Skip to content

Commit

Permalink
[dotnet] Adapt weblog for login v3 events and session testing (#3934)
Browse files Browse the repository at this point in the history
  • Loading branch information
@anna-git
anna-git authored Jan 30, 2025
1 parent 010bcab commit b0f3126
Show file tree
Hide file tree
Showing 3 changed files with 160 additions and 114 deletions.
268 changes: 155 additions & 113 deletions ...net/weblog/Controllers/LoginController.cs → ...t/weblog/Controllers/AccountController.cs
View file
Original file line number Diff line number Diff line change
@@ -1,113 +1,155 @@
#if DDTRACE_2_23_0_OR_GREATER

#nullable enable
using System;
using System.Text;
using System.Threading;
using System.Threading.Tasks;
using Amazon.SecurityToken.Model;
using Datadog.Trace.AppSec;
using Microsoft.AspNetCore.Identity;
using Microsoft.AspNetCore.Mvc;
using weblog.Models;

namespace weblog;

[Route("login")]
public class LoginController : Controller
{
private readonly SignInManager<IdentityUser> _signInManager;
private readonly UserManager<IdentityUser> _userManager;
private readonly IUserStore<IdentityUser> _userStore;

public LoginController(SignInManager<IdentityUser> signInManager, UserManager<IdentityUser> userManager,
IUserStore<IdentityUser> userStore)
{
_signInManager = signInManager;
_userManager = userManager;
_userStore = userStore;
}

[HttpGet("")]
public async Task<IActionResult> IndexGet([FromQuery] LoginModel? loginQuery)
{
if (loginQuery?.Auth == "basic")
{
if (loginQuery is { SdkEvent: "success" })
{
EventTrackingSdk.TrackUserLoginSuccessEvent(loginQuery.SdkUser);
}
else if (loginQuery is { SdkEvent: "failure" })
{
EventTrackingSdk.TrackUserLoginFailureEvent(loginQuery.SdkUser, loginQuery.SdkUserExists ?? false);
}

var authorizationHeader = this.Request.Headers["Authorization"][0];

if(authorizationHeader is not null)
{
var authBase64Decoded = Encoding.UTF8.GetString(
Convert.FromBase64String(authorizationHeader.Replace("Basic ", "",
StringComparison.OrdinalIgnoreCase)));
var authSplit = authBase64Decoded.Split(new[] { ':' }, 2);
var result = await _signInManager.PasswordSignInAsync(authSplit[0], authSplit[1], false, lockoutOnFailure: false);
if (result.Succeeded)
{
return Content("Successfully login as " + authSplit[0]);
}
}

Response.StatusCode = 401;
return Content("Invalid login attempt");
}

if (User.Identity?.IsAuthenticated == true)
{
return Content($"Logged in as{User.Identity.Name}");
}

return Content("Logged in");
}

[HttpPost]
public async Task<IActionResult> Index(LoginModel model)
{
if (ModelState.IsValid)
{
if (model is { SdkEvent: "success" })
{
EventTrackingSdk.TrackUserLoginSuccessEvent(model.SdkUser);
}
else if (model is { SdkEvent: "failure" })
{
EventTrackingSdk.TrackUserLoginFailureEvent(model.SdkUser, model.SdkUserExists ?? false);
}

if(model is { UserName: not null, Password: not null })
{
// This doesn't count login failures towards account lockout
// To enable password failures to trigger account lockout, set lockoutOnFailure: true
var result = await _signInManager.PasswordSignInAsync(model.UserName, model.Password, false,
lockoutOnFailure: false);
if (result.Succeeded)
{
return Content("Successfully login as " + model.UserName);
}
}

Response.StatusCode = 401;
return Content("Invalid login attempt");
}

// If we got this far, something failed, redisplay form
return RedirectToAction(nameof(Index));
}

[HttpPost("logout")]
public IActionResult LogOut()
{
_signInManager.SignOutAsync();
return RedirectToAction(nameof(Index));
}
}
#endif
#if DDTRACE_2_23_0_OR_GREATER

#nullable enable
using System;
using System.Text;
using System.Threading;
using System.Threading.Tasks;
using Amazon.SecurityToken.Model;
using Datadog.Trace.AppSec;
using Microsoft.AspNetCore.Identity;
using Microsoft.AspNetCore.Mvc;
using weblog.Models;

namespace weblog;

public class AccountController : Controller
{
private readonly SignInManager<IdentityUser> _signInManager;
private readonly UserManager<IdentityUser> _userManager;
private readonly IUserStore<IdentityUser> _userStore;

/// <inheritdoc />
public AccountController(SignInManager<IdentityUser> signInManager, UserManager<IdentityUser> userManager,
IUserStore<IdentityUser> userStore)
{
_signInManager = signInManager;
_userManager = userManager;
_userStore = userStore;
}

