private UserInfo CreateUser(UserDto userDto, SiteInfo site)
{
var newUser = new UserInfo
{
UserName = userDto.Email,
UserEnabled = true,
FirstName = userDto.FirstName,
LastName = userDto.LastName,
FullName = userDto.FirstName + " " + userDto.LastName,
Email = userDto.Email,
SiteIndependentPrivilegeLevel = CMS.Base.UserPrivilegeLevelEnum.None
};
var newUserSettings = newUser.UserSettings ?? new UserSettingsInfo();
newUserSettings.UserPhone = userDto.PhoneNumber;
UserInfoProvider.SetUserInfo(newUser);
UserInfoProvider.AddUserToSite(newUser.UserName, site.SiteName);
var role = new RoleProvider().GetAllRoles(site.SiteID)
.FirstOrDefault(r => r.Description == userDto.Role);
if (role == null)
{
throw new Exception("Invalid user role");
}
UserInfoProvider.AddUserToRole(newUser.UserID, role.ID);
return(newUser);
}
/// <summary>
/// Creates new user
/// </summary>
/// <param name="user"></param>
private void CreateNewUser(UserInfo user)
{
List <string> stringUserSettingKeys = new List <string>()
{
"UserMobile",
"UserTitle",
"UserState",
"UserCity",
"UserAddress",
"UserFax",
"FYBudget",
"PasswordHint",
"UserCompanyName",
"UserZipCode"
};
List <string> intUserSettingKeys = new List <string>()
{
"UserCountry",
"UserDivisionID",
"SalesManagerID",
"TradeMarketingManagerID"
};
user = new UserInfo()
{
FirstName = ValidationHelper.GetString(formElem.GetFieldValue("FirstName"), string.Empty),
LastName = ValidationHelper.GetString(formElem.GetFieldValue("LastName"), string.Empty),
Email = ValidationHelper.GetString(formElem.GetFieldValue("Email"), string.Empty),
UserName = ValidationHelper.GetString(formElem.GetFieldValue("Email"), string.Empty),
Enabled = ValidationHelper.GetBoolean(formElem.GetFieldValue("UserEnabled"), false),
UserSettings =
{
UserPhone = ValidationHelper.GetString(formElem.GetFieldValue("UserMobile"), string.Empty)
}
};
foreach (string stringUserSettingKey in stringUserSettingKeys)
{
user.UserSettings.SetValue(stringUserSettingKey, ValidationHelper.GetString(formElem.GetFieldValue(stringUserSettingKey), string.Empty));
}
foreach (string intUserSettingKey in intUserSettingKeys)
{
user.UserSettings.SetValue(intUserSettingKey, ValidationHelper.GetInteger(formElem.GetFieldValue(intUserSettingKey), 0));
}
string Password = ValidationHelper.GetString(formElem.GetFieldValue("UserPassword"), string.Empty);
UserInfoProvider.SetUserInfo(user);
UserInfoProvider.SetPassword(user.UserName, Password);
UserInfoProvider.AddUserToSite(user.UserName, CurrentSiteName);
NewUserRole = ValidationHelper.GetString(formElem.GetFieldValue("UserRole"), string.Empty);
if (!string.IsNullOrEmpty(NewUserRole))
{
UserInfoProvider.AddUserToRole(user.UserName, NewUserRole, CurrentSiteName);
}
if (user != null)
{
string BusinessUnits = ValidationHelper.GetString(formElem.GetFieldValue("BusinessUnit"), string.Empty);
BindBusinessUnitsToUser(BusinessUnits, user.UserID);
}
}
public HttpResponseMessage AddUsersToRoles([FromBody] JObject postData)
{
string[] usernames;
int[] roleIds;
string siteName;
//parsing postdata
try
{
usernames = postData["usernames"].ToObject <string[]>();
roleIds = postData["roleIds"].ToObject <int[]>();
siteName = postData["siteName"].ToObject <string>();
}
catch (Exception e)
{
return(Request.CreateResponse(HttpStatusCode.BadRequest, new { errorMessage = e.Message }));
}
//checks if usernames on the site name are valid
string checkUsers = CheckIfUsersAndRolesExist(usernames, new string[0], siteName);
//checks if role are valid
string checkRoles = AreRoleIdsValid(roleIds);
//the errorMessage contains which username or rolename is invalid
if (checkUsers != "")
{
return(Request.CreateResponse(HttpStatusCode.BadRequest, new { errorMessage = checkUsers }));
}
if (checkRoles != "")
{
return(Request.CreateResponse(HttpStatusCode.BadRequest, new { errorMessage = checkRoles }));
}
UserInfo user;
//for each username
for (int i = 0; i < usernames.Length; i++)
{
//gets the user by ID
user = UserInfoProvider.GetUserInfo(usernames[i]);
//for every role ID
for (int j = 0; j < roleIds.Length; j++)
{
//assign user to role
try
{
UserInfoProvider.AddUserToRole(user.UserID, roleIds[j]);
} catch (Exception e)
{
return(Request.CreateResponse(HttpStatusCode.BadRequest, new { errorMessage = e.Message }));
}
}
}
return(Request.CreateResponse(HttpStatusCode.OK, new { }));
}
public void SetUserRole(int UserID, string RoleName, string SiteName, bool RoleToggle)
{
var Role = _RoleRepo.GetRole(RoleName, SiteName, new string[] { "RoleID" });
if (RoleToggle && !_RoleRepo.UserInRole(UserID, RoleName, SiteName))
{
UserInfoProvider.AddUserToRole(UserID, Role.RoleID);
}
else
{
UserInfoProvider.RemoveUserFromRole(UserID, Role.RoleID);
}
}
protected void itemSelectionElem_OnMoveRight(object sender, CommandEventArgs e)
{
// Permissions check
if (!CMSContext.CurrentUser.IsAuthorizedPerResource("CMS.Users", "ManageUserRoles"))
{
RedirectToAccessDenied("CMS.Users", "Manage user roles");
}
string argument = ValidationHelper.GetString(e.CommandArgument, "");
if (!string.IsNullOrEmpty(argument))
{
string[] ids = argument.Split(new char[] { ';' }, StringSplitOptions.RemoveEmptyEntries);
foreach (string id in ids)
{
UserInfoProvider.AddUserToRole(userId, ValidationHelper.GetInteger(id, 0));
}
}
}
/// <summary>
/// Adds user to role
/// <param name="userName">User name</param>
/// <param name="roles">Role names the user should be assign to. Role names are separated by the char of ';'</param>
/// <param name="siteName">Site name</param>
/// </summary>
private void AssignUserToRoles(string userName, string roles, string siteName)
{
if (string.IsNullOrEmpty(siteName))
{
return;
}
var roleList = roles.Split(';');
foreach (string roleName in roleList)
{
String sn = roleName.StartsWithCSafe(".") ? "" : siteName;
if (RoleInfoProvider.RoleExists(roleName, sn))
{
UserInfoProvider.AddUserToRole(userName, roleName, sn);
}
}
}
/// <summary>
/// Adds user to role
/// <param name="userName">User name</param>
/// <param name="roles">Role names the user should be assign to. Role names are separated by the char of ';'</param>
/// <param name="siteName">Site name</param>
/// </summary>
private void AssignUserToRoles(string userName, string roles, string siteName)
{
string[] roleList = roles.Split(';');
if ((siteName != null) && (siteName != ""))
{
if ((roleList != null) && (roleList.Length > 0))
{
for (int i = 0; i < roleList.Length; i++)
{
String roleName = roleList[i];
String sn = roleName.StartsWithCSafe(".") ? "" : siteName;
if (RoleInfoProvider.RoleExists(roleName, sn))
{
UserInfoProvider.AddUserToRole(userName, roleName, sn);
}
}
}
}
}
protected void btnSave_Click(object sender, EventArgs e)
{
try
{
if (formElem.ValidateData())
{
UserInfo user = formElem.Info as UserInfo;
string BusinessUnits = ValidationHelper.GetString(formElem.GetFieldValue("BusinessUnit"), string.Empty);
if (user == null || (user != null && user.UserID <= 0))
{
CreateNewUser(user);
Response.Redirect("~/" + CurrentDocument.DocumentUrlPath);
}
else
{
if (user != null && user.UserID != 0 && !string.IsNullOrEmpty(BusinessUnits))
{
BindBusinessUnitsToUser(BusinessUnits, user.UserID);
DeleteUserRoles(user.UserID);
NewUserRole = ValidationHelper.GetString(formElem.GetFieldValue("UserRole"), string.Empty);
if (!string.IsNullOrEmpty(NewUserRole))
{
UserInfoProvider.AddUserToRole(user.UserName, NewUserRole, CurrentSiteName);
}
}
formElem.SaveData("~/" + CurrentDocument.DocumentUrlPath);
}
}
else
{
formElem.ShowValidationErrorMessage = true;
}
}
catch (Exception ex)
{
EventLogProvider.LogException("UsersList", "UserSave", ex);
}
}
/// <summary>
/// Assigns user to roles defined in AssignRoles property.
