Neuron®
The Neuron® is the basis for the creation of open and secure federated networks for smart societies.
Loading...
Searching...
No Matches
WwwLogin.cs
1using System;
2using System.Collections.Generic;
3using System.Threading.Tasks;
4using System.Xml;
5using Waher.Content;
6using Waher.IoTGateway;
7using Waher.Networking.HTTP;
8using Waher.Script;
9using Waher.Script.Abstraction.Elements;
10using Waher.Security.JWT;
11using Waher.Service.IoTBroker.DataStorage;
12
13namespace Waher.Service.IoTBroker.WebServices.Agent.Account
14{
18 public class WwwLogin : AgentPostResource
19 {
23 public WwwLogin()
24 : base("Account/WwwLogin",
25 new KeyValuePair<Type, Expression>(typeof(Dictionary<string, object>), new Expression(jsonPattern)),
26 new KeyValuePair<Type, Expression>(typeof(XmlDocument), new Expression(xmlPattern)))
27 {
28 }
29
30 private static readonly string jsonPattern = Resources.LoadResourceAsText(typeof(WwwLogin).Namespace + ".JSON.WwwLogin.req");
31 private static readonly string xmlPattern = Resources.LoadResourceAsText(typeof(WwwLogin).Namespace + ".XML.WwwLogin.req");
32
41 public override async Task POST(HttpRequest Request, HttpResponse Response, Dictionary<string, IElement> Parameters)
42 {
43 // WWW-Authenticate mechanism already checks Login Auditor for blocks.
44
45 AccountUser User = AssertUserAuthenticated(Request);
46 double Seconds = (double)Parameters["PSeconds"].AssociatedObjectValue;
47
48 int IssuedAt = (int)Math.Round(DateTime.UtcNow.Subtract(JSON.UnixEpoch).TotalSeconds);
49 int Expires = IssuedAt + (int)Seconds;
50
51 string Token = Factory.Create(
52 new KeyValuePair<string, object>(JwtClaims.JwtId, Convert.ToBase64String(Gateway.NextBytes(32))),
53 new KeyValuePair<string, object>(JwtClaims.Issuer, Gateway.Domain?.Value ?? string.Empty),
54 new KeyValuePair<string, object>(JwtClaims.Subject, User.UserName + "@" + (Gateway.Domain?.Value ?? string.Empty)),
55 new KeyValuePair<string, object>(JwtClaims.IssueTime, IssuedAt),
56 new KeyValuePair<string, object>(JwtClaims.ExpirationTime, Expires));
57
58 await Response.Return(new NamedDictionary<string, object>("LoggedIn", AgentNamespace)
59 {
60 { "jwt", Token },
61 { "expires", Expires }
62 });
63 }
64 }
65}
Waher.Content.JSON
Helps with common JSON-related tasks.
Definition: JSON.cs:14
Waher.Content.JSON.UnixEpoch
static readonly DateTime UnixEpoch
Unix Date and Time epoch, starting at 1970-01-01T00:00:00Z
Definition: JSON.cs:18
Waher.Content.NamedDictionary
A Named dictionary is a dictionary, with a local name and a namespace. Use it to return content that ...
Definition: NamedDictionary.cs:13
Waher.Content.Resources
Static class managing loading of resources stored as embedded resources or in content files.
Definition: Resources.cs:15
Waher.Content.Resources.LoadResourceAsText
static string LoadResourceAsText(string ResourceName)
Loads a text resource from an embedded resource.
Definition: Resources.cs:96
Waher.IoTGateway.Gateway
Static class managing the runtime environment of the IoT Gateway.
Definition: Gateway.cs:126
Waher.IoTGateway.Gateway.Domain
static CaseInsensitiveString Domain
Domain name.
Definition: Gateway.cs:2354
Waher.IoTGateway.Gateway.NextBytes
static byte[] NextBytes(int NrBytes)
Generates an array of random bytes.
Definition: Gateway.cs:3534
Waher.Networking.HTTP.HttpRequest
Represents an HTTP request.
Definition: HttpRequest.cs:18
Waher.Networking.HTTP.HttpResponse
Represets a response of an HTTP client request.
Definition: HttpResponse.cs:21
Waher.Networking.HTTP.HttpResponse.Return
async Task Return(object Object)
Returns an object to the client. This method can only be called once per response,...
Definition: HttpResponse.cs:895
Waher.Script.Expression
Class managing a script expression.
Definition: Expression.cs:39
Waher.Security.JWT.JwtClaims
Static class containing predefined JWT claim names.
Definition: JwtClaims.cs:10
Waher.Security.JWT.JwtClaims.Issuer
const string Issuer
Issuer of the JWT
Definition: JwtClaims.cs:14
Waher.Security.JWT.JwtClaims.IssueTime
const string IssueTime
Time at which the JWT was issued; can be used to determine age of the JWT
Definition: JwtClaims.cs:39
Waher.Security.JWT.JwtClaims.JwtId
const string JwtId
Unique identifier; can be used to prevent the JWT from being replayed (allows a token to be used only...
Definition: JwtClaims.cs:44
Waher.Security.JWT.JwtClaims.Subject
const string Subject
Subject of the JWT (the user)
Definition: JwtClaims.cs:19
Waher.Security.JWT.JwtClaims.ExpirationTime
const string ExpirationTime
Time after which the JWT expires
Definition: JwtClaims.cs:29
Waher.Security.JWT.JwtFactory.Create
string Create(params KeyValuePair< string, object >[] Claims)
Creates a new JWT token.
Definition: JwtFactory.cs:248
Waher.Service.IoTBroker.WebServices.Agent.Account.WwwLogin
Allows the client to login, using the WWW-Authenticate header in HTTP.
Definition: WwwLogin.cs:19
Waher.Service.IoTBroker.WebServices.Agent.Account.WwwLogin.WwwLogin
WwwLogin()
Allows the client to login, using the WWW-Authenticate header in HTTP.
Definition: WwwLogin.cs:23
Waher.Service.IoTBroker.WebServices.Agent.Account.WwwLogin.POST
override async Task POST(HttpRequest Request, HttpResponse Response, Dictionary< string, IElement > Parameters)
Executes the POST method on the resource.
Definition: WwwLogin.cs:41
Waher.Service.IoTBroker.WebServices.Agent.AgentPostResource
Abstract base class for agent resources supporting the POST method.
Definition: AgentPostResource.cs:15
Waher.Service.IoTBroker.WebServices.Agent.AgentResource.AssertUserAuthenticated
static AccountUser AssertUserAuthenticated(HttpRequest Request)
Makes sure the request is made by an authenticated API user.
Definition: AgentResource.cs:211
Waher.Service.IoTBroker.WebServices.Agent.AgentResource.AgentNamespace
const string AgentNamespace
https://waher.se/Schema/BrokerAgent.xsd
Definition: AgentResource.cs:28
Waher.Content
Definition: Array.cs:6