Remove ClientAuthService

hhvrc · hhvrc · commit 94f4ee062413 · 2025-09-18T15:51:54.000+02:00
diff --git a/Common/Authentication/AuthenticationHandlers/ApiTokenAuthentication.cs b/Common/Authentication/AuthenticationHandlers/ApiTokenAuthentication.cs
@@ -15,7 +15,6 @@ namespace OpenShock.Common.Authentication.AuthenticationHandlers;
 
 public sealed class ApiTokenAuthentication : AuthenticationHandler<AuthenticationSchemeOptions>
 {
-    private readonly IClientAuthService<User> _authService;
     private readonly IUserReferenceService _userReferenceService;
     private readonly IBatchUpdateService _batchUpdateService;
     private readonly OpenShockContext _db;
@@ -25,14 +24,12 @@ public ApiTokenAuthentication(
         IOptionsMonitor<AuthenticationSchemeOptions> options,
         ILoggerFactory logger,
         UrlEncoder encoder,
-        IClientAuthService<User> clientAuth,
         IUserReferenceService userReferenceService,
         OpenShockContext db,
         IBatchUpdateService batchUpdateService
         )
         : base(options, logger, encoder)
     {
-        _authService = clientAuth;
         _userReferenceService = userReferenceService;
         _db = db;
         _batchUpdateService = batchUpdateService;
@@ -58,7 +55,7 @@ protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
         }
 
         _batchUpdateService.UpdateApiTokenLastUsed(tokenDto.Id);
-        _authService.CurrentClient = tokenDto.User;
+        Context.Items["User"] = tokenDto.User;
         _userReferenceService.AuthReference = tokenDto;
 
         var claims = new List<Claim>(3 + tokenDto.Permissions.Count)
diff --git a/Common/Authentication/AuthenticationHandlers/UserSessionAuthentication.cs b/Common/Authentication/AuthenticationHandlers/UserSessionAuthentication.cs
@@ -16,7 +16,6 @@ namespace OpenShock.Common.Authentication.AuthenticationHandlers;
 
 public sealed class UserSessionAuthentication : AuthenticationHandler<AuthenticationSchemeOptions>
 {
-    private readonly IClientAuthService<User> _authService;
     private readonly IUserReferenceService _userReferenceService;
     private readonly IBatchUpdateService _batchUpdateService;
     private readonly OpenShockContext _db;
@@ -27,15 +26,13 @@ public UserSessionAuthentication(
         IOptionsMonitor<AuthenticationSchemeOptions> options,
         ILoggerFactory logger,
         UrlEncoder encoder,
-        IClientAuthService<User> clientAuth,
         IUserReferenceService userReferenceService,
         OpenShockContext db,
         ISessionService sessionService,
         IBatchUpdateService batchUpdateService
         )
         : base(options, logger, encoder)
     {
-        _authService = clientAuth;
         _userReferenceService = userReferenceService;
         _db = db;
         _sessionService = sessionService;
@@ -60,29 +57,29 @@ protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
 
         _batchUpdateService.UpdateSessionLastUsed(sessionToken, DateTimeOffset.UtcNow);
 
-        var retrievedUser = await _db.Users.Include(u => u.UserDeactivation).FirstOrDefaultAsync(user => user.Id == session.UserId);
-        if (retrievedUser == null) return Fail(AuthResultError.SessionInvalid);
-        if (retrievedUser.ActivatedAt is null)
+        var user = await _db.Users.Include(u => u.UserDeactivation).FirstOrDefaultAsync(user => user.Id == session.UserId);
+        if (user == null) return Fail(AuthResultError.SessionInvalid);
+        if (user.ActivatedAt is null)
         {
             await _sessionService.DeleteSessionAsync(session);
             return Fail(AuthResultError.AccountNotActivated);
         }
-        if (retrievedUser.UserDeactivation is not null)
+        if (user.UserDeactivation is not null)
         {
             await _sessionService.DeleteSessionAsync(session);
             return Fail(AuthResultError.AccountDeactivated);
         }
 