/// </summary>
private void AssignToRoles(UserInfo ui)
{
string[] roleList = AssignRoles.Split(';');
foreach (string siteName in SiteList)
{
// Add new user to the current site
UserInfoProvider.AddUserToSite(ui.UserName, siteName);
foreach (string roleName in roleList)
{
if (!String.IsNullOrEmpty(roleName))
{
String sn = roleName.StartsWithCSafe(".") ? String.Empty : siteName;
// Add user to desired roles
if (RoleInfoProvider.RoleExists(roleName, sn))
{
UserInfoProvider.AddUserToRole(ui.UserName, roleName, sn);
}
}
}
}
}
private void GenerateEcommerceData(int siteID)
{
var siteName = SiteInfoProvider.GetSiteName(siteID);
var currencyInfo = CurrencyInfoProvider.GetCurrencies(siteID)
.Where("CurrencyIsMain", QueryOperator.Equals, 1).TopN(1).FirstOrDefault();
var list1 = PaymentOptionInfoProvider.GetPaymentOptions(siteID).ToList();
var list2 = ShippingOptionInfoProvider.GetShippingOptions(siteID).ToList();
var orderStatusList = OrderStatusInfoProvider.GetOrderStatuses(siteID).ToDictionary(status => status.StatusName);
var manufacturerExceptionList = new List <int>
{
ManufacturerInfoProvider.GetManufacturerInfo("Aerobie", siteName).ManufacturerID,
//ManufacturerInfoProvider.GetManufacturerInfo("Chemex", siteName).ManufacturerID,
//ManufacturerInfoProvider.GetManufacturerInfo("Espro", siteName).ManufacturerID
};
var list3 = SKUInfoProvider.GetSKUs(siteID).ToList().Where(sku =>
{
if (sku.IsProduct)
{
return(!manufacturerExceptionList.Contains(sku.SKUManufacturerID));
}
return(false);
}).ToList();
int num1;
IList <int> intList;
if (CustomerInfoProvider.GetCustomers().WhereEquals("CustomerSiteID", siteID).Count < 50)
{
num1 = customerNames.Length;
intList = new List <int>();
for (var index = 0; index < num1; ++index)
{
intList.Add(GenerateCustomer(customerNames[index], siteID).CustomerID);
}
}
else
{
intList = DataHelper.GetIntegerValues(CustomerInfoProvider.GetCustomers().Column("CustomerID")
.WhereEquals("CustomerSiteID", siteID).WhereNotEquals("CustomerEmail", "alex").Tables[0],
"CustomerID");
num1 = intList.Count;
}
var num2 = 0;
var num3 = 0;
for (var index1 = 0; index1 <= 30; ++index1)
{
++num2;
var num4 = 0;
if (index1 > 5)
{
num4 = rand.Next(-1, 2);
}
for (var index2 = 0; index2 < num2 / 2 + num4; ++index2)
{
var orderStatusInfo = index1 >= 25
? index1 >= 29 ? orderStatusList["New"] : orderStatusList["InProgress"]
: orderStatusList["Completed"];
var orderInfo = new OrderInfo
{
OrderCustomerID = intList[num3 % num1],
OrderCurrencyID = currencyInfo.CurrencyID,
OrderSiteID = siteID,
OrderStatusID = orderStatusInfo.StatusID,
OrderIsPaid = "Completed".Equals(orderStatusInfo.StatusName, StringComparison.Ordinal) ||
(uint)rand.Next(0, 2) > 0U,
OrderShippingOptionID = list2[rand.Next(list2.Count)].ShippingOptionID,
OrderPaymentOptionID = list1[rand.Next(list1.Count)].PaymentOptionID,
OrderGrandTotal = decimal.Zero,
OrderGrandTotalInMainCurrency = decimal.Zero,
OrderTotalPrice = decimal.Zero,
OrderTotalPriceInMainCurrency = decimal.Zero,
OrderTotalShipping = new decimal(10),
OrderTotalTax = new decimal(10)
};
OrderInfoProvider.SetOrderInfo(orderInfo);
var orderItems = GenerateOrderItems(orderInfo, list3);
GenerateOrderAddress(orderInfo.OrderID, GetRandomCountryId(), AddressType.Billing);
GenerateOrderAddress(orderInfo.OrderID, GetRandomCountryId(), AddressType.Shipping);
orderInfo.OrderDate = DateTime.Now.AddDays(index1 - 30);
orderInfo.OrderTotalPrice = orderItems;
orderInfo.OrderTotalPriceInMainCurrency = orderItems;
orderInfo.OrderGrandTotal = orderItems;
orderInfo.OrderGrandTotalInMainCurrency = orderItems;
var cartInfoFromOrder = ShoppingCartInfoProvider.GetShoppingCartInfoFromOrder(orderInfo.OrderID);
orderInfo.OrderInvoiceNumber = OrderInfoProvider.GenerateInvoiceNumber(cartInfoFromOrder);
orderInfo.OrderInvoice = ShoppingCartInfoProvider.GetOrderInvoice(cartInfoFromOrder);
OrderInfoProvider.SetOrderInfo(orderInfo);
++num3;
}
}
if (UserInfoProvider.GetUserInfo("alex") != null)
{
return;
}
var customerInfo = new CustomerInfo
{
CustomerEmail = "*****@*****.**",
CustomerFirstName = "Alexander",
CustomerLastName = "Adams",
CustomerSiteID = siteID,
CustomerCompany = "Alex & Co. Ltd",
CustomerTaxRegistrationID = "12S379BDF798",
CustomerOrganizationID = "WRQ7987VRG79"
};
CustomerInfoProvider.SetCustomerInfo(customerInfo);
var userInfo = CustomerInfoProvider.RegisterCustomer(customerInfo, "", "alex");
var roleInfo = RoleInfoProvider.GetRoleInfo("SilverPartner", siteID);
if (roleInfo != null)
{
UserInfoProvider.AddUserToRole(userInfo.UserID, roleInfo.RoleID);
}
for (var index = 0; index < 5; ++index)
{
var cart = new ShoppingCartInfo();
cart.ShoppingCartCulture = CultureHelper.GetDefaultCultureCode(siteName);
cart.ShoppingCartCurrencyID = currencyInfo.CurrencyID;
cart.ShoppingCartSiteID = siteID;
cart.ShoppingCartCustomerID = customerInfo.CustomerID;
cart.ShoppingCartBillingAddress = GenerateAddress(GetRandomCountryId(), customerInfo.CustomerID);
cart.ShoppingCartShippingAddress = GenerateAddress(GetRandomCountryId(), customerInfo.CustomerID);
cart.User = userInfo;
ShoppingCartInfoProvider.SetShoppingCartInfo(cart);
ShoppingCartInfoProvider.SetShoppingCartItem(cart,
new ShoppingCartItemParameters(list3.ElementAt(rand.Next(list3.Count)).SKUID, rand.Next(5)));
cart.Evaluate();
ShoppingCartInfoProvider.SetOrder(cart);
}
}
/// <summary>
/// OK click handler (Proceed registration).
/// </summary>
protected void btnOK_Click(object sender, EventArgs e)
{
if (PortalContext.IsDesignMode(PortalContext.ViewMode) || (HideOnCurrentPage) || (!IsVisible))
{
// Do not process
}
else
{
String siteName = SiteContext.CurrentSiteName;
#region "Banned IPs"
// Ban IP addresses which are blocked for registration
if (!BannedIPInfoProvider.IsAllowed(siteName, BanControlEnum.Registration))
{
ShowError(GetString("banip.ipisbannedregistration"));
return;
}
#endregion
#region "Check Email & password"
string[] siteList = { siteName };
// If AssignToSites field set
if (!String.IsNullOrEmpty(AssignToSites))
{
siteList = AssignToSites.Split(';');
}
// Check whether another user with this user name (which is effectively email) does not exist
UserInfo ui = UserInfoProvider.GetUserInfo(txtEmail.Text);
SiteInfo si = SiteContext.CurrentSite;
UserInfo siteui = UserInfoProvider.GetUserInfo(UserInfoProvider.EnsureSitePrefixUserName(txtEmail.Text, si));
if ((ui != null) || (siteui != null))
{
ShowError(GetString("Webparts_Membership_RegistrationForm.UserAlreadyExists").Replace("%%name%%", HTMLHelper.HTMLEncode(txtEmail.Text)));
return;
}
// Check whether password is same
if (passStrength.Text != txtConfirmPassword.Text)
{
ShowError(GetString("Webparts_Membership_RegistrationForm.PassworDoNotMatch"));
return;
}
if ((PasswordMinLength > 0) && (passStrength.Text.Length < PasswordMinLength))
{
ShowError(String.Format(GetString("Webparts_Membership_RegistrationForm.PasswordMinLength"), PasswordMinLength));
return;
}
if (!passStrength.IsValid())
{
ShowError(AuthenticationHelper.GetPolicyViolationMessage(SiteContext.CurrentSiteName));
return;
}
if ((!txtEmail.IsValid()) || (txtEmail.Text.Length > EMAIL_MAX_LENGTH))
{
ShowError(String.Format(GetString("Webparts_Membership_RegistrationForm.EmailIsNotValid"), EMAIL_MAX_LENGTH));
return;
}
#endregion
#region "Captcha"
// Check if captcha is required and verify captcha text
if (DisplayCaptcha && !scCaptcha.IsValid())
{
// Display error message if catcha text is not valid
ShowError(GetString("Webparts_Membership_RegistrationForm.captchaError"));
return;
}
#endregion
#region "User properties"
var userEmail = txtEmail.Text.Trim();
ui = new UserInfo();
ui.PreferredCultureCode = "";
ui.Email = userEmail;
ui.FirstName = txtFirstName.Text.Trim();
ui.LastName = txtLastName.Text.Trim();
ui.FullName = UserInfoProvider.GetFullName(ui.FirstName, String.Empty, ui.LastName);
ui.MiddleName = "";
ui.UserMFRequired = chkUseMultiFactorAutentization.Checked;
// User name as put by user (no site prefix included)
var plainUserName = userEmail;
ui.UserName = plainUserName;
// Check if the given email can be used as user name
if (!ValidationHelper.IsUserName(plainUserName))
{
ShowError(String.Format(GetString("Webparts_Membership_RegistrationForm.UserNameNotValid"), HTMLHelper.HTMLEncode(plainUserName)));
return;
}
// Ensure site prefixes
if (UserInfoProvider.UserNameSitePrefixEnabled(siteName))
{
ui.UserName = UserInfoProvider.EnsureSitePrefixUserName(plainUserName, si);
}
ui.Enabled = EnableUserAfterRegistration;
ui.UserURLReferrer = CookieHelper.GetValue(CookieName.UrlReferrer);
ui.UserCampaign = Service <ICampaignService> .Entry().CampaignCode;
ui.SiteIndependentPrivilegeLevel = UserPrivilegeLevelEnum.None;
ui.UserSettings.UserRegistrationInfo.IPAddress = HttpContext.Current.Request.ServerVariables["REMOTE_ADDR"];
ui.UserSettings.UserRegistrationInfo.Agent = HttpContext.Current.Request.UserAgent;
// Check whether confirmation is required
bool requiresConfirmation = SettingsKeyInfoProvider.GetBoolValue(siteName + ".CMSRegistrationEmailConfirmation");
bool requiresAdminApprove = false;
if (!requiresConfirmation)
{
// If confirmation is not required check whether administration approval is required
requiresAdminApprove = SettingsKeyInfoProvider.GetBoolValue(siteName + ".CMSRegistrationAdministratorApproval");
if (requiresAdminApprove)
{
ui.Enabled = false;
ui.UserSettings.UserWaitingForApproval = true;
}
}
else
{
// EnableUserAfterRegistration is overridden by requiresConfirmation - user needs to be confirmed before enable
ui.Enabled = false;
}
// Set user's starting alias path
if (!String.IsNullOrEmpty(StartingAliasPath))
{
ui.UserStartingAliasPath = MacroResolver.ResolveCurrentPath(StartingAliasPath);
}
#endregion
#region "Reserved names"
// Check for reserved user names like administrator, sysadmin, ...
