Merge pull request #56 from Corsinvest/fix/authentication-cookie-container

franklupo · web-flow · commit 8cba33f13eb5 · 2026-01-19T08:39:25.000+01:00
Fix authentication cookie container for IIS environments
diff --git a/Directory.Packages.props b/Directory.Packages.props
@@ -3,7 +3,7 @@
 		<TargetFrameworks>net8.0;net9.0;net10.0;netstandard2.0</TargetFrameworks>
 		<LangVersion>latest</LangVersion>
 		<ImplicitUsings>enable</ImplicitUsings>
-		<Version>9.1.2</Version>
+		<Version>9.1.3</Version>
 		<!--<NoWarn>$(NoWarn);CS1591;CS0436</NoWarn>-->
 
 		<Company>Corsinvest Srl</Company>
diff --git a/src/Corsinvest.ProxmoxVE.Api.Extension/Utils/ClientHelper.cs b/src/Corsinvest.ProxmoxVE.Api.Extension/Utils/ClientHelper.cs
@@ -64,24 +64,17 @@ public static async Task<PveClient> GetClientAndTryLoginAsync(string hostsAndPor
 
             if (client == null) { throw new PveException("No reachable hosts found in the provided list"); }
 
-            try
-            {
-                client.ValidateCertificate = validateCertificate;
-                client.LoggerFactory = loggerFactory;
-
-                if (!await AuthenticateAsync(client, username, password, apiToken))
-                {
-                    var errorMessage = client.LastResult?.ReasonPhrase ?? "Authentication failed";
-                    throw new PveException($"Authentication failed for host {endpoint}: {errorMessage}");
-                }
+            client.ValidateCertificate = validateCertificate;
+            client.LoggerFactory = loggerFactory;
 
-                loggerFactory?.CreateLogger<PveClient>()?.LogDebug("Successfully connected to Proxmox VE at {0}", endpoint);
-                return client;
-            }
-            catch
+            if (!await AuthenticateAsync(client, username, password, apiToken))
             {
-                throw;
+                var errorMessage = client.LastResult?.ReasonPhrase ?? "Authentication failed";
+                throw new PveException($"Authentication failed for host {endpoint}: {errorMessage}");
             }
+
+            loggerFactory?.CreateLogger<PveClient>()?.LogDebug("Successfully connected to Proxmox VE at {0}", endpoint);
+            return client;
         }
 
         /// <summary>
@@ -115,24 +108,17 @@ public static async Task<T> GetClientAndTryLoginAsync<T>(string hostsAndPortHA,
 
             if (client == null) { throw new PveException("No reachable hosts found in the provided list"); }
 
-            try
-            {
-                client.ValidateCertificate = validateCertificate;
-                client.LoggerFactory = loggerFactory;
-
-                if (!await AuthenticateAsync(client, username, password, apiToken))
-                {
-                    var errorMessage = client.LastResult?.ReasonPhrase ?? "Authentication failed";
-                    throw new PveException($"Authentication failed for host {endpoint}: {errorMessage}");
-                }
+            client.ValidateCertificate = validateCertificate;
+            client.LoggerFactory = loggerFactory;
 
-                loggerFactory?.CreateLogger<T>()?.LogDebug("Successfully connected to Proxmox VE at {0}", endpoint);
-                return client;
-            }
-            catch
+            if (!await AuthenticateAsync(client, username, password, apiToken))
             {
-                throw;
+                var errorMessage = client.LastResult?.ReasonPhrase ?? "Authentication failed";
+                throw new PveException($"Authentication failed for host {endpoint}: {errorMessage}");
             }
+
+            loggerFactory?.CreateLogger<T>()?.LogDebug("Successfully connected to Proxmox VE at {0}", endpoint);
+            return client;
         }
 
         /// <summary>
diff --git a/src/Corsinvest.ProxmoxVE.Api.Shared/Utils/ByteHelper.cs b/src/Corsinvest.ProxmoxVE.Api.Shared/Utils/ByteHelper.cs
@@ -28,7 +28,7 @@ public static long ToBytes(string input)
     {
         if (string.IsNullOrWhiteSpace(input)) { throw new ArgumentException("Invalid input."); }
 
-        var pattern = @"^(\d+(\.\d+)?)\s*(" + string.Join("|", DecimalUnits) + string.Join("|", BinaryUnits) + ")$";
+        var pattern = @"^(\d+(\.\d+)?)\s*(" + string.Join("|", DecimalUnits) + "|" + string.Join("|", BinaryUnits) + ")$";
         //@"^(\d+(\.\d+)?)\s*(B|KB|MB|GB|TB|PB|EB|KIB|MIB|GIB|TIB|PIB|EIB)$"
         var match = Regex.Match(input.Trim(), pattern, RegexOptions.IgnoreCase);
         if (!match.Success) { throw new FormatException("Invalid format. Use '1.5 GB' or '2 MiB'."); }
diff --git a/src/Corsinvest.ProxmoxVE.Api/PveClientBase.cs b/src/Corsinvest.ProxmoxVE.Api/PveClientBase.cs
@@ -5,6 +5,7 @@
 
 using System.ComponentModel;
 using System.Dynamic;
+using System.Net;
 using System.Net.Http.Headers;
 using System.Text;
 using System.Web;
@@ -25,8 +26,8 @@ public class PveClientBase(string host, int port = 8006, HttpClient? httpClient
     private ILogger<PveClientBase> _logger = NullLoggerFactory.Instance.CreateLogger<PveClientBase>();
     private ILoggerFactory _loggerFactory;
 
