Merge pull request #51 from lc6464/dev

完成基本用户账户及聊天功能

Author: lc6464

Common/Database.cs

@@ -6,60 +6,63 @@ namespace SimpleWebChatApplication.Controllers;
 public class LoginController : ControllerBase {
 	private readonly ILogger<LoginController> _logger;
 	private readonly IDataProvider _provider;
-	private readonly ICheckingTools _tools;
-	private readonly ISession Session;
+	private readonly IGeneralTools _tools;
+	private readonly IHttpConnectionInfo _info;
 
-	public LoginController(ILogger<LoginController> logger, IDataProvider provider, ICheckingTools tools) {
+	public LoginController(ILogger<LoginController> logger, IDataProvider provider, IGeneralTools tools, IHttpConnectionInfo info) {
 		_logger = logger;
 		_provider = provider;
 		_tools = tools;
-		Session = HttpContext.Session;
+		_info = info;
 	}
 
 
 	[HttpGet]
 	[ResponseCache(CacheProfileName = "NoStore")]
 	public Models.Login Get() => _tools.IsLogin(out var displayName)
-			? new() { Success = true, Code = 0, Message = "已登录。", DisplayName = displayName }
-			: new() { Success = false, Code = 3, Message = "未登录。" };
+			? new() { Success = true, Code = 0, DisplayName = displayName }
+			: new() { Success = false, Code = 3 };
 
 
 	[HttpPost]
 	[ResponseCache(CacheProfileName = "NoStore")]
-	public Models.Login Post(string? account, string? password) {
+	public Models.Login Post([FromForm] string? account, [FromForm] string? password) {
 		if (_tools.IsLogin()) {
 			return new() { Success = true, Code = 1, Message = "您已经登录过了。" };
 		}
-		if (account is null || password is null) {
+		if (string.IsNullOrWhiteSpace(account) || string.IsNullOrWhiteSpace(password)) {
 			return new() { Success = false, Code = 5, Message = "用户名或密码为空。" };
 		}
 		_ = Hubs.Cache.MemoryCache.TryGetValue($"TryLoginCount of {account}", out int count);
 		if (count > 5) {
-			_logger.LogWarning("用户 {} 尝试登录次数过多，最后一次 IP 地址为 {}。", account, HttpContext.Connection.RemoteIpAddress);
+			_logger.LogWarning("Post: 用户 {} 尝试登录次数过多，最后一次 IP 地址为 {}。", account, _info.RemoteAddress);
 			return new() { Success = false, Code = 7, Message = "尝试登录次数过多，请在30分钟后重试。" };
 		}
-		if (account.Length is < 4 or > 32 || !ICheckingTools.IsPasswordComplicated(password)) {
-			_ = Hubs.Cache.Set($"TryLoginCount of {account}", count++, TimeSpan.FromMinutes(30), TimeSpan.FromHours(2));
+		if (account.Length is < 4 or > 32 || !IGeneralTools.IsPasswordComplicated(password)) {
+			_ = Hubs.Cache.Set($"TryLoginCount of {account}", ++count, TimeSpan.FromMinutes(30), TimeSpan.FromHours(2));
 			return new() { Success = false, Code = 6, Message = "用户名或密码错误。" };
 		}
-		using var reader = _provider.GetUserReader(account);
+		using var reader = _provider.GetUserReader(account, out var cmd);
 		if (!reader.Read()) {
-			_ = Hubs.Cache.Set($"TryLoginCount of {account}", count++, TimeSpan.FromMinutes(30), TimeSpan.FromHours(2));
+			_ = Hubs.Cache.Set($"TryLoginCount of {account}", ++count, TimeSpan.FromMinutes(30), TimeSpan.FromHours(2));
 			return new() { Success = false, Code = 6, Message = "用户名或密码错误。" };
 		}
 		var hash = new byte[64];
 		_ = reader.GetBytes(3, 0, hash, 0, 64);
 		var salt = new byte[16];
 		_ = reader.GetBytes(4, 0, salt, 0, 16);
-		if (!ICheckingTools.VerifyPassword(password, hash, salt)) {
-			_ = Hubs.Cache.Set($"TryLoginCount of {account}", count++, TimeSpan.FromMinutes(30), TimeSpan.FromHours(2));
+		if (!IGeneralTools.VerifyPassword(password, hash, salt)) {
+			_ = Hubs.Cache.Set($"TryLoginCount of {account}", ++count, TimeSpan.FromMinutes(30), TimeSpan.FromHours(2));
 			return new() { Success = false, Code = 6, Message = "用户名或密码错误。" };
 		}
 		Hubs.Cache.MemoryCache.Remove($"TryLoginCount of {account}");
-		Session.SetString("Name", account);
-		Session.SetString("Nick", reader.GetString(2));
-		Session.Set("Hash", hash);
-		Session.Set("Salt", salt);
-		return new() { Success = true, Code = 0, Message = "登录成功！" };
+		HttpContext.Session.SetString("Name", account);
+		HttpContext.Session.SetString("Nick", reader.GetString(2));
+		HttpContext.Session.Set("Hash", hash);
+		HttpContext.Session.Set("Salt", salt);
+		cmd.Dispose();
+		_logger.LogDebug("Post: 用户 {} 于 {} 登录成功。", account, _info.RemoteAddress);
+		return new() { Success = true, Code = 0 };
+
 	}
 }

