2026-01-05 10:30:04 -03:00
|
|
|
using Microsoft.AspNetCore.Authorization;
|
2025-12-17 13:08:21 -03:00
|
|
|
using Microsoft.AspNetCore.Mvc;
|
|
|
|
|
using SIGCM.Application.DTOs;
|
|
|
|
|
using SIGCM.Application.Interfaces;
|
|
|
|
|
|
|
|
|
|
namespace SIGCM.API.Controllers;
|
|
|
|
|
|
|
|
|
|
[ApiController]
|
|
|
|
|
[Route("api/[controller]")]
|
|
|
|
|
public class AuthController : ControllerBase
|
|
|
|
|
{
|
|
|
|
|
private readonly IAuthService _authService;
|
|
|
|
|
|
|
|
|
|
public AuthController(IAuthService authService)
|
|
|
|
|
{
|
|
|
|
|
_authService = authService;
|
|
|
|
|
}
|
|
|
|
|
|
2026-01-05 10:30:04 -03:00
|
|
|
// Inicio de sesión tradicional
|
2025-12-17 13:08:21 -03:00
|
|
|
[HttpPost("login")]
|
|
|
|
|
public async Task<IActionResult> Login(LoginDto dto)
|
|
|
|
|
{
|
2026-01-05 10:30:04 -03:00
|
|
|
var result = await _authService.LoginAsync(dto.Username, dto.Password);
|
|
|
|
|
if (!result.Success) return Unauthorized(new { message = result.ErrorMessage });
|
|
|
|
|
return Ok(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Registro de nuevos usuarios
|
|
|
|
|
[HttpPost("register")]
|
|
|
|
|
public async Task<IActionResult> Register(RegisterDto dto)
|
|
|
|
|
{
|
|
|
|
|
var result = await _authService.RegisterAsync(dto.Username, dto.Email, dto.Password);
|
|
|
|
|
if (!result.Success) return BadRequest(new { message = result.ErrorMessage });
|
|
|
|
|
return Ok(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Inicio de sesión con Google
|
|
|
|
|
[HttpPost("google-login")]
|
|
|
|
|
public async Task<IActionResult> GoogleLogin([FromBody] string idToken)
|
|
|
|
|
{
|
|
|
|
|
var result = await _authService.GoogleLoginAsync(idToken);
|
|
|
|
|
if (!result.Success) return Unauthorized(new { message = result.ErrorMessage });
|
|
|
|
|
return Ok(result);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Flujo MFA: Obtener secreto (QR)
|
|
|
|
|
[Authorize]
|
|
|
|
|
[HttpGet("mfa/setup")]
|
|
|
|
|
public async Task<IActionResult> SetupMfa()
|
|
|
|
|
{
|
|
|
|
|
var userId = int.Parse(User.FindFirst("Id")?.Value!);
|
|
|
|
|
var secret = await _authService.GenerateMfaSecretAsync(userId);
|
|
|
|
|
return Ok(new { secret, qrCodeUri = $"otpauth://totp/SIGCM:{User.Identity?.Name}?secret={secret}&issuer=SIGCM" });
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Flujo MFA: Verificar y activar
|
|
|
|
|
[Authorize]
|
|
|
|
|
[HttpPost("mfa/verify")]
|
|
|
|
|
public async Task<IActionResult> VerifyMfa([FromBody] string code)
|
|
|
|
|
{
|
|
|
|
|
var userId = int.Parse(User.FindFirst("Id")?.Value!);
|
|
|
|
|
var valid = await _authService.VerifyMfaCodeAsync(userId, code);
|
|
|
|
|
if (!valid) return BadRequest(new { message = "Código inválido" });
|
2025-12-17 13:08:21 -03:00
|
|
|
|
2026-01-05 10:30:04 -03:00
|
|
|
await _authService.EnableMfaAsync(userId, true);
|
|
|
|
|
return Ok(new { success = true });
|
2025-12-17 13:08:21 -03:00
|
|
|
}
|
|
|
|
|
}
|
2026-01-05 10:30:04 -03:00
|
|
|
|
|
|
|
|
public class RegisterDto
|
|
|
|
|
{
|
|
|
|
|
public string Username { get; set; } = "";
|
|
|
|
|
public string Email { get; set; } = "";
|
|
|
|
|
public string Password { get; set; } = "";
|
|
|
|
|
}
|
