446 lines
15 KiB
C#
446 lines
15 KiB
C#
using System;
|
|
using System.Collections.Generic;
|
|
using System.Linq;
|
|
using System.Web;
|
|
using System.Threading;
|
|
using System.Web.Mvc;
|
|
using System.Configuration;
|
|
using System.Threading.Tasks;
|
|
using System.Text;
|
|
using Mono.Security.Protocol.Tls;
|
|
using System.Net;
|
|
using System.IO;
|
|
using Yavsc.Model;
|
|
using Newtonsoft.Json;
|
|
using Yavsc.Model.Google;
|
|
using Yavsc.Model.RolesAndMembers;
|
|
using System.Web.Security;
|
|
using System.Web.Profile;
|
|
|
|
namespace Yavsc.Controllers
|
|
{
|
|
|
|
public class GoogleController : Controller
|
|
{
|
|
// datetime format : yyyy-mm-ddTHH:MM:ss
|
|
// 2015-01-01T10:00:00-07:00
|
|
// private string API_KEY="AIzaSyBV_LQHb22nGgjNvFzZwnQHjao3Q7IewRw";
|
|
|
|
private static string getPeopleUri = "https://www.googleapis.com/plus/v1/people";
|
|
private static string getCalListUri = "https://www.googleapis.com/calendar/v3/users/me/calendarList";
|
|
private static string getCalEntriesUri = "https://www.googleapis.com/calendar/v3/calendars/{0}/events";
|
|
|
|
private static string CLIENT_ID = "325408689282-6bekh7p3guj4k0f3301a6frf025cnrk1.apps.googleusercontent.com";
|
|
private static string CLIENT_SECRET = "MaxYcvJJCs2gDGvaELZbzwfL";
|
|
|
|
private static string[] SCOPES = {
|
|
"openid",
|
|
"profile",
|
|
"email"
|
|
};
|
|
|
|
private static string tokenUri = "https://accounts.google.com/o/oauth2/token";
|
|
private static string authUri = "https://accounts.google.com/o/oauth2/auth";
|
|
private static string dateFormat = "yyyy-MM-dd'T'HH:mm:ss.fffK";
|
|
private string SetSessionSate ()
|
|
{
|
|
Random rand = new Random ();
|
|
string state = "security_token" + rand.Next (100000).ToString () + rand.Next (100000).ToString ();
|
|
Session ["state"] = state;
|
|
return state;
|
|
}
|
|
|
|
public void Login (string returnUrl)
|
|
{
|
|
if (string.IsNullOrWhiteSpace (returnUrl))
|
|
returnUrl = "/";
|
|
Session ["returnUrl"] = returnUrl;
|
|
|
|
string redirectUri = Request.Url.Scheme + "://" + Request.Url.Authority + "/Google/Auth";
|
|
string scope = string.Join ("%20", SCOPES);
|
|
|
|
string prms = String.Format ("response_type=code&client_id={0}&redirect_uri={1}&scope={2}&state={3}&include_granted_scopes=false",
|
|
CLIENT_ID, redirectUri, scope, SetSessionSate ());
|
|
|
|
GetAuthResponse (prms);
|
|
}
|
|
|
|
private void GetAuthResponse (string prms)
|
|
{
|
|
string cont = null;
|
|
WebRequest wr = WebRequest.Create (authUri + "?" + prms);
|
|
wr.Method = "GET";
|
|
using (
|
|
WebResponse response = wr.GetResponse ()) {
|
|
string resQuery = response.ResponseUri.Query;
|
|
cont = HttpUtility.ParseQueryString (resQuery) ["continue"];
|
|
response.Close ();
|
|
|
|
}
|
|
wr.Abort ();
|
|
|
|
Response.Redirect (cont);
|
|
}
|
|
|
|
[Authorize]
|
|
public void GetCalAuth ()
|
|
{
|
|
string redirectUri = Request.Url.Scheme + "://" + Request.Url.Authority + "/Google/CalAuth";
|
|
string scope = string.Join ("%20", SCOPES);
|
|
scope += "%20https://www.googleapis.com/auth/calendar";
|
|
string prms = String.Format ("response_type=code&client_id={0}&redirect_uri={1}&scope={2}&state={3}&include_granted_scopes=false&access_type=offline",
|
|
CLIENT_ID, redirectUri, scope, SetSessionSate ());
|
|
Session ["calasked"] = true;
|
|
GetAuthResponse (prms);
|
|
}
|
|
|
|
[HttpGet]
|
|
[Authorize]
|
|
public ActionResult CalAuth ()
|
|
{
|
|
string redirectUri = Request.Url.Scheme + "://" + Request.Url.Authority + "/Google/CalAuth";
|
|
AuthToken gat = GetToken (TokenPostDataFromCode(redirectUri, GetCodeFromRequest()));
|
|
if (gat == null) {
|
|
return View ("Auth");
|
|
}
|
|
SaveToken (gat);
|
|
HttpContext.Profile.SetPropertyValue ("gcalapi", true);
|
|
string returnUrl = (string)Session ["returnUrl"];
|
|
Session ["returnUrl"]=null;
|
|
return Redirect (returnUrl);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Saves the token.
