public IActionResult Post([FromBody] CreateUserRequest createUser) { if (createUser.Name.Equals("") || createUser.Surname.Equals("") || createUser.Email.Equals("") || createUser.Password.Equals("")) { return(BadRequest("Missing or invalid data!")); } else { if (userRepository.FindByEmail(createUser.Email)) { return(Conflict("User with this email is existing in database!")); } else { createUser.Password = BCryptUtilities.encodePassword(createUser.Password); return(Ok(userRepository.Create(createUser.ReturnUser()))); } } }
public IActionResult Post([FromHeader(Name = "Login")] string email, [FromHeader(Name = "Password")] string password) { if (userRepository.FindByEmail(email)) { User inUser = userRepository.GetUserByEmail(email); if (BCryptUtilities.passwordMatch(password, inUser.Password)) { UserToken loginUser = userRepository.GetUserTokenByEmail(email, inUser.UserType, inUser.Name, inUser.Surname, inUser.Id.ToString()); Token token = new Token(loginUser.Token); return(Ok(token)); } else { return(Unauthorized("Password is not matching!")); } } else { return(BadRequest("User with this login doesn't exist in database!")); } }
public IActionResult Login([FromHeader(Name = "Username")] string username, [FromHeader(Name = "Password")] string password) { if (userRepository.FindByUsername(username)) { User loggedUser = userRepository.GetUserByUsername(username); if (BCryptUtilities.passwordMatch(password, loggedUser.Password)) { LoginResponse loginTokenResponse = userRepository.GetUserToken(loggedUser); return(Ok(loginTokenResponse)); } else { return(Unauthorized(new ApiResponse("Password is not matching!"))); } } else { return(BadRequest(new ApiResponse("User with this username doesn't exist in database!"))); } }
public IActionResult Update([FromBody] CreateUpdateUserRequest user, string email) { if (userRepository.FindByEmail(email)) { User editedUser = userRepository.GetUserByEmail(email); if (BCryptUtilities.passwordMatch(user.OldPassword, editedUser.Password)) { editedUser.Password = BCryptUtilities.encodePassword(user.NewPassword); editedUser.Name = user.Name; editedUser.Surname = user.Surname; return(Ok(userRepository.Update(editedUser))); } else { return(BadRequest("Passwords don't match!")); } } else { return(BadRequest("User with this login doesn't exist in database!")); } }