Improved Device Context Properties

Author: mckaragoz

samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/Components/Dialogs/SessionDialog.razor

@@ -3,35 +3,40 @@
 @inject IUAuthClient UAuthClient
 @inject ISnackbar Snackbar
 @inject IDialogService DialogService
+@inject NavigationManager Nav
 
 <MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
     <TitleContent>
         <MudText>Identifier Management</MudText>
         <MudText Typo="Typo.subtitle2" Color="Color.Primary">User: @AuthState?.Identity?.DisplayName</MudText>
     </TitleContent>
     <DialogContent>
+        <MudStack Class="mud-width-full mb-4" Row="true">
+            <MudButton Variant="Variant.Filled" Color="Color.Primary" StartIcon="@Icons.Material.Filled.Logout" OnClick="LogoutAllAsync">Logout All Devices</MudButton>
+            <MudButton Variant="Variant.Filled" Color="Color.Primary" StartIcon="@Icons.Material.Filled.Logout" OnClick="LogoutAllExceptThisAsync">Logout Other Devices</MudButton>
+        </MudStack>
         <MudDataGrid @ref="@_grid" T="SessionChainSummaryDto" ServerData="LoadServerData" Hover="true" Bordered="true" Striped="true" Dense="true" Elevation="0"
                      EditMode="DataGridEditMode.Form" ReadOnly="false" Loading="@_loading">
             <ToolBarContent>
-                <MudStack Class="mud-width-full" Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center">
-                    <MudText>Identifiers</MudText>
-                    <MudSpacer />
-                    <MudIconButton Variant="Variant.Filled" Color="Color.Primary" Icon="@Icons.Material.Filled.Refresh" OnClick="ReloadAsync" />
-                </MudStack>
+                <MudText>Identifiers</MudText>
+                <MudSpacer />
+                <MudIconButton Variant="Variant.Filled" Color="Color.Primary" Icon="@Icons.Material.Filled.Refresh" OnClick="ReloadAsync" />
             </ToolBarContent>
             <Columns>
                 <PropertyColumn Property="x => x.ChainId" Title="Chain Id" Editable="false" />
                 <PropertyColumn Property="x => x.CreatedAt" Title="Created At" Editable="false" />
-                <PropertyColumn Property="x => x.DeviceName" Title="Device Name" Editable="false" />
                 <PropertyColumn Property="x => x.DeviceType" Title="Device Type" Editable="false" />
+                <PropertyColumn Property="x => x.OperatingSystem" Title="Operating System" Editable="false" />
+                <PropertyColumn Property="x => x.Platform" Title="Platform" Editable="false" />
+                <PropertyColumn Property="x => x.Browser" Title="Browser" Editable="false" />
                 <PropertyColumn Property="x => x.RotationCount" Title="Rotation Count" Editable="false" />
                 <PropertyColumn Property="x => x.IsRevoked" Title="Revoked" Editable="false" />
                 <PropertyColumn Property="x => x.IsCurrentDevice" Title="Current Device" Editable="false" />
                 <TemplateColumn Title="Actions" Editable="false">
                     <CellTemplate>
                         <MudStack Style="min-width: 120px" Row="true" Spacing="2" Wrap="Wrap.Wrap">
-                            <MudTooltip Text="Edit" Color="Color.Primary" Delay="300" ShowOnFocus="false">
-                                @* <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Edit" OnClick="@context.Actions.StartEditingItemAsync" /> *@
+                            <MudTooltip Text="Revoke Device" Color="Color.Primary" Delay="300" ShowOnFocus="false">
+                                <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Logout" OnClick="@(() => LogoutChainAsync(context.Item.ChainId))" />
                             </MudTooltip>
                         </MudStack>
                     </CellTemplate>
@@ -140,27 +145,47 @@
         }
     }
 
-    // private async Task<DataGridEditFormAction> CommittedItemChanges(SessionChainSummaryDto item)
-    // {
-    //     UpdateUserIdentifierRequest updateRequest = new()
-    //     {
-    //         Id = item.Id,
-    //         NewValue = item.Value
-    //     };
-    //     var result = await UAuthClient.Identifiers.UpdateSelfAsync(updateRequest);
-    //     if (result.IsSuccess)
-    //     {
-    //         Snackbar.Add("Identifier updated successfully", Severity.Success);
-    //     }
-    //     else
-    //     {
-    //         Snackbar.Add(result?.Problem?.Detail ?? result?.Problem?.Title ?? "Failed to update identifier", Severity.Error);
-    //     }
-
-    //     await ReloadAsync();
-    //     return DataGridEditFormAction.Close;
-    // }
+    private async Task LogoutAllAsync()
+    {
+        var result = await UAuthClient.Sessions.RevokeAllMyChainsAsync();
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Logged out of all devices", Severity.Success);
+            Nav.NavigateTo("/login");
+        }
+        else
+        {
+            Snackbar.Add(result?.Problem?.Detail ?? result?.Problem?.Title ?? "Failed to logout", Severity.Error);
+        }
+    }
 