if (UserInfoProvider.NameIsReserved(siteName, plainUserName))
{
ShowError(GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(Functions.GetFormattedUserName(ui.UserName, true))));
return;
}
if (UserInfoProvider.NameIsReserved(siteName, ui.UserNickName))
{
ShowError(GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(ui.UserNickName)));
return;
}
#endregion
#region "License limitations"
string errorMessage = String.Empty;
UserInfoProvider.CheckLicenseLimitation(ui, ref errorMessage);
if (!String.IsNullOrEmpty(errorMessage))
{
ShowError(errorMessage);
return;
}
#endregion
// Check whether email is unique if it is required
if (!UserInfoProvider.IsEmailUnique(userEmail, siteList, 0))
{
ShowError(GetString("UserInfo.EmailAlreadyExist"));
return;
}
// Set password
UserInfoProvider.SetPassword(ui, passStrength.Text);
#region "Welcome Emails (confirmation, waiting for approval)"
bool error = false;
EmailTemplateInfo template = null;
string emailSubject = null;
// Send welcome message with username and password, with confirmation link, user must confirm registration
if (requiresConfirmation)
{
template = EmailTemplateProvider.GetEmailTemplate("RegistrationConfirmation", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationConfirmationEmailSubject"));
}
// Send welcome message with username and password, with information that user must be approved by administrator
else if (SendWelcomeEmail)
{
if (requiresAdminApprove)
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.RegistrationWaitingForApproval", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationWaitingForApprovalSubject"));
}
// Send welcome message with username and password, user can logon directly
else
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.Registration", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationSubject"));
}
}
if (template != null)
{
// Create relation between contact and user. This ensures that contact will be correctly recognized when user approves registration (if approval is required)
int contactId = ModuleCommands.OnlineMarketingGetCurrentContactID();
if (contactId > 0)
{
ModuleCommands.OnlineMarketingCreateRelation(ui.UserID, MembershipType.CMS_USER, contactId);
}
// Email message
EmailMessage email = new EmailMessage();
email.EmailFormat = EmailFormatEnum.Default;
email.Recipients = ui.Email;
email.From = SettingsKeyInfoProvider.GetValue(siteName + ".CMSNoreplyEmailAddress");
email.Subject = emailSubject;
try
{
var resolver = MembershipResolvers.GetMembershipRegistrationResolver(ui, AuthenticationHelper.GetRegistrationApprovalUrl(ApprovalPage, ui.UserGUID, siteName, NotifyAdministrator));
EmailSender.SendEmailWithTemplateText(siteName, email, template, resolver, true);
}
catch (Exception ex)
{
EventLogProvider.LogException("E", "RegistrationForm - SendEmail", ex);
error = true;
}
}
// If there was some error, user must be deleted
if (error)
{
ShowError(GetString("RegistrationForm.UserWasNotCreated"));
// Email was not send, user can't be approved - delete it
UserInfoProvider.DeleteUser(ui);
return;
}
#endregion
#region "Administrator notification email"
// Notify administrator if enabled and e-mail confirmation is not required
if (!requiresConfirmation && NotifyAdministrator && (FromAddress != String.Empty) && (ToAddress != String.Empty))
{
EmailTemplateInfo mEmailTemplate;
if (SettingsKeyInfoProvider.GetBoolValue(siteName + ".CMSRegistrationAdministratorApproval"))
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.Approve", siteName);
}
else
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.New", siteName);
}
if (mEmailTemplate == null)
{
// Log missing e-mail template
EventLogProvider.LogEvent(EventType.ERROR, "RegistrationForm", "GetEmailTemplate", eventUrl: RequestContext.RawURL);
}
else
{
EmailMessage message = new EmailMessage();
message.EmailFormat = EmailFormatEnum.Default;
message.From = EmailHelper.GetSender(mEmailTemplate, FromAddress);
message.Recipients = ToAddress;
message.Subject = GetString("RegistrationForm.EmailSubject");
try
{
MacroResolver resolver = MembershipResolvers.GetRegistrationResolver(ui);
EmailSender.SendEmailWithTemplateText(siteName, message, mEmailTemplate, resolver, false);
}
catch
{
EventLogProvider.LogEvent(EventType.ERROR, "Membership", "RegistrationEmail");
}
}
}
#endregion
#region "Web analytics"
// Track successful registration conversion
if (TrackConversionName != String.Empty)
{
if (AnalyticsHelper.AnalyticsEnabled(siteName) && !AnalyticsHelper.IsIPExcluded(siteName, RequestContext.UserHostAddress))
{
// Log conversion
HitLogProvider.LogConversions(siteName, LocalizationContext.PreferredCultureCode, TrackConversionName, 0, ConversionValue);
}
}
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
AnalyticsHelper.LogRegisteredUser(siteName, ui);
}
#endregion
#region "On-line marketing - activity"
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
MembershipActivityLogger.LogRegistration(ui.UserName, DocumentContext.CurrentDocument);
// Log login activity
if (ui.Enabled)
{
MembershipActivityLogger.LogLogin(ui.UserName, DocumentContext.CurrentDocument);
}
}
#endregion
#region "Roles & authentication"
string[] roleList = AssignRoles.Split(';');
foreach (string sn in siteList)
{
// Add new user to the current site
UserInfoProvider.AddUserToSite(ui.UserName, sn);
foreach (string roleName in roleList)
{
if (!String.IsNullOrEmpty(roleName))
{
String s = roleName.StartsWith(".", StringComparison.Ordinal) ? "" : sn;
// Add user to desired roles
if (RoleInfoProvider.RoleExists(roleName, s))
{
UserInfoProvider.AddUserToRole(ui.UserName, roleName, s);
}
}
}
}
if (DisplayMessage.Trim() != String.Empty)
{
pnlForm.Visible = false;
lblText.Visible = true;
lblText.Text = DisplayMessage;
}
else
{
if (ui.Enabled)
{
AuthenticationHelper.AuthenticateUser(ui.UserName, true);
}
if (RedirectToURL != String.Empty)
{
URLHelper.Redirect(UrlResolver.ResolveUrl(RedirectToURL));
}
else if (QueryHelper.GetString("ReturnURL", "") != String.Empty)
{
string url = QueryHelper.GetString("ReturnURL", "");
// Do url decode
url = Server.UrlDecode(url);
// Check that url is relative path or hash is ok
if (url.StartsWith("~", StringComparison.Ordinal) || url.StartsWith("/", StringComparison.Ordinal) || QueryHelper.ValidateHash("hash", "aliaspath"))
{
URLHelper.Redirect(UrlResolver.ResolveUrl(url));
}
// Absolute path with wrong hash
else
{
URLHelper.Redirect(AdministrationUrlHelper.GetErrorPageUrl("dialogs.badhashtitle", "dialogs.badhashtext"));
}
}
}
#endregion
lblError.Visible = false;
}
}
/// <summary>
/// OK click handler (Proceed registration).
/// </summary>
protected void btnOK_Click(object sender, EventArgs e)
{
if (PortalContext.IsDesignMode(PortalContext.ViewMode) || (HideOnCurrentPage) || (!IsVisible))
{
// Do not process
}
else
{
String siteName = SiteContext.CurrentSiteName;
#region "Banned IPs"
// Ban IP addresses which are blocked for registration
if (!BannedIPInfoProvider.IsAllowed(siteName, BanControlEnum.Registration))
{
lblError.Visible = true;
lblError.Text = GetString("banip.ipisbannedregistration");
return;
}
#endregion
#region "Check Email & password"
string[] siteList = { siteName };
// If AssignToSites field set
if (!String.IsNullOrEmpty(AssignToSites))
{
siteList = AssignToSites.Split(';');
}
// Check whether user with same email does not exist
UserInfo ui = UserInfoProvider.GetUserInfo(txtEmail.Text);
SiteInfo si = SiteContext.CurrentSite;
UserInfo siteui = UserInfoProvider.GetUserInfo(UserInfoProvider.EnsureSitePrefixUserName(txtEmail.Text, si));
if ((ui != null) || (siteui != null))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserAlreadyExists").Replace("%%name%%", HTMLHelper.HTMLEncode(txtEmail.Text));
return;
}
// Check whether password is same
if (passStrength.Text != txtConfirmPassword.Text)
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.PassworDoNotMatch");
return;
}
if ((PasswordMinLength > 0) && (passStrength.Text.Length < PasswordMinLength))
{
lblError.Visible = true;
lblError.Text = String.Format(GetString("Webparts_Membership_RegistrationForm.PasswordMinLength"), PasswordMinLength.ToString());
return;
}
if (!passStrength.IsValid())
{
lblError.Visible = true;
lblError.Text = AuthenticationHelper.GetPolicyViolationMessage(SiteContext.CurrentSiteName);
return;
}
if (!ValidationHelper.IsEmail(txtEmail.Text.ToLowerCSafe()))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.EmailIsNotValid");
return;
}
#endregion
#region "Captcha"
// Check if captcha is required and verifiy captcha text
if (DisplayCaptcha && !scCaptcha.IsValid())
{
// Display error message if catcha text is not valid
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.captchaError");
return;
}
#endregion
#region "User properties"
ui = new UserInfo();
ui.PreferredCultureCode = "";
ui.Email = txtEmail.Text.Trim();
ui.FirstName = txtFirstName.Text.Trim();
ui.LastName = txtLastName.Text.Trim();
ui.FullName = UserInfoProvider.GetFullName(ui.FirstName, String.Empty, ui.LastName);
ui.MiddleName = "";
ui.UserMFRequired = chkUseMultiFactorAutentization.Checked;
// User name as put by user (no site prefix included)
String plainUserName = txtEmail.Text.Trim();
ui.UserName = plainUserName;
// Ensure site prefixes
if (UserInfoProvider.UserNameSitePrefixEnabled(siteName))
{
ui.UserName = UserInfoProvider.EnsureSitePrefixUserName(txtEmail.Text.Trim(), si);
}
ui.Enabled = EnableUserAfterRegistration;
ui.UserURLReferrer = MembershipContext.AuthenticatedUser.URLReferrer;
ui.UserCampaign = AnalyticsHelper.Campaign;
ui.SetPrivilegeLevel(UserPrivilegeLevelEnum.None);
ui.UserSettings.UserRegistrationInfo.IPAddress = HttpContext.Current.Request.ServerVariables["REMOTE_ADDR"];
ui.UserSettings.UserRegistrationInfo.Agent = HttpContext.Current.Request.UserAgent;
// Check whether confirmation is required
bool requiresConfirmation = SettingsKeyInfoProvider.GetBoolValue(siteName + ".CMSRegistrationEmailConfirmation");
bool requiresAdminApprove = false;
if (!requiresConfirmation)
{
// If confirmation is not required check whether administration approval is reqiures
if ((requiresAdminApprove = SettingsKeyInfoProvider.GetBoolValue(siteName + ".CMSRegistrationAdministratorApproval")))
{
ui.Enabled = false;
ui.UserSettings.UserWaitingForApproval = true;
}
}
else
{
// EnableUserAfterRegistration is overrided by requiresConfirmation - user needs to be confirmed before enable
ui.Enabled = false;
}
// Set user's starting alias path
if (!String.IsNullOrEmpty(StartingAliasPath))
{
ui.UserStartingAliasPath = MacroResolver.ResolveCurrentPath(StartingAliasPath);
}
#endregion
#region "Reserved names"
// Check for reserved user names like administrator, sysadmin, ...
