public async Task <ActionResult> ChangeUserPassword(int id, [FromBody] string password)
{
if (!IsAuthorizedToAccess(id))
{
return(Forbidden("Validation error."));
}
User user = await Db.Users.FindAsync(id);
if (user == null)
{
return(NotFound("User not found."));
}
PasswordSecurity.SetPassword(password, user);
Db.Users.Update(user);
await Db.SaveChangesAsync();
return(Ok());
}
public async Task <ActionResult <string> > CreateUser(CreateUserParameters parameters)
{
parameters.EmailAddress = parameters.EmailAddress.ToLower();
if (Db.Users.Where(o => o.Email == parameters.EmailAddress).Any())
{
return(BadRequest("Dit emailadres is al in gebruik."));
}
User user = new User()
{
FirstName = parameters.FirstName,
LastName = parameters.LastName,
Email = parameters.EmailAddress,
SecurityLevel = SecurityLevel.User,
};
PasswordSecurity.SetPassword(parameters.Password, user);
Db.Users.Add(user);
await Db.SaveChangesAsync();
return(AccessToken.Generate(user.Email));
}
