Merge pull request #18 from sgraphics/master

Added RavenUserAuthRepository for RavenDB authentication support

Author: mythz

src/ServiceStack.Authentication.Raven/Properties/AssemblyInfo.cs

@@ -0,0 +1,36 @@
+using System.Reflection;
+using System.Runtime.CompilerServices;
+using System.Runtime.InteropServices;
+
+// General Information about an assembly is controlled through the following 
+// set of attributes. Change these attribute values to modify the information
+// associated with an assembly.
+[assembly: AssemblyTitle("ServiceStack.Authentication.Raven")]
+[assembly: AssemblyDescription("")]
+[assembly: AssemblyConfiguration("")]
+[assembly: AssemblyCompany("")]
+[assembly: AssemblyProduct("ServiceStack.Authentication.Raven")]
+[assembly: AssemblyCopyright("Copyright ©  2013")]
+[assembly: AssemblyTrademark("")]
+[assembly: AssemblyCulture("")]
+
+// Setting ComVisible to false makes the types in this assembly not visible 
+// to COM components.  If you need to access a type in this assembly from 
+// COM, set the ComVisible attribute to true on that type.
+[assembly: ComVisible(false)]
+
+// The following GUID is for the ID of the typelib if this project is exposed to COM
+[assembly: Guid("b4fb0d80-a627-4495-ac7e-6bba3f3a482a")]
+
+// Version information for an assembly consists of the following four values:
+//
+//      Major Version
+//      Minor Version 
+//      Build Number
+//      Revision
+//
+// You can specify all the values or you can default the Build and Revision Numbers 
+// by using the '*' as shown below:
+// [assembly: AssemblyVersion("1.0.*")]
+[assembly: AssemblyVersion("1.0.0.0")]
+[assembly: AssemblyFileVersion("1.0.0.0")]