if (UserInfoProvider.NameIsReserved(siteName, plainUserName))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(Functions.GetFormattedUserName(ui.UserName, true)));
return;
}
if (UserInfoProvider.NameIsReserved(siteName, plainUserName))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(ui.UserNickName));
return;
}
#endregion
#region "License limitations"
string errorMessage = String.Empty;
UserInfoProvider.CheckLicenseLimitation(ui, ref errorMessage);
if (!String.IsNullOrEmpty(errorMessage))
{
lblError.Visible = true;
lblError.Text = errorMessage;
return;
}
#endregion
// Check whether email is unique if it is required
if (!UserInfoProvider.IsEmailUnique(txtEmail.Text.Trim(), siteList, 0))
{
lblError.Visible = true;
lblError.Text = GetString("UserInfo.EmailAlreadyExist");
return;
}
// Set password
UserInfoProvider.SetPassword(ui, passStrength.Text);
// Prepare macro data source for email resolver
UserInfo userForMail = ui.Clone();
userForMail.SetValue("UserPassword", string.Empty);
object[] data = new object[1];
data[0] = userForMail;
// Prepare resolver for notification and welcome emails
MacroResolver resolver = MacroContext.CurrentResolver;
resolver.SetAnonymousSourceData(data);
resolver.Settings.EncodeResolvedValues = true;
#region "Welcome Emails (confirmation, waiting for approval)"
bool error = false;
EmailTemplateInfo template = null;
string emailSubject = null;
// Send welcome message with username and password, with confirmation link, user must confirm registration
if (requiresConfirmation)
{
template = EmailTemplateProvider.GetEmailTemplate("RegistrationConfirmation", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationConfirmationEmailSubject"));
}
// Send welcome message with username and password, with information that user must be approved by administrator
else if (SendWelcomeEmail)
{
if (requiresAdminApprove)
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.RegistrationWaitingForApproval", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationWaitingForApprovalSubject"));
}
// Send welcome message with username and password, user can logon directly
else
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.Registration", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationSubject"));
}
}
if (template != null)
{
// Retrieve contact ID for confirmation e-mail
int contactId = 0;
if (ActivitySettingsHelper.ActivitiesEnabledAndModuleLoaded(siteName))
{
// Check if loggin registration activity is enabled
if (ActivitySettingsHelper.UserRegistrationEnabled(siteName))
{
if (ActivitySettingsHelper.ActivitiesEnabledForThisUser(ui))
{
contactId = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
}
}
}
// Prepare macro replacements
string[,] replacements = new string[6, 2];
replacements[0, 0] = "confirmaddress";
replacements[0, 1] = AuthenticationHelper.GetRegistrationApprovalUrl(ApprovalPage, ui.UserGUID, siteName, NotifyAdministrator, contactId);
replacements[1, 0] = "username";
replacements[1, 1] = plainUserName;
replacements[2, 0] = "password";
replacements[2, 1] = passStrength.Text;
replacements[3, 0] = "Email";
replacements[3, 1] = txtEmail.Text;
replacements[4, 0] = "FirstName";
replacements[4, 1] = txtFirstName.Text;
replacements[5, 0] = "LastName";
replacements[5, 1] = txtLastName.Text;
// Set resolver
resolver.SetNamedSourceData(replacements);
// Email message
EmailMessage email = new EmailMessage();
email.EmailFormat = EmailFormatEnum.Default;
email.Recipients = ui.Email;
email.From = EmailHelper.GetSender(template, SettingsKeyInfoProvider.GetStringValue(siteName + ".CMSNoreplyEmailAddress"));
email.Body = resolver.ResolveMacros(template.TemplateText);
resolver.Settings.EncodeResolvedValues = false;
email.PlainTextBody = resolver.ResolveMacros(template.TemplatePlainText);
email.Subject = resolver.ResolveMacros(emailSubject);
email.CcRecipients = template.TemplateCc;
email.BccRecipients = template.TemplateBcc;
try
{
EmailHelper.ResolveMetaFileImages(email, template.TemplateID, EmailTemplateInfo.OBJECT_TYPE, ObjectAttachmentsCategories.TEMPLATE);
// Send the e-mail immediately
EmailSender.SendEmail(siteName, email, true);
}
catch (Exception ex)
{
EventLogProvider.LogException("E", "RegistrationForm - SendEmail", ex);
error = true;
}
}
// If there was some error, user must be deleted
if (error)
{
lblError.Visible = true;
lblError.Text = GetString("RegistrationForm.UserWasNotCreated");
// Email was not send, user can't be approved - delete it
UserInfoProvider.DeleteUser(ui);
return;
}
#endregion
#region "Administrator notification email"
// Notify administrator if enabled and e-mail confirmation is not required
if (!requiresConfirmation && NotifyAdministrator && (FromAddress != String.Empty) && (ToAddress != String.Empty))
{
EmailTemplateInfo mEmailTemplate = null;
if (requiresAdminApprove)
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.Approve", siteName);
}
else
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.New", siteName);
}
if (mEmailTemplate == null)
{
// Log missing e-mail template
EventLogProvider.LogEvent(EventType.ERROR, "RegistrationForm", "GetEmailTemplate", eventUrl: RequestContext.RawURL);
}
else
{
string[,] replacements = new string[4, 2];
replacements[0, 0] = "firstname";
replacements[0, 1] = ui.FirstName;
replacements[1, 0] = "lastname";
replacements[1, 1] = ui.LastName;
replacements[2, 0] = "email";
replacements[2, 1] = ui.Email;
replacements[3, 0] = "username";
replacements[3, 1] = plainUserName;
// Set resolver
resolver.SetNamedSourceData(replacements);
EmailMessage message = new EmailMessage();
message.EmailFormat = EmailFormatEnum.Default;
message.From = EmailHelper.GetSender(mEmailTemplate, FromAddress);
message.Recipients = ToAddress;
message.Body = resolver.ResolveMacros(mEmailTemplate.TemplateText);
resolver.Settings.EncodeResolvedValues = false;
message.PlainTextBody = resolver.ResolveMacros(mEmailTemplate.TemplatePlainText);
message.Subject = resolver.ResolveMacros(EmailHelper.GetSubject(mEmailTemplate, GetString("RegistrationForm.EmailSubject")));
message.CcRecipients = mEmailTemplate.TemplateCc;
message.BccRecipients = mEmailTemplate.TemplateBcc;
try
{
// Attach template meta-files to e-mail
EmailHelper.ResolveMetaFileImages(message, mEmailTemplate.TemplateID, EmailTemplateInfo.OBJECT_TYPE, ObjectAttachmentsCategories.TEMPLATE);
EmailSender.SendEmail(siteName, message);
}
catch
{
EventLogProvider.LogEvent(EventType.ERROR, "Membership", "RegistrationEmail");
}
}
}
#endregion
#region "Web analytics"
// Track successful registration conversion
if (TrackConversionName != String.Empty)
{
if (AnalyticsHelper.AnalyticsEnabled(siteName) && AnalyticsHelper.TrackConversionsEnabled(siteName) && !AnalyticsHelper.IsIPExcluded(siteName, RequestContext.UserHostAddress))
{
// Log conversion
HitLogProvider.LogConversions(siteName, LocalizationContext.PreferredCultureCode, TrackConversionName, 0, ConversionValue);
}
}
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
AnalyticsHelper.LogRegisteredUser(siteName, ui);
}
#endregion
#region "On-line marketing - activity"
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
Activity activity = new ActivityRegistration(ui, DocumentContext.CurrentDocument, AnalyticsContext.ActivityEnvironmentVariables);
if (activity.Data != null)
{
activity.Data.ContactID = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
activity.Log();
}
// Log login activity
if (ui.Enabled)
{
// Log activity
int contactID = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
Activity activityLogin = new ActivityUserLogin(contactID, ui, DocumentContext.CurrentDocument, AnalyticsContext.ActivityEnvironmentVariables);
activityLogin.Log();
}
}
#endregion
#region "Roles & authentication"
string[] roleList = AssignRoles.Split(';');
foreach (string sn in siteList)
{
// Add new user to the current site
UserInfoProvider.AddUserToSite(ui.UserName, sn);
foreach (string roleName in roleList)
{
if (!String.IsNullOrEmpty(roleName))
{
String s = roleName.StartsWithCSafe(".") ? "" : sn;
// Add user to desired roles
if (RoleInfoProvider.RoleExists(roleName, s))
{
UserInfoProvider.AddUserToRole(ui.UserName, roleName, s);
}
}
}
}
if (DisplayMessage.Trim() != String.Empty)
{
pnlForm.Visible = false;
lblText.Visible = true;
lblText.Text = DisplayMessage;
}
else
{
if (ui.Enabled)
{
AuthenticationHelper.AuthenticateUser(ui.UserName, true);
}
if (RedirectToURL != String.Empty)
{
URLHelper.Redirect(RedirectToURL);
}
else if (QueryHelper.GetString("ReturnURL", "") != String.Empty)
{
string url = QueryHelper.GetString("ReturnURL", "");
// Do url decode
url = Server.UrlDecode(url);
// Check that url is relative path or hash is ok
if (url.StartsWithCSafe("~") || url.StartsWithCSafe("/") || QueryHelper.ValidateHash("hash"))
{
URLHelper.Redirect(url);
}
// Absolute path with wrong hash
else
{
URLHelper.Redirect(ResolveUrl("~/CMSMessages/Error.aspx?title=" + ResHelper.GetString("general.badhashtitle") + "&text=" + ResHelper.GetString("general.badhashtext")));
}
}
}
#endregion
lblError.Visible = false;
}
}
protected async void Page_Load(object sender, EventArgs e)
{
try
{
ClientCredential credential = new ClientCredential(Constants.AzureActiveDirectory.ClientId,
Constants.AzureActiveDirectory.AppKey);
var authContext =
new AuthenticationContext(string.Format(Constants.AzureActiveDirectory.Authority,
Constants.AzureActiveDirectory.TenantId));
var code = ValidationHelper.GetString(HttpContext.Current.Request.QueryString["code"], string.Empty);
AuthenticationResult result =
await
authContext.AcquireTokenByAuthorizationCodeAsync(code,
new Uri(Request.Url.GetLeftPart(UriPartial.Path)), credential,
string.Format(Constants.AzureActiveDirectory.GraphResourceUri, ""));
var adClient = new ActiveDirectoryClient(
new Uri(string.Format(Constants.AzureActiveDirectory.GraphResourceUri, result.TenantId)),
async() => await GetAppTokenAsync(result.TenantId));
var adUser =
(User)
await
adClient.Users.Where(x => x.UserPrincipalName.Equals(result.UserInfo.DisplayableId))
.Expand(x => x.MemberOf)
.ExecuteSingleAsync();
var user =
UserInfoProvider.GetUsers()
.Where("AzureADUsername", QueryOperator.Equals, adUser.UserPrincipalName)
.FirstOrDefault();
var groupsToAdd = adUser.MemberOf.OfType <Group>()
.Select(x => x.DisplayName)