+    private async Task LogoutAllExceptThisAsync()
+    {
+        var result = await UAuthClient.Sessions.RevokeMyOtherChainsAsync();
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Logged out of all other devices", Severity.Success);
+            await ReloadAsync();
+        }
+        else
+        {
+            Snackbar.Add(result?.Problem?.Detail ?? result?.Problem?.Title ?? "Failed to logout", Severity.Error);
+        }
+    }
+
+    private async Task LogoutChainAsync(SessionChainId chainId)
+    {
+        var result = await UAuthClient.Sessions.RevokeMyChainAsync(chainId);
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Logged out of device", Severity.Success);
+            await ReloadAsync();
+        }
+        else
+        {
+            Snackbar.Add(result?.Problem?.Detail ?? result?.Problem?.Title ?? "Failed to logout", Severity.Error);
+        }
+    }
 
     private void Submit() => MudDialog.Close(DialogResult.Ok(true));
 

samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/Components/Pages/Login.razor.cs

@@ -84,7 +84,7 @@ private async Task ProgrammaticLogin()
         {
             Identifier = "admin",
             Secret = "admin",
-            Device = DeviceContext.FromDeviceId(deviceId),
+            //Device = DeviceContext.Create(deviceId, null, null, null, null, null),
         };
         await UAuthClient.Flows.LoginAsync(request, "/home");
     }

samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/Program.cs

@@ -1,23 +1,24 @@
 using CodeBeam.UltimateAuth.Authorization.InMemory.Extensions;
 using CodeBeam.UltimateAuth.Authorization.Reference.Extensions;
+using CodeBeam.UltimateAuth.Client;
 using CodeBeam.UltimateAuth.Client.Extensions;
 using CodeBeam.UltimateAuth.Core.Domain;
 using CodeBeam.UltimateAuth.Core.Infrastructure;
 using CodeBeam.UltimateAuth.Credentials.InMemory.Extensions;
 using CodeBeam.UltimateAuth.Credentials.Reference;
 using CodeBeam.UltimateAuth.Sample.BlazorServer.Components;
+using CodeBeam.UltimateAuth.Sample.BlazorServer.Infrastructure;
 using CodeBeam.UltimateAuth.Security.Argon2;
 using CodeBeam.UltimateAuth.Server.Extensions;
 using CodeBeam.UltimateAuth.Sessions.InMemory;
 using CodeBeam.UltimateAuth.Tokens.InMemory;
+using CodeBeam.UltimateAuth.Users.Contracts;
 using CodeBeam.UltimateAuth.Users.InMemory.Extensions;
 using CodeBeam.UltimateAuth.Users.Reference.Extensions;
-using CodeBeam.UltimateAuth.Client;
+using Microsoft.AspNetCore.HttpOverrides;
 using MudBlazor.Services;
 using MudExtensions.Services;
 using Scalar.AspNetCore;
-using CodeBeam.UltimateAuth.Sample.BlazorServer.Infrastructure;
-using CodeBeam.UltimateAuth.Users.Contracts;
 
 var builder = WebApplication.CreateBuilder(args);
 
@@ -66,6 +67,13 @@
 
 builder.Services.AddScoped<DarkModeManager>();
 
+builder.Services.Configure<ForwardedHeadersOptions>(options =>
+{
+    options.ForwardedHeaders =
+        ForwardedHeaders.XForwardedFor |
+        ForwardedHeaders.XForwardedProto;
+});
+
 var app = builder.Build();
 
 if (!app.Environment.IsDevelopment())
@@ -83,6 +91,8 @@
     await seedRunner.RunAsync(null);
 }
 
+app.UseForwardedHeaders();
+
 app.UseHttpsRedirection();
 app.UseStaticFiles();
 

samples/blazor-standalone-wasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm/Pages/Home.razor.cs

@@ -41,12 +41,11 @@ private void OnDiagnosticsChanged()
 
         private async Task ProgrammaticLogin()
         {
-            var device = await DeviceIdProvider.GetOrCreateAsync();
+            var deviceId = await DeviceIdProvider.GetOrCreateAsync();
             var request = new LoginRequest
             {
                 Identifier = "admin",
                 Secret = "admin",
-                Device = DeviceContext.FromDeviceId(device),
             };
             await UAuthClient.Flows.LoginAsync(request);
         }

src/CodeBeam.UltimateAuth.Client/Services/ISessionClient.cs

@@ -6,9 +6,9 @@ namespace CodeBeam.UltimateAuth.Client.Services;
 public interface ISessionClient
 {
     Task<UAuthResult<PagedResult<SessionChainSummaryDto>>> GetMyChainsAsync(PageRequest? request = null);
-    Task<UAuthResult<SessionChainDetailDto>> GetMyChainAsync(SessionChainId chainId);
+    Task<UAuthResult<SessionChainDetailDto>> GetMyChainDetailAsync(SessionChainId chainId);
     Task<UAuthResult> RevokeMyChainAsync(SessionChainId chainId);
-    Task<UAuthResult> RevokeOtherChainsAsync();
+    Task<UAuthResult> RevokeMyOtherChainsAsync();
     Task<UAuthResult> RevokeAllMyChainsAsync();
 