|
|
/// This calls the Profile.Save() method.
|
|
/// It should be called immediatly after getting the token from Google, in
|
|
/// order to save a descent value as expiration date.
|
|
/// </summary>
|
|
/// <param name="gat">Gat.</param>
|
|
private void SaveToken(AuthToken gat)
|
|
{
|
|
HttpContext.Profile.SetPropertyValue ("gtoken", gat.access_token);
|
|
if (gat.refresh_token!=null)
|
|
HttpContext.Profile.SetPropertyValue ("grefreshtoken", gat.refresh_token);
|
|
HttpContext.Profile.SetPropertyValue ("gtokentype", gat.token_type);
|
|
HttpContext.Profile.SetPropertyValue ("gtokenexpir", DateTime.Now.AddSeconds(gat.expires_in));
|
|
HttpContext.Profile.Save ();
|
|
}
|
|
|
|
private string GetCodeFromRequest()
|
|
{
|
|
string code = Request.Params ["code"];
|
|
string error = Request.Params ["error"];
|
|
if (error != null) {
|
|
ViewData ["Message"] =
|
|
string.Format (LocalizedText.Google_error,
|
|
LocalizedText.ResourceManager.GetString (error));
|
|
return null;
|
|
}
|
|
string state = Request.Params ["state"];
|
|
if (state != null && string.Compare ((string)Session ["state"], state) != 0) {
|
|
ViewData ["Message"] =
|
|
LocalizedText.ResourceManager.GetString ("invalid request state");
|
|
return null;
|
|
}
|
|
return code;
|
|
}
|
|
|
|
private AuthToken GetToken (string postdata)
|
|
{
|
|
Byte[] bytes = System.Text.Encoding.UTF8.GetBytes (postdata);
|
|
HttpWebRequest webreq = WebRequest.CreateHttp (tokenUri);
|
|
webreq.KeepAlive = false;
|
|
webreq.Timeout = 5000;
|
|
webreq.Proxy = null;
|
|
// Not implemented: webreq.ServicePoint.ConnectionLeaseTimeout = 5000;
|
|
webreq.ServicePoint.MaxIdleTime = 5000;
|
|
webreq.Method = "POST";
|
|
webreq.Accept = "application/json";
|
|
webreq.ContentType = "application/x-www-form-urlencoded";
|
|
webreq.ContentLength = bytes.Length;
|
|
|
|
using (Stream dataStream = webreq.GetRequestStream ()) {
|
|
dataStream.Write (bytes, 0, bytes.Length);
|
|
dataStream.Close ();
|
|
}
|
|
AuthToken gat =null;
|
|
|
|
using (WebResponse response = webreq.GetResponse ()) {
|
|
using (Stream responseStream = response.GetResponseStream ()) {
|
|
using (StreamReader readStream = new StreamReader (responseStream, Encoding.UTF8)) {
|
|
string responseStr = readStream.ReadToEnd ();
|
|
gat = JsonConvert.DeserializeObject<AuthToken> (responseStr);
|
|
readStream.Close ();
|
|
}
|
|
responseStream.Close ();
|
|
}
|
|