.Where(x => Constants.AzureActiveDirectory.GroupsToSync.Contains(x));
var groupsToRemove = Constants.AzureActiveDirectory.GroupsToSync
.Where(x => !groupsToAdd.Contains(x));
if (user == null)
{
user = new CMS.Membership.UserInfo();
user.UserName = adUser.UserPrincipalName;
user.FirstName = adUser.GivenName;
user.LastName = adUser.Surname;
user.FullName = adUser.DisplayName;
user.Email = adUser.Mail.IfEmpty(adUser.OtherMails.FirstOrDefault());
user.SetValue("AzureADUsername", adUser.UserPrincipalName);
user.IsExternal = true;
user.Enabled = true;
UserInfoProvider.SetUserInfo(user);
UserInfoProvider.AddUserToSite(user.UserName, SiteContext.CurrentSiteName);
foreach (var group in groupsToAdd)
{
UserInfoProvider.AddUserToRole(user.UserName,
RoleInfoProvider.GetRoles()
.OnSite(SiteContext.CurrentSiteID)
.Where("RoleDisplayName", QueryOperator.Equals, group)
.FirstOrDefault()?.RoleName ?? "", SiteContext.CurrentSiteName);
}
}
else
{
user.FirstName = adUser.GivenName;
user.LastName = adUser.Surname;
user.FullName = adUser.DisplayName;
user.Email = adUser.Mail.IfEmpty(adUser.OtherMails.FirstOrDefault());
user.IsExternal = true;
UserInfoProvider.SetUserInfo(user);
UserInfoProvider.AddUserToSite(user.UserName, SiteContext.CurrentSiteName);
foreach (var group in groupsToAdd)
{
UserInfoProvider.AddUserToRole(user.UserName,
RoleInfoProvider.GetRoles()
.OnSite(SiteContext.CurrentSiteID)
.Where("RoleDisplayName", QueryOperator.Equals, group)
.FirstOrDefault()?.RoleName ?? "", SiteContext.CurrentSiteName);
}
foreach (var group in groupsToRemove)
{
UserInfoProvider.RemoveUserFromRole(user.UserName,
RoleInfoProvider.GetRoles()
.OnSite(SiteContext.CurrentSiteID)
.Where("RoleDisplayName", QueryOperator.Equals, group)
.FirstOrDefault()?.RoleName ?? "", SiteContext.CurrentSiteName);
}
}
AuthenticationHelper.AuthenticateUser(user.UserName, false);
MembershipActivityLogger.LogLogin(user.UserName, DocumentContext.CurrentDocument);
}
catch (Exception exception)
{
EventLogProvider.LogException("AzureActiveDirectory", "Login", exception);
}
var postLoginPage = DocumentHelper.GetDocuments()
.WhereEquals("NodeAliasPath", Constants.AzureActiveDirectory.PostLoginPage)
.FirstOrDefault(x => x.DocumentCulture.Equals(LocalizationContext.CurrentCulture.CultureCode,
StringComparison.InvariantCultureIgnoreCase));
var returnUrl = HttpContext.Current.Request.GetReturnUrl(postLoginPage.GetRelativeUrl());
URLHelper.Redirect(URLHelper.GetAbsoluteUrl(returnUrl));
}
/// <summary>
/// OK click handler (Proceed registration).
/// </summary>
private void btnRegister_Click(object sender, EventArgs e)
{
if ((PageManager.ViewMode == ViewModeEnum.Design) || (HideOnCurrentPage) || (!IsVisible))
{
// Do not process
}
else
{
// Ban IP addresses which are blocked for registration
if (!BannedIPInfoProvider.IsAllowed(CMSContext.CurrentSiteName, BanControlEnum.Registration))
{
lblError.Visible = true;
lblError.Text = GetString("banip.ipisbannedregistration");
return;
}
// Check if captcha is required
if (DisplayCaptcha)
{
// Verify captcha text
if (!captchaElem.IsValid())
{
// Display error message if captcha text is not valid
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.captchaError");
return;
}
else
{
// Generate new code and clear captcha textbox if cpatcha code is valid
captchaElem.GenerateNew();
}
}
string userName = String.Empty;
string nickName = String.Empty;
string firstName = String.Empty;
string lastName = String.Empty;
string emailValue = String.Empty;
// Check duplicate user
// 1. Find appropriate control and get its value (i.e. user name)
// 2. Try to find user info
EditingFormControl txtUserName = formUser.BasicForm.FieldEditingControls["UserName"] as EditingFormControl;
if (txtUserName != null)
{
userName = ValidationHelper.GetString(txtUserName.Value, String.Empty);
}
EditingFormControl txtEmail = formUser.BasicForm.FieldEditingControls["Email"] as EditingFormControl;
if (txtEmail != null)
{
emailValue = ValidationHelper.GetString(txtEmail.Value, String.Empty);
}
// If user name and e-mail aren't filled stop processing and display error.
if (string.IsNullOrEmpty(userName))
{
userName = emailValue;
if (String.IsNullOrEmpty(emailValue))
{
formUser.StopProcessing = true;
lblError.Visible = true;
lblError.Text = GetString("customregistrationform.usernameandemail");
return;
}
else
{
formUser.BasicForm.Data.SetValue("UserName", userName);
}
}
EditingFormControl txtNickName = formUser.BasicForm.FieldEditingControls["UserNickName"] as EditingFormControl;
if (txtNickName != null)
{
nickName = ValidationHelper.GetString(txtNickName.Value, String.Empty);
}
EditingFormControl txtFirstName = formUser.BasicForm.FieldEditingControls["FirstName"] as EditingFormControl;
if (txtFirstName != null)
{
firstName = ValidationHelper.GetString(txtFirstName.Value, String.Empty);
}
EditingFormControl txtLastName = formUser.BasicForm.FieldEditingControls["LastName"] as EditingFormControl;
if (txtLastName != null)
{
lastName = ValidationHelper.GetString(txtLastName.Value, String.Empty);
}
// Test if "global" or "site" user exists.
SiteInfo si = CMSContext.CurrentSite;
UserInfo siteui = UserInfoProvider.GetUserInfo(UserInfoProvider.EnsureSitePrefixUserName(userName, si));
if ((UserInfoProvider.GetUserInfo(userName) != null) || (siteui != null))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserAlreadyExists").Replace("%%name%%", HTMLHelper.HTMLEncode(Functions.GetFormattedUserName(userName, true)));
return;
}
// Check for reserved user names like administrator, sysadmin, ...
if (UserInfoProvider.NameIsReserved(CMSContext.CurrentSiteName, userName))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(Functions.GetFormattedUserName(userName, true)));
return;
}
if (UserInfoProvider.NameIsReserved(CMSContext.CurrentSiteName, nickName))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(nickName));
return;
}
// Check limitations for site members
if (!UserInfoProvider.LicenseVersionCheck(URLHelper.GetCurrentDomain(), FeatureEnum.SiteMembers, VersionActionEnum.Insert, false))
{
lblError.Visible = true;
lblError.Text = GetString("License.MaxItemsReachedSiteMember");
return;
}
// Check whether email is unique if it is required
string checkSites = (String.IsNullOrEmpty(AssignToSites)) ? CMSContext.CurrentSiteName : AssignToSites;
if (!UserInfoProvider.IsEmailUnique(emailValue, checkSites, 0))
{
lblError.Visible = true;
lblError.Text = GetString("UserInfo.EmailAlreadyExist");
return;
}
// Validate and save form with new user data
if (!formUser.Save())
{
// Return if saving failed
return;
}
// Get user info from form
UserInfo ui = (UserInfo)formUser.Info;
// Add user prefix if settings is on
// Ensure site prefixes
if (UserInfoProvider.UserNameSitePrefixEnabled(CMSContext.CurrentSiteName))
{
ui.UserName = UserInfoProvider.EnsureSitePrefixUserName(userName, si);
}
ui.PreferredCultureCode = "";
ui.Enabled = EnableUserAfterRegistration;
ui.IsEditor = false;
ui.IsGlobalAdministrator = false;
ui.UserURLReferrer = CMSContext.CurrentUser.URLReferrer;
ui.UserCampaign = CMSContext.Campaign;
// Fill optionally full user name
if (String.IsNullOrEmpty(ui.FullName))
{
ui.FullName = UserInfoProvider.GetFullName(ui.FirstName, ui.MiddleName, ui.LastName);
}
// Ensure nick name
if (ui.UserNickName.Trim() == "")
{
ui.UserNickName = Functions.GetFormattedUserName(ui.UserName, true);
}
ui.UserSettings.UserRegistrationInfo.IPAddress = HTTPHelper.UserHostAddress;
ui.UserSettings.UserRegistrationInfo.Agent = HttpContext.Current.Request.UserAgent;
ui.UserSettings.UserLogActivities = true;
ui.UserSettings.UserShowSplashScreen = true;
// Check whether confirmation is required
bool requiresConfirmation = SettingsKeyProvider.GetBoolValue(CMSContext.CurrentSiteName + ".CMSRegistrationEmailConfirmation");
bool requiresAdminApprove = SettingsKeyProvider.GetBoolValue(CMSContext.CurrentSiteName + ".CMSRegistrationAdministratorApproval");
if (!requiresConfirmation)
{
// If confirmation is not required check whether administration approval is reqiures
if (requiresAdminApprove)
{
ui.Enabled = false;
ui.UserSettings.UserWaitingForApproval = true;
}
}
else
{
// EnableUserAfterRegistration is overrided by requiresConfirmation - user needs to be confirmed before enable
ui.Enabled = false;
}
// Set user's starting alias path
if (!String.IsNullOrEmpty(StartingAliasPath))
{
ui.UserStartingAliasPath = CMSContext.ResolveCurrentPath(StartingAliasPath);
}
// Get user password and save it in apropriate format after form save
string password = ValidationHelper.GetString(ui.GetValue("UserPassword"), String.Empty);
UserInfoProvider.SetPassword(ui, password);
// Prepare macro data source for email resolver
UserInfo userForMail = ui.Clone();
userForMail.SetValue("UserPassword", string.Empty);
object[] data = new object[1];
data[0] = userForMail;
// Prepare resolver for notification and welcome emails
ContextResolver resolver = CMSContext.CurrentResolver;
resolver.SourceData = data;
#region "Welcome Emails (confirmation, waiting for approval)"
bool error = false;
EventLogProvider ev = new EventLogProvider();
EmailTemplateInfo template = null;
// Prepare macro replacements
string[,] replacements = new string[6, 2];
replacements[0, 0] = "confirmaddress";
replacements[0, 1] = (ApprovalPage != String.Empty) ? URLHelper.GetAbsoluteUrl(ApprovalPage) + "?userguid=" + ui.UserGUID : URLHelper.GetAbsoluteUrl("~/CMSPages/Dialogs/UserRegistration.aspx") + "?userguid=" + ui.UserGUID;
replacements[1, 0] = "username";
replacements[1, 1] = userName;
replacements[2, 0] = "password";
replacements[2, 1] = password;
replacements[3, 0] = "Email";
replacements[3, 1] = emailValue;
replacements[4, 0] = "FirstName";
replacements[4, 1] = firstName;
replacements[5, 0] = "LastName";
replacements[5, 1] = lastName;
// Set resolver
resolver.SourceParameters = replacements;
// Email message
EmailMessage emailMessage = new EmailMessage();
emailMessage.EmailFormat = EmailFormatEnum.Default;
emailMessage.Recipients = ui.Email;
// Send welcome message with username and password, with confirmation link, user must confirm registration
if (requiresConfirmation)
{
template = EmailTemplateProvider.GetEmailTemplate("RegistrationConfirmation", CMSContext.CurrentSiteName);
