public async Task <IActionResult> AddNewUser([FromBody] CreateUserPost post)
{
if (!post.IsValid)
{
return(Ok(new ResultWrapper()
{
Message = "Invalid request", Valid = false
}));
}
var lowerUsername = post.Username.ToLower();
//Check username
if (string.IsNullOrEmpty(lowerUsername) || lowerUsername.Length > 50 || Regex.IsMatch(lowerUsername, @"[^0-9a-zA-Z-.]+"))
{
return(BadRequest());
}
var currentUser = HttpContext.User.FindFirst(ClaimTypes.Name).Value;
using (_context)
{
//Check division name
if (!await _context.Division.AnyAsync(d => d.DivisionName == post.Division))
{
return(BadRequest());
}
if (await _context.User.Include(u => u.UserAbility).AnyAsync(u => u.Username == lowerUsername))
{
return(Ok(new ResultWrapper()
{
Message = "Username is already exist!", Valid = false
}));
}
var user = new User()
{
//Username is always lower case for consistent
Username = lowerUsername,
DivisionName = post.Division,
Active = true,
Description = $"Created on: {DateTime.Now.ToShortDateString()} | By: {currentUser}",
Type = "User"
};
if (post.ExportRequests)
{
user.TryAddAbility(_context, AbilityNames.ExportRequests);
}
if (post.SeeAllRequests)
{
user.TryAddAbility(_context, AbilityNames.SeeAllRequests);
}
_context.User.Add(user);
await _context.SaveChangesAsync();
}
return(Ok(new ResultWrapper()
{
Message = $"Sucessfully added: {lowerUsername}", Valid = true
}));
}
public async Task <IActionResult> UpdateUser([FromBody] CreateUserPost post)
{
if (!post.IsValid)
{
return(BadRequest());
}
var lowerUsername = post.Username.ToLower();
var currentUser = HttpContext.User.FindFirst(ClaimTypes.Name).Value;
using (_context)
{
var crudUser = await _context.User.Include(u => u.UserAbility).FirstOrDefaultAsync(u => u.Username == lowerUsername);
//Update user
if (crudUser == null)
{
return(BadRequest());
}
//If Division changed => update
if (string.Compare(crudUser.DivisionName, post.Division) != 0)
{
if (!await _context.Division.AnyAsync(d => d.DivisionName == post.Division))
{
return(BadRequest());
}
crudUser.DivisionName = post.Division;
}
//Update ExportRq ability
if (post.ExportRequests)
{
crudUser.TryAddAbility(_context, AbilityNames.ExportRequests);
}
else
{
crudUser.TryRemoveAbility(_context, AbilityNames.ExportRequests);
}
//update see all rqs
if (post.SeeAllRequests)
{
crudUser.TryAddAbility(_context, AbilityNames.SeeAllRequests);
}
else
{
crudUser.TryRemoveAbility(_context, AbilityNames.SeeAllRequests);
}
await _context.SaveChangesAsync();
}
return(Ok(new ResultWrapper()
{
Message = $"Updated: {lowerUsername}", Valid = true
}));
}
