/// <summary>
/// Verifies the user.
/// </summary>
/// <param name="user">The user.</param>
/// <param name="password">The password.</param>
/// <param name="userId">The user identifier.</param>
/// <returns>
/// True if authorized
/// </returns>
private bool AuthorizeUser(string user, string password, out int userId)
{
userId = 0;
var restClient = new RestClient(ConfigurationManager.AppSettings["ServiceEndpoints:Users"])
{
Authenticator = new HttpBasicAuthenticator(ConfigurationManager.AppSettings["ServiceEndpoints:Username"], ConfigurationManager.AppSettings["ServiceEndpoints:Password"])
};
var userRequest = new RestRequest("users/verify", Method.POST);
var verifyUserBody = new VerifyUser()
{
Username = user,
Password = password
};
userRequest.RequestFormat = DataFormat.Json;
userRequest.AddBody(verifyUserBody);
var userResponse = restClient.Execute <Messages.User>(userRequest);
if (userResponse.StatusCode == HttpStatusCode.Unauthorized)
{
return(false);
}
userId = userResponse.Data.Id;
return(true);
}
private void SendLink(clsData userData)
{
try
{
string userId = string.Empty, uniqueId = string.Empty, passId = string.Empty, mobileNo = string.Empty, link = string.Empty;
//var data = Session["userData"] as clsData;
userId = userData.user_id;
uniqueId = userData.uniqueidentifier;
passId = userData.Passverify_ID.ToString();
mobileNo = userData.UserMobile;
if (mobileNo.Length == 10) //condition added because 91 is required for sending message from API
{
mobileNo = "91" + mobileNo;
}
link = "https://imsbizz.com/Registration/ResetPassword.aspx?pid=" + passId;
VerifyUser verifyUser = new VerifyUser();
verifyUser.Dmobile = mobileNo;
verifyUser.Message = "Please click below link to reset your password " + link + "";
verifyUser.Message = HttpUtility.UrlEncode(verifyUser.Message);
string res = verifyUser.SendSMSTL();
Session["userData"] = null;
}
catch (Exception ex)
{
ErrorLog.saveerror(ex);
}
}
public static string VerifyUserAccount(string encodedId, VerifyUser verifyEmp)
{
using (PsiogEntities PE = new PsiogEntities())
{
var id = Hasher.DecodeId(encodedId);
var user = PE.Users.Where(u => u.EmployeeId == id).FirstOrDefault();
if (user.VerificationCode == null)
{
return("Unauthorised!");
}
user.Password = Hasher.HashString(verifyEmp.password);
user.SecurityQuestion = verifyEmp.securityQuestion;
user.Answer = verifyEmp.answer;
user.VerificationCode = null;
try
{
PE.SaveChanges();
return("Verified Successfully!");
}
catch (Exception E)
{
ExceptionLog.Logger(E);
return("Unable to verify user");
}
}
}
public IHttpActionResult ResetPassword(string encodedId, VerifyUser verifyEmp)
{
string id = Hasher.DecodeId(encodedId);
string message = DBOperations.VerifyUserAccount(id, verifyEmp);
return(Ok("Updated password successfully!"));
}
public async Task <ActionResult> Verify()
{
string input = null;
using (StreamReader reader = new StreamReader(Request.Body, Encoding.UTF8))
{
input = await reader.ReadToEndAsync();
}
b2cUserModel inputClaims = b2cUserModel.Parse(input);
string apiKey = "your-apikey";
string apiSecret = "your-apisecret";
string id = inputClaims.objectid;
string tp = inputClaims.typingPattern;
int count = inputClaims.count;
//string quality = "2";
string base_url = string.Format("https://api.typingdna.com/verify/{0}", id);
var response = await verifyUser(apiKey, apiSecret, base_url, tp);
VerifyUser verifyUserResponse = VerifyUser.FromJson(response);
bool savePattern = false;
if (inputClaims.count > 0 && verifyUserResponse.NetScore >= 80)
{
savePattern = true;
}
bool promptMFAFlag = false;
//training model