emailMessage.Subject = GetString("RegistrationForm.RegistrationConfirmationEmailSubject");
}
// Send welcome message with username and password, with information that user must be approved by administrator
else if (SendWelcomeEmail)
{
if (requiresAdminApprove)
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.RegistrationWaitingForApproval", CMSContext.CurrentSiteName);
emailMessage.Subject = GetString("RegistrationForm.RegistrationWaitingForApprovalSubject");
}
// Send welcome message with username and password, user can logon directly
else
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.Registration", CMSContext.CurrentSiteName);
emailMessage.Subject = GetString("RegistrationForm.RegistrationSubject");
}
}
if (template != null)
{
emailMessage.From = EmailHelper.GetSender(template, SettingsKeyProvider.GetStringValue(CMSContext.CurrentSiteName + ".CMSNoreplyEmailAddress"));
// Enable macro encoding for body
resolver.EncodeResolvedValues = true;
emailMessage.Body = resolver.ResolveMacros(template.TemplateText);
// Disable macro encoding for plaintext body and subject
resolver.EncodeResolvedValues = false;
emailMessage.PlainTextBody = resolver.ResolveMacros(template.TemplatePlainText);
emailMessage.Subject = resolver.ResolveMacros(EmailHelper.GetSubject(template, emailMessage.Subject));
emailMessage.CcRecipients = template.TemplateCc;
emailMessage.BccRecipients = template.TemplateBcc;
try
{
MetaFileInfoProvider.ResolveMetaFileImages(emailMessage, template.TemplateID, EmailObjectType.EMAILTEMPLATE, MetaFileInfoProvider.OBJECT_CATEGORY_TEMPLATE);
// Send the e-mail immediately
EmailSender.SendEmail(CMSContext.CurrentSiteName, emailMessage, true);
}
catch (Exception ex)
{
ev.LogEvent("E", "RegistrationForm - SendEmail", ex);
error = true;
}
}
// If there was some error, user must be deleted
if (error)
{
lblError.Visible = true;
lblError.Text = GetString("RegistrationForm.UserWasNotCreated");
// Email was not send, user can't be approved - delete it
UserInfoProvider.DeleteUser(ui);
return;
}
#endregion
#region "Administrator notification email"
// Notify administrator if enabled and email confirmation is not required
if (!requiresConfirmation && NotifyAdministrator && (FromAddress != String.Empty) && (ToAddress != String.Empty))
{
EmailTemplateInfo mEmailTemplate = null;
if (requiresAdminApprove)
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.Approve", CMSContext.CurrentSiteName);
}
else
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.New", CMSContext.CurrentSiteName);
}
if (mEmailTemplate == null)
{
ev.LogEvent("E", DateTime.Now, "RegistrationForm", "GetEmailTemplate", HTTPHelper.GetAbsoluteUri());
}
//email template ok
else
{
replacements = new string[4, 2];
replacements[0, 0] = "firstname";
replacements[0, 1] = ui.FirstName;
replacements[1, 0] = "lastname";
replacements[1, 1] = ui.LastName;
replacements[2, 0] = "email";
replacements[2, 1] = ui.Email;
replacements[3, 0] = "username";
replacements[3, 1] = userName;
// Set resolver
resolver.SourceParameters = replacements;
// Enable macro encoding for body
resolver.EncodeResolvedValues = true;
EmailMessage message = new EmailMessage();
message.EmailFormat = EmailFormatEnum.Default;
message.From = EmailHelper.GetSender(mEmailTemplate, FromAddress);
message.Recipients = ToAddress;
message.Body = resolver.ResolveMacros(mEmailTemplate.TemplateText);
// Disable macro encoding for plaintext body and subject
resolver.EncodeResolvedValues = false;
message.Subject = resolver.ResolveMacros(EmailHelper.GetSubject(mEmailTemplate, GetString("RegistrationForm.EmailSubject")));
message.PlainTextBody = resolver.ResolveMacros(mEmailTemplate.TemplatePlainText);
message.CcRecipients = mEmailTemplate.TemplateCc;
message.BccRecipients = mEmailTemplate.TemplateBcc;
try
{
// Attach template meta-files to e-mail
MetaFileInfoProvider.ResolveMetaFileImages(message, mEmailTemplate.TemplateID, EmailObjectType.EMAILTEMPLATE, MetaFileInfoProvider.OBJECT_CATEGORY_TEMPLATE);
EmailSender.SendEmail(CMSContext.CurrentSiteName, message);
}
catch
{
ev.LogEvent("E", DateTime.Now, "Membership", "RegistrationEmail", CMSContext.CurrentSite.SiteID);
}
}
}
#endregion
#region "Web analytics"
// Track successful registration conversion
if (TrackConversionName != String.Empty)
{
string siteName = CMSContext.CurrentSiteName;
if (AnalyticsHelper.AnalyticsEnabled(siteName) && AnalyticsHelper.TrackConversionsEnabled(siteName) && !AnalyticsHelper.IsIPExcluded(siteName, HTTPHelper.UserHostAddress))
{
HitLogProvider.LogConversions(siteName, CMSContext.PreferredCultureCode, TrackConversionName, 0, ConversionValue);
}
}
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
AnalyticsHelper.LogRegisteredUser(CMSContext.CurrentSiteName, ui);
}
#endregion
#region "On-line marketing - activity"
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
Activity activity = new ActivityRegistration(ui, CMSContext.CurrentDocument, CMSContext.ActivityEnvironmentVariables);
if (activity.Data != null)
{
activity.Data.ContactID = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
activity.Log();
}
// Log login activity
if (ui.Enabled)
{
// Log activity
int contactID = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
Activity activityLogin = new ActivityUserLogin(contactID, ui, CMSContext.CurrentDocument, CMSContext.ActivityEnvironmentVariables);
activityLogin.Log();
}
}
#endregion
#region "Site and roles addition and authentication"
string[] roleList = AssignRoles.Split(';');
string[] siteList;
// If AssignToSites field set
if (!String.IsNullOrEmpty(AssignToSites))
{
siteList = AssignToSites.Split(';');
}
else // If not set user current site
{
siteList = new string[] { CMSContext.CurrentSiteName };
}
foreach (string siteName in siteList)
{
// Add new user to the current site
UserInfoProvider.AddUserToSite(ui.UserName, siteName);
foreach (string roleName in roleList)
{
if (!String.IsNullOrEmpty(roleName))
{
String sn = roleName.StartsWithCSafe(".") ? "" : siteName;
// Add user to desired roles
if (RoleInfoProvider.RoleExists(roleName, sn))
{
UserInfoProvider.AddUserToRole(ui.UserName, roleName, sn);
}
}
}
}
if (DisplayMessage.Trim() != String.Empty)
{
pnlRegForm.Visible = false;
lblInfo.Visible = true;
lblInfo.Text = DisplayMessage;
}
else
{
if (ui.Enabled)
{
CMSContext.AuthenticateUser(ui.UserName, true);
}
string returnUrl = QueryHelper.GetString("ReturnURL", "");
if (!String.IsNullOrEmpty(returnUrl) && (returnUrl.StartsWithCSafe("~") || returnUrl.StartsWithCSafe("/") || QueryHelper.ValidateHash("hash")))
{
URLHelper.Redirect(HttpUtility.UrlDecode(returnUrl));
}
else if (RedirectToURL != String.Empty)
{
URLHelper.Redirect(RedirectToURL);
}
}
#endregion
lblError.Visible = false;
}
}
/// <summary>
/// OK click handler (Proceed registration).
/// </summary>
private void btnRegister_Click(object sender, EventArgs e)
{
string currentSiteName = SiteContext.CurrentSiteName;
string[] siteList = { currentSiteName };
// If AssignToSites field set
if (!String.IsNullOrEmpty(AssignToSites))
{
siteList = AssignToSites.Split(';');
}
if ((PageManager.ViewMode == ViewModeEnum.Design) || (HideOnCurrentPage) || (!IsVisible))
{
// Do not process
}
else
{
// Ban IP addresses which are blocked for registration
if (!BannedIPInfoProvider.IsAllowed(currentSiteName, BanControlEnum.Registration))
{
lblError.Visible = true;
lblError.Text = GetString("banip.ipisbannedregistration");
return;
}
// Check if captcha is required and verify captcha text
if (DisplayCaptcha && !captchaElem.IsValid())
{
// Display error message if captcha text is not valid
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.captchaError");
return;
}
string userName = String.Empty;
string nickName = String.Empty;
string firstName = String.Empty;
string lastName = String.Empty;
string emailValue = String.Empty;
string pwd = string.Empty;
string confPassword = string.Empty;
string educationLevel = String.Empty;
string interestArea = String.Empty;
string industry = String.Empty;
string referralSource = string.Empty;
// Check duplicate user
// 1. Find appropriate control and get its value (i.e. user name)
// 2. Try to find user info
//FormEngineUserControl txtUserName = formUser.FieldControls["UserName"];
//if (txtUserName != null)
//{
// userName = ValidationHelper.GetString(txtUserName.Value, String.Empty);
//}
FormEngineUserControl txtEmail = formUser.FieldControls["Email"];
if (txtEmail != null)
{
emailValue = ValidationHelper.GetString(txtEmail.Value, String.Empty);
userName = emailValue;
}
// If user name and e-mail aren't filled stop processing and display error.
if (string.IsNullOrEmpty(userName) && String.IsNullOrEmpty(emailValue))
{
formUser.StopProcessing = true;
lblError.Visible = true;
lblError.Text = GetString("customregistrationform.usernameandemail");
return;
}
else
{
formUser.Data.SetValue("UserName", userName);
}
//check if email is valid
if (!ValidationHelper.IsEmail(txtEmail.Text.ToLowerCSafe()))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.EmailIsNotValid");
return;
}
FormEngineUserControl txtNickName = formUser.FieldControls["UserNickName"];
if (txtNickName != null)
{
nickName = ValidationHelper.GetString(txtNickName.Value, String.Empty);
}
FormEngineUserControl txtFirstName = formUser.FieldControls["FirstName"];
if (txtFirstName != null)
{
firstName = ValidationHelper.GetString(txtFirstName.Value, String.Empty);
}
FormEngineUserControl txtLastName = formUser.FieldControls["LastName"];
if (txtLastName != null)
{
lastName = ValidationHelper.GetString(txtLastName.Value, String.Empty);
}
FormEngineUserControl txtPwd = formUser.FieldControls["UserPassword"];
if (txtPwd != null)
{
pwd = ValidationHelper.GetString(txtPwd.Value, String.Empty);
}
FormEngineUserControl txtConfPassword = formUser.FieldControls["ReenterPassword"];
if (txtConfPassword != null)
{
confPassword = ValidationHelper.GetString(txtConfPassword.Value, String.Empty);
}
if (string.IsNullOrEmpty(pwd) || string.IsNullOrEmpty(confPassword))
{
lblError.Visible = true;
lblError.Text = "please enter password with confirmation";
return;
}
if (pwd != confPassword)
{
lblError.Visible = true;
lblError.Text = "Password doesn't match";
return;
}
if (validateFields(formUser.FieldControls["UserPassword"].Value.ToString()))
{
// Test if "global" or "site" user exists.
