tidied up internal comments

gitberry · gitberry · commit 0644e1d16f67 · 2024-01-15T12:51:50.000-06:00
diff --git a/WebApp/Classes/FunnySongz.cs b/WebApp/Classes/FunnySongz.cs
@@ -23,45 +23,44 @@ public static  FunnySong[] GenerateFunnySongsFromJSON(string givenJson)
             foreach (var nn in result)
             {
                 nn.RndVal = xRnd.Next(result.Count);
-                //nn.ImportedOn = $"{DateTime.Now}-{xRnd.Next(result.Count)}"; //.ToString();                
                 nn.ImportedOn = $"{DateTime.Now}-{nn.RndVal}"; 
             }
             return result.ToArray();
         }
 
         public static FunnySong[] GetFunnySongByID(int givenID)
         {
-            var kludge = new List<FunnySong>();
+            var kludge = new List<FunnySong>(); // super kludgy to return an array instead of an object - wouldn't ACTUALLY do it that way in a serious app...
             var result = GenerateFunnySongsFromJSON(FunnySongsSON).FirstOrDefault(f => f.Id == givenID);
             kludge.Add(result);
-            return kludge.ToArray(); // result;
+            return kludge.ToArray(); 
         }
     }
 
     public class FunnySong
     {
-        public int Id { get; set; } //1
-        public string Title { get; set; } //Ave maria
-        public string SubTitle { get; set; } //
-        public string Composer { get; set; } //Bach
-        public string ComposerPickerID { get; set; } //
-        public string Lyricist { get; set; } //liturgy
-        public string Arranger { get; set; } //
-        public string Publisher { get; set; } //
-        public string CopyrightNumber { get; set; } //
+        public int    Id                     { get; set; } //1
+        public string Title                  { get; set; } //Ave maria
+        public string SubTitle               { get; set; } //
+        public string Composer               { get; set; } //Bach
+        public string ComposerPickerID       { get; set; } //
+        public string Lyricist               { get; set; } //liturgy
+        public string Arranger               { get; set; } //
+        public string Publisher              { get; set; } //
+        public string CopyrightNumber        { get; set; } //
         public string UserPermissionIfNotFGS { get; set; } //none
-        public string PricePerCopy { get; set; } //3.14
-        public string PricePerCopyAsOf { get; set; } //2012-04-23T182543.511Z
-        public string Style { get; set; } //Gothic
-        public string Instrumentation { get; set; } //Organ
-        public string Level { get; set; } //Advanced
-        public string ModifiedBy { get; set; } //Arthur Dent
-        public string ModifiedByUserId { get; set; } //314
-        public string ModifiedOn { get; set; } //2012-04-22T062501.511Z
-        public string CreatedBy { get; set; } //Slarty Bartfast
-        public string CreatedById { get; set; } //42
-        public string CreatedOn { get; set; } //2012-04-23T132302.513Z                        
-        public string ImportedOn { get; set; }
-        public int RndVal { get; set; }
+        public string PricePerCopy           { get; set; } //3.14
+        public string PricePerCopyAsOf       { get; set; } //2012-04-23T182543.511Z
+        public string Style                  { get; set; } //Gothic
+        public string Instrumentation        { get; set; } //Organ
+        public string Level                  { get; set; } //Advanced
+        public string ModifiedBy             { get; set; } //Arthur Dent
+        public string ModifiedByUserId       { get; set; } //314
+        public string ModifiedOn             { get; set; } //2012-04-22T062501.511Z
+        public string CreatedBy              { get; set; } //Slarty Bartfast
+        public string CreatedById            { get; set; } //42
+        public string CreatedOn              { get; set; } //2012-04-23T132302.513Z                        
+        public string ImportedOn             { get; set; }
+        public int    RndVal                 { get; set; }
     }
 }
diff --git a/WebApp/Classes/JWT.cs b/WebApp/Classes/JWT.cs
@@ -37,30 +37,6 @@ DateTime givenTokenExpires
                         , givenClientSite
                         , givenTokenClaimName
                         , givenTokenExpires);
-
-                    //var thisSecurityKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(givenAPISecret));
-                    //var thisCredentials = new SigningCredentials(thisSecurityKey, SecurityAlgorithms.HmacSha256);
-                    ////var issuer = AppConfig.Setting.JWTapiSite;
-                    ////var audience = AppConfig.Setting.JWTclientSite;
-                    ////DateTime givenTokenExpires = DateTime.UtcNow.AddMinutes(AppConfig.Setting.JWTMinutesToLive);
-
-                    ////Create a List of Claims, Keep claims name short    
-                    //var permClaims = new List<Claim>();
-                    ////chr observation: I'm presuming that a GUID adds a bunch of randomness to the token - thus the signature won't betray the validating secret...
-                    //permClaims.Add(new Claim(JwtRegisteredClaimNames.Jti, Guid.NewGuid().ToString())); 
-                    //permClaims.Add(new Claim("valid", "1"));
-                    ////permClaims.Add(new Claim("userid", "1")); // redacted to keep api minimal
-                    //permClaims.Add(new Claim("name", givenUserID)); // our link to a user table somewhere
-
-                    ////Create Security Token object by giving required parameters    
-                    //var token = new JwtSecurityToken(
-                    //                givenIssuerSite,
-                    //                givenClientSite,
-                    //                permClaims,
-                    //                expires: givenTokenExpires,
-                    //                signingCredentials: thisCredentials);
-                    //var jwt_token = new JwtSecurityTokenHandler().WriteToken(token);
-                    //return new { data = jwt_token };
                 }
             }
             return null;
@@ -76,9 +52,6 @@ DateTime givenTokenExpires
         {
             var thisSecurityKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(givenAPISecret));
             var thisCredentials = new SigningCredentials(thisSecurityKey, SecurityAlgorithms.HmacSha256);
-            //var issuer = AppConfig.Setting.JWTapiSite;
-            //var audience = AppConfig.Setting.JWTclientSite;
-            //DateTime givenTokenExpires = DateTime.UtcNow.AddMinutes(AppConfig.Setting.JWTMinutesToLive);
 