[HttpGet("login")]
public async Task<IActionResult> IndexGet([FromQuery] LoginModel? loginQuery)
{
if (loginQuery?.Auth == "basic")
{
if (loginQuery is { SdkEvent: "success" })
{
EventTrackingSdk.TrackUserLoginSuccessEvent(loginQuery.SdkUser);
}
else if (loginQuery is { SdkEvent: "failure" })
{
EventTrackingSdk.TrackUserLoginFailureEvent(loginQuery.SdkUser, loginQuery.SdkUserExists ?? false);
}

var authorizationHeader = this.Request.Headers["Authorization"][0];

if (authorizationHeader is not null)
{
var authBase64Decoded = Encoding.UTF8.GetString(
Convert.FromBase64String(authorizationHeader.Replace("Basic ", "",
StringComparison.OrdinalIgnoreCase)));
var authSplit = authBase64Decoded.Split(new[] { ':' }, 2);
var result =
await _signInManager.PasswordSignInAsync(authSplit[0], authSplit[1], false,
lockoutOnFailure: false);
if (result.Succeeded)
{
return Content("Successfully login as " + authSplit[0]);
}
}

Response.StatusCode = 401;
return Content("Invalid login attempt");
}

if (User.Identity?.IsAuthenticated == true)
{
return Content($"Logged in as{User.Identity.Name}");
}

return Content("Logged in");
}

[HttpPost("login")]
public async Task<IActionResult> Index(LoginModel model)
{
if (ModelState.IsValid)
{
if (string.IsNullOrEmpty(model.SdkTrigger) || model.SdkTrigger == "before")
{
if (model is { SdkEvent: "success" })
{
EventTrackingSdk.TrackUserLoginSuccessEvent(model.SdkUser);
}
else if (model is { SdkEvent: "failure" })
{
EventTrackingSdk.TrackUserLoginFailureEvent(model.SdkUser, model.SdkUserExists ?? false);
}
}

if (model is { UserName: not null, Password: not null })
{
// This doesn't count login failures towards account lockout
// To enable password failures to trigger account lockout, set lockoutOnFailure: true
var result = await _signInManager.PasswordSignInAsync(model.UserName, model.Password, false,
lockoutOnFailure: false);

if (model.SdkTrigger == "after")
{
if (model is { SdkEvent: "success" })
{
EventTrackingSdk.TrackUserLoginSuccessEvent(model.SdkUser);
}
else if (model is { SdkEvent: "failure" })
{
EventTrackingSdk.TrackUserLoginFailureEvent(model.SdkUser, model.SdkUserExists ?? false);
}
}

if (result.Succeeded)
{
return Content("Successfully login as " + model.UserName);
}
}

Response.StatusCode = 401;
return Content("Invalid login attempt");
}

// If we got this far, something failed, redisplay form
return RedirectToAction(nameof(Index));
}

[HttpPost("signup")]
public async Task<IActionResult> Signup(LoginModel model)
{
if (ModelState.IsValid)
{
if (model is { UserName: not null, Password: not null })
{
var user = new IdentityUser { UserName = model.UserName, Id = "new-user" };
var result = await _userManager.CreateAsync(user, model.Password);

if (result.Succeeded)
{
return Content("Successfully registered as " + model.UserName);
}
}

Response.StatusCode = 401;
return Content("Invalid signup attempt");
}

// If we got this far, something failed, redisplay form
return RedirectToAction(nameof(Index));
}

[HttpPost("logout")]
public IActionResult LogOut()
{
_signInManager.SignOutAsync();
return RedirectToAction(nameof(Index));
}
}
#endif
4 changes: 3 additions & 1 deletion utils/build/docker/dotnet/weblog/Controllers/SessionController.cs
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
#if DDTRACE_2_7_0_OR_GREATER
using System;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Mvc.Formatters;
using Microsoft.AspNetCore.Mvc.ModelBinding;
Expand All @@ -17,7 +18,8 @@ public class SessionController : Controller
[HttpGet("new")]
public IActionResult New()
{
return Content($"Session created");
HttpContext.Session.Set(Guid.NewGuid().ToString(), [1, 2, 3, 4, 5]);
return Content(HttpContext.Session.Id);
}

[HttpGet("user")]
Expand Down
2 changes: 2 additions & 0 deletions utils/build/docker/dotnet/weblog/Models/LoginModel.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,4 +20,6 @@ public class LoginModel
[FromQuery(Name = "sdk_user")] public string? SdkUser { get; set; }

[FromQuery(Name = "sdk_user_exists")] public bool? SdkUserExists { get; set; }

[FromQuery(Name = "sdk_trigger")] public string? SdkTrigger { get; set; }
}

0 comments on commit b0f3126

Please sign in to comment.