response.Close();
|
|
}
|
|
webreq.Abort ();
|
|
|
|
return gat;
|
|
}
|
|
|
|
private string TokenPostDataFromCode(string redirectUri, string code)
|
|
{
|
|
string postdata =
|
|
string.Format (
|
|
"redirect_uri={0}&client_id={1}&client_secret={2}&code={3}&grant_type=authorization_code",
|
|
HttpUtility.UrlEncode (redirectUri),
|
|
HttpUtility.UrlEncode (CLIENT_ID),
|
|
HttpUtility.UrlEncode (CLIENT_SECRET),
|
|
HttpUtility.UrlEncode (code));
|
|
return postdata;
|
|
}
|
|
|
|
[HttpGet]
|
|
public ActionResult Auth ()
|
|
{
|
|
string redirectUri = Request.Url.Scheme + "://" + Request.Url.Authority + "/Google/Auth";
|
|
AuthToken gat = GetToken (TokenPostDataFromCode( redirectUri, GetCodeFromRequest()));
|
|
if (gat == null) {
|
|
return View ();
|
|
}
|
|
string returnUrl = (string)Session ["returnUrl"];
|
|
|
|
SignIn regmod = new SignIn ();
|
|
HttpWebRequest webreppro = WebRequest.CreateHttp (getPeopleUri + "/me");
|
|
webreppro.ContentType = "application/http";
|
|
webreppro.Headers.Add (HttpRequestHeader.Authorization, gat.token_type + " " + gat.access_token);
|
|
webreppro.Method = "GET";
|
|
using (WebResponse proresp = webreppro.GetResponse ()) {
|
|
using (Stream prresponseStream = proresp.GetResponseStream ()) {
|
|
using (StreamReader readproresp = new StreamReader (prresponseStream, Encoding.UTF8)) {
|
|
string prresponseStr = readproresp.ReadToEnd ();
|
|
People me = JsonConvert.DeserializeObject<People> (prresponseStr);
|
|
// TODO use me.id to retreive an existing user
|
|
string accEmail = me.emails.Where (x => x.type == "account").First ().value;
|
|
MembershipUserCollection mbrs = Membership.FindUsersByEmail (accEmail);
|
|
if (mbrs.Count == 1) {
|
|
// TODO check the google id
|
|
// just set this user as logged on
|
|
FormsAuthentication.SetAuthCookie (me.displayName, true);
|
|
Session ["returnUrl"] = null;
|
|
prresponseStream.Close ();
|
|
proresp.Close ();
|
|
webreppro.Abort ();
|
|
return Redirect (returnUrl);
|
|
}
|
|
// else create the account
|
|
regmod.Email = accEmail;
|
|
regmod.UserName = me.displayName;
|
|
Session ["me"] = me;
|
|
Session ["GoogleAuthToken"] = gat;
|
|
webreppro.Abort ();
|
|
|
|
|
|
}
|
|
prresponseStream.Close ();
|
|
}
|
|
proresp.Close ();
|
|
}
|
|
webreppro.Abort ();
|
|
return Auth (regmod);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Creates an account using the Google authentification.