             //Create a List of Claims, Keep claims name short    
             var permClaims = new List<Claim>();
@@ -97,29 +70,8 @@ DateTime givenTokenExpires
                             signingCredentials: thisCredentials);
             var jwt_token = new JwtSecurityTokenHandler().WriteToken(token);
             return new { data = jwt_token };
-
-            //var securityKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(givenSecret));
-            //var credentials = new SigningCredentials(securityKey, SecurityAlgorithms.HmacSha256);
-
-            ////Create a List of Claims, Keep claims name short - minimalistic    
-            //var permClaims = new List<Claim>();
-            //permClaims.Add(new Claim(JwtRegisteredClaimNames.Jti, Guid.NewGuid().ToString()));
-            //permClaims.Add(new Claim("valid", "1"));
-            //permClaims.Add(new Claim("name", givenTokenClaimName)); // the key to the user db - unique
-
-            ////Create Security Token object by giving required parameters    
-            //var token = new JwtSecurityToken(givenIssuerSite, 
-            //                givenClientSite,  
-            //                permClaims,
-            //                expires: tokenexpires, 
-            //                signingCredentials: credentials);
-            //var jwt_token = new JwtSecurityTokenHandler().WriteToken(token);
-            //return jwt_token; // new { data = jwt_token };
         }
-    //}
-    //public class JWTvalidator //: DelegatingHandler
-    //{
-
+    
         public static bool TryRetrieveToken(HttpRequestMessage givenRequest, out string token)
         {
             token = null;
@@ -133,7 +85,7 @@ public static bool TryRetrieveToken(HttpRequestMessage givenRequest, out string
             // next two lines are a kludge because the client is sending JSON instead of encoded string...
             var badhead = "{\"data\":\"";
             if (token.Substring(0,badhead.Length) == badhead ) { token = token.Substring(badhead.Length); token = token.Substring(0, token.Length - 2); }
-            return true; // I was here - going to test out my JSON - then move onto bigger issues in the Claims try/catch...
+            return true; 
         }
 
         public bool ValidateToken(HttpRequestMessage givenRequest, List<MockUzer> givenUsers, string givenSecret)
@@ -145,8 +97,6 @@ public bool ValidateToken(HttpRequestMessage givenRequest, List<MockUzer> givenU
                 true, 
                 true);
             return ValidateHeaderToken(givenRequest, givenUsers, theseParams);
-
-            //return false;
         }
 
         public bool ValidateHeaderToken(HttpRequestMessage givenRequest, List<MockUzer> givenUsers, TokenValidationParameters givenTokenValidationParameters) 
@@ -196,10 +146,10 @@ bool givenIssuerSigningKey
             var securityKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(givenSecret));
             TokenValidationParameters validationParameters = new TokenValidationParameters()
             {
-                ValidAudience = givenAudience, //"http://localhost:50191",
-                ValidIssuer = givenIssuer, //"http://localhost:50191",
-                ValidateLifetime = givenLifetime, // true,
-                ValidateIssuerSigningKey = givenIssuerSigningKey, // true,
+                ValidAudience = givenAudience, 
+                ValidIssuer = givenIssuer, 
+                ValidateLifetime = givenLifetime, 
+                ValidateIssuerSigningKey = givenIssuerSigningKey, 
                 LifetimeValidator = this.LifetimeValidator,
                 IssuerSigningKey = securityKey
             };
@@ -223,19 +173,20 @@ public bool LifetimeValidator(DateTime? notBefore, DateTime? expires, SecurityTo
             return false;
         }
 
-
         public static string HashPassword(string password, string salt)
         {
             using (SHA1Managed sha1 = new SHA1Managed())
             {
                 return Convert.ToBase64String(sha1.ComputeHash(Encoding.UTF8.GetBytes(salt + password)));
             }
         }
-        // cargo cult coding: https://stackoverflow.com/questions/31908529/randomnumbergenerator-proper-usage
+
+        // thanks for the reminder of how to use this: https://stackoverflow.com/questions/31908529/randomnumbergenerator-proper-usage
         public static string GenRandomSeed()
         {
             return Convert.ToBase64String(GenerateSaltNewInstance(42));
         }
+
         private static byte[] GenerateSaltNewInstance(int size)
         {
             using (var generator = RandomNumberGenerator.Create())
