feat(account): add external login binding

Author: colinin

aspnet-core/modules/account/LINGYUN.Abp.Account.Application.Contracts/LINGYUN/Abp/Account/Dto/ExternalLoginInfoDto.cs

@@ -0,0 +1,7 @@
+namespace LINGYUN.Abp.Account;
+public class ExternalLoginInfoDto
+{
+    public string Name { get; set; }
+
+    public string DisplayName { get; set; }
+}

aspnet-core/modules/account/LINGYUN.Abp.Account.Application.Contracts/LINGYUN/Abp/Account/Dto/ExternalLoginResultDto.cs

@@ -0,0 +1,8 @@
+using System.Collections.Generic;
+
+namespace LINGYUN.Abp.Account;
+public class ExternalLoginResultDto
+{
+    public List<UserLoginInfoDto> UserLogins { get; set; } = new List<UserLoginInfoDto>();
+    public List<ExternalLoginInfoDto> ExternalLogins { get; set; } = new List<ExternalLoginInfoDto>();
+}

aspnet-core/modules/account/LINGYUN.Abp.Account.Application.Contracts/LINGYUN/Abp/Account/Dto/RemoveExternalLoginInput.cs

@@ -0,0 +1,11 @@
+using System.ComponentModel.DataAnnotations;
+
+namespace LINGYUN.Abp.Account;
+public class RemoveExternalLoginInput
+{
+    [Required]
+    public string LoginProvider { get; set; }
+
+    [Required]
+    public string ProviderKey { get; set; }
+}

aspnet-core/modules/account/LINGYUN.Abp.Account.Application.Contracts/LINGYUN/Abp/Account/Dto/UserLoginInfoDto.cs

@@ -0,0 +1,7 @@
+namespace LINGYUN.Abp.Account;
+public class UserLoginInfoDto
+{
+    public string LoginProvider { get; set; }
+    public string ProviderKey { get; set; }
+    public string ProviderDisplayName { get; set; }
+}

aspnet-core/modules/account/LINGYUN.Abp.Account.WeChat.Work/LINGYUN.Abp.Account.WeChat.Work.csproj

@@ -0,0 +1,25 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+	<Import Project="..\..\..\..\configureawait.props" />
+	<Import Project="..\..\..\..\common.props" />
+
+	<PropertyGroup>
+		<TargetFramework>net9.0</TargetFramework>
+		<AssemblyName>LINGYUN.Abp.Account.WeChat.Work</AssemblyName>
+		<PackageId>LINGYUN.Abp.Account.WeChat.Work</PackageId>
+		<GenerateAssemblyConfigurationAttribute>false</GenerateAssemblyConfigurationAttribute>
+		<GenerateAssemblyCompanyAttribute>false</GenerateAssemblyCompanyAttribute>
+		<GenerateAssemblyProductAttribute>false</GenerateAssemblyProductAttribute>
+		<RootNamespace />
+	</PropertyGroup>
+
+	<ItemGroup>
+		<PackageReference Include="Volo.Abp.AspNetCore.Mvc" />
+	</ItemGroup>
+
+	<ItemGroup>
+		<ProjectReference Include="..\..\..\framework\wechat\LINGYUN.Abp.WeChat.Work\LINGYUN.Abp.WeChat.Work.csproj" />
+		<ProjectReference Include="..\..\identity\LINGYUN.Abp.Identity.Domain\LINGYUN.Abp.Identity.Domain.csproj" />
+	</ItemGroup>
+
+</Project>

aspnet-core/modules/account/LINGYUN.Abp.Account.WeChat.Work/LINGYUN/Abp/Account/WeChat/Work/AbpAccountWeChatWorkModule.cs

@@ -0,0 +1,27 @@
+using LINGYUN.Abp.WeChat.Work;
+using LINGYUN.Abp.WeChat.Work.Localization;
+using Microsoft.Extensions.DependencyInjection;
+using Volo.Abp.AspNetCore.Mvc;
+using Volo.Abp.AspNetCore.Mvc.Localization;
+using Volo.Abp.Modularity;
+
+namespace LINGYUN.Abp.Account.WeChat.Work;
+
+[DependsOn(
+    typeof(AbpWeChatWorkModule),
+    typeof(AbpAspNetCoreMvcModule))]
+public class AbpAccountWeChatWorkModule : AbpModule
+{
+    public override void PreConfigureServices(ServiceConfigurationContext context)
+    {
+        PreConfigure<AbpMvcDataAnnotationsLocalizationOptions>(options =>
+        {
+            options.AddAssemblyResource(typeof(WeChatWorkResource), typeof(AbpAccountWeChatWorkModule).Assembly);
+        });
+
+        PreConfigure<IMvcBuilder>(mvcBuilder =>
+        {
+            mvcBuilder.AddApplicationPartIfNotExists(typeof(AbpAccountWeChatWorkModule).Assembly);
+        });
+    }
+}

aspnet-core/modules/account/LINGYUN.Abp.Account.WeChat.Work/LINGYUN/Abp/Account/WeChat/Work/Controllers/WeChatWorkAccountController.cs

@@ -0,0 +1,23 @@
+using Microsoft.AspNetCore.Authorization;
+using System.Threading.Tasks;
+using Volo.Abp.AspNetCore.Mvc;
+using Volo.Abp.Identity;
+using Volo.Abp.Users;
+
+namespace LINGYUN.Abp.Account.WeChat.Work.Controllers;
+
+[Authorize]
+public class WeChatWorkAccountController : AbpControllerBase
+{
+    private readonly IdentityUserManager identityUserManager;
+    /// <summary>
+    /// 绑定用户
+    /// </summary>
+    /// <param name="code"></param>
+    /// <returns></returns>
+    public async virtual Task BindAsync(string code)
+    {
+        var user = await identityUserManager.GetByIdAsync(CurrentUser.GetId());
+
+    }
+}

aspnet-core/modules/account/LINGYUN.Abp.Account.Web/AbpAccountAuthenticationTypes.cs

