public ActionResult ExternalLoginConfirmation(RegisterExternalLoginModel model, string returnUrl)
{
string provider = null;
string providerUserId = null;
if (User.Identity.IsAuthenticated || !OAuthWebSecurity.TryDeserializeProviderUserId(model.ExternalLoginData, out provider, out providerUserId))
{
return RedirectToAction("Manage");
}
if (ModelState.IsValid)
{
// Insert a new user into the database
using (var db = new UserRolesContext())
{
UserProfile user = db.UserProfiles.FirstOrDefault(u => u.UserName.ToLower() == model.UserName.ToLower());
// Check if user already exists
if (user == null)
{
// Insert name into the profile table
db.UserProfiles.Add(new UserProfile { UserName = model.UserName });
db.SaveChanges();
OAuthWebSecurity.CreateOrUpdateAccount(provider, providerUserId, model.UserName);
OAuthWebSecurity.Login(provider, providerUserId, createPersistentCookie: false);
return RedirectToLocal(returnUrl);
}
else
{
ModelState.AddModelError("UserName", "User name already exists. Please enter a different user name.");
}
}
}
ViewBag.ProviderDisplayName = OAuthWebSecurity.GetOAuthClientData(provider).DisplayName;
ViewBag.ReturnUrl = returnUrl;
return View(model);
}
public ActionResult UpdateUserInfo(ManageNonPasswordModel model)
{
bool userExists = false;
if (ModelState.IsValid)
{
using (var context = new UserRolesContext())
{
var updateMe = context.UserProfiles.FirstOrDefault(x => x.UserId == model.UserId);
if (updateMe != null)
{
updateMe.FirstName = model.FirstName;
updateMe.LastName = model.LastName;
updateMe.PhoneNumber = model.PhoneNumber;
context.SaveChanges();
userExists = true;
}
}
if (userExists)
return RedirectToAction("Manage", new { Message = ManageMessageId.UdpateUserInfoSuccess });
}
return RedirectToAction("Manage", new { Message = ManageMessageId.UpdateUserInfoFailed });
}
/// <summary>
/// Update the permissions in the database
/// </summary>
/// <param name="permission">A CustomPermissionViewModel</param>
public static void UpdateSecurityPermission(CustomPermissionViewModel permission)
{
using (var context = new UserRolesContext())
{
//Get the appropriate action and controller for the updated URL...
var lookup = _urlLookupList.FirstOrDefault(x => x.Url == permission.Url);
var roleList = "";
var userList = "";
if (permission.Roles != null) permission.Roles.ForEach(role => roleList += (roleList == "") ? role : "," + role);
if (permission.UserNames != null) permission.UserNames.ForEach(userName => userList += (userList == "") ? userName : "******" + userName);
var updateMe =
context.Permissions.FirstOrDefault(x => x.CustomPermissionId == permission.CustomPermissionId);
if (updateMe != null)
{
updateMe.Controller = lookup.ControllerName;
updateMe.Action = lookup.ActionName;
updateMe.RoleNames = roleList;
updateMe.UserNames = userList;
}else
{
var addMe = new CustomPermission();
addMe.Action = lookup.ActionName;
addMe.Controller = lookup.ControllerName;
addMe.RoleNames = roleList;
addMe.UserNames = userList;
context.Permissions.Add(addMe);
}
context.SaveChanges();
}
}