SiteInfo si = SiteContext.CurrentSite;
UserInfo siteui = UserInfoProvider.GetUserInfo(UserInfoProvider.EnsureSitePrefixUserName(userName, si));
if ((UserInfoProvider.GetUserInfo(userName) != null) || (siteui != null))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserAlreadyExists").Replace("%%name%%", HTMLHelper.HTMLEncode(Functions.GetFormattedUserName(userName, true)));
return;
}
// Check for reserved user names like administrator, sysadmin, ...
if (UserInfoProvider.NameIsReserved(currentSiteName, userName))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(Functions.GetFormattedUserName(userName, true)));
return;
}
if (UserInfoProvider.NameIsReserved(currentSiteName, nickName))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(nickName));
return;
}
// Check limitations for site members
if (!UserInfoProvider.LicenseVersionCheck(RequestContext.CurrentDomain, FeatureEnum.SiteMembers, ObjectActionEnum.Insert, false))
{
lblError.Visible = true;
lblError.Text = GetString("License.MaxItemsReachedSiteMember");
return;
}
// Check whether email is unique if it is required
if (!UserInfoProvider.IsEmailUnique(emailValue, siteList, 0))
{
lblError.Visible = true;
lblError.Text = GetString("UserInfo.EmailAlreadyExist");
return;
}
// Validate and save form with new user data
if (!formUser.Save())
{
// Return if saving failed
return;
}
// Get user info from form
UserInfo ui = (UserInfo)formUser.Info;
// Add user prefix if settings is on
// Ensure site prefixes
if (UserInfoProvider.UserNameSitePrefixEnabled(currentSiteName))
{
ui.UserName = UserInfoProvider.EnsureSitePrefixUserName(userName, si);
}
ui.Enabled = EnableUserAfterRegistration;
ui.UserURLReferrer = MembershipContext.AuthenticatedUser.URLReferrer;
ui.UserCampaign = AnalyticsHelper.Campaign;
ui.SetPrivilegeLevel(UserPrivilegeLevelEnum.None);
// Fill optionally full user name
if (String.IsNullOrEmpty(ui.FullName))
{
ui.FullName = UserInfoProvider.GetFullName(ui.FirstName, ui.MiddleName, ui.LastName);
}
// Ensure nick name
if (ui.UserNickName.Trim() == String.Empty)
{
ui.UserNickName = Functions.GetFormattedUserName(ui.UserName, true);
}
ui.UserSettings.UserRegistrationInfo.IPAddress = RequestContext.UserHostAddress;
ui.UserSettings.UserRegistrationInfo.Agent = HttpContext.Current.Request.UserAgent;
ui.UserSettings.UserLogActivities = true;
ui.UserSettings.UserShowIntroductionTile = true;
// Check whether confirmation is required
bool requiresConfirmation = SettingsKeyInfoProvider.GetBoolValue(currentSiteName + ".CMSRegistrationEmailConfirmation");
bool requiresAdminApprove = SettingsKeyInfoProvider.GetBoolValue(currentSiteName + ".CMSRegistrationAdministratorApproval");
if (!requiresConfirmation)
{
// If confirmation is not required check whether administration approval is reqiures
if (requiresAdminApprove)
{
ui.Enabled = false;
ui.UserSettings.UserWaitingForApproval = true;
}
}
else
{
// EnableUserAfterRegistration is overrided by requiresConfirmation - user needs to be confirmed before enable
ui.Enabled = false;
}
// Set user's starting alias path
if (!String.IsNullOrEmpty(StartingAliasPath))
{
ui.UserStartingAliasPath = MacroResolver.ResolveCurrentPath(StartingAliasPath);
}
// Get user password and save it in apropriate format after form save
string password = ValidationHelper.GetString(ui.GetValue("UserPassword"), String.Empty);
UserInfoProvider.SetPassword(ui, password);
var customerToken = PersonifyRegistered(emailValue, password, firstName, lastName);
if (string.IsNullOrEmpty(customerToken))
{
UserInfoProvider.DeleteUser(ui);
return;
}
else
{
var roles = GetImsroles(customerToken);
string groupslist = "";
if (roles.Length > 0)
{
foreach (string s in roles)
{
if (s.Length > 0)
{
groupslist += s + ",";
}
}
}
//we need this mispelling.
groupslist += "peronifyUser" + ",";
new LoginUsertokentico().AddUserToRole(ui, groupslist, true, false);
}
// Prepare macro data source for email resolver
UserInfo userForMail = ui.Clone();
userForMail.SetValue("UserPassword", string.Empty);
object[] data = new object[1];
data[0] = userForMail;
// Prepare resolver for notification and welcome emails
MacroResolver resolver = MacroContext.CurrentResolver;
resolver.SetAnonymousSourceData(data);
#region "Welcome Emails (confirmation, waiting for approval)"
bool error = false;
EmailTemplateInfo template = null;
// Prepare macro replacements
string[,] replacements = new string[6, 2];
replacements[0, 0] = "confirmaddress";
replacements[0, 1] = AuthenticationHelper.GetRegistrationApprovalUrl(ApprovalPage, ui.UserGUID, currentSiteName, NotifyAdministrator);
replacements[1, 0] = "username";
replacements[1, 1] = userName;
replacements[2, 0] = "password";
replacements[2, 1] = password;
replacements[3, 0] = "Email";
replacements[3, 1] = emailValue;
replacements[4, 0] = "FirstName";
replacements[4, 1] = firstName;
replacements[5, 0] = "LastName";
replacements[5, 1] = lastName;
// Set resolver
resolver.SetNamedSourceData(replacements);
// Email message
EmailMessage emailMessage = new EmailMessage();
emailMessage.EmailFormat = EmailFormatEnum.Default;
emailMessage.Recipients = ui.Email;
// Send welcome message with username and password, with confirmation link, user must confirm registration
if (requiresConfirmation)
{
template = EmailTemplateProvider.GetEmailTemplate("RegistrationConfirmation", currentSiteName);
emailMessage.Subject = GetString("RegistrationForm.RegistrationConfirmationEmailSubject");
}
// Send welcome message with username and password, with information that user must be approved by administrator
else if (SendWelcomeEmail)
{
if (requiresAdminApprove)
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.RegistrationWaitingForApproval", currentSiteName);
emailMessage.Subject = GetString("RegistrationForm.RegistrationWaitingForApprovalSubject");
}
// Send welcome message with username and password, user can logon directly
else
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.Registration", currentSiteName);
emailMessage.Subject = GetString("RegistrationForm.RegistrationSubject");
}
}
if (template != null)
{
emailMessage.From = EmailHelper.GetSender(template, SettingsKeyInfoProvider.GetStringValue(currentSiteName + ".CMSNoreplyEmailAddress"));
// Enable macro encoding for body
resolver.Settings.EncodeResolvedValues = true;
emailMessage.Body = resolver.ResolveMacros(template.TemplateText);
// Disable macro encoding for plaintext body and subject
resolver.Settings.EncodeResolvedValues = false;
emailMessage.PlainTextBody = resolver.ResolveMacros(template.TemplatePlainText);
emailMessage.Subject = resolver.ResolveMacros(EmailHelper.GetSubject(template, emailMessage.Subject));
emailMessage.CcRecipients = template.TemplateCc;
emailMessage.BccRecipients = template.TemplateBcc;
try
{
EmailHelper.ResolveMetaFileImages(emailMessage, template.TemplateID, EmailTemplateInfo.OBJECT_TYPE, ObjectAttachmentsCategories.TEMPLATE);
// Send the e-mail immediately
EmailSender.SendEmail(currentSiteName, emailMessage, true);
}
catch (Exception ex)
{
EventLogProvider.LogException("E", "RegistrationForm - SendEmail", ex);
error = true;
}
}
// If there was some error, user must be deleted
if (error)
{
lblError.Visible = true;
lblError.Text = GetString("RegistrationForm.UserWasNotCreated");
// Email was not send, user can't be approved - delete it
UserInfoProvider.DeleteUser(ui);
return;
}
#endregion
#region "Administrator notification email"
// Notify administrator if enabled and email confirmation is not required
if (!requiresConfirmation && NotifyAdministrator && (FromAddress != String.Empty) && (ToAddress != String.Empty))
{
EmailTemplateInfo mEmailTemplate = null;
if (requiresAdminApprove)
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.Approve", currentSiteName);
}
else
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.New", currentSiteName);
}
if (mEmailTemplate == null)
{
EventLogProvider.LogEvent(EventType.ERROR, "RegistrationForm", "GetEmailTemplate", eventUrl: RequestContext.RawURL);
}
else
{
// E-mail template ok
replacements = new string[4, 2];
replacements[0, 0] = "firstname";
replacements[0, 1] = ui.FirstName;
replacements[1, 0] = "lastname";
replacements[1, 1] = ui.LastName;
replacements[2, 0] = "email";
replacements[2, 1] = ui.Email;
replacements[3, 0] = "username";
replacements[3, 1] = userName;
// Set resolver
resolver.SetNamedSourceData(replacements);
// Enable macro encoding for body
resolver.Settings.EncodeResolvedValues = true;
EmailMessage message = new EmailMessage();
message.EmailFormat = EmailFormatEnum.Default;
message.From = EmailHelper.GetSender(mEmailTemplate, FromAddress);
message.Recipients = ToAddress;
message.Body = resolver.ResolveMacros(mEmailTemplate.TemplateText);
// Disable macro encoding for plaintext body and subject
resolver.Settings.EncodeResolvedValues = false;
message.Subject = resolver.ResolveMacros(EmailHelper.GetSubject(mEmailTemplate, GetString("RegistrationForm.EmailSubject")));
message.PlainTextBody = resolver.ResolveMacros(mEmailTemplate.TemplatePlainText);
message.CcRecipients = mEmailTemplate.TemplateCc;
message.BccRecipients = mEmailTemplate.TemplateBcc;
try
{
// Attach template meta-files to e-mail
EmailHelper.ResolveMetaFileImages(message, mEmailTemplate.TemplateID, EmailTemplateInfo.OBJECT_TYPE, ObjectAttachmentsCategories.TEMPLATE);