-        _authService.CurrentClient = retrievedUser;
+        Context.Items["User"] = user;
         _userReferenceService.AuthReference = session;
 
-        var claims = new List<Claim>(2 + retrievedUser.Roles.Count)
+        var claims = new List<Claim>(2 + user.Roles.Count)
         {
             new(ClaimTypes.AuthenticationMethod, OpenShockAuthSchemes.UserSessionCookie),
-            new(ClaimTypes.NameIdentifier, retrievedUser.Id.ToString()),
+            new(ClaimTypes.NameIdentifier, user.Id.ToString()),
         };
 
-        foreach (var roletype in retrievedUser.Roles)
+        foreach (var roletype in user.Roles)
         {
             claims.Add(new Claim(ClaimTypes.Role, roletype.ToString()));
         }
diff --git a/Common/Authentication/ControllerBase/AuthenticatedSessionControllerBase.cs b/Common/Authentication/ControllerBase/AuthenticatedSessionControllerBase.cs
@@ -13,7 +13,7 @@ public class AuthenticatedSessionControllerBase : OpenShockControllerBase, IActi
     [NonAction]
     public void OnActionExecuting(ActionExecutingContext context)
     {
-        CurrentUser = ControllerContext.HttpContext.RequestServices.GetRequiredService<IClientAuthService<User>>().CurrentClient;
+        CurrentUser = HttpContext.Items["User"] as User ?? throw new Exception("User not found");
     }
 
     [NonAction]
diff --git a/Common/Authentication/Services/ClientAuthService.cs b/Common/Authentication/Services/ClientAuthService.cs
diff --git a/Common/OpenShockServiceHelper.cs b/Common/OpenShockServiceHelper.cs
@@ -108,7 +108,6 @@ public static IServiceCollection AddOpenShockServices(this IServiceCollection se
             };
         });
 
-        services.AddScoped<IClientAuthService<User>, ClientAuthService<User>>();
         services.AddScoped<IUserReferenceService, UserReferenceService>();
 
         var authBuilder = services
diff --git a/LiveControlGateway/Controllers/LiveControlController.cs b/LiveControlGateway/Controllers/LiveControlController.cs
@@ -218,8 +218,7 @@ public async Task UpdatePermissions(OpenShockContext db)
     [NonAction]
     public void OnActionExecuting(ActionExecutingContext context)
     {
-        _currentUser = ControllerContext.HttpContext.RequestServices.GetRequiredService<IClientAuthService<User>>()
-            .CurrentClient;
+        _currentUser = HttpContext.Items["User"] as User ?? throw new Exception("User not found");
     }
 
