Example #1
0
        public IActionResult Login(AuthenticationViewModel model)
        {
            // Assume the user is not authorized
            IActionResult result = Unauthorized();

            try
            {
                var roleMgr = new RoleManager(_db)
                {
                    //User = _db.GetUserItemByEmail(model.Email)
                    User = _db.GetUserItemByLogin(model.EmailOrUsername)
                };

                // Generate a password hash
                var pwdMgr = new PasswordManager(model.Password, roleMgr.User.Salt);

                if (pwdMgr.Verify(roleMgr.User.Hash))
                {
                    // Create an authentication token
                    var token = _tokenGenerator.GenerateToken(roleMgr.User.Username,
                                                              roleMgr.RoleName);

                    // Switch to 200 OK
                    result = Ok(token);
                }
            }
            catch (Exception)
            {
                result = BadRequest(new { Message = "Username or password is invalid." });
            }

            return(result);
        }
Example #2
0
        //[Authorize]
        public IActionResult CheckIn(string userName)
        {
            IActionResult result = Unauthorized();

            try
            {
                UserItem myUser = _db.GetUserItemByLogin(userName);
                // UserItem myUser = _db.GetUserItemByLogin(User.Identity.Name);
                VisitItem newVisit = new VisitItem()
                {
                    UserId  = myUser.Id,
                    CheckIn = DateTime.UtcNow
                };
                newVisit.Id = _db.CreateVisit(newVisit);

                // Switch to 200 OK
                if (newVisit.Id > 0)
                {
                    result = Ok(newVisit.Id);
                }
            }
            catch (Exception)
            {
                result = BadRequest(new { Message = "Failed to checkin user" });
            }
            return(result);
        }
Example #3
0
        //[Authorize(Roles = "Admin")]
        public IActionResult PromoteUser(string userName, int roleId)
        {
            IActionResult result = Unauthorized();

            try
            {
                if (roleId < 4 && roleId > 0)
                {
                    _db.UpdateUserRole(_db.GetUserItemByLogin(userName), roleId);
                }
                result = Ok();
            }
            catch (Exception)
            {
                result = BadRequest(new { Message = "Role update failed." });
            }
            return(result);
        }
Example #4
0
        public IActionResult DisplayUserHistory(string userName)
        {
            // Assume the user is not authorized
            IActionResult result = Unauthorized();

            try
            {
                var user    = _db.GetUserItemByLogin(userName);
                var history = _db.GetUserHistory(user);

                result = Ok(history);
            }
            catch (Exception)
            {
                result = BadRequest(new { Message = "Get history for user failed." });
            }
            return(result);
        }