/// <summary>
/// Publishes list of user profiles for account id specified in Credentials.
/// </summary>
/// <param name="credentials">iCampaign.TACS.Client.Credentials: object.</param>
/// <returns>System.Collections.Generic.List T:iCampaign.TACS.UserProfile</returns>
public List<UserProfile> GetUserProfiles(Credentials credentials)
{
List<UserProfile> userProfiles = new List<UserProfile>();
// Check to see if user has sufficient access
if (!credentials.AccountOwner)
{
throw new SystemException(TacsSession.MSG_INSUFPRIV);
}
// Check for valid session token
if (!TacsSession.IsTokenValid(credentials.Username, credentials.SessionToken))
{
throw new SystemException(TacsSession.MSG_INVALSESS);
}
// Go and retrieve the list of user profiles
Data.UserDs.UsersDataTable dataTable = new UserDs.UsersDataTable();
Data.UserDsTableAdapters.UsersTableAdapter tableAdapter =
new iCampaign.TACS.Data.UserDsTableAdapters.UsersTableAdapter();
tableAdapter.Connection = new SqlConnection(TacsSession.ConnectionString);
try
{
tableAdapter.Connection.Open();
tableAdapter.FillByAcctId(dataTable, credentials.AccountId);
}
catch (Exception ex)
{
throw ex;
}
finally
{
tableAdapter.Connection.Close();
}
// Now populate the list collection from the data table
foreach (Data.UserDs.UsersRow row in dataTable)
{
UserProfile profile = new UserProfile();
profile.AccountExpirey = row.ExpireOn;
profile.AccountId = row.AcctId;
profile.AccountName = credentials.AccountName;
profile.AccountOwner = row.AccountOwner;
profile.Disable = row.UserDisabled;
profile.Email = row.Email;
profile.FullName = row.FullName;
profile.Password = row.Password;
profile.SuperAdministrator = row.SuperAdministrator;
userProfiles.Add(profile);
}
return userProfiles;
}
/// <summary>
/// Provides login authentication for iCampaign application returning the user
/// access credentials.
/// </summary>
/// <param name="project">string: Project name.</param>
/// <param name="user">string: User name.</param>
/// <param name="encpass">string: Encrypted password.</param>
/// <param name="appcode">string: Application code.</param>
/// <returns>iCampaign.TACS.Client.Credentials: object.</returns>
public Credentials Login(string project, string user, string encpass, string appcode)
{
bool errorStatus = false;
// Instantiate objects required for this method
Credentials myCredentials = null;
UserProfile userProfile = new UserProfile();
// Validate the application code
if (!TacsSession.IsAppValid(appcode))
{
myCredentials = new Credentials(TacsSession.MSG_INVALIDAPP);
errorStatus = true;
}
// Validate the project
if (!errorStatus)
{
if (!TacsSession.IsProjectValid(appcode, project))
{
myCredentials = new Credentials(TacsSession.MSG_UNKPROJECT);
errorStatus = true;
}
}
// Authenticate the login request
if (!errorStatus)
{
Data.AccessViewDs.AccessViewDataTable accessTable = new AccessViewDs.AccessViewDataTable();
Data.AccessViewDsTableAdapters.AccessViewTableAdapter tableAdapter =
new iCampaign.TACS.Data.AccessViewDsTableAdapters.AccessViewTableAdapter();
tableAdapter.Connection = new SqlConnection(TacsSession.ConnectionString);
Data.AccessViewDs.AccessViewRow accessRow = null;
try
{
tableAdapter.Connection.Open();
if (tableAdapter.FillByLogin(accessTable, project, user, encpass) == 0)
{
// Username or password is invalid so set error message
myCredentials = new Credentials(TacsSession.MSG_INVALIDPASS);
