public static bool CheckToken(string userName, string tokenValue, string ipAddress, string method, bool refreshToken, out HTTPCheckRoles role)
{
role = 0;
ExpireAllTokensForUser(userName);
CriticalResultsEntityManager manager = new CriticalResultsEntityManager();
TokenEntity[] tokens = manager.GetTokensForUser(userName);
foreach (TokenEntity token in tokens)
{
if (token.Token == new Guid(tokenValue) && token.Ipv4 == ipAddress)
{
if (refreshToken)
token.UpdatedTime = DateTime.Now;
manager.SaveChanges();
foreach (RoleEntity re in token.User.Roles)
{
object r = Enum.Parse(typeof(HTTPCheckRoles), re.Name, true);
if (r != null)
{
role |= (HTTPCheckRoles)r;
}
}
return true;
}
}
return false;
}
protected void Page_Load(object sender, EventArgs e)
{
WindowsUser = Request.LogonUserIdentity.Name;
string queryString = string.Format("it.Type='AuthExt' AND it.Key='{0}' AND it.Value='{1}'", AuthExtName, WindowsUser);
CriticalResults.CriticalResultsEntityManager manager = new CriticalResultsEntityManager();
CriticalResults.UserEntryEntity [] entries = manager.QueryUserEntryEntities(queryString, null, null);
string userHostAddress = Utilities.GetIP4Address();
if (entries.Count() == 1)
{
if (entries.First().User.Enabled == true)
{
UserName = entries.First().User.UserName;
Session["UserName"] = UserName;
CriticalResults.TokenEntity[] currentTokens = manager.GetTokensForUser(UserName);
foreach (CriticalResults.TokenEntity t in currentTokens)
{
if (t.Ipv4 == userHostAddress)
{
TokenGuid = t.Token.ToString();
Session["Token"] = TokenGuid.ToString();
}
}
if (TokenGuid == "")
{
CriticalResults.TokenEntity token = manager.CreateToken(entries.First().User, userHostAddress);
TokenGuid = token.Token.ToString();
Session["Token"] = TokenGuid.ToString();
}
Response.AddHeader("REFRESH", "5;URL=ResultList.aspx");
}
else
{
PageMessage = "The ANCR account associated with this Windows Login " + WindowsUser + " is disabled. Please contact your System Administrator.";
message.InnerText = PageMessage;
}
}
else if(entries.Count() > 1)
{
PageMessage = "Multiple ANCR accounts resolved to this Windows User. Until this is resolved you may not login with your Windows User Account. Please contact your System Administrator.";
message.InnerText = PageMessage;
}
else
{
PageMessage = "No ANCR account can be found for " + WindowsUser + ". Please contact your System Administrator.";
message.InnerText = PageMessage;
}
}
public static bool Authenticate(string authKey, string authValue, string userName, string userIP, TraceSource _Trace, out string outUserName, out string tokenString, out string message)
{
outUserName="";
tokenString = "";
CriticalResults.CriticalResultsEntityManager manager = new CriticalResultsEntityManager();
bool hasPassword = false;
string queryString = string.Format("it.Type='AuthExt' AND it.Key='{0}' AND it.Value='{1}'", authKey, authValue);
// if userName is specified then we go from ANCR and authValue is password, overwise authValue is username of already authenticated user
if (userName != null)
{
hasPassword = true;
UserEntity user = manager.GetUser(userName);
if (user == null)
{
message = "Invalid username or password.";
return false;
}
queryString = string.Format("it.Type='AuthExt' AND it.Key='{0}' AND it.Value='{1}' AND it.User.Id={2}", authKey, authValue, user.Id);
}
CriticalResults.UserEntryEntity[] entries = manager.QueryUserEntryEntities(queryString, null, null);
if (entries.Count() == 1)
{
UserEntity user=entries.First().User;
if (!hasPassword)
{
_Trace.TraceEvent(TraceEventType.Information, 0, "Lookup for username \"{0}\" mapped to \"{1}\".", authValue, user.UserName);
}
if (user.Enabled == true)
{
outUserName = user.UserName;
CriticalResults.TokenEntity[] currentTokens = manager.GetTokensForUser(user.UserName);
foreach (CriticalResults.TokenEntity t in currentTokens)
{
if (t.Ipv4 == userIP)
{
t.UpdatedTime = DateTime.Now;
manager.SaveChanges();
tokenString = t.Token.ToString();
message = "";
return true;
}
}
CriticalResults.TokenEntity token = manager.CreateToken(user, userIP);
tokenString = token.Token.ToString();
message = "";
return true;
}
else
{
_Trace.TraceEvent(TraceEventType.Warning, 0, "Found user \"{0}\" mapped to \"{1}\". ANCR Account disabled.", authValue, user.UserName);
message = "Your account is disabled. Please contact your System Administrator.";
return false;
}
}
else
{
if (entries.Count() > 1)
{
_Trace.TraceEvent(TraceEventType.Warning, 0, "Found multiple users \"{0}\" (Count: {1})", authValue, entries.Count());
message = "Multiple ANCR users found for your username, until this is resolved you may not login with your credentials. Please contact your System Administrator.";
}
else
{
if (hasPassword)
{
_Trace.TraceEvent(TraceEventType.Warning, 0, "Invalid username or password \"{0}\"", userName);
message = "Invalid username or password.";
}
else
{
_Trace.TraceEvent(TraceEventType.Warning, 0, "No ANCR account found for \"{0}\"", authValue);
message = "No ANCR user is found for your credentials. Please contact your System Administrator.";
}
}
return false;
}
}
