Ejemplo n.º 1
0
        public async Task <ActionResult <ReturnSignUserResponse> > PostAsync(
            [FromBody] RegisterRequest model,
            ReturnUrlRequest?returnUrl,
            CancellationToken token)
        {
            var user = await _userManager.FindByEmailAsync(model.Email);

            if (user != null)
            {
                try
                {
                    return(await MakeDecisionAsync(user, false, returnUrl, token));
                }
                catch (ArgumentException)
                {
                }

                ModelState.AddModelError(nameof(model.Email), _localizer["UserExists"]);
                return(BadRequest(ModelState));
            }

            var country = await _countryProvider.GetUserCountryAsync(token);

            user = new User(model.Email, model.FirstName, model.LastName, CultureInfo.CurrentCulture, country, model.Gender);
            var p = await _userManager.CreateAsync(user, model.Password);

            if (p.Succeeded)
            {
                await GenerateEmailAsync(user, returnUrl, token);

                return(new ReturnSignUserResponse(RegistrationStep.RegisterEmailConfirmed));
            }
            ModelState.AddIdentityModelError(p);
            return(BadRequest(ModelState));
        }
Ejemplo n.º 2
0
        public async Task <IActionResult> VerifySmsAsync(
            [FromBody] CodeRequest model,
            [ModelBinder(typeof(CountryModelBinder))] string country,
            [FromHeader(Name = "User-Agent")] string agent,
            CancellationToken token)
        {
            var user = await _signInManager.GetTwoFactorAuthenticationUserAsync();

            if (user == null)
            {
                _logger.Error("VerifySmsAsync We can't identify the user");
                return(Unauthorized());
            }

            var v = await _userManager.ChangePhoneNumberAsync(user, user.PhoneNumber, model.Number);

            if (v.Succeeded)
            {
                agent = agent.Substring(0, Math.Min(agent.Length, 255));
                return(await FinishRegistrationAsync(user, country, model.FingerPrint, agent, token));
            }
            _logger.Warning($"userid: {user.Id} is not verified reason: {v}");
            ModelState.AddIdentityModelError(v);
            return(BadRequest(ModelState));
        }
Ejemplo n.º 3
0
        public async Task <IActionResult> ResetPasswordAsync([FromBody] ResetPasswordRequest model, [FromHeader(Name = "referer")] Uri referer, CancellationToken token)
        {
            var queryString = Microsoft.AspNetCore.WebUtilities.QueryHelpers.ParseQuery(referer.Query);

            if (queryString.TryGetValue("id", out var id) &&
                queryString.TryGetValue("code", out var code)
                )
            {
                //  var id = queryString["id"];
                //var code = queryString["code"];
                //var from = queryString["byPass"];
                if (id == StringValues.Empty || code == StringValues.Empty)
                {
                    return(BadRequest());
                }

                var user = await _userManager.FindByIdAsync(id);

                if (user == null)
                {
                    // Don't reveal that the user does not exist
                    return(BadRequest());
                }

                user.EmailConfirmed = true;

                code = System.Net.WebUtility.UrlDecode(code);

                var result = await _userManager.ResetPasswordAsync(user, code, model.Password);

                if (result.Succeeded)
                {
                    //if (from != null)
                    //{
                    //    await _signInManager.SignInAsync(user, false);
                    //    return Ok();
                    //}
                    if (user.PhoneNumberConfirmed)
                    {
                        await _signInManager.SignInAsync(user, false);

                        return(Ok());
                    }

                    return(Ok());
                    //ModelState.AddModelError(nameof(model.Password), _localizer["UserDoesntExists"]);
                    //return BadRequest(ModelState);
                }
                //TODO: Localize
                ModelState.AddIdentityModelError(nameof(model.Password), result);
                return(BadRequest(ModelState));
            }
            return(BadRequest());
        }
Ejemplo n.º 4
0
        public async Task <IActionResult> SetUserPhoneNumberAsync(
            [FromBody] PhoneNumberRequest model,
            CancellationToken token)
        {
            if (User.Identity.IsAuthenticated)
            {
                _logger.Error("Set User Phone number User is already sign in");
                return(Unauthorized());
            }
            var user = await _signInManager.GetTwoFactorAuthenticationUserAsync();

            if (user == null)
            {
                _logger.Error("Set User Phone number We can't identify the user");
                return(Unauthorized());
            }
            if (!user.EmailConfirmed || user.PhoneNumberConfirmed)
            {
                return(Unauthorized());
            }

            var retVal = await _userManager.SetPhoneNumberAndCountryAsync(user, model.PhoneNumber, model.CountryCode.ToString(), token);

            //Ram: I disable this - we have an issue that sometime we get the wrong ip look at id
            //3DCDBF98-6545-473A-8EAA-A9DF00787C70 of UserLocation table in dev sql
            //if (country != null)
            //{
            //    if (!string.Equals(user.Country, country, StringComparison.OrdinalIgnoreCase))
            //    {
            //        var command2 = new AddUserLocationCommand(user, country, HttpContext.Connection.GetIpAddress());
            //        var t1 = _commandBus.DispatchAsync(command2, token);
            //        await _userManager.SetLockoutEndDateAsync(user, DateTimeOffset.MaxValue);
            //        ModelState.AddModelError(nameof(model.PhoneNumber), _smsLocalizer["PhoneNumberNotSameCountry"]);
            //        var t2 = _signInManager.SignOutAsync();
            //        await Task.WhenAll(t1, t2);
            //        return BadRequest(ModelState);

            //    }
            //}

            if (retVal.Succeeded)
            {
                TempData[SmsTime]       = DateTime.UtcNow.ToString(CultureInfo.InvariantCulture);
                TempData[PhoneCallTime] = DateTime.UtcNow.AddMinutes(-2).ToString(CultureInfo.InvariantCulture);
                await _client.SendSmsAsync(user, token);

                return(Ok());
            }
            if (retVal.Errors.Any(a => a.Code == "InvalidPhoneNumber"))
            {
                ModelState.AddModelError(nameof(model.PhoneNumber), _localizer["InvalidPhoneNumber"]);
            }
            if (retVal.Errors.Any(a => a.Code == "Duplicate"))
            {
                _logger.Warning("phone number is duplicate");
                ModelState.AddModelError(nameof(model.PhoneNumber), _smsLocalizer["DuplicatePhoneNumber"]);
            }
            else
            {
                _logger.Warning("Some other error" + retVal.Errors.FirstOrDefault()?.Description);
                ModelState.AddIdentityModelError(retVal);
            }

            return(BadRequest(ModelState));
        }