src/ServiceStack.Authentication.Raven/RavenUserAuthRepository.cs

@@ -0,0 +1,309 @@
+using System;
+using System.Collections.Generic;
+using System.Globalization;
+using System.Linq;
+using System.Text.RegularExpressions;
+using Raven.Client;
+using ServiceStack.Common;
+using ServiceStack.ServiceInterface.Auth;
+using ServiceStack.Text;
+
+namespace ServiceStack.Authentication.Raven
+{
+	public class RavenUserAuthRepository : IUserAuthRepository
+	{
+		//http://stackoverflow.com/questions/3588623/c-sharp-regex-for-a-username-with-a-few-restrictions
+		public Regex ValidUserNameRegEx = new Regex(@"^(?=.{3,15}$)([A-Za-z0-9][._-]?)*$", RegexOptions.Compiled);
+
+		private IDocumentStore _documentStore;
+
+		public RavenUserAuthRepository(IDocumentStore documentStore)
+		{
+			_documentStore = documentStore;
+		}
+
+		private void ValidateNewUser(UserAuth newUser, string password)
+		{
+			newUser.ThrowIfNull("newUser");
+			password.ThrowIfNullOrEmpty("password");
+
+			if (newUser.UserName.IsNullOrEmpty() && newUser.Email.IsNullOrEmpty())
+				throw new ArgumentNullException("UserName or Email is required");
+
+			if (!newUser.UserName.IsNullOrEmpty())
+			{
+				if (!ValidUserNameRegEx.IsMatch(newUser.UserName))
+					throw new ArgumentException("UserName contains invalid characters", "UserName");
+			}
+		}
+
+		public UserAuth CreateUserAuth(UserAuth newUser, string password)
+		{
+			ValidateNewUser(newUser, password);
+
+			AssertNoExistingUser(newUser);
+
+			var saltedHash = new SaltedHash();
+			string salt;
+			string hash;
+			saltedHash.GetHashAndSaltString(password, out hash, out salt);
+			var digestHelper = new DigestAuthFunctions();
+			newUser.DigestHA1Hash = digestHelper.CreateHa1(newUser.UserName, DigestAuthProvider.Realm, password);
+			newUser.PasswordHash = hash;
+			newUser.Salt = salt;
+			newUser.CreatedDate = DateTime.UtcNow;
+			newUser.ModifiedDate = newUser.CreatedDate;
+
+			using (var session = _documentStore.OpenSession())
+			{
+				session.Store(newUser);
+				session.SaveChanges();
+			}
+
+			return newUser;
+		}
+
+		private void AssertNoExistingUser(UserAuth newUser, UserAuth exceptForExistingUser = null)
+		{
+			if (newUser.UserName != null)
+			{
+				var existingUser = GetUserAuthByUserName(newUser.UserName);
+				if (existingUser != null
+					&& (exceptForExistingUser == null || existingUser.Id != exceptForExistingUser.Id))
+					throw new ArgumentException("User {0} already exists".Fmt(newUser.UserName));
+			}
+			if (newUser.Email != null)
+			{
+				var existingUser = GetUserAuthByUserName(newUser.Email);
+				if (existingUser != null
+					&& (exceptForExistingUser == null || existingUser.Id != exceptForExistingUser.Id))
+					throw new ArgumentException("Email {0} already exists".Fmt(newUser.Email));
+			}
+		}
+
+		public UserAuth UpdateUserAuth(UserAuth existingUser, UserAuth newUser, string password)
+		{
+			ValidateNewUser(newUser, password);
+
+			AssertNoExistingUser(newUser, existingUser);
+
+			var hash = existingUser.PasswordHash;
+			var salt = existingUser.Salt;
+			if (password != null)
+			{
+				var saltedHash = new SaltedHash();
+				saltedHash.GetHashAndSaltString(password, out hash, out salt);
+			}
+			// If either one changes the digest hash has to be recalculated
+			var digestHash = existingUser.DigestHA1Hash;
+			if (password != null || existingUser.UserName != newUser.UserName)
+			{
+				var digestHelper = new DigestAuthFunctions();
+				digestHash = digestHelper.CreateHa1(newUser.UserName, DigestAuthProvider.Realm, password);
+			}
+			newUser.Id = existingUser.Id;
+			newUser.PasswordHash = hash;
+			newUser.Salt = salt;
+			newUser.DigestHA1Hash = digestHash;
+			newUser.CreatedDate = existingUser.CreatedDate;
+			newUser.ModifiedDate = DateTime.UtcNow;
+
+			using (var session = _documentStore.OpenSession())
+			{
+				session.Store(newUser);
+				session.SaveChanges();
+			}
+
+			return newUser;
+		}
+
+		public UserAuth GetUserAuthByUserName(string userNameOrEmail)
+		{
+			using (var session = _documentStore.OpenSession())
+			{
+				var isEmail = userNameOrEmail.Contains("@");
+				var userAuth = isEmail
+					? session.Query<UserAuth>().FirstOrDefault(q => q.Email == userNameOrEmail)
+					: session.Query<UserAuth>().FirstOrDefault(q => q.UserName == userNameOrEmail);
+				
+				return userAuth;
+			}
+		}
+
+		public bool TryAuthenticate(string userName, string password, out UserAuth userAuth)
+		{
+			//userId = null;
+			userAuth = GetUserAuthByUserName(userName);
+			if (userAuth == null) return false;
+
+			var saltedHash = new SaltedHash();
+			if (saltedHash.VerifyHashString(password, userAuth.PasswordHash, userAuth.Salt))
+			{
+				//userId = userAuth.Id.ToString(CultureInfo.InvariantCulture);
+				return true;
+			}
+
+			userAuth = null;
+			return false;
+		}
+
