public IHttpActionResult DeleteUser(string id)
{
//check if such a user exists in the database
var userToDelete = new MyUserManager().GetUserDetailById(id); //this.UserManager.FindById(id);
if (userToDelete == null)
{
return(this.NotFound());
}
else if (userToDelete.IsDeleted ?? false)
{
return(this.BadRequest("User already deleted"));
}
else
{
try
{
if (!new MyUserManager().DeleteUser(userToDelete))
{
return(this.BadRequest("Unable to delete user. Please contact administrator"));
}
}
catch (Exception ex) { return(this.BadRequest(ex.Message)); }
}
return(this.Ok());
}
public async Task <IHttpActionResult> Register(RegisterBindingModel model)
{
if (!ModelState.IsValid)
{
return(BadRequest(ModelState));
}
var user = new ApplicationUser()
{
UserName = model.Email, Email = model.Email
};
//set the IsDeleted property to false
user.IsDeleted = false;
UserModal ouser = new UserModal();
ouser.Id = user.Id;
ouser.Email = user.Email;
ouser.UserName = user.UserName;
ouser.PasswordHash = MyEncryption.Encrypt(model.Password);
bool flag = false;
try
{
flag = new MyUserManager().CreateUser(ouser); //await UserManager.CreateAsync(user, model.Password);
}
catch (Exception ex) { ModelState.AddModelError("", ex.Message); }
if (!flag)
{
ModelState.AddModelError("", "Failed to create user");
return(BadRequest(ModelState));
}
return(Ok());
}
public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
{
var identity = new ClaimsIdentity(context.Options.AuthenticationType);
context.OwinContext.Response.Headers.Add("Access-Control-Allow-Origin", new[] { "*" });
MyUser user = new MyAccountDataAccess().GetUserDetailByUserName(context.UserName);
if (user != null)
{
if (user.UserName == context.UserName && user.PasswordHash == MyEncryption.Encrypt(context.Password))
{
foreach (var r in user.Roles)
{
identity.AddClaim(new Claim(ClaimTypes.Role, r.RoleName));
}
identity.AddClaim(new Claim(ClaimTypes.Sid, user.Id));
identity.AddClaim(new Claim(ClaimTypes.Name, context.UserName));
identity.AddClaim(new Claim(ClaimTypes.Email, user.Email));
var props = new AuthenticationProperties(new Dictionary <string, string>
{
{
"userdisplayname", context.UserName
},
{
"Email", user.Email
}
});
var ticket = new AuthenticationTicket(identity, props);
context.Validated(ticket);
}
else
{
context.SetError("invalid_grant", "Provided username and password is incorrect");
context.Rejected();
}
}
else
{
context.SetError("invalid_grant", "Provided username and password is incorrect");
context.Rejected();
}
return;
}
public async Task <IHttpActionResult> SetPassword(SetPasswordBindingModel model)
{
if (!ModelState.IsValid)
{
return(BadRequest(ModelState));
}
CurrentLoginData currentLogin = CurrentLoginData.FromIdentity(User.Identity as ClaimsIdentity);
if (currentLogin == null)
{
return(NotFound());
}
if (model.NewPassword != model.ConfirmPassword)
{
ModelState.AddModelError("", "New and confirm password should be same.");
return(BadRequest(ModelState));
}
else
{
MyUser ouser = new MyUser();
ouser.Id = currentLogin.Id;
ouser.Email = currentLogin.Email;
ouser.PasswordHash = MyEncryption.Encrypt(model.NewPassword);
bool flag = false;
try
{
flag = new MyUserManager().ChangeUserPassword(ouser); //await UserManager.CreateAsync(user, model.Password);
}
catch (Exception ex) { ModelState.AddModelError("", ex.Message); }
if (!flag)
{
ModelState.AddModelError("", "Failed to set user password");
return(BadRequest(ModelState));
}
}
return(Ok());
}
public async Task <IHttpActionResult> RemoveRolesFromUser(string id, string[] rolesToRemove)
{
if (rolesToRemove == null)
{
return(this.BadRequest("No roles specified"));
}
///find the user we want to assign roles to
MyUser appUser = new MyUserManager().GetUserDetailById(id); //await this.UserManager.FindByIdAsync(id);
if (appUser == null || (appUser.IsDeleted ?? false))
{
return(NotFound());
}
///check if the user currently has any roles
List <MyUserRoles> currentRoles = appUser.Roles; // await this.UserManager.GetRolesAsync(appUser.Id);
List <MyRole> allRoles = new MyUserManager().GetAllRoles(); // await this.UserManager.GetRolesAsync(appUser.Id);
if (allRoles == null || allRoles.Count == 0)
{
return(NotFound());
}
List <MyRole> tempRoles = allRoles.Where(n => currentRoles.Any(x => x.RoleName.Contains(n.RoleName))).Select(x => new MyRole {
RoleId = x.RoleId, RoleName = x.RoleName
}).ToList();
List <MyRole> FinalrolesToRemove = tempRoles.Where(n => rolesToRemove.Contains(n.RoleName)).Select(x => new MyRole {
RoleId = x.RoleId, RoleName = x.RoleName
}).ToList();
if (FinalrolesToRemove.Count() == 0)
{
ModelState.AddModelError("", string.Format("Roles '{0}' does not exist in the system", string.Join(",", FinalrolesToRemove)));
return(this.BadRequest(ModelState));
}
///remove user from current roles, if any
// bool flag = new MyUserManager().RemoveUserRoles (appUser.Id, currentRole );
string strRoles = string.Empty;
foreach (MyRole r in FinalrolesToRemove)
{
try
{ ///remove role from user
if (!new MyUserManager().RemoveUserRoles(appUser.Id, r.RoleId))
{
strRoles += r.RoleName + ", ";
}
}
catch
{
strRoles += r.RoleName + ", ";
}
}
if (!string.IsNullOrEmpty(strRoles))
{
ModelState.AddModelError("", "Failed to remove " + strRoles + " user roles");
return(BadRequest(ModelState));
}
return(Ok(new { userId = id, rolesRemoved = FinalrolesToRemove.Select(x => x.RoleName).ToArray() }));
}
