using Blazored.LocalStorage; using FrontOffice.BFF.User.Protobuf.Protos.User; using FrontOffice.BFF.User.Protobuf.Validator; using FrontOffice.Main.Utilities; using Grpc.Core; using Microsoft.AspNetCore.Components; using Microsoft.AspNetCore.WebUtilities; using MudBlazor; namespace FrontOffice.Main.Pages.Auth; public partial class Verify : IDisposable { private const int DefaultResendCooldown = 120; public const int MaxVerificationAttempts = 5; private const string OtpPurpose = "Login"; private const string PhoneStorageKey = "auth:phone-number"; private const string RedirectStorageKey = "auth:redirect"; private const string TokenStorageKey = "auth:token"; private VerifyOtpTokenRequestValidator _requestValidator = new(); private VerifyOtpTokenRequest _request = new(); private MudForm? _form; private bool _isBusy; private string? _phoneNumber; private string? _redirect; private string? _errorMessage; private string? _infoMessage; private Timer? _resendTimer; private int _resendRemaining; private int _attemptsLeft = MaxVerificationAttempts; private CancellationTokenSource? _operationCts; [Inject] private ILocalStorageService LocalStorage { get; set; } = default!; [Inject] private UserContract.UserContractClient UserClient { get; set; } = default!; private bool IsVerificationLocked => _attemptsLeft <= 0; protected override async Task OnInitializedAsync() { _request.Purpose = OtpPurpose; var uri = Navigation.ToAbsoluteUri(Navigation.Uri); var query = QueryHelpers.ParseQuery(uri.Query); if (query.TryGetValue("redirect", out var redirectValues)) { _redirect = redirectValues.LastOrDefault(); } if (query.TryGetValue("phone", out var phoneValues)) { _phoneNumber = phoneValues.LastOrDefault(); } if (string.IsNullOrWhiteSpace(_phoneNumber)) { _phoneNumber = await LocalStorage.GetItemAsync(PhoneStorageKey); } if (string.IsNullOrWhiteSpace(_phoneNumber)) { await ResetAuthenticationAsync(); Navigation.NavigateTo(RouteConstants.Auth.Phone, forceLoad: true); return; } await LocalStorage.SetItemAsync(PhoneStorageKey, _phoneNumber); if (string.IsNullOrWhiteSpace(_redirect)) { var storedRedirect = await LocalStorage.GetItemAsync(RedirectStorageKey); if (!string.IsNullOrWhiteSpace(storedRedirect)) { _redirect = storedRedirect; } } StartResendCountdown(); } private async Task VerifyOtpAsync() { _errorMessage = null; _infoMessage = null; if (_form is null) return; await _form.Validate(); if (!_form.IsValid) return; if (IsVerificationLocked) { _errorMessage = "تعداد تلاش‌های مجاز به پایان رسیده است. لطفاً رمز جدید دریافت کنید."; return; } if (string.IsNullOrWhiteSpace(_phoneNumber)) { await ResetAuthenticationAsync(); Navigation.NavigateTo(RouteConstants.Auth.Phone, forceLoad: true); return; } _isBusy = true; var cancellationToken = PrepareOperationToken(); try { _request.Mobile = _phoneNumber; var validationResult = _requestValidator.Validate(_request); if (!validationResult.IsValid) { _errorMessage = string.Join(" ", validationResult.Errors.Select(e => e.ErrorMessage).Distinct()); return; } var metadata = await BuildAuthMetadataAsync(); VerifyOtpTokenResponse response; if (metadata is not null) { response = await UserClient.VerifyOtpTokenAsync(_request, metadata, cancellationToken: cancellationToken); } else { response = await UserClient.VerifyOtpTokenAsync(_request, cancellationToken: cancellationToken); } if (response is null) { _errorMessage = "تأیید رمز پویا انجام نشد. لطفاً دوباره تلاش کنید."; return; } if (response.Success) { if (!string.IsNullOrWhiteSpace(response.Token)) { await LocalStorage.SetItemAsync(TokenStorageKey, response.Token); } else { await LocalStorage.RemoveItemAsync(TokenStorageKey); } await LocalStorage.RemoveItemAsync(PhoneStorageKey); await LocalStorage.RemoveItemAsync(RedirectStorageKey); _attemptsLeft = MaxVerificationAttempts; _request.Code = string.Empty; var target = !string.IsNullOrWhiteSpace(_redirect) ? _redirect : RouteConstants.Main.MainPage; if (!string.IsNullOrWhiteSpace(target)) { Navigation.NavigateTo(target, forceLoad: true); } return; } RegisterFailedAttempt(string.IsNullOrWhiteSpace(response.Message) ? "کد نادرست است." : response.Message); } catch (RpcException rpcEx) { await HandleVerificationFailureAsync(rpcEx); } catch (OperationCanceledException) { } catch (Exception ex) { _errorMessage = ex.Message; } finally { _isBusy = false; ClearOperationToken(); await InvokeAsync(StateHasChanged); } } private async Task