public override void AddUsersToRoles(string[] usernames, string[] roleNames)
{
using (RMWContext Context = new RMWContext())
{
List<User> Users = Context.Users.Where(Usr => usernames.Contains(Usr.Username)).ToList();
List<Role> Roles = Context.Roles.Where(Rl => roleNames.Contains(Rl.RoleName)).ToList();
foreach (User user in Users)
{
foreach (Role role in Roles)
{
if (!user.Roles.Contains(role))
{
user.Roles.Add(role);
}
}
}
Context.SaveChanges();
}
}
public override void CreateRole(string roleName)
{
if (!string.IsNullOrEmpty(roleName))
{
using (RMWContext Context = new RMWContext())
{
Role Role = null;
Role = Context.Roles.FirstOrDefault(Rl => Rl.RoleName == roleName);
if (Role == null)
{
Role NewRole = new Role
{
RoleId = Guid.NewGuid(),
RoleName = roleName
};
Context.Roles.Add(NewRole);
Context.SaveChanges();
}
}
}
}
public override bool DeleteRole(string roleName, bool throwOnPopulatedRole)
{
if (string.IsNullOrEmpty(roleName))
{
return false;
}
using (RMWContext Context = new RMWContext())
{
Role Role = null;
Role = Context.Roles.FirstOrDefault(Rl => Rl.RoleName == roleName);
if (Role == null)
{
return false;
}
if (throwOnPopulatedRole)
{
if (Role.Users.Any())
{
return false;
}
}
else
{
Role.Users.Clear();
}
Context.Roles.Remove(Role);
Context.SaveChanges();
return true;
}
}
public override bool ChangePassword(string username, string oldPassword, string newPassword)
{
if (string.IsNullOrEmpty(username))
{
return false;
}
if (string.IsNullOrEmpty(oldPassword))
{
return false;
}
if (string.IsNullOrEmpty(newPassword))
{
return false;
}
using (var Context = new RMWContext())
{
User User = null;
User = Context.Users.FirstOrDefault(Usr => Usr.Username == username);
if (User == null)
{
return false;
}
String HashedPassword = User.Password;
Boolean VerificationSucceeded = (HashedPassword != null && Crypto.VerifyHashedPassword(HashedPassword, oldPassword));
if (VerificationSucceeded)
{
User.PasswordFailuresSinceLastSuccess = 0;
}
else
{
int Failures = User.PasswordFailuresSinceLastSuccess;
if (Failures < MaxInvalidPasswordAttempts)
{
User.PasswordFailuresSinceLastSuccess += 1;
User.LastPasswordFailureDate = DateTime.UtcNow;
}
else if (Failures >= MaxInvalidPasswordAttempts)
{
User.LastPasswordFailureDate = DateTime.UtcNow;
User.LastLockoutDate = DateTime.UtcNow;
User.IsLockedOut = true;
}
Context.SaveChanges();
return false;
}
String NewHashedPassword = Crypto.HashPassword(newPassword);
if (NewHashedPassword.Length > 128)
{
return false;
}
User.Password = NewHashedPassword;
User.LastPasswordChangedDate = DateTime.UtcNow;
Context.SaveChanges();
return true;
}
}
public override void RemoveUsersFromRoles(string[] usernames, string[] roleNames)
{
using (RMWContext Context = new RMWContext())
{
foreach (String username in usernames)
{
String us = username;
User user = Context.Users.FirstOrDefault(U => U.Username == us);
if (user != null)
{
foreach (String roleName in roleNames)
{
String rl = roleName;
Role role = user.Roles.FirstOrDefault(R => R.RoleName == rl);
if (role != null)
{
user.Roles.Remove(role);
}
}
}
}
Context.SaveChanges();
}
}
public override bool UnlockUser(string userName)
{
using (RMWContext Context = new RMWContext())
{
User User = null;
User = Context.Users.FirstOrDefault(Usr => Usr.Username == userName);
if (User != null)
{
User.IsLockedOut = false;
User.PasswordFailuresSinceLastSuccess = 0;
Context.SaveChanges();
return true;
}
else
{
return false;
}
}
}
public override bool ValidateUser(string username, string password)
{
if (string.IsNullOrEmpty(username))
{
return false;
}
if (string.IsNullOrEmpty(password))
{
return false;
}
using (var Context = new RMWContext())
{
User user = Context.Users.FirstOrDefault(Usr => Usr.Username == username);