     /// <summary>

Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,6 @@ namespace OpenShock.Common.Authentication.AuthenticationHandlers;`
`16`	`16`
`17`	`17`	`public sealed class UserSessionAuthentication : AuthenticationHandler<AuthenticationSchemeOptions>`
`18`	`18`	`{`
`19`		`- private readonly IClientAuthService<User> _authService;`
`20`	`19`	`private readonly IUserReferenceService _userReferenceService;`
`21`	`20`	`private readonly IBatchUpdateService _batchUpdateService;`
`22`	`21`	`private readonly OpenShockContext _db;`
`@@ -27,15 +26,13 @@ public UserSessionAuthentication(`
`27`	`26`	`IOptionsMonitor<AuthenticationSchemeOptions> options,`
`28`	`27`	`ILoggerFactory logger,`
`29`	`28`	`UrlEncoder encoder,`
`30`		`- IClientAuthService<User> clientAuth,`
`31`	`29`	`IUserReferenceService userReferenceService,`
`32`	`30`	`OpenShockContext db,`
`33`	`31`	`ISessionService sessionService,`
`34`	`32`	`IBatchUpdateService batchUpdateService`
`35`	`33`	`)`
`36`	`34`	`: base(options, logger, encoder)`
`37`	`35`	`{`
`38`		`- _authService = clientAuth;`
`39`	`36`	`_userReferenceService = userReferenceService;`
`40`	`37`	`_db = db;`
`41`	`38`	`_sessionService = sessionService;`
`@@ -60,29 +57,29 @@ protected override async Task<AuthenticateResult> HandleAuthenticateAsync()`
`60`	`57`
`61`	`58`	`_batchUpdateService.UpdateSessionLastUsed(sessionToken, DateTimeOffset.UtcNow);`
`62`	`59`
`63`		`- var retrievedUser = await _db.Users.Include(u => u.UserDeactivation).FirstOrDefaultAsync(user => user.Id == session.UserId);`
`64`		`- if (retrievedUser == null) return Fail(AuthResultError.SessionInvalid);`
`65`		`- if (retrievedUser.ActivatedAt is null)`
	`60`	`+ var user = await _db.Users.Include(u => u.UserDeactivation).FirstOrDefaultAsync(user => user.Id == session.UserId);`
	`61`	`+ if (user == null) return Fail(AuthResultError.SessionInvalid);`
	`62`	`+ if (user.ActivatedAt is null)`
`66`	`63`	`{`
`67`	`64`	`await _sessionService.DeleteSessionAsync(session);`
`68`	`65`	`return Fail(AuthResultError.AccountNotActivated);`
`69`	`66`	`}`
`70`		`- if (retrievedUser.UserDeactivation is not null)`
	`67`	`+ if (user.UserDeactivation is not null)`
`71`	`68`	`{`
`72`	`69`	`await _sessionService.DeleteSessionAsync(session);`
`73`	`70`	`return Fail(AuthResultError.AccountDeactivated);`
`74`	`71`	`}`
`75`	`72`
`76`		`- _authService.CurrentClient = retrievedUser;`
	`73`	`+ Context.Items["User"] = user;`
`77`	`74`	`_userReferenceService.AuthReference = session;`
`78`	`75`
`79`		`- var claims = new List<Claim>(2 + retrievedUser.Roles.Count)`
	`76`	`+ var claims = new List<Claim>(2 + user.Roles.Count)`
`80`	`77`	`{`
`81`	`78`	`new(ClaimTypes.AuthenticationMethod, OpenShockAuthSchemes.UserSessionCookie),`
`82`		`- new(ClaimTypes.NameIdentifier, retrievedUser.Id.ToString()),`
	`79`	`+ new(ClaimTypes.NameIdentifier, user.Id.ToString()),`
`83`	`80`	`};`
`84`	`81`
`85`		`- foreach (var roletype in retrievedUser.Roles)`
	`82`	`+ foreach (var roletype in user.Roles)`
`86`	`83`	`{`
`87`	`84`	`claims.Add(new Claim(ClaimTypes.Role, roletype.ToString()));`
`88`	`85`	`}`
Original file line number	Diff line number	Diff line change
`@@ -13,7 +13,7 @@ public class AuthenticatedSessionControllerBase : OpenShockControllerBase, IActi`
`13`	`13`	`[NonAction]`
`14`	`14`	`public void OnActionExecuting(ActionExecutingContext context)`
`15`	`15`	`{`
`16`		`- CurrentUser = ControllerContext.HttpContext.RequestServices.GetRequiredService<IClientAuthService<User>>().CurrentClient;`
	`16`	`+ CurrentUser = HttpContext.Items["User"] as User ?? throw new Exception("User not found");`
`17`	`17`	`}`
`18`	`18`
`19`	`19`	`[NonAction]`
Original file line number	Diff line number	Diff line change
`@@ -218,8 +218,7 @@ public async Task UpdatePermissions(OpenShockContext db)`
`218`	`218`	`[NonAction]`
`219`	`219`	`public void OnActionExecuting(ActionExecutingContext context)`
`220`	`220`	`{`
`221`		`- _currentUser = ControllerContext.HttpContext.RequestServices.GetRequiredService<IClientAuthService<User>>()`
`222`		`- .CurrentClient;`
	`221`	`+ _currentUser = HttpContext.Items["User"] as User ?? throw new Exception("User not found");`
`223`	`222`	`}`
`224`	`223`
`225`	`224`	`/// <summary>`