Controllers/LoginController.cs

@@ -10,7 +10,7 @@ public readonly struct Hello {
 
 	public Hello(IHttpConnectionInfo info) => IP = new(info);
 
-	public readonly DateTime Time => DateTime.Now;
+	public readonly DateTime Time => DateTime.UtcNow;
 
 	public static readonly string Copyright = ((AssemblyCopyrightAttribute)Attribute.GetCustomAttribute(assembly, typeof(AssemblyCopyrightAttribute))!).Copyright;
 

Controllers/Models/Hello.cs

@@ -0,0 +1,115 @@
+using System.Text.Json.Serialization;
+using SimpleWebChatApplication.Services;
+
+namespace SimpleWebChatApplication.Controllers.Models;
+
+/// <summary>
+/// RegisterController 用户 Post 方法的响应。
+/// </summary>
+public readonly struct RegisterUserPostResponse {
+	public bool Success { get; init; }
+	public int Code { get; init; }
+	public string? Message { get; init; }
+	public string? Data { get; init; }
+}
+
+
+/// <summary>
+/// RegisterController 用户 Post 方法用户数据序列化模板。
+/// </summary>
+public readonly struct RegisterUserPostJsonSerializeTemplate {
+	public RegisterUserPostJsonSerializeTemplate() => HMACKey = IGeneralTools.GenerateRandomData(16).ToArray();
+
+	[JsonPropertyName("a")]
+	public string? Account { get; init; }
+
+	[JsonPropertyName("h")]
+	public byte[]? PasswordHash { get; init; }
+
+	[JsonPropertyName("s")]
+	public byte[]? PasswordSalt { get; init; }
+
+	[JsonPropertyName("k")]
+	public byte[] HMACKey { get; init; }
+}
+
+
+/// <summary>
+/// RegisterController 管理员 Get 方法的响应。
+/// </summary>
+public readonly struct RegisterGetResponse {
+	public bool Success { get; init; }
+	public int Code { get; init; }
+	public string? Message { get; init; }
+	public RegisterGetResponseUserData? Data { get; init; }
+}
+
+
+/// <summary>
+/// RegisterController 管理员 Get 方法用户数据反序列化模板。
+/// </summary>
+public readonly struct RegisterGetJsonDeserializeTemplate {
+	[JsonPropertyName("a")]
+	public string? Account { get; init; }
+
+	[JsonPropertyName("h")]
+	public byte[]? PasswordHash { get; init; }
+
+	[JsonPropertyName("s")]
+	public byte[]? PasswordSalt { get; init; }
+
+	[JsonPropertyName("k")]
+	public byte[]? HMACKey { get; init; }
+}
+
+
+/// <summary>
+/// RegisterController 管理员 Get 方法的响应中的用户数据。
+/// </summary>
+public readonly struct RegisterGetResponseUserData {
+	public RegisterGetResponseUserData(RegisterGetJsonDeserializeTemplate userData, long timestamp) {
+		Account = userData.Account;
+		PasswordHash = userData.PasswordHash;
+		PasswordSalt = userData.PasswordSalt;
+		Timestamp = timestamp;
+	}
+
+	public string? Account { get; init; }
+
+	public byte[]? PasswordHash { get; init; }
+
+	public byte[]? PasswordSalt { get; init; }
+
+	public long? Timestamp { get; init; }
+}
+
+
+/// <summary>
+/// RegisterController Import 方法的响应中的数据。
+/// </summary>
+public readonly struct RegisterImportResponse {
+	public bool Success { get; init; }
+	public int Code { get; init; }
+	public string? Message { get; init; }
+	public RegisterImportResponseData? Data { get; init; }
+}
+
+/// <summary>
+/// RegisterController Import 方法的响应。
+/// </summary>
+public readonly struct RegisterImportResponseData {
+	public RegisterImportResponseData(RegisterGetResponseUserData userData, long id, long importTime) {
+		UserID = id;
+		UserName = userData.Account!;
+		RegisterTime = (long)userData.Timestamp!;
+		ImportTime = importTime;
+	}
+
+	public long UserID { get; init; }
+
+	public string UserName { get; init; }
+
+	public long RegisterTime { get; init; }
+
+	public long ImportTime { get; init; }
+}