✨ Web version login

2025-06-28 22:53:07 +08:00
parent ec3961d546
commit 98b2eeb13d
21 changed files with 633 additions and 32 deletions
--- a/DysonNetwork.Sphere/Pages/Auth/Login.cshtml.cs
+++ b/DysonNetwork.Sphere/Pages/Auth/Login.cshtml.cs
@@ -0,0 +1,81 @@
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.RazorPages;
+using System.ComponentModel.DataAnnotations;
+using DysonNetwork.Sphere.Auth;
+using DysonNetwork.Sphere.Account;
+using DysonNetwork.Sphere.Connection;
+using NodaTime;
+using Microsoft.EntityFrameworkCore;
+
+namespace DysonNetwork.Sphere.Pages.Auth
+{
+    public class LoginModel(
+        AppDatabase db,
+        AccountService accounts,
+        AuthService auth,
+        GeoIpService geo,
+        ActionLogService als
+    ) : PageModel
+    {
+        [BindProperty] [Required] public string Username { get; set; } = string.Empty;
+
+        public void OnGet()
+        {
+        }
+
+        public async Task<IActionResult> OnPostAsync()
+        {
+            if (!ModelState.IsValid)
+            {
+                return Page();
+            }
+
+            var account = await accounts.LookupAccount(Username);
+            if (account is null)
+            {
+                ModelState.AddModelError(string.Empty, "Account was not found.");
+                return Page();
+            }
+
+            var ipAddress = HttpContext.Connection.RemoteIpAddress?.ToString();
+            var userAgent = HttpContext.Request.Headers.UserAgent.ToString();
+            var now = Instant.FromDateTimeUtc(DateTime.UtcNow);
+
+            var existingChallenge = await db.AuthChallenges
+                .Where(e => e.Account == account)
+                .Where(e => e.IpAddress == ipAddress)
+                .Where(e => e.UserAgent == userAgent)
+                .Where(e => e.StepRemain > 0)
+                .Where(e => e.ExpiredAt != null && now < e.ExpiredAt)
+                .FirstOrDefaultAsync();
+
+            if (existingChallenge is not null)
+            {
+                return RedirectToPage("Challenge", new { id = existingChallenge.Id });
+            }
+
+            var challenge = new Challenge
+            {
+                ExpiredAt = Instant.FromDateTimeUtc(DateTime.UtcNow.AddHours(1)),
+                StepTotal = await auth.DetectChallengeRisk(Request, account),
+                Platform = ChallengePlatform.Web,
+                Audiences = new List<string>(),
+                Scopes = new List<string>(),
+                IpAddress = ipAddress,
+                UserAgent = userAgent,
+                Location = geo.GetPointFromIp(ipAddress),
+                DeviceId = "web-browser",
+                AccountId = account.Id
+            }.Normalize();
+
+            await db.AuthChallenges.AddAsync(challenge);
+            await db.SaveChangesAsync();
+
+            als.CreateActionLogFromRequest(ActionLogType.ChallengeAttempt,
+                new Dictionary<string, object> { { "challenge_id", challenge.Id } }, Request, account
+            );
+
+            return RedirectToPage("Challenge", new { id = challenge.Id });
+        }
+    }
+}