|
|
/// </summary>
|
|
/// <param name="regmod">Regmod.</param>
|
|
[HttpPost]
|
|
public ActionResult Auth (SignIn regmod)
|
|
{
|
|
if (ModelState.IsValid) {
|
|
if (Membership.GetUser (regmod.UserName) != null) {
|
|
ModelState.AddModelError ("UserName", "This user name already is in use");
|
|
return View ();
|
|
}
|
|
string returnUrl = (string)Session ["returnUrl"];
|
|
AuthToken gat = (AuthToken)Session ["GoogleAuthToken"];
|
|
People me = (People)Session ["me"];
|
|
if (gat == null || me == null)
|
|
throw new InvalidDataException ();
|
|
|
|
Random rand = new Random ();
|
|
string passwd = rand.Next (100000).ToString () + rand.Next (100000).ToString ();
|
|
|
|
MembershipCreateStatus mcs;
|
|
Membership.CreateUser (
|
|
regmod.UserName,
|
|
passwd,
|
|
regmod.Email,
|
|
null,
|
|
null,
|
|
true,
|
|
out mcs);
|
|
switch (mcs) {
|
|
case MembershipCreateStatus.DuplicateEmail:
|
|
ModelState.AddModelError ("Email", "Cette adresse e-mail correspond " +
|
|
"à un compte utilisateur existant");
|
|
return View (regmod);
|
|
case MembershipCreateStatus.DuplicateUserName:
|
|
ModelState.AddModelError ("UserName", "Ce nom d'utilisateur est " +
|
|
"déjà enregistré");
|
|
return View (regmod);
|
|
case MembershipCreateStatus.Success:
|
|
Membership.ValidateUser (regmod.UserName, passwd);
|
|
FormsAuthentication.SetAuthCookie (regmod.UserName, true);
|
|
|
|
HttpContext.Profile.Initialize (regmod.UserName, true);
|
|
HttpContext.Profile.SetPropertyValue ("Name", me.displayName);
|
|
// TODO use image
|
|
if (me.image != null) {
|
|
HttpContext.Profile.SetPropertyValue ("avatar", me.image.url);
|
|
}
|
|
if (me.placesLived != null) {
|
|
People.Place pplace = me.placesLived.Where (x => x.primary).First ();
|
|
if (pplace != null)
|
|
HttpContext.Profile.SetPropertyValue ("CityAndState", pplace.value);
|
|
}
|
|
if (me.url != null)
|
|
HttpContext.Profile.SetPropertyValue ("WebSite", me.url);
|
|
SaveToken (gat);
|
|
// already done in SaveToken: HttpContext.Profile.Save ();
|
|
return Redirect (returnUrl);
|
|
}
|
|
ViewData ["returnUrl"] = returnUrl;
|
|
}
|
|
return View (regmod);
|
|
}
|
|
|
|
private string GetFreshGoogleCredential (ProfileBase pr)
|
|
{
|
|
string token = (string) pr.GetPropertyValue ("gtoken");
|
|
string token_type = (string) pr.GetPropertyValue ("gtokentype");
|
|
DateTime token_exp = (DateTime) pr.GetPropertyValue ("gtokenexpir");
|
|
if (token_exp < DateTime.Now) {
|
|
string refresh_token = (string) pr.GetPropertyValue ("grefreshtoken");
|
|
AuthToken gat = GetToken(
|
|
string.Format("grant_type=refresh_token&client_id={0}&client_secret={1}&refresh_token={2}",
|
|
CLIENT_ID, CLIENT_SECRET, refresh_token));
|
|
token = gat.access_token;
|
|
pr.SetPropertyValue ("gtoken", token);
|
|
pr.Save ();
|
|
// assert gat.token_type == token_type
|
|
}
|
|
return token_type + " " + token;
|
|
}
|
|
|
|
[Authorize]
|
|
[HttpGet]
|
|
public ActionResult ChooseCalendar (string returnUrl)
|
|
{
|
|
Session ["ChooseCalReturnUrl"] = returnUrl;
|
|
bool hasCalAuth = (bool)HttpContext.Profile.GetPropertyValue ("gcalapi");
|
|
if (!hasCalAuth) {
|
|
Session["returnUrl"] = Request.Url.Scheme + "://" + Request.Url.Authority + "/Google/ChooseCalendar";
|
|
return RedirectToAction ("GetCalAuth");
|
|
}
|
|
|
|
string cred = GetFreshGoogleCredential (HttpContext.Profile);