if (user == null)
{
return false;
}
if (!user.IsApproved)
{
return false;
}
if (user.IsLockedOut)
{
return false;
}
var hashedPassword = user.Password;
var verificationSucceeded = (hashedPassword != null && Crypto.VerifyHashedPassword(hashedPassword, password));
if (verificationSucceeded)
{
user.PasswordFailuresSinceLastSuccess = 0;
user.LastLoginDate = DateTime.UtcNow;
user.LastActivityDate = DateTime.UtcNow;
}
else
{
int Failures = user.PasswordFailuresSinceLastSuccess;
if (Failures < MaxInvalidPasswordAttempts)
{
user.PasswordFailuresSinceLastSuccess += 1;
user.LastPasswordFailureDate = DateTime.UtcNow;
}
else if (Failures >= MaxInvalidPasswordAttempts)
{
user.LastPasswordFailureDate = DateTime.UtcNow;
user.LastLockoutDate = DateTime.UtcNow;
user.IsLockedOut = true;
}
}
Context.SaveChanges();
return verificationSucceeded;
}
}
public override MembershipUser GetUser(string username, bool userIsOnline)
{
if (string.IsNullOrEmpty(username))
{
return null;
}
using (var Context = new RMWContext())
{
User user = null;
user = Context.Users.FirstOrDefault(Usr => Usr.Username == username);
if (user == null)
{
return null;
}
if (userIsOnline)
{
user.LastActivityDate = DateTime.UtcNow;
Context.SaveChanges();
}
return new MembershipUser(System.Web.Security.Membership.Provider.Name, user.Username, user.Id,
user.Email, null, null, user.IsApproved, user.IsLockedOut,
user.CreateDate.Value, user.LastLoginDate.Value,
user.LastActivityDate.Value, user.LastPasswordChangedDate.Value,
user.LastLockoutDate.Value);
}
}
public override MembershipUser GetUser(object providerUserKey, bool userIsOnline)
{
if (providerUserKey is Guid) { }
else
{
return null;
}
using (var Context = new RMWContext())
{
User user = null;
user = Context.Users.Find(providerUserKey);
if (user == null)
{
return null;
}
if (userIsOnline)
{
user.LastActivityDate = DateTime.UtcNow;
Context.SaveChanges();
}
return new MembershipUser(System.Web.Security.Membership.Provider.Name, user.Username, user.Id,
user.Email, null, null, user.IsApproved, user.IsLockedOut,
user.CreateDate.Value, user.LastLoginDate.Value,
user.LastActivityDate.Value, user.LastPasswordChangedDate.Value,
user.LastLockoutDate.Value);
}
}
public override bool DeleteUser(string username, bool deleteAllRelatedData)
{
if (string.IsNullOrEmpty(username))
{
return false;
}
using (RMWContext Context = new RMWContext())
{
User User = null;
User = Context.Users.FirstOrDefault(Usr => Usr.Username == username);
if (User != null)
{
Context.Users.Remove(User);
Context.SaveChanges();
return true;
}
else
{
return false;
}
}
}
public override MembershipUser CreateUser(string username, string password, string email, string passwordQuestion, string passwordAnswer, bool isApproved, object providerUserKey, out MembershipCreateStatus status)
{
if (string.IsNullOrEmpty(username))
{
status = MembershipCreateStatus.InvalidUserName;
return null;
}
if (string.IsNullOrEmpty(password))
{
status = MembershipCreateStatus.InvalidPassword;
return null;
}
if (string.IsNullOrEmpty(email))
{
status = MembershipCreateStatus.InvalidEmail;
return null;
}
string hashedPassword = Crypto.HashPassword(password);
if (hashedPassword.Length > 128)
{
status = MembershipCreateStatus.InvalidPassword;
return null;
}
using (var Context = new RMWContext())
{
if (Context.Users.Any(Usr => Usr.Username == username))
{
status = MembershipCreateStatus.DuplicateUserName;
return null;
}
if (Context.Users.Any(Usr => Usr.Email == email))
{
status = MembershipCreateStatus.DuplicateEmail;
return null;
}
var NewUser = new User
{
//Id = Guid.NewGuid(),
Username = username,
Password = hashedPassword,
IsApproved = isApproved,
Email = email,
CreateDate = DateTime.UtcNow,
LastPasswordChangedDate = DateTime.UtcNow,