if (inputClaims.count <= 2)// && verifyUserResponse.NetScore < 100)
{
promptMFAFlag = true;
}
// 3 - 10 saved patterns, less than 65 score prompt mfa
if (inputClaims.count >= 3 && verifyUserResponse.NetScore <= 50 && inputClaims.count <= 5)
{
promptMFAFlag = true;
}
// 10 - 18 saved patterns, less than 70 score prompt mfa
if (inputClaims.count > 5 && verifyUserResponse.NetScore <= 65)
{
promptMFAFlag = true;
}
outputModel output = new outputModel(string.Empty, HttpStatusCode.OK)
{
netscore = verifyUserResponse.NetScore,
promptMFA = promptMFAFlag,
saveTypingPattern = savePattern
};
return(Ok(output));
}
/// <summary>
/// 注册用户获取访问令牌接口
/// </summary>
/// <param name="username">用户登录名称</param>
/// <param name="password">用户密码</param>
/// <param name="signature">加密签名字符串</param>
/// <param name="timestamp">时间戳</param>
/// <param name="nonce">随机数</param>
/// <param name="appid">应用接入ID</param>
/// <returns></returns>
public TokenResult GetAccessToken(string username, string password,
string signature, string timestamp, string nonce, string appid)
{
TokenResult token = new TokenResult();
try
{
//先校验介入应用的数据完整性
CheckResult checkResult = ValidateSignature(signature, timestamp, nonce, appid);//检查用户签名
if (checkResult.Success)
{
#region 检查用户身份
//检验数据完整性后,从数据库检查用户身份
CommonResult result = VerifyUser.VerifyUserPwd(username, password);//验证用户身份
if (result.Success)
{
//用户ID
string userId = result.UserId;
string userName = result.UserName;
int times = DateTimeHelper.DateTimeToStamp(DateTime.UtcNow);
int expTimes = DateTimeHelper.DateTimeToStamp(DateTime.UtcNow.AddDays(_expiredDays));
var payload = new Dictionary <string, object>()
{
{ "iss", _iss }, //该JWT的签发者
{ "sub", userId }, //该JWT所面向的用户
{ "aud", userName }, //接收该JWT的一方
{ "iat", times }, //什么时候签发
{ "exp", expTimes }//什么时候过期
};
//生成具体的Token和过期时间 生成JWT令牌
token.AccessToken = JsonWebToken.Encode(payload, _sharedKey, JwtHashAlgorithm.Hs256);
token.ExpiresIn = _expiredDays * 24 * 3600;//过期时间
token.Success = true;
token.UserId = userId;
token.Errmsg = "生成令牌,过期时间为" + expTimes;
//LogHelper.WriteLog("在"+ DateTime.UtcNow.ToString("yyyy-MMM-dd ss")+"生成" + userName+"令牌");
}
#endregion
}
else
{
token.Errmsg = checkResult.Errmsg;
token.Success = checkResult.Success;
}
}
catch (Exception ex)
{
Exception objExp = ex;
//LogHelper.WriteLog("操作注册用户获取访问令牌接口", objExp);
}
return(token);
}
public async Task <IHttpActionResult> Post([FromBody] VerifyUser message)
{
var isAuthorized = await this.usersDataService.ValidateUserAsync(message.Username, message.Password);
if (isAuthorized)
{
var user = await this.usersDataService.GetUserAsync(message.Username);
var mappedUser = Mapper.Map <Messages.User>(user);
return(Ok(mappedUser));
}
return(Unauthorized());
}
/// <summary>
/// 审核前置条件查询看是否合格
/// </summary>
/// <param name="entity">审核实体</param>
/// <param name="Userid">用户名</param>
public Verify_PreCondition_Comfirmed_Judge(IVerifyEntity entity, string Userid)
{
var endid = entity.AUDITSTEP_ID;
var linklist = entity.GetCurrentNode().GetLinkListEndedBythis();
var res = (from x in linklist
where x.END_NODE_ID == endid
select x).ToList();
this.SameEndLink = res;
var res2 = entity.GetListBythisFlowid();
this.WorkEntityList = res2;
this.VerifyUser = VerifyUser.AdvanceUserInfo().USERINFO_GetUserINFO(Userid);
}
public void VerifyUserRequest(VerifyUser verifyUser)
{
User user = DAL.GetUserByID(verifyUser.UserID);
if (user != null)
{
user.IsActive = true;
user.IsAdmin = verifyUser.IsAdmin;
DAL.SaveChanges();
}
else
{
throw new Exception("המשתמש אותו ניסית לעדכן לא קיים");
}
}
protected void Button1_Click(object sender, EventArgs e)
{