-    private HttpClient _httpClient;
-    private readonly HttpClient? _externalHttpClient = httpClient;
+    private HttpClient _internalHttpClient;
+    private HttpClientHandler _internalHttpClientHandler;
 
     /// <summary>
     /// Logger Factory
@@ -112,6 +113,12 @@ public async Task<bool> LoginAsync(string userName, string password, string real
 
             CSRFPreventionToken = result.Response.data.CSRFPreventionToken;
             PVEAuthCookie = result.Response.data.ticket;
+
+            // Add cookie to CookieContainer for proper authentication in subsequent requests
+            if (_internalHttpClientHandler?.CookieContainer != null)
+            {
+                _internalHttpClientHandler.CookieContainer.Add(new Uri(BaseAddress), new Cookie("PVEAuthCookie", PVEAuthCookie));
+            }
         }
 
         return result.IsSuccessStatusCode;
@@ -181,16 +188,21 @@ public async Task<Result> DeleteAsync(string resource, IDictionary<string, objec
     /// <returns></returns>
     public virtual HttpClient GetHttpClient()
     {
-        if (_externalHttpClient != null) return _externalHttpClient;
+        if (httpClient != null) return httpClient;
 
-        _httpClient ??= new HttpClient(new HttpClientHandler
+        if (_internalHttpClient == null)
         {
-            ServerCertificateCustomValidationCallback = !ValidateCertificate
-                                                            ? (message, cert, chain, errors) => true
-                                                            : null
-        });
+            _internalHttpClientHandler = new HttpClientHandler
+            {
+                CookieContainer = new CookieContainer(),
+                ServerCertificateCustomValidationCallback = !ValidateCertificate
+                                                                ? (message, cert, chain, errors) => true
+                                                                : null
+            };
+            _internalHttpClient = new HttpClient(_internalHttpClientHandler);
+        }
 
-        return _httpClient;
+        return _internalHttpClient;
     }
 
     /// <summary>
@@ -250,7 +262,7 @@ protected virtual async Task<Result> ExecuteRequestAsync(string resource,
             _logger.LogDebug("Method: {httpMethod}, Url: {uriString}", httpMethod, uriString);
             if (httpMethod != HttpMethod.Get)
             {
-                var sensitiveParams = new[] { "password", "token", "ticket", "otp", "apitoken"};
+                var sensitiveParams = new[] { "password", "token", "ticket", "otp", "apitoken" };
                 _logger.LogDebug("Parameters: {parameters}", string.Join(Environment.NewLine, @params.Select(a =>
                 {
                     var paramName = a.Key.ToLower();
@@ -302,6 +314,20 @@ protected virtual async Task<Result> ExecuteRequestAsync(string resource,
         catch (TaskCanceledException ex) when (!cts.Token.IsCancellationRequested)
         {
             _logger.LogError(ex, ex.Message);
+
+            response = new(HttpStatusCode.RequestTimeout)
+            {
+                ReasonPhrase = ex.Message,
+            };
+        }
+        catch (Exception ex)
+        {
+            _logger.LogError(ex, ex.Message);
+
+            response = new(HttpStatusCode.InternalServerError)
+            {
+                ReasonPhrase = ex.Message,
+            };
         }
 
         if (_logger.IsEnabled(LogLevel.Debug))
@@ -378,14 +404,14 @@ public async Task<bool> WaitForTaskToFinishAsync(string task, int wait = 500, lo
         if (timeout < wait) { timeout = wait + 5000; }
         var timeStart = DateTime.Now;
 
-        while (isRunning && (DateTime.Now - timeStart).Milliseconds < timeout)
+        while (isRunning && (DateTime.Now - timeStart).TotalMilliseconds < timeout)
         {
-            Thread.Sleep(wait);
+            await Task.Delay(wait);
             isRunning = await TaskIsRunningAsync(task);
         }
 
         //check timeout
-        return (DateTime.Now - timeStart).Milliseconds < timeout;
+        return (DateTime.Now - timeStart).TotalMilliseconds < timeout;
     }
 
     /// <summary>

Original file line number	Diff line number	Diff line change
`@@ -28,7 +28,7 @@ public static long ToBytes(string input)`
`28`	`28`	`{`
`29`	`29`	`if (string.IsNullOrWhiteSpace(input)) { throw new ArgumentException("Invalid input."); }`
`30`	`30`
`31`		`- var pattern = @"^(\d+(\.\d+)?)\s*(" + string.Join("\|", DecimalUnits) + string.Join("\|", BinaryUnits) + ")$";`
	`31`	`+ var pattern = @"^(\d+(\.\d+)?)\s*(" + string.Join("\|", DecimalUnits) + "\|" + string.Join("\|", BinaryUnits) + ")$";`
`32`	`32`	`//@"^(\d+(\.\d+)?)\s*(B\|KB\|MB\|GB\|TB\|PB\|EB\|KIB\|MIB\|GIB\|TIB\|PIB\|EIB)$"`
`33`	`33`	`var match = Regex.Match(input.Trim(), pattern, RegexOptions.IgnoreCase);`
`34`	`34`	`if (!match.Success) { throw new FormatException("Invalid format. Use '1.5 GB' or '2 MiB'."); }`