@@ -3,4 +3,5 @@
 public static class AbpAccountAuthenticationTypes
 {
     public const string ShouldChangePassword = "Abp.Account.ShouldChangePassword";
+    public const string ConfirmUserScheme = "Abp.Account.ConfirmUser";
 }

aspnet-core/modules/account/LINGYUN.Abp.Account.Web/Areas/Account/Controllers/AccountController.cs

@@ -0,0 +1,111 @@
+using LINGYUN.Abp.Account.Web.ExternalProviders;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.WebUtilities;
+using Microsoft.Extensions.Logging;
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Security.Claims;
+using System.Threading.Tasks;
+using Volo.Abp;
+using Volo.Abp.Account;
+using Volo.Abp.Account.Localization;
+using Volo.Abp.AspNetCore.Mvc;
+using Volo.Abp.Identity;
+using Volo.Abp.Identity.AspNetCore;
+using Volo.Abp.Users;
+
+namespace LINGYUN.Abp.Account.Web.Areas.Account.Controllers;
+
+[Controller]
+[Area(AccountRemoteServiceConsts.ModuleName)]
+[Route($"api/{AccountRemoteServiceConsts.ModuleName}")]
+[RemoteService(Name = AccountRemoteServiceConsts.RemoteServiceName)]
+public class AccountController : AbpController
+{
+    protected AbpSignInManager SignInManager => LazyServiceProvider.LazyGetRequiredService<AbpSignInManager>();
+    protected IdentityUserManager UserManager => LazyServiceProvider.LazyGetRequiredService<IdentityUserManager>();
+    protected IExternalProviderService ExternalProviderService => LazyServiceProvider.LazyGetRequiredService<IExternalProviderService>();
+
+    public AccountController()
+    {
+        LocalizationResource = typeof(AccountResource);
+    }
+
+    [HttpGet]
+    [Authorize]
+    [Route("external-logins")]
+    public async virtual Task<ExternalLoginResultDto> GetExternalLoginsAsync()
+    {
+        var currentUser = await UserManager.GetByIdAsync(CurrentUser.GetId());
+        var userLogins = await UserManager.GetLoginsAsync(currentUser);
+        var externalProviders = await ExternalProviderService.GetAllAsync();
+
+        return new ExternalLoginResultDto
+        {
+            UserLogins = userLogins.Select(x => new UserLoginInfoDto
+            {
+                ProviderDisplayName = x.ProviderDisplayName,
+                ProviderKey = x.ProviderKey,
+                LoginProvider = x.LoginProvider,
+            }).ToList(),
+            ExternalLogins = externalProviders.Select(x =>
+            {
+                return new ExternalLoginInfoDto
+                {
+                    Name = x.Name,
+                    DisplayName = x.DisplayName,
+                };
+            }).ToList(),
+        };
+    }
+
+    [HttpDelete]
+    [Authorize]
+    [Route("external-logins/remove")]
+    public async virtual Task RemoveExternalLoginAsync(RemoveExternalLoginInput input)
+    {
+        var currentUser = await UserManager.GetByIdAsync(CurrentUser.GetId());
+        var identityResult = await UserManager.RemoveLoginAsync(
+            currentUser,
+            input.LoginProvider,
+            input.ProviderKey);
+
+        if (!identityResult.Succeeded)
+        {
+            throw new UserFriendlyException("Operation failed: " + identityResult.Errors.Select(e => $"[{e.Code}] {e.Description}").JoinAsString(", "));
+        }
+        // 解绑的是当前身份认证方案则退出登录
+        var amr = CurrentUser.FindClaimValue(ClaimTypes.AuthenticationMethod);
+        if (!amr.IsNullOrWhiteSpace() && string.Equals(amr, input.LoginProvider, StringComparison.InvariantCultureIgnoreCase))
+        {
+            await SignInManager.SignOutAsync();
+        }
+    }
+
+    [HttpGet]
+    [Authorize]
+    [Route("external-logins/bind")]
+    public virtual async Task<IActionResult> ExternalLoginBindAsync(string provider, string returnUrl)
+    {
+        if (string.IsNullOrWhiteSpace(provider) || string.IsNullOrWhiteSpace(returnUrl))
+        {
+            Logger.LogWarning("The parameter is incorrect");
+            return Redirect(QueryHelpers.AddQueryString(returnUrl, new Dictionary<string, string>()
+            {
+                ["error"] = "The parameter is incorrect"
+            }));
+        }
+
+        var tenantId = CurrentTenant.Id;
+        var userId = CurrentUser.GetId();
+
+        var redirectUrl = Url.Page("/Account/ExternalLoginBind", pageHandler: "BindCallback", values: new { returnUrl, userId, tenantId });
+
+        var properties = SignInManager.ConfigureExternalAuthenticationProperties(provider, redirectUrl, userId.ToString());
+        properties.Items["scheme"] = provider;
+
+        return await Task.FromResult(Challenge(properties, provider));
+    }
+}

aspnet-core/modules/account/LINGYUN.Abp.Account.Web/Pages/Account/ExternalLoginBind.cshtml

@@ -0,0 +1,4 @@
+@page
+@model LINGYUN.Abp.Account.Web.Pages.Account.ExternalLoginBindModel
+@{
+}