/// <summary>
        /// Updates the details of a Canvas PAT
        /// </summary>
        /// <param name="personalAccessToken">The PAT to update</param>
        /// <returns>Boolean: Whether or not the update operation was successful</returns>
        public bool UpdateCanvasPat(CanvasPersonalAccessToken personalAccessToken)
        {
            var token = _dbCtx.PersonalAccessTokens.Where(x => x.Id == personalAccessToken.Id).FirstOrDefault();

            if (token == null)
            {
                return(false);
            }

            var oldToken = new CanvasPersonalAccessToken()
            {
                TokenName   = token.TokenName,
                AccessToken = token.AccessToken
            };

            token.TokenName   = personalAccessToken.TokenName;
            token.AccessToken = personalAccessToken.AccessToken;

            try
            {
                _dbCtx.SaveChanges();
                return(true);
            }
            catch (DbUpdateConcurrencyException e)
            {
                foreach (var item in e.Entries)
                {
                    if (item.Entity is CanvasPersonalAccessToken)
                    {
                        var currValues = item.CurrentValues;
                        var dbValues   = item.GetDatabaseValues();

                        foreach (var property in currValues.Properties)
                        {
                            var currentValue = currValues[property];
                            var dbValue      = dbValues[property];
                        }

                        // Refresh the original values to bypass next concurrency check
                        item.OriginalValues.SetValues(dbValues);
                    }
                    else
                    {
                        return(false);
                    }
                }
                return(true);
            }
            catch (Exception)
            {
                // Rollback changes to access token
                token.TokenName   = oldToken.TokenName;
                token.AccessToken = oldToken.AccessToken;
                return(false);
            }
        }
Ejemplo n.º 2
0
        /// <summary>
        /// Deletes expired user tokens for a particular user
        /// </summary>
        /// <param name="userId">The id of the user being authenticated</param>
        public void DeleteUserTokens(int userId)
        {
            var user = _dbCtx.UserAccounts.Where(x => x.Id == userId).FirstOrDefault();

            if (user != null)
            {
                var tokenEntries = _dbCtx.UserTokenEntries.Where(x => x.AppUserId == user.Id).ToList();
                _dbCtx.UserTokenEntries.RemoveRange(tokenEntries);
                _dbCtx.SaveChanges();
            }
        }
Ejemplo n.º 3
0
        private void SetupContext()
        {
            var testUser = _dbCtx.UserAccounts.Where(x => x.AppUserName.Equals("Fraser")).FirstOrDefault();

            if (testUser == null)
            {
                _dbCtx.UserAccounts.Add(new ApplicationUserAccount()
                {
                    AppUserName  = "******",
                    UserPassword = _encoder.Encode("password"),
                    UserType     = UserType.Instructor
                });
                _dbCtx.SaveChanges();
            }
        }
Ejemplo n.º 4
0
        public IActionResult AddCanvasToken([FromBody] CanvasToken canvasToken)
        {
            var encodedToken = _tokenManager.ReadAndValidateToken(Request.Headers[_config.authHeader]);
            var handler      = new JwtSecurityTokenHandler();
            JwtSecurityToken decodedToken;

            try
            {
                decodedToken = handler.ReadJwtToken(encodedToken);
            }
            catch (ArgumentException)
            {
                return(new UnauthorizedObjectResult("User Token Is Not Valid"));
            }

            var userId = _tokenManager.GetUserIdFromToken(decodedToken);

            if (userId == -1)
            {
                return(new NotFoundObjectResult("Failed to find User"));
            }

            var pat = new CanvasPersonalAccessToken()
            {
                TokenName   = canvasToken.TokenName,
                AccessToken = canvasToken.ApiKey,
                AppUserId   = userId,
                TokenActive = false
            };

            _dbCtx.PersonalAccessTokens.Add(pat);

            try
            {
                _dbCtx.SaveChanges();
                return(new OkObjectResult($"Canvas token: {pat.TokenName} was successfully added!"));
            }
            catch (Exception)
            {
                // Rollback token addition
                _dbCtx.PersonalAccessTokens.Remove(pat);
                return(new NotFoundObjectResult("Failed to Add Canvas Token"));
            }
        }
Ejemplo n.º 5
0
        private void SetupContext()
        {
            var testUser = _dbCtx.UserAccounts.Where(x => x.AppUserName.Equals("Nathan")).FirstOrDefault();

            if (testUser == null)
            {
                _dbCtx.UserAccounts.AddRange(_accounts);
                _dbCtx.SaveChanges();
            }
        }
Ejemplo n.º 6
0
        public IActionResult AddUserCustomDataEntry([FromBody] UserCustomDataEntry dataEntry)
        {
            var userToken = _tokenManager.ReadAndValidateToken(Request.Headers[_config.authHeader]);
            JwtSecurityToken decodedToken;
            var handler = new JwtSecurityTokenHandler();

            try
            {
                decodedToken = handler.ReadJwtToken(userToken);
            }
            catch (ArgumentException)
            {
                return(new UnauthorizedObjectResult("User Token Is Not Valid"));
            }

            var sysUserId = _tokenManager.GetUserIdFromToken(decodedToken);

            var scope = _dbCtx.Scopes.Where(x => x.Id == dataEntry.ScopeId).FirstOrDefault();

            if (scope == null)
            {
                return(new BadRequestObjectResult("The scope does not exist!"));
            }