VerifyUser check = new VerifyUser();
int id = check.validateUser(user.Value, pwd.Value);
if (id != 0)
{
Session["id"] = id;
Response.Redirect(FormsAuthentication.GetRedirectUrl(user.Value, false));
}
else
{
Response.Write("<script>alert('Incorrect Username or Password')</script>");
}
}
protected void Page_Load(object sender, EventArgs e)
{
if (Request.Form["usr"] != null && Request.Form["usr1"] != null)
{
VerifyUser check = new VerifyUser();
int id = check.validateUser(Request.Form["usr"].ToString(), Request.Form["usr1"].ToString());
if (id == 0)
{
Response.Write("<script>alert('Incorrect Username or Password')</script>");
}
else
{
HttpCookie user = new HttpCookie("user");
Session["id"] = id;
}
}
}
public ActionResult SendSMS(int id)
{
VerifyUser verifyUser = new VerifyUser();
string response = string.Empty;
string sid = System.Configuration.ConfigurationManager.AppSettings["sid"];
string user = System.Configuration.ConfigurationManager.AppSettings["user"];
string password = System.Configuration.ConfigurationManager.AppSettings["password"];
var beneficiaryViewModel = _benificiaryService.GetBenificiaryById(id);
if (beneficiaryViewModel == null)
{
TempData["Message"] = "Some error occured please try again";
TempData.Keep();
return(RedirectToAction("Index", "Beneficiary"));
}
//Navnirman-debug.apk
var Link = "http://www.navnirmangroup.org/files/public-docs/app-debug.apk";
//Internal error: Error in cURL request: OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to 10.217.138.101:443
string BeniUserName = beneficiaryViewModel.AdharNo.ToString();
BeniUserName = !String.IsNullOrWhiteSpace(BeniUserName) && BeniUserName.Length >= 6 ? BeniUserName.Substring(BeniUserName.Length - 6) : BeniUserName;
var BeniPassword = beneficiaryViewModel.Password;
string message = "Click below link to download the App and use credentials for login Username = "******" and Password = "******" " + Link;
string msisdn = beneficiaryViewModel.MobileNo;
//string urlPromotional = "http://sms.sminfomedia.in/vendorsms/pushsms.aspx?user="******"&password="******"&msisdn=" + msisdn + "&sid=" + sid + "&msg=" + OTP + "&fl=0 ";
string urlTransactional = "http://sms.sminfomedia.in/vendorsms/pushsms.aspx?user="******"&password="******"&msisdn=" + msisdn + "&sid=" + sid + "&msg=" + message + "&fl=0&gwid=2 ";
HttpWebRequest myHttpWebRequest = (HttpWebRequest)WebRequest.Create(urlTransactional);
HttpWebResponse myHttpWebResponse = (HttpWebResponse)myHttpWebRequest.GetResponse();
if (myHttpWebResponse.StatusCode == HttpStatusCode.OK)
{
TempData["Message"] = "Message Sent";
TempData.Keep();
return(RedirectToAction("Index", "Beneficiary"));
}
else
{
TempData["Message"] = "Some error occured please try again";
TempData.Keep();
return(RedirectToAction("Index", "Beneficiary"));
}
}
private void doSceneMultiEx(List <string> accountList, AddContactScene lastScene, VerifyUserOpCode opCode, string content)
{
Log.i("NetSceneVerifyUser", "cmd to verify or add multi contacts , content = " + content);
base.beginBuilder();
base.mBuilder.BaseRequest = NetSceneBase.makeBaseRequest(0);
foreach (string str in accountList)
{
Log.i("NetSceneVerifyUser", "verify user = " + str);
base.mBuilder.AddVerifyUserList(VerifyUser.CreateBuilder().SetValue(str).Build());
base.mBuilder.AddSceneList((uint)lastScene);
}
base.mBuilder.VerifyUserListSize = (uint)base.mBuilder.VerifyUserListList.Count;
base.mBuilder.SceneListNum = (uint)base.mBuilder.SceneListList.Count;
base.mBuilder.Opcode = (uint)opCode;
base.mBuilder.VerifyContent = content;
base.mSessionPack.mConnectMode = 2;
base.mSessionPack.mCmdID = 0x2c;