+		public bool TryAuthenticate(Dictionary<string, string> digestHeaders, string PrivateKey, int NonceTimeOut, string sequence, out UserAuth userAuth)
+		{
+			userAuth = GetUserAuthByUserName(digestHeaders["username"]);
+			if (userAuth == null) return false;
+
+			var digestHelper = new DigestAuthFunctions();
+			if (digestHelper.ValidateResponse(digestHeaders, PrivateKey, NonceTimeOut, userAuth.DigestHA1Hash, sequence))
+			{
+				return true;
+			}
+			userAuth = null;
+			return false;
+		}
+
+		public void LoadUserAuth(IAuthSession session, IOAuthTokens tokens)
+		{
+			session.ThrowIfNull("session");
+
+			var userAuth = GetUserAuth(session, tokens);
+			LoadUserAuth(session, userAuth);
+		}
+
+		private void LoadUserAuth(IAuthSession session, UserAuth userAuth)
+		{
+			if (userAuth == null) return;
+
+			var idSesije = session.Id;  //first record session Id (original session Id)
+			session.PopulateWith(userAuth); //here, original sessionId is overwritten with facebook user Id
+			session.Id = idSesije;  //we return Id of original session here
+
+			session.UserAuthId = userAuth.Id.ToString(CultureInfo.InvariantCulture);
+			session.ProviderOAuthAccess = GetUserOAuthProviders(session.UserAuthId)
+				.ConvertAll(x => (IOAuthTokens)x);
+
+		}
+
+		public UserAuth GetUserAuth(string userAuthId)
+		{
+			using (var session = _documentStore.OpenSession())
+			{
+				return session.Load<UserAuth>(userAuthId);
+			}
+		}
+
+		public void SaveUserAuth(IAuthSession authSession)
+		{
+			using (var session = _documentStore.OpenSession())
+			{
+				int idInt = int.Parse(authSession.UserAuthId);
+
+				var userAuth = !authSession.UserAuthId.IsNullOrEmpty()
+					               ? session.Load<UserAuth>(idInt)
+					               : authSession.TranslateTo<UserAuth>();
+
+				if (userAuth.Id == default(int) && !authSession.UserAuthId.IsNullOrEmpty())
+					userAuth.Id = idInt;
+
+				userAuth.ModifiedDate = DateTime.UtcNow;
+				if (userAuth.CreatedDate == default(DateTime))
+					userAuth.CreatedDate = userAuth.ModifiedDate;
+
+				session.Store(userAuth);
+				session.SaveChanges();
+			}
+		}
+
+		public void SaveUserAuth(UserAuth userAuth)
+		{
+			using (var session = _documentStore.OpenSession())
+			{
+				userAuth.ModifiedDate = DateTime.UtcNow;
+				if (userAuth.CreatedDate == default(DateTime))
+					userAuth.CreatedDate = userAuth.ModifiedDate;
+
+				session.Store(userAuth);
+				session.SaveChanges();
+			}
+		}
+
+		public List<UserOAuthProvider> GetUserOAuthProviders(string userAuthId)
+		{
+			using (var session = _documentStore.OpenSession())
+			{
+				var id = int.Parse(userAuthId);
+				return session.Query<UserOAuthProvider>().Where(q => q.UserAuthId == id).OrderBy(x => x.ModifiedDate).ToList();
+			}
+		}
+
+		public UserAuth GetUserAuth(IAuthSession authSession, IOAuthTokens tokens)
+		{
+			if (!authSession.UserAuthId.IsNullOrEmpty())
+			{
+				var userAuth = GetUserAuth(authSession.UserAuthId);
+				if (userAuth != null) return userAuth;
+			}
+			if (!authSession.UserAuthName.IsNullOrEmpty())
+			{
+				var userAuth = GetUserAuthByUserName(authSession.UserAuthName);
+				if (userAuth != null) return userAuth;
+			}
+
+			if (tokens == null || tokens.Provider.IsNullOrEmpty() || tokens.UserId.IsNullOrEmpty())
+				return null;
+
+			using (var session = _documentStore.OpenSession())
+			{
+				var oAuthProvider = session
+					.Query<UserOAuthProvider>()
+					.FirstOrDefault<UserOAuthProvider>(q => q.Provider == tokens.Provider && q.UserId == tokens.UserId);
+
+				if (oAuthProvider != null)
+				{
+					var userAuth = session.Load<UserAuth>(oAuthProvider.UserAuthId);
+					return userAuth;
+				}
+				return null;
+			}
+		}
+
+		public string CreateOrMergeAuthSession(IAuthSession authSession, IOAuthTokens tokens)
+		{
+			var userAuth = GetUserAuth(authSession, tokens) ?? new UserAuth();
+
+			using (var session = _documentStore.OpenSession())
+			{
+				var oAuthProvider = session.Query<UserOAuthProvider>().FirstOrDefault(q => q.Provider == tokens.Provider && q.UserId == tokens.UserId);
+
+				if (oAuthProvider == null)
+				{
+					oAuthProvider = new UserOAuthProvider
+					{
+						Provider = tokens.Provider,
+						UserId = tokens.UserId,
+					};
+				}
+
+				oAuthProvider.PopulateMissing(tokens);
+				userAuth.PopulateMissing(oAuthProvider);
+
+				userAuth.ModifiedDate = DateTime.UtcNow;
+				if (userAuth.CreatedDate == default(DateTime))
+					userAuth.CreatedDate = userAuth.ModifiedDate;
+
+				session.Store(userAuth);
+				session.SaveChanges();
+
+				oAuthProvider.UserAuthId = userAuth.Id;
+
+				if (oAuthProvider.CreatedDate == default(DateTime))
+					oAuthProvider.CreatedDate = userAuth.ModifiedDate;
+				oAuthProvider.ModifiedDate = userAuth.ModifiedDate;
+
+				session.Store(oAuthProvider);
+				session.SaveChanges();
+
+				return oAuthProvider.UserAuthId.ToString(CultureInfo.InvariantCulture);
+			}
+		}
+	}
+}