triggermeelmo/Watcher
1
0
Fork 0
Code Issues 11 Pull Requests Actions 1 Packages Projects 3 Releases Wiki Activity

Added Authentication with user-auth and apikey-auth
All checks were successful
Gitea CI/CD / dotnet-build-and-test (push) Successful in 10m5s
Details
Gitea CI/CD / Set Tag Name (push) Successful in 5s
Details
Gitea CI/CD / docker-build-and-push (push) Successful in 11m28s
Details
Gitea CI/CD / Create Tag (push) Successful in 5s
Details

Browse Source
This commit is contained in:
Daniel Habenicht
2026-01-09 10:18:06 +01:00
parent 05e5a209da
commit d8b164e3eb
25 changed files with 1809 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

58
watcher-monitoring/Attributes/ApiKeyAuthAttribute.cs Normal file
View File

@@ -0,0 +1,58 @@
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Mvc.Filters;
using Microsoft.EntityFrameworkCore;
using watcher_monitoring.Data;
namespace watcher_monitoring.Attributes;
[AttributeUsage(AttributeTargets.Class | AttributeTargets.Method)]
public class ApiKeyAuthAttribute : Attribute, IAsyncActionFilter
{
private const string ApiKeyHeaderName = "X-API-Key";
public async Task OnActionExecutionAsync(ActionExecutingContext context, ActionExecutionDelegate next)
{
if (!context.HttpContext.Request.Headers.TryGetValue(ApiKeyHeaderName, out var extractedApiKey))
{
context.Result = new UnauthorizedObjectResult(new { error = "API-Key fehlt im Header" });
return;
}
var apiKeyString = extractedApiKey.ToString();
var dbContext = context.HttpContext.RequestServices.GetRequiredService<WatcherDbContext>();
var logger = context.HttpContext.RequestServices.GetRequiredService<ILogger<ApiKeyAuthAttribute>>();
var apiKey = await dbContext.ApiKeys
.FirstOrDefaultAsync(k => k.Key == apiKeyString);
if (apiKey == null)
{
logger.LogWarning("Ungültiger API-Key verwendet: {ApiKey}", apiKeyString);
context.Result = new UnauthorizedObjectResult(new { error = "Ungültiger API-Key" });
return;
}
if (!apiKey.IsActive)
{
logger.LogWarning("Inaktiver API-Key verwendet: {Name}", apiKey.Name);
context.Result = new UnauthorizedObjectResult(new { error = "API-Key ist deaktiviert" });
return;
}
if (apiKey.IsExpired)
{
logger.LogWarning("Abgelaufener API-Key verwendet: {Name}", apiKey.Name);
context.Result = new UnauthorizedObjectResult(new { error = "API-Key ist abgelaufen" });
return;
}
// Letzten Verwendungszeitpunkt aktualisieren
apiKey.LastUsedAt = DateTime.UtcNow;
await dbContext.SaveChangesAsync();
logger.LogInformation("API-Zugriff mit Key: {Name}", apiKey.Name);
await next();
}
}