStringValues.ToString()
: HttpContext.Connection.RemoteIpAddress?.ToString()
});
}
await HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
return Ok();
}
public class PasswordRequest
{
public string Password { get; set; }
}
}
}