EmailSender.SendEmail(currentSiteName, message);
}
catch
{
EventLogProvider.LogEvent(EventType.ERROR, "Membership", "RegistrationEmail");
}
}
}
#endregion
#region "Web analytics"
// Track successful registration conversion
if (TrackConversionName != String.Empty)
{
if (AnalyticsHelper.AnalyticsEnabled(currentSiteName) && AnalyticsHelper.TrackConversionsEnabled(currentSiteName) && !AnalyticsHelper.IsIPExcluded(currentSiteName, RequestContext.UserHostAddress))
{
HitLogProvider.LogConversions(currentSiteName, LocalizationContext.PreferredCultureCode, TrackConversionName, 0, ConversionValue);
}
}
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
AnalyticsHelper.LogRegisteredUser(currentSiteName, ui);
}
#endregion
#region "On-line marketing - activity"
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
Activity activity = new ActivityRegistration(ui, DocumentContext.CurrentDocument, AnalyticsContext.ActivityEnvironmentVariables);
if (activity.Data != null)
{
activity.Data.ContactID = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
activity.Log();
}
// Log login activity
if (ui.Enabled)
{
// Log activity
int contactID = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
Activity activityLogin = new ActivityUserLogin(contactID, ui, DocumentContext.CurrentDocument, AnalyticsContext.ActivityEnvironmentVariables);
activityLogin.Log();
}
}
#endregion
#region "Site and roles addition and authentication"
string[] roleList = AssignRoles.Split(';');
foreach (string siteName in siteList)
{
// Add new user to the current site
UserInfoProvider.AddUserToSite(ui.UserName, siteName);
foreach (string roleName in roleList)
{
if (!String.IsNullOrEmpty(roleName))
{
String sn = roleName.StartsWithCSafe(".") ? String.Empty : siteName;
// Add user to desired roles
if (RoleInfoProvider.RoleExists(roleName, sn))
{
UserInfoProvider.AddUserToRole(ui.UserName, roleName, sn);
}
}
}
}
if (ui.Enabled)
{
if (this.AutoLoginAfterRegistration)
{
Session["UserName"] = userName;
Session["Password"] = password;
Session["RememberMe"] = true;
Session["RetryCount"] = null;
if (this.Request.QueryString["ReturnURL"] != null)
{
var returnURL = this.Request.QueryString["ReturnURL"];
Session["ReturnURL"] = returnURL;
}
else if (!String.IsNullOrEmpty(this.RedirectToURL))
{
var returnURL = this.Request.QueryString["ReturnURL"];
Session["ReturnURL"] = returnURL;
}
Response.Redirect("~/sso/ssohandler.aspx", true);
}
else if (!String.IsNullOrEmpty(this.LoginURL))
{
Response.Redirect(string.Format(this.LoginURL, userName), true);
}
else if (!String.IsNullOrEmpty(this.RedirectToURL))
{
Response.Redirect(this.RedirectToURL, true);
}
}
#endregion
lblError.Visible = false;
}
}
}
/// <summary>
/// OK click handler (Proceed registration).
/// </summary>
protected void btnOK_Click(object sender, EventArgs e)
{
if ((this.PageManager.ViewMode == ViewModeEnum.Design) || (this.HideOnCurrentPage) || (!this.IsVisible))
{
// Do not process
}
else
{
String siteName = CMSContext.CurrentSiteName;
#region "Banned IPs"
// Ban IP addresses which are blocked for registration
if (!BannedIPInfoProvider.IsAllowed(siteName, BanControlEnum.Registration))
{
lblError.Visible = true;
lblError.Text = GetString("banip.ipisbannedregistration");
return;
}
#endregion
#region "Check Email & password"
// Check whether user with same email does not exist
UserInfo ui = UserInfoProvider.GetUserInfo(txtEmail.Text);
SiteInfo si = CMSContext.CurrentSite;
UserInfo siteui = UserInfoProvider.GetUserInfo(UserInfoProvider.EnsureSitePrefixUserName(txtEmail.Text, si));
if ((ui != null) || (siteui != null))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserAlreadyExists").Replace("%%name%%", HTMLHelper.HTMLEncode(txtEmail.Text));
return;
}
// Check whether password is same
if (passStrength.Text != txtConfirmPassword.Text)
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.PassworDoNotMatch");
return;
}
if ((this.PasswordMinLength > 0) && (passStrength.Text.Length < this.PasswordMinLength))
{
lblError.Visible = true;
lblError.Text = String.Format(GetString("Webparts_Membership_RegistrationForm.PasswordMinLength"), this.PasswordMinLength.ToString());
return;
}
if (!passStrength.IsValid())
{
lblError.Visible = true;
lblError.Text = UserInfoProvider.GetPolicyViolationMessage(CMSContext.CurrentSiteName);
return;
}
if (!ValidationHelper.IsEmail(txtEmail.Text.ToLower()))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.EmailIsNotValid");
return;
}
#endregion
#region "Captcha"
// Check if captcha is required
if (this.DisplayCaptcha)
{
// Verifiy captcha text
if (!scCaptcha.IsValid())
{
// Display error message if catcha text is not valid
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.captchaError");
return;
}
else
{
// Generate new captcha
scCaptcha.GenerateNew();
}
}
#endregion
#region "User properties"
ui = new UserInfo();
ui.PreferredCultureCode = "";
ui.Email = txtEmail.Text.Trim();
ui.FirstName = txtFirstName.Text.Trim();
ui.FullName = txtFirstName.Text.Trim() + " " + txtLastName.Text.Trim();
ui.LastName = txtLastName.Text.Trim();
ui.MiddleName = "";
// User name as put by user (no site prefix included)
String plainUserName = txtEmail.Text.Trim();
ui.UserName = plainUserName;
// Ensure site prefixes
if (UserInfoProvider.UserNameSitePrefixEnabled(siteName))
{
ui.UserName = UserInfoProvider.EnsureSitePrefixUserName(txtEmail.Text.Trim(), si);
}
ui.Enabled = this.EnableUserAfterRegistration;
ui.IsEditor = false;
ui.IsGlobalAdministrator = false;
ui.UserURLReferrer = CMSContext.CurrentUser.URLReferrer;
ui.UserCampaign = CMSContext.Campaign;
ui.UserSettings.UserRegistrationInfo.IPAddress = HttpContext.Current.Request.ServerVariables["REMOTE_ADDR"];
ui.UserSettings.UserRegistrationInfo.Agent = HttpContext.Current.Request.UserAgent;
// Check whether confirmation is required
bool requiresConfirmation = SettingsKeyProvider.GetBoolValue(siteName + ".CMSRegistrationEmailConfirmation");
bool requiresAdminApprove = false;
if (!requiresConfirmation)
{
// If confirmation is not required check whether administration approval is reqiures
if ((requiresAdminApprove = SettingsKeyProvider.GetBoolValue(siteName + ".CMSRegistrationAdministratorApproval")))
{
ui.Enabled = false;
ui.UserSettings.UserWaitingForApproval = true;
}
}
else
{
// EnableUserAfterRegistration is overrided by requiresConfirmation - user needs to be confirmed before enable
ui.Enabled = false;
}
// Set user's starting alias path
if (!String.IsNullOrEmpty(this.StartingAliasPath))
{
ui.UserStartingAliasPath = CMSContext.ResolveCurrentPath(this.StartingAliasPath);
}
#endregion
#region "Reserved names"
// Check for reserved user names like administrator, sysadmin, ...
if (UserInfoProvider.NameIsReserved(siteName, plainUserName))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(Functions.GetFormattedUserName(ui.UserName, true)));
return;
}
if (UserInfoProvider.NameIsReserved(siteName, plainUserName))
{
lblError.Visible = true;
lblError.Text = GetString("Webparts_Membership_RegistrationForm.UserNameReserved").Replace("%%name%%", HTMLHelper.HTMLEncode(ui.UserNickName));
return;
}
#endregion
#region "License limitations"
// Check limitations for Global administrator
if (ui.IsGlobalAdministrator)
{
if (!UserInfoProvider.LicenseVersionCheck(URLHelper.GetCurrentDomain(), FeatureEnum.GlobalAdmininistrators, VersionActionEnum.Insert, false))
{
lblError.Visible = true;
lblError.Text = GetString("License.MaxItemsReachedGlobal");
return;
}
}
// Check limitations for editors
if (ui.IsEditor)
{
if (!UserInfoProvider.LicenseVersionCheck(URLHelper.GetCurrentDomain(), FeatureEnum.Editors, VersionActionEnum.Insert, false))
{
lblError.Visible = true;
lblError.Text = GetString("License.MaxItemsReachedEditor");
return;
}
}
// Check limitations for site members
if (!UserInfoProvider.LicenseVersionCheck(URLHelper.GetCurrentDomain(), FeatureEnum.SiteMembers, VersionActionEnum.Insert, false))
{
lblError.Visible = true;
lblError.Text = GetString("License.MaxItemsReachedSiteMember");
return;
}
#endregion
// Check whether email is unique if it is required
string checkSites = (String.IsNullOrEmpty(this.AssignToSites)) ? siteName : this.AssignToSites;
if (!UserInfoProvider.IsEmailUnique(txtEmail.Text.Trim(), checkSites, 0))
{
lblError.Visible = true;
lblError.Text = GetString("UserInfo.EmailAlreadyExist");
return;
}
// Set password
UserInfoProvider.SetPassword(ui, passStrength.Text);
#region "Welcome Emails (confirmation, waiting for approval)"
bool error = false;
EventLogProvider ev = new EventLogProvider();
EmailTemplateInfo template = null;
string emailSubject = null;
// Send welcome message with username and password, with confirmation link, user must confirm registration
if (requiresConfirmation)
{
template = EmailTemplateProvider.GetEmailTemplate("RegistrationConfirmation", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationConfirmationEmailSubject"));
}
// Send welcome message with username and password, with information that user must be approved by administrator
else if (this.SendWelcomeEmail)
{
if (requiresAdminApprove)
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.RegistrationWaitingForApproval", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationWaitingForApprovalSubject"));
}
// Send welcome message with username and password, user can logon directