2019-06-06 13:34:46 +00:00
|
|
|
/*
|
|
|
|
*
|
|
|
|
* (c) Copyright Ascensio System Limited 2010-2018
|
|
|
|
*
|
|
|
|
* This program is freeware. You can redistribute it and/or modify it under the terms of the GNU
|
|
|
|
* General Public License (GPL) version 3 as published by the Free Software Foundation (https://www.gnu.org/copyleft/gpl.html).
|
|
|
|
* In accordance with Section 7(a) of the GNU GPL its Section 15 shall be amended to the effect that
|
|
|
|
* Ascensio System SIA expressly excludes the warranty of non-infringement of any third-party rights.
|
|
|
|
*
|
|
|
|
* THIS PROGRAM IS DISTRIBUTED WITHOUT ANY WARRANTY; WITHOUT EVEN THE IMPLIED WARRANTY OF MERCHANTABILITY OR
|
|
|
|
* FITNESS FOR A PARTICULAR PURPOSE. For more details, see GNU GPL at https://www.gnu.org/copyleft/gpl.html
|
|
|
|
*
|
|
|
|
* You can contact Ascensio System SIA by email at sales@onlyoffice.com
|
|
|
|
*
|
|
|
|
* The interactive user interfaces in modified source and object code versions of ONLYOFFICE must display
|
|
|
|
* Appropriate Legal Notices, as required under Section 5 of the GNU GPL version 3.
|
|
|
|
*
|
|
|
|
* Pursuant to Section 7 § 3(b) of the GNU GPL you must retain the original ONLYOFFICE logo which contains
|
|
|
|
* relevant author attributions when distributing the software. If the display of the logo in its graphic
|
|
|
|
* form is not reasonably feasible for technical reasons, you must include the words "Powered by ONLYOFFICE"
|
|
|
|
* in every copy of the program you distribute.
|
|
|
|
* Pursuant to Section 7 § 3(e) we decline to grant you any rights under trademark law for use of our trademarks.
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
|
|
using System;
|
|
|
|
using System.Collections.Generic;
|
|
|
|
using System.Linq;
|
|
|
|
using System.Security.Cryptography;
|
|
|
|
using System.Text;
|
|
|
|
using System.Threading;
|
|
|
|
using System.Web;
|
2019-12-20 11:17:01 +00:00
|
|
|
|
2019-10-11 15:03:03 +00:00
|
|
|
using ASC.Common.Caching;
|
2019-10-09 15:04:46 +00:00
|
|
|
using ASC.Common.Utils;
|
2019-09-27 11:51:09 +00:00
|
|
|
using ASC.Core;
|
2019-10-11 15:03:03 +00:00
|
|
|
using ASC.Core.Common.Configuration;
|
2019-06-06 13:34:46 +00:00
|
|
|
using ASC.FederatedLogin.Helpers;
|
|
|
|
using ASC.FederatedLogin.Profile;
|
2019-10-09 15:04:46 +00:00
|
|
|
using ASC.Security.Cryptography;
|
2019-12-20 11:17:01 +00:00
|
|
|
|
2019-06-06 13:34:46 +00:00
|
|
|
using Microsoft.AspNetCore.Http;
|
2019-09-27 11:51:09 +00:00
|
|
|
using Microsoft.Extensions.Configuration;
|
2019-12-20 11:17:01 +00:00
|
|
|
|
2019-06-06 13:34:46 +00:00
|
|
|
using Newtonsoft.Json.Linq;
|
|
|
|
|
|
|
|
namespace ASC.FederatedLogin.LoginProviders
|
|
|
|
{
|
|
|
|
public class MailRuLoginProvider : BaseLoginProvider<MailRuLoginProvider>
|
|
|
|
{
|
|
|
|
public override string CodeUrl
|
|
|
|
{
|
|
|
|
get { return "https://connect.mail.ru/oauth/authorize"; }
|
|
|
|
}
|
|
|
|
|
|
|
|
public override string AccessTokenUrl
|
|
|
|
{
|
|
|
|
get { return "https://connect.mail.ru/oauth/token"; }
|
|
|
|
}
|
|
|
|
|
|
|
|
public override string ClientID
|
|
|
|
{
|
|
|
|
get { return this["mailRuClientId"]; }
|
|
|
|
}
|
|
|
|
|
|
|
|
public override string ClientSecret
|
|
|
|
{
|
|
|
|
get { return this["mailRuClientSecret"]; }
|
|
|
|
}
|
|
|
|
|
|
|
|
public override string RedirectUri
|
|
|
|
{
|
|
|
|
get { return this["mailRuRedirectUrl"]; }
|
|
|
|
}
|
|
|
|
|
|
|
|
private const string MailRuApiUrl = "http://www.appsmail.ru/platform/api";
|
|
|
|
|
|
|
|
public MailRuLoginProvider()
|
|
|
|
{
|
|
|
|
}
|
|
|
|
|
2019-10-09 15:04:46 +00:00
|
|
|
public MailRuLoginProvider(TenantManager tenantManager,
|
|
|
|
CoreBaseSettings coreBaseSettings,
|
|
|
|
CoreSettings coreSettings,
|
|
|
|
IConfiguration configuration,
|
2019-10-11 15:03:03 +00:00
|
|
|
ICacheNotify<ConsumerCacheItem> cache,
|
2019-10-09 15:04:46 +00:00
|
|
|
Signature signature,
|
|
|
|
InstanceCrypto instanceCrypto,
|
2019-09-27 11:51:09 +00:00
|
|
|
string name, int order, Dictionary<string, string> props, Dictionary<string, string> additional = null)
|
2020-03-06 13:17:17 +00:00
|
|
|
: base(tenantManager, coreBaseSettings, coreSettings, configuration, cache, signature, instanceCrypto, name, order, props, additional)
|
2019-06-06 13:34:46 +00:00
|
|
|
{
|
|
|
|
}
|
|
|
|
|
|
|
|
public override LoginProfile ProcessAuthoriztion(HttpContext context, IDictionary<string, string> @params)
|
|
|
|
{
|
|
|
|
try
|
|
|
|
{
|
|
|
|
var token = Auth(context, Scopes);
|
|
|
|
|
|
|
|
if (token == null)
|
|
|
|
{
|
|
|
|
throw new Exception("Login failed");
|
|
|
|
}
|
|
|
|
|
|
|
|
var uid = GetUid(token);
|
|
|
|
|
|
|
|
return RequestProfile(token.AccessToken, uid);
|
|
|
|
}
|
|
|
|
catch (ThreadAbortException)
|
|
|
|
{
|
|
|
|
throw;
|
|
|
|
}
|
|
|
|
catch (Exception ex)
|
|
|
|
{
|
2019-10-09 15:04:46 +00:00
|
|
|
return LoginProfile.FromError(Signature, InstanceCrypto, ex);
|
2019-06-06 13:34:46 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
public override LoginProfile GetLoginProfile(string accessToken)
|
|
|
|
{
|
|
|
|
throw new NotImplementedException();
|
|
|
|
}
|
|
|
|
|
|
|
|
private LoginProfile RequestProfile(string accessToken, string uid)
|
|
|
|
{
|
|
|
|
var queryDictionary = new Dictionary<string, string>
|
|
|
|
{
|
|
|
|
{ "app_id", ClientID },
|
|
|
|
{ "method", "users.getInfo" },
|
|
|
|
{ "secure", "1" },
|
|
|
|
{ "session_key", accessToken },
|
|
|
|
{ "uids", uid },
|
|
|
|
};
|
|
|
|
|
|
|
|
var sortedKeys = queryDictionary.Keys.ToList();
|
|
|
|
sortedKeys.Sort();
|
|
|
|
|
2019-08-16 08:44:03 +00:00
|
|
|
using var md5 = MD5.Create();
|
2019-06-06 13:34:46 +00:00
|
|
|
var mailruParams = string.Join("", sortedKeys.Select(key => key + "=" + queryDictionary[key]).ToList());
|
2019-08-16 08:44:03 +00:00
|
|
|
var sig = string.Join("", md5.ComputeHash(Encoding.ASCII.GetBytes(mailruParams + ClientSecret)).Select(b => b.ToString("x2")));
|
2019-06-06 13:34:46 +00:00
|
|
|
|
|
|
|
var mailRuProfile = RequestHelper.PerformRequest(
|
|
|
|
MailRuApiUrl
|
|
|
|
+ "?" + string.Join("&", queryDictionary.Select(pair => pair.Key + "=" + HttpUtility.UrlEncode(pair.Value)))
|
|
|
|
+ "&sig=" + HttpUtility.UrlEncode(sig));
|
|
|
|
var loginProfile = ProfileFromMailRu(mailRuProfile);
|
|
|
|
|
|
|
|
return loginProfile;
|
|
|
|
}
|
|
|
|
|
2019-10-09 15:04:46 +00:00
|
|
|
private LoginProfile ProfileFromMailRu(string strProfile)
|
2019-06-06 13:34:46 +00:00
|
|
|
{
|
|
|
|
var jProfile = JArray.Parse(strProfile);
|
|
|
|
if (jProfile == null) throw new Exception("Failed to correctly process the response");
|
|
|
|
|
|
|
|
var mailRuProfiles = jProfile.ToObject<List<MailRuProfile>>();
|
|
|
|
if (mailRuProfiles.Count == 0) throw new Exception("Failed to correctly process the response");
|
|
|
|
|
2019-10-09 15:04:46 +00:00
|
|
|
var profile = new LoginProfile(Signature, InstanceCrypto)
|
2019-08-15 12:04:42 +00:00
|
|
|
{
|
|
|
|
EMail = mailRuProfiles[0].email,
|
|
|
|
Id = mailRuProfiles[0].uid,
|
|
|
|
FirstName = mailRuProfiles[0].first_name,
|
|
|
|
LastName = mailRuProfiles[0].last_name,
|
2019-06-06 13:34:46 +00:00
|
|
|
|
2019-08-15 12:04:42 +00:00
|
|
|
Provider = ProviderConstants.MailRu,
|
|
|
|
};
|
2019-06-06 13:34:46 +00:00
|
|
|
|
|
|
|
return profile;
|
|
|
|
}
|
|
|
|
|
|
|
|
private class MailRuProfile
|
|
|
|
{
|
|
|
|
public string uid = null;
|
|
|
|
public string first_name = null;
|
|
|
|
public string last_name = null;
|
|
|
|
public string email = null;
|
|
|
|
}
|
|
|
|
|
|
|
|
private static string GetUid(OAuth20Token token)
|
|
|
|
{
|
|
|
|
if (string.IsNullOrEmpty(token.OriginJson)) return null;
|
|
|
|
var parser = JObject.Parse(token.OriginJson);
|
|
|
|
|
|
|
|
return
|
2019-08-15 13:28:29 +00:00
|
|
|
parser?.Value<string>("x_mailru_vid");
|
2019-06-06 13:34:46 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|