 

src/CodeBeam.UltimateAuth.Client/Services/UAuthSessionClient.cs

@@ -28,7 +28,7 @@ public async Task<UAuthResult<PagedResult<SessionChainSummaryDto>>> GetMyChainsA
         return UAuthResultMapper.FromJson<PagedResult<SessionChainSummaryDto>>(raw);
     }
 
-    public async Task<UAuthResult<SessionChainDetailDto>> GetMyChainAsync(SessionChainId chainId)
+    public async Task<UAuthResult<SessionChainDetailDto>> GetMyChainDetailAsync(SessionChainId chainId)
     {
         var raw = await _request.SendFormAsync(Url($"/session/me/chains/{chainId}"));
         return UAuthResultMapper.FromJson<SessionChainDetailDto>(raw);
@@ -40,7 +40,7 @@ public async Task<UAuthResult> RevokeMyChainAsync(SessionChainId chainId)
         return UAuthResultMapper.From(raw);
     }
 
-    public async Task<UAuthResult> RevokeOtherChainsAsync()
+    public async Task<UAuthResult> RevokeMyOtherChainsAsync()
     {
         var raw = await _request.SendFormAsync(Url("/session/me/revoke-others"));
         return UAuthResultMapper.From(raw);

src/CodeBeam.UltimateAuth.Core/Abstractions/Stores/ISessionStore.cs

@@ -26,7 +26,8 @@ public interface ISessionStore
     Task RevokeRootCascadeAsync(UserKey userKey, DateTimeOffset at);
 
     Task<SessionChainId?> GetChainIdBySessionAsync(AuthSessionId sessionId);
-    Task<IReadOnlyList<UAuthSessionChain>> GetChainsByUserAsync(UserKey userKey);
+    Task<IReadOnlyList<UAuthSessionChain>> GetChainsByUserAsync(UserKey userKey, bool includeHistoricalRoots = false);
+    Task<IReadOnlyList<UAuthSessionChain>> GetChainsByRootAsync(SessionRootId rootId);
     Task<IReadOnlyList<UAuthSession>> GetSessionsByChainAsync(SessionChainId chainId);
     Task DeleteExpiredSessionsAsync(DateTimeOffset at);
 }

src/CodeBeam.UltimateAuth.Core/Contracts/Authority/DeviceInfo.cs

@@ -6,11 +6,11 @@ public sealed class DeviceInfo
 {
     public required DeviceId DeviceId { get; init; }
 
+    // TODO: Implement device type and device limits
     /// <summary>
-    /// High-level platform classification (web, mobile, desktop, iot).
-    /// Used for analytics and policy decisions.
+    /// Device type that can be used for device limits. Sends with header "X-Device-Type" or form field "device_type". Examples: "web", "mobile", "desktop", "tablet", "iot".
     /// </summary>
-    public string? Platform { get; init; }
+    public string? DeviceType { get; init; }
 
     /// <summary>
     /// Operating system information (e.g. iOS 17, Android 14, Windows 11).
@@ -22,6 +22,12 @@ public sealed class DeviceInfo
     /// </summary>
     public string? Browser { get; init; }
 
+    /// <summary>
+    /// High-level platform classification (web, mobile, desktop, iot).
+    /// Used for analytics and policy decisions.
+    /// </summary>
+    public string? Platform { get; init; }
+
     /// <summary>
     /// Raw user-agent string (optional).
     /// </summary>

src/CodeBeam.UltimateAuth.Core/Contracts/Login/LoginRequest.cs

@@ -9,7 +9,6 @@ public sealed record LoginRequest
     public string Identifier { get; init; } = default!;
     public string Secret { get; init; } = default!;
     public DateTimeOffset? At { get; init; }
-    public required DeviceContext Device { get; init; }
     public IReadOnlyDictionary<string, string>? Metadata { get; init; }
 
     /// <summary>

src/CodeBeam.UltimateAuth.Core/Contracts/Session/Dtos/SessionChainSummaryDto.cs

@@ -5,12 +5,16 @@ namespace CodeBeam.UltimateAuth.Core.Contracts;
 public sealed record SessionChainSummaryDto
 {
     public required SessionChainId ChainId { get; init; }
-    public string? DeviceName { get; init; }
     public string? DeviceType { get; init; }
+    public string? OperatingSystem { get; init; }
+    public string? Platform { get; init; }
+    public string? Browser { get; init; }
     public DateTimeOffset CreatedAt { get; init; }
     public DateTimeOffset? LastSeenAt { get; init; }
     public int RotationCount { get; init; }
+    public int TouchCount { get; init; }
     public bool IsRevoked { get; init; }
+    public DateTimeOffset? RevokedAt { get; init; }
     public AuthSessionId? ActiveSessionId { get; init; }
     public bool IsCurrentDevice { get; init; }
 }