PasswordFailuresSinceLastSuccess = 0,
LastLoginDate = DateTime.UtcNow,
LastActivityDate = DateTime.UtcNow,
LastLockoutDate = DateTime.UtcNow,
IsLockedOut = false,
LastPasswordFailureDate = DateTime.UtcNow
};
Context.Users.Add(NewUser);
Context.SaveChanges();
status = MembershipCreateStatus.Success;
return new MembershipUser(System.Web.Security.Membership.Provider.Name, NewUser.Username, NewUser.Id, NewUser.Email, null, null, NewUser.IsApproved, NewUser.IsLockedOut, NewUser.CreateDate.Value, NewUser.LastLoginDate.Value, NewUser.LastActivityDate.Value, NewUser.LastPasswordChangedDate.Value, NewUser.LastLockoutDate.Value);
}
}
public string CreateAccount(string userName, string password, bool requireConfirmationToken)
{
if (string.IsNullOrEmpty(userName))
{
throw new MembershipCreateUserException(MembershipCreateStatus.InvalidUserName);
}
if (string.IsNullOrEmpty(password))
{
throw new MembershipCreateUserException(MembershipCreateStatus.InvalidPassword);
}
string hashedPassword = Crypto.HashPassword(password);
if (hashedPassword.Length > 128)
{
throw new MembershipCreateUserException(MembershipCreateStatus.InvalidPassword);
}
using (RMWContext Context = new RMWContext())
{
if (Context.Users.Where(Usr => Usr.Username == userName).Any())
{
throw new MembershipCreateUserException(MembershipCreateStatus.DuplicateUserName);
}
string token = string.Empty;
if (requireConfirmationToken)
{
token = GenerateToken();
}
User NewUser = new User
{
//Id = Guid.NewGuid(),
Username = userName,
Password = hashedPassword,
IsApproved = !requireConfirmationToken,
Email = string.Empty,
CreateDate = DateTime.UtcNow,
LastPasswordChangedDate = DateTime.UtcNow,
PasswordFailuresSinceLastSuccess = 0,
LastLoginDate = DateTime.UtcNow,
LastActivityDate = DateTime.UtcNow,
LastLockoutDate = DateTime.UtcNow,
IsLockedOut = false,
LastPasswordFailureDate = DateTime.UtcNow,
ConfirmationToken = token
};
Context.Users.Add(NewUser);
Context.SaveChanges();
return token;
}
}
public ActionResult ExternalLoginConfirmation(RegisterExternalLoginModel model, string returnUrl)
{
string provider = null;
string providerUserId = null;
if (User.Identity.IsAuthenticated ||
!OAuthWebSecurity.TryDeserializeProviderUserId(model.ExternalLoginData, out provider, out providerUserId))
{
return RedirectToAction("Manage");
}
if (ModelState.IsValid)
{
// Insert a new user into the database
using (var db = new RMWContext())
{
var user = db.Users.FirstOrDefault(u => u.Username.ToLower() == model.UserName.ToLower());
// Check if user already exists
if (user == null)
{
// Insert name into the profile table
db.Users.Add(new User {Username = model.UserName});
db.SaveChanges();
OAuthWebSecurity.CreateOrUpdateAccount(provider, providerUserId, model.UserName);
OAuthWebSecurity.Login(provider, providerUserId, createPersistentCookie: false);
return RedirectToLocal(returnUrl);
}
else
{
ModelState.AddModelError("UserName",
"User name already exists. Please enter a different user name.");
}
}
}
ViewBag.ProviderDisplayName = OAuthWebSecurity.GetOAuthClientData(provider).DisplayName;
ViewBag.ReturnUrl = returnUrl;
return View(model);
}
public static MembershipCreateStatus Register(string Username, string Password, string Email, bool IsApproved, string FirstName, string LastName)
{
MembershipCreateStatus CreateStatus;
System.Web.Security.Membership.CreateUser(Username, Password, Email, null, null, IsApproved, Guid.NewGuid(), out CreateStatus);
if (CreateStatus == MembershipCreateStatus.Success)
{
using (var Context = new RMWContext())
{
var User = Context.Users.FirstOrDefault(Usr => Usr.Username == Username);
Context.SaveChanges();
}
if (IsApproved)
{
FormsAuthentication.SetAuthCookie(Username, false);
}
}
return CreateStatus;
}