            _dbCtx.UserCustomDataEntries.Add(dataEntry);

            try
            {
                _dbCtx.SaveChanges();
            }
            catch (Exception)
            {
                _dbCtx.UserCustomDataEntries.Remove(dataEntry); // Rollback changes
                return(new BadRequestObjectResult("Failed to save new data item"));
            }

            return(Ok($"Data Entry: {dataEntry.ItemName} was added to catergorical scope: {scope.Name}"));
        }
        public IActionResult RegisterUser([FromBody] ApplicationUserAccount userAccount)
        {
            // App user name must be at least 3 characters long and must be alphanumeric
            if (!string.IsNullOrWhiteSpace(userAccount.AppUserName))
            {
                if (userAccount.AppUserName.Length < 3 || !Regex.IsMatch(userAccount.AppUserName, "^[a-zA-Z0-9]+$"))
                {
                    return(new BadRequestObjectResult("Username cannot be empty and must contain two alphanumeric characters"));
                }
            }
            else
            {
                return(new BadRequestObjectResult("Username cannot be empty and must contain two alphanumeric characters"));
            }

            // Password must be at least 8 characters long
            if (!string.IsNullOrWhiteSpace(userAccount.UserPassword))
            {
                if (userAccount.UserPassword.Length < 8)
                {
                    return(new BadRequestObjectResult("Password must be 8 characters long"));
                }
            }
            else
            {
                return(new BadRequestObjectResult("Password must be 8 characters long"));
            }

            // Usernames must be also unique and they are also alternate keys in the database
            var existingUser = _dbCtx.UserAccounts.Where(x => x.AppUserName.Equals(userAccount.AppUserName)).FirstOrDefault();

            if (existingUser != null)
            {
                return(new BadRequestObjectResult($"Username {userAccount.AppUserName} is already taken"));
            }

            var newUser = new ApplicationUserAccount()
            {
                AppUserName  = userAccount.AppUserName,
                UserPassword = _scryptHasher.Encode(userAccount.UserPassword),
                UserType     = UserType.Instructor
            };

            _dbCtx.UserAccounts.Add(newUser);

            try
            {
                _dbCtx.SaveChanges();
            }
            catch (Exception)
            {
                // Rollback the addition of a new user
                _dbCtx.UserAccounts.Remove(newUser);
                return(new NotFoundObjectResult("Failed to Create New User"));
            }

            var token = _tokenManager.IssueToken(newUser);

            if (token.Equals(""))
            {
                return(new NotFoundObjectResult("Failed to Generate Token"));
            }

            return(new OkObjectResult($"Successfully Registered new User: {userAccount.AppUserName}"));
        }
        private void SetupContext()
        {
            var userList = new List <ApplicationUserAccount>()
            {
                new ApplicationUserAccount
                {
                    AppUserName  = "******",
                    UserPassword = _encoder.Encode("snacx4life"),
                    UserType     = UserType.Instructor
                },
                new ApplicationUserAccount
                {
                    AppUserName  = "******",
                    UserPassword = _encoder.Encode("malay_ice_queen"),
                    UserType     = UserType.Instructor
                },
                new ApplicationUserAccount
                {
                    AppUserName  = "******",
                    UserPassword = _encoder.Encode("cupcakes24/7/365"),
                    UserType     = UserType.Instructor
                },
                new ApplicationUserAccount
                {
                    AppUserName  = "******",
                    UserPassword = _encoder.Encode("mecha_gamer"),
                    UserType     = UserType.Instructor
                }
            };

            _dbCtx.UserAccounts.AddRange(userList);
            _dbCtx.SaveChanges();

            _accounts.AddRange(userList);

            var firstUser = _dbCtx.UserAccounts.Where(x => x.AppUserName.Equals("Literal Snacc")).FirstOrDefault();

            var firstUserTokens = new List <CanvasPersonalAccessToken>()
            {
                new CanvasPersonalAccessToken
                {
                    TokenName   = "FirstToken",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = firstUser.Id
                },
                new CanvasPersonalAccessToken
                {
                    TokenName   = "SnaccToken",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = firstUser.Id
                },
                new CanvasPersonalAccessToken
                {
                    TokenName   = "ThirdToken",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = firstUser.Id
                }
            };

            _dbCtx.PersonalAccessTokens.AddRange(firstUserTokens);

            var secondUser = _dbCtx.UserAccounts.Where(x => x.AppUserName.Equals("Queen Nolen")).FirstOrDefault();

            var secondUserTokens = new List <CanvasPersonalAccessToken>()
            {
                new CanvasPersonalAccessToken
                {
                    TokenName   = "Nolen1",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = secondUser.Id
                },
                new CanvasPersonalAccessToken
                {
                    TokenName   = "Nolen2",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = secondUser.Id
                },
                new CanvasPersonalAccessToken
                {
                    TokenName   = "Nolen3",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = secondUser.Id
                }
            };

            _dbCtx.PersonalAccessTokens.AddRange(secondUserTokens);

            var thirdUser = _dbCtx.UserAccounts.Where(x => x.AppUserName.Equals("Cupcake Mistress")).FirstOrDefault();

            var thirdUserTokens = new List <CanvasPersonalAccessToken>()
            {
                new CanvasPersonalAccessToken
                {
                    TokenName   = "Vanilla Cupcake",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = thirdUser.Id
                },
                new CanvasPersonalAccessToken
                {
                    TokenName   = "Blueberry Cupcake",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = thirdUser.Id
                },
                new CanvasPersonalAccessToken
                {
                    TokenName   = "Choc Chip Cupcake",
                    AccessToken = _canvasTokenHelper.CanvasTokenGenerator(),
                    AppUserId   = thirdUser.Id
                }
            };

            _dbCtx.PersonalAccessTokens.AddRange(thirdUserTokens);

            _dbCtx.SaveChanges();
        }