errorStatus = true;
}
else
{
// User profile found so set row object
accessRow = accessTable[0];
}
}
catch (Exception ex)
{
// An exception occurred so send stack trace back
myCredentials = new Credentials(ex.Message);
errorStatus = true;
TacsSession.WriteEventLogEntry("AccessService", EventTypeEnum.Error,
ex.Message + " " + ex.StackTrace);
}
finally
{
tableAdapter.Connection.Close();
}
// If no error has occurred go ahead and check account status
if (!errorStatus)
{
// Check for account expiration
if (accessRow.AcctExpirey < System.DateTime.Now)
{
myCredentials = new Credentials(TacsSession.MSG_ACCTDISABLED);
errorStatus = true;
}
// Check for user profile expiration or disabled flag
if (accessRow.UserExpirey < System.DateTime.Now || accessRow.UserDisabled)
{
myCredentials = new Credentials(TacsSession.MSG_USERDISABLED);
errorStatus = true;
}
}
// If no error has occurred go ahead and build user profile
if (!errorStatus)
{
userProfile.AccountExpirey = accessRow.AcctExpirey;
userProfile.AccountId = accessRow.AcctId;
userProfile.AccountName = accessRow.AcctName;
userProfile.ConnectorType = TacsSession.GetConnectorType(accessRow.ConnectorType);
userProfile.Database = accessRow.Database;
userProfile.DataSource = accessRow.DataSource;
userProfile.Disable = accessRow.UserDisabled;
userProfile.Email = accessRow.Email;
userProfile.ErrorMessage = TacsSession.MSG_SUCCESS;
userProfile.FullName = accessRow.FullName;
userProfile.Project = accessRow.Project;
userProfile.SqlPassword = accessRow.DbPassword;
userProfile.SqlUser = accessRow.DbUsername;
userProfile.UserExpirey = accessRow.UserExpirey;
userProfile.Username = accessRow.Username;
userProfile.AccountOwner = accessRow.AccountOwner;
userProfile.SuperAdministrator = accessRow.SuperAdministrator;
// Get the security roles
try
{
userProfile.Roles = GetRoles(project, user);
}
catch (Exception ex)
{
myCredentials = new Credentials(ex.Message);
errorStatus = true;
TacsSession.WriteEventLogEntry("AccessService", EventTypeEnum.Error,
ex.Message + " " + ex.StackTrace);
}
}
// If no error occurred go ahead and get application info
if (!errorStatus)
{
try
{
Data.ApplicationsDs.ApplicationsRow appRow =
GetApplicationRow(appcode);
userProfile.ApplicationCode = appcode;
userProfile.ApplicationGUID = appRow.AppGuid;
userProfile.DownloadURL = appRow.DownloadURL;
}
catch (Exception ex)
{
myCredentials = new Credentials(ex.Message);
errorStatus = true;
TacsSession.WriteEventLogEntry("AccessService", EventTypeEnum.Error,
ex.Message + " " + ex.StackTrace);
}
}
// If no error occurred go ahead and create the session token
if (!errorStatus)
{
try
{
userProfile.SessionToken = SetSessionToken(user);
}
catch (Exception ex)
{
myCredentials = new Credentials(ex.Message);
errorStatus = true;
TacsSession.WriteEventLogEntry("AccessService", EventTypeEnum.Error,
ex.Message + " " + ex.StackTrace);
}
}
// If no error occurred go ahead and create the credentials object
if (!errorStatus)
{
myCredentials = new Credentials(userProfile);
TacsSession.WriteEventLogEntry("Login", EventTypeEnum.Information,
myCredentials.Username + " successfully logged in.");
}
else
{
TacsSession.WriteEventLogEntry("AccessService", EventTypeEnum.Warning,
myCredentials.Username + " login failed.");
}
}
return myCredentials;
}
/// <summary>
/// Updates the provided user profile in the TACS.NET user table.
/// </summary>
/// <param name="profile">iCampaign.TACS.UserProfile: object.</param>
/// <param name="role">string: Caller role being used.</param>
/// <param name="credentials">iCampaign.TACS.Client.Credentials: object.</param>
/// <returns>Status code</returns>
public string UpdateUser(UserProfile profile, string role, Credentials credentials)
{
bool errorStatus = false;
string statusMsg = "";
// Check to see if user has sufficient access
if (!credentials.HasAccess(role, AccessLevelEnum.Owner) &&
!credentials.AccountOwner && !credentials.SuperAdministrator)
{
errorStatus = true;
statusMsg = TacsSession.MSG_INSUFPRIV;
}
// Check to see if requestor owns the username in profile
if (TacsSession.GetUserAccountId(profile.Username) != credentials.AccountId)
{
errorStatus = true;
statusMsg = TacsSession.MSG_USERWRONGACCT;
}
// Check for valid session token
if (!TacsSession.IsTokenValid(credentials.Username, credentials.SessionToken))
{
errorStatus = true;
statusMsg = TacsSession.MSG_INVALSESS;
}
// Check for super administrator being set
if (profile.SuperAdministrator == true && credentials.SuperAdministrator == false)
{
errorStatus = true;
statusMsg = TacsSession.MSG_SUPERONLY;
}
// Check username to see if it exists
if (!errorStatus)
{
if (!TacsSession.DoesUserExist(profile.Username))
{
errorStatus = true;
statusMsg = TacsSession.MSG_USERNOEXIST;
}
}
// If no error condition exists, go ahead and update database
if (!errorStatus)
{
Data.UserDsTableAdapters.UsersTableAdapter tableAdapter =
new iCampaign.TACS.Data.UserDsTableAdapters.UsersTableAdapter();
tableAdapter.Connection = new SqlConnection(TacsSession.ConnectionString);
try
{
tableAdapter.Connection.Open();
tableAdapter.UpdateUserProfile(profile.Username, profile.Password, profile.FullName,
profile.Email, profile.CreatedOn, profile.UserExpirey, profile.Disable,
profile.SessionToken, profile.AccountId, profile.AccountOwner, profile.SuperAdministrator, profile.Username);
statusMsg = TacsSession.MSG_SUCCESS;
}
catch (Exception ex)
{
errorStatus = true;
statusMsg = ex.Message;
}
finally
{
tableAdapter.Connection.Close();
}
}
return statusMsg;
}
/// <summary>
/// Returns the requested user profile from the TACS.NET user table.
/// </summary>
/// <param name="user">string: Username.</param>
/// <param name="role">string: Caller role being used.</param>
/// <param name="credentials">iCampaign.TACS.Client.Credentials: object.</param>
/// <returns>iCampaign.TACS.UserProfile</returns>
public UserProfile GetUserProfile(string user, string role, Credentials credentials)
{
bool errorStatus = false;
UserProfile userProfile = new UserProfile();
// Check to see if user has sufficient access
if (!credentials.HasAccess(role, AccessLevelEnum.Owner) && user != credentials.Username &&
!credentials.AccountOwner && !credentials.SuperAdministrator)
{
errorStatus = true;
userProfile.ErrorMessage = TacsSession.MSG_INSUFPRIV;
}
// Check to see if requestor owns the username in profile
if (TacsSession.GetUserAccountId(user) != credentials.AccountId)
{
errorStatus = true;
userProfile.ErrorMessage = TacsSession.MSG_USERWRONGACCT;
}
// Get the user profile
if (!errorStatus)
{
Data.UserDs.UsersDataTable userTable = new UserDs.UsersDataTable();
Data.UserDs.UsersRow userRow = null;
Data.UserDsTableAdapters.UsersTableAdapter tableAdapter =
new iCampaign.TACS.Data.UserDsTableAdapters.UsersTableAdapter();
tableAdapter.Connection = new SqlConnection(TacsSession.ConnectionString);
try
{
tableAdapter.Connection.Open();
tableAdapter.FillByUsername(userTable, user);
if (userTable.Rows.Count != 0)
{
userRow = userTable[0];
}
else
{
userProfile.ErrorMessage = TacsSession.MSG_UNKUSER;
errorStatus = true;
}
}
catch (Exception ex)
{
errorStatus = true;
userProfile.ErrorMessage = ex.StackTrace;
}
finally
{
tableAdapter.Connection.Close();
}
if (!errorStatus)
{
userProfile.Username = userRow.Username;
userProfile.AccountId = userRow.AcctId;
userProfile.CreatedOn = userRow.CreatedOn;
userProfile.Email = userRow.Email;
userProfile.FullName = userRow.FullName;
userProfile.ErrorMessage = TacsSession.MSG_SUCCESS;
userProfile.UserExpirey = userRow.ExpireOn;
userProfile.Disable = userRow.UserDisabled;
userProfile.Password = userRow.Password;
}
}
return userProfile;
}