|
|
|
|
HttpWebRequest webreq = WebRequest.CreateHttp (getCalListUri);
|
|
webreq.Headers.Add (HttpRequestHeader.Authorization, cred);
|
|
webreq.Method = "GET";
|
|
webreq.ContentType = "application/http";
|
|
CalendarList res = null;
|
|
using (WebResponse resp = webreq.GetResponse ()) {
|
|
using (Stream respstream = resp.GetResponseStream ()) {
|
|
using (StreamReader readresp = new StreamReader (respstream, Encoding.UTF8)) {
|
|
string responseStr = readresp.ReadToEnd ();
|
|
res = JsonConvert.DeserializeObject<CalendarList> (responseStr);
|
|
ViewData ["json"] = responseStr;
|
|
}
|
|
}
|
|
resp.Close ();
|
|
}
|
|
webreq.Abort ();
|
|
return View (res);
|
|
}
|
|
|
|
[HttpPost]
|
|
[Authorize]
|
|
public ActionResult SetCalendar (string calchoice)
|
|
{
|
|
HttpContext.Profile.SetPropertyValue ("gcalid", calchoice);
|
|
HttpContext.Profile.Save ();
|
|
|
|
string returnUrl = (string) Session ["ChooseCalReturnUrl"];
|
|
if (returnUrl != null) {
|
|
Session ["ChooseCalReturnUrl"] = null;
|
|
return Redirect (returnUrl);
|
|
}
|
|
return Redirect ("/");
|
|
}
|
|
|
|
[Authorize]
|
|
[HttpGet]
|
|
public ActionResult DateQuery()
|
|
{
|
|
return View (new AskForADate ());
|
|
}
|
|
|
|
[Authorize]
|
|
[HttpPost]
|
|
public ActionResult DateQuery(AskForADate model)
|
|
{
|
|
if (ModelState.IsValid) {
|
|
if (model.MinDate < DateTime.Now) {
|
|
ModelState.AddModelError ("MinTime", "This first date must be in the future.");
|
|
return View (model);
|
|
}
|
|
if (model.MinDate > model.MaxDate) {
|
|
ModelState.AddModelError ("MinTime", "This first date must be lower than the second one.");
|
|
return View (model);
|
|
}
|
|
var muc = Membership.FindUsersByName (model.UserName);
|
|
if (muc.Count==0) {
|
|
ModelState.AddModelError ("UserName", "Non existent user");
|
|
return View (model);
|
|
}
|
|
ProfileBase upr = ProfileBase.Create (model.UserName);
|
|
|
|
string calid = (string) upr.GetPropertyValue ("gcalid");
|
|
if (string.IsNullOrWhiteSpace(calid)) {
|
|
ModelState.AddModelError ("UserName", "L'utilisateur n'a pas de calendrier Google associé.");
|
|
return View (model);
|
|
}
|
|
HttpWebRequest webreq = WebRequest.CreateHttp (
|
|
string.Format(
|
|
getCalEntriesUri, calid)+
|
|
string.Format("?singleEvents=true&orderBy=startTime&timeMin={0}&timeMax={1}",
|
|
model.MinDate.ToString(dateFormat),model.MaxDate.ToString(dateFormat))
|
|
);
|
|
webreq.Headers.Add (HttpRequestHeader.Authorization, GetFreshGoogleCredential(upr));
|
|
webreq.Method = "GET";
|
|
webreq.ContentType = "application/http";
|
|
CalendarEntryList res = null;
|
|
using (WebResponse resp = webreq.GetResponse ()) {
|
|
using (Stream respstream = resp.GetResponseStream ()) {
|
|
using (StreamReader readresp = new StreamReader (respstream, Encoding.UTF8)) {
|
|
string responseStr = readresp.ReadToEnd ();
|
|
try {
|
|
res = JsonConvert.DeserializeObject<CalendarEntryList> (responseStr);
|
|
ViewData ["json"] = responseStr;
|
|
|
|
|
|
}
|
|
catch (JsonReaderException ex) {
|
|
respstream.Close ();
|
|
resp.Close ();
|
|
webreq.Abort ();
|
|
return View ("JsonReaderError", new JsonReaderError() {Text= responseStr, Excepx = ex});
|
|
}
|
|
}
|
|
respstream.Close ();
|
|
}
|
|
resp.Close ();
|
|
}
|
|
webreq.Abort ();
|
|
return View (res);
|
|
}
|
|
return View (model);
|
|
}
|
|
}
|
|
} |