HandleVerificationFailureAsync(RpcException rpcEx) { switch (rpcEx.Status.StatusCode) { case StatusCode.PermissionDenied: case StatusCode.InvalidArgument: RegisterFailedAttempt(!string.IsNullOrWhiteSpace(rpcEx.Status.Detail) ? rpcEx.Status.Detail : "کد نادرست است."); break; case StatusCode.Unauthenticated: await ResetAuthenticationAsync(); _errorMessage = "نشست کاربری منقضی شده است. لطفاً دوباره وارد شوید."; Navigation.NavigateTo(RouteConstants.Auth.Phone, forceLoad: true); break; case StatusCode.DeadlineExceeded: case StatusCode.NotFound: _errorMessage = "کد منقضی شده است. لطفاً رمز جدید دریافت کنید."; break; default: _errorMessage = !string.IsNullOrWhiteSpace(rpcEx.Status.Detail) ? rpcEx.Status.Detail : "تأیید رمز پویا انجام نشد. لطفاً دوباره تلاش کنید."; break; } } private void RegisterFailedAttempt(string baseMessage) { _attemptsLeft = Math.Max(0, _attemptsLeft - 1); if (_attemptsLeft > 0) { _errorMessage = $"{baseMessage} {_attemptsLeft} تلاش باقی مانده است."; } else { _errorMessage = $"{baseMessage} تلاش‌های مجاز شما به پایان رسیده است. لطفاً رمز جدید دریافت کنید."; } } private async Task ResendOtpAsync() { if (_resendRemaining > 0 || _isBusy || string.IsNullOrWhiteSpace(_phoneNumber)) { return; } _errorMessage = null; _infoMessage = null; _isBusy = true; var cancellationToken = PrepareOperationToken(); try { var request = new CreateNewOtpTokenRequest { Mobile = _phoneNumber, Purpose = OtpPurpose }; var metadata = await BuildAuthMetadataAsync(); CreateNewOtpTokenResponse response; if (metadata is not null) { response = await UserClient.CreateNewOtpTokenAsync(request, metadata, cancellationToken: cancellationToken); } else { response = await UserClient.CreateNewOtpTokenAsync(request, cancellationToken: cancellationToken); } if (response?.Success != true) { _errorMessage = string.IsNullOrWhiteSpace(response?.Message) ? "ارسال مجدد رمز پویا با خطا مواجه شد." : response!.Message; return; } _infoMessage = string.IsNullOrWhiteSpace(response.Message) ? "کد جدید ارسال شد." : response.Message; _attemptsLeft = MaxVerificationAttempts; _request.Code = string.Empty; StartResendCountdown(); } catch (RpcException rpcEx) { await HandleResendFailureAsync(rpcEx); } catch (OperationCanceledException) { } catch (Exception ex) { _errorMessage = ex.Message; } finally { _isBusy = false; ClearOperationToken(); await InvokeAsync(StateHasChanged); } } private async Task HandleResendFailureAsync(RpcException rpcEx) { switch (rpcEx.Status.StatusCode) { case StatusCode.Unauthenticated: await ResetAuthenticationAsync(); _errorMessage = "نشست کاربری منقضی شده است. لطفاً دوباره وارد شوید."; Navigation.NavigateTo(RouteConstants.Auth.Phone, forceLoad: true); break; default: _errorMessage = !string.IsNullOrWhiteSpace(rpcEx.Status.Detail) ? rpcEx.Status.Detail : "ارسال مجدد رمز پویا با خطا مواجه شد."; break; } } private async Task ChangePhoneAsync() { await LocalStorage.RemoveItemAsync(PhoneStorageKey); NavigateBackToPhone(); } private void NavigateBackToPhone() { var target = RouteConstants.Auth.Phone; if (!string.IsNullOrWhiteSpace(_redirect)) { target += "?redirect=" + Uri.EscapeDataString(_redirect); } Navigation.NavigateTo(target, forceLoad: false); } private void StartResendCountdown(int seconds = DefaultResendCooldown) { _resendRemaining = seconds; _resendTimer?.Dispose(); _resendTimer = new Timer(_ => { var remaining = Interlocked.Add(ref _resendRemaining, -1); if (remaining <= 0) { Interlocked.Exchange(ref _resendRemaining, 0); _resendTimer?.Dispose(); _resendTimer = null; } _ = InvokeAsync(StateHasChanged); }, null, 1000, 1000); } private async Task BuildAuthMetadataAsync() { var token = await LocalStorage.GetItemAsync(TokenStorageKey); if (string.IsNullOrWhiteSpace(token)) { return null; } return new Metadata { { "Authorization", $"Bearer {token}" } }; } private async Task ResetAuthenticationAsync() { await LocalStorage.RemoveItemAsync(TokenStorageKey); await LocalStorage.RemoveItemAsync(PhoneStorageKey); await LocalStorage.RemoveItemAsync(RedirectStorageKey); } private CancellationToken PrepareOperationToken() { _operationCts?.Cancel(); _operationCts?.Dispose(); _operationCts = new CancellationTokenSource(); return _operationCts.Token; } private void ClearOperationToken() { _operationCts?.Dispose(); _operationCts = null; } public void Dispose() { _operationCts?.Cancel(); _operationCts?.Dispose(); _operationCts = null; _resendTimer?.Dispose(); _resendTimer = null; } }