Modification du Progam
This commit is contained in:
14
Program.cs
14
Program.cs
@@ -1,5 +1,7 @@
|
|||||||
using administration.Models;
|
using administration.Models;
|
||||||
using administration.Services;
|
using administration.Services;
|
||||||
|
using Microsoft.AspNetCore.Authentication;
|
||||||
|
using Microsoft.AspNetCore.Authorization;
|
||||||
using Microsoft.EntityFrameworkCore;
|
using Microsoft.EntityFrameworkCore;
|
||||||
using static DBConnectionController;
|
using static DBConnectionController;
|
||||||
|
|
||||||
@@ -62,8 +64,18 @@ namespace administration
|
|||||||
app.UseRouting();
|
app.UseRouting();
|
||||||
app.UseCors("AllowFrontend");
|
app.UseCors("AllowFrontend");
|
||||||
app.UseSession();
|
app.UseSession();
|
||||||
app.UseAuthorization();
|
|
||||||
|
|
||||||
|
builder.Services.AddAuthentication("BasicAuthentication")
|
||||||
|
.AddScheme<AuthenticationSchemeOptions, BasicAuthenticationHandler>("BasicAuthentication", null);
|
||||||
|
|
||||||
|
app.UseAuthentication();
|
||||||
|
|
||||||
|
builder.Services.AddAuthorization(options =>
|
||||||
|
{
|
||||||
|
options.FallbackPolicy = new AuthorizationPolicyBuilder()
|
||||||
|
.RequireAuthenticatedUser()
|
||||||
|
.Build();
|
||||||
|
});
|
||||||
// Route par défaut
|
// Route par défaut
|
||||||
app.MapControllerRoute(
|
app.MapControllerRoute(
|
||||||
name: "default",
|
name: "default",
|
||||||
|
|||||||
52
Services/BasicAuthenticationHandler.cs
Normal file
52
Services/BasicAuthenticationHandler.cs
Normal file
@@ -0,0 +1,52 @@
|
|||||||
|
using Microsoft.AspNetCore.Authentication;
|
||||||
|
using Microsoft.Extensions.Options;
|
||||||
|
using System.Net.Http.Headers;
|
||||||
|
using System.Security.Claims;
|
||||||
|
using System.Text;
|
||||||
|
using System.Text.Encodings.Web;
|
||||||
|
|
||||||
|
namespace administration.Services
|
||||||
|
{
|
||||||
|
public class BasicAuthenticationHandler : AuthenticationHandler<AuthenticationSchemeOptions>
|
||||||
|
{
|
||||||
|
public BasicAuthenticationHandler(
|
||||||
|
IOptionsMonitor<AuthenticationSchemeOptions> options,
|
||||||
|
ILoggerFactory logger,
|
||||||
|
UrlEncoder encoder,
|
||||||
|
ISystemClock clock
|
||||||
|
) : base(options, logger, encoder, clock) { }
|
||||||
|
|
||||||
|
protected override Task<AuthenticateResult> HandleAuthenticateAsync()
|
||||||
|
{
|
||||||
|
if (!Request.Headers.ContainsKey("Authorization"))
|
||||||
|
return Task.FromResult(AuthenticateResult.Fail("Missing Authorization Header"));
|
||||||
|
|
||||||
|
try
|
||||||
|
{
|
||||||
|
var authHeader = AuthenticationHeaderValue.Parse(Request.Headers["Authorization"]);
|
||||||
|
var credentialBytes = Convert.FromBase64String(authHeader.Parameter ?? "");
|
||||||
|
var credentials = Encoding.UTF8.GetString(credentialBytes).Split(':');
|
||||||
|
var username = credentials[0];
|
||||||
|
var password = credentials[1];
|
||||||
|
|
||||||
|
// 🔐 Valide ici tes identifiants
|
||||||
|
if (username != "admin" || password != Environment.GetEnvironmentVariable("DB_PASSWORD"))
|
||||||
|
return Task.FromResult(AuthenticateResult.Fail("Invalid Username or Password"));
|
||||||
|
|
||||||
|
var claims = new[] {
|
||||||
|
new Claim(ClaimTypes.NameIdentifier, username),
|
||||||
|
new Claim(ClaimTypes.Name, username),
|
||||||
|
};
|
||||||
|
var identity = new ClaimsIdentity(claims, Scheme.Name);
|
||||||
|
var principal = new ClaimsPrincipal(identity);
|
||||||
|
var ticket = new AuthenticationTicket(principal, Scheme.Name);
|
||||||
|
|
||||||
|
return Task.FromResult(AuthenticateResult.Success(ticket));
|
||||||
|
}
|
||||||
|
catch
|
||||||
|
{
|
||||||
|
return Task.FromResult(AuthenticateResult.Fail("Invalid Authorization Header"));
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
Reference in New Issue
Block a user