base.endBuilder();
}
public string SendOtp(int installmentID)
{
var uvm = Session["UserDetails"] as UserViewModel;
VerifyUser verifyUser = new VerifyUser();
verifyUser.msisdn = uvm.MobileNo;
verifyUser.OTP = verifyUser.GenerateRandomOTP(4);
string res = verifyUser.SendOtp();
//save otp to DB;
InstallmentDetail installmentDetail = new InstallmentDetail();
installmentDetail = _installmentDetailService.Get().Where(i => i.InstallmentId == installmentID).FirstOrDefault();
installmentDetail.OTP = verifyUser.OTP;
_installmentDetailService.Update(installmentDetail);
_installmentDetailService.SaveChanges();
return(res);
}
private void doSceneEx(string account, AddContactScene lastScene, VerifyUserOpCode opCode, string content, string key = "")
{
base.beginBuilder();
base.mBuilder.BaseRequest = NetSceneBase.makeBaseRequest(0);
if (string.IsNullOrEmpty(key))
{
base.mBuilder.AddVerifyUserList(VerifyUser.CreateBuilder().SetValue(account).Build());
}
else
{
base.mBuilder.AddVerifyUserList(VerifyUser.CreateBuilder().SetValue(account).SetVerifyUserTicket(key).Build());
}
base.mBuilder.VerifyUserListSize = (uint)base.mBuilder.VerifyUserListCount;
base.mBuilder.AddSceneList((uint)lastScene);
base.mBuilder.SceneListNum = (uint)base.mBuilder.SceneListCount;
base.mBuilder.Opcode = (uint)opCode;
base.mBuilder.VerifyContent = content;
base.mSessionPack.mConnectMode = 1;
base.mSessionPack.mCmdID = 0x2c;
base.endBuilder();
}
public void VerifyUserRequest(VerifyUser verifyUser)
{
BL.VerifyUserRequest(verifyUser);
}
public IHttpActionResult VerifyUser([FromBody] RegisterUser verifyuser) //send parameter in body as json data
//public IHttpActionResult VerifyUser(string Email,string Password) // send parameter with url
{
bool Valid = true;
VerifyUser user = new VerifyUser();
try
{
DataSet ds = new DataSet();
SqlConnection sqlcon = new SqlConnection(connection);
string storedprocedure = "BagByte_01_VerifyUser";
SqlCommand sqlcmd = new SqlCommand(storedprocedure, sqlcon);
if (!string.IsNullOrEmpty(verifyuser.Email))
{
sqlcmd.Parameters.AddWithValue("@Email", verifyuser.Email);
}
else
{
sqlcmd.Parameters.AddWithValue("@Email", DBNull.Value);
}
if (!string.IsNullOrEmpty(verifyuser.Password))
{
sqlcmd.Parameters.AddWithValue("@Password", verifyuser.Password);
}
else
{
sqlcmd.Parameters.AddWithValue("@Password", DBNull.Value);
}
sqlcmd.CommandType = CommandType.StoredProcedure;
sqlcon.Open();
SqlDataAdapter adapter = new SqlDataAdapter(sqlcmd);
adapter.Fill(ds);
if (ds.Tables[0].Rows.Count > 0)
{
//RegisterUser tempUser = new RegisterUser();
user.UserID = long.Parse(ds.Tables[0].Rows[0]["UserID"].ToString());
//user.FName = ds.Tables[0].Rows[0]["FirstName"].ToString();
//user.LName = ds.Tables[0].Rows[0]["LastName"].ToString();
//user.Address = ds.Tables[0].Rows[0]["Address"].ToString();
//user.Contact = ds.Tables[0].Rows[0]["Contact"].ToString();
//user.Gender = ds.Tables[0].Rows[0]["Gender"].ToString();
//user.DateOfBirth = DateTime.Parse(ds.Tables[0].Rows[0]["DateOfBirth"].ToString());
user.Email = (ds.Tables[0].Rows[0]["Email"].ToString());
user.UserRole = (ds.Tables[0].Rows[0]["UserRole"].ToString());
}
else
{
Valid = false;
}
sqlcon.Close();
//if(Valid==true)
//{
// long UserID = user.UserID;
//}
//return Valid;
}
catch (Exception ex)
{
return(ResponseMessage(Request.CreateResponse(ex.ToString())));
}
return(Ok(user));
}
public IHttpActionResult VerifyAccount(string id, VerifyUser verifyEmp)
{
string message = DBOperations.VerifyUserAccount(id, verifyEmp);
return(Ok(message));
}
public RestMethods(VerifyUser verify)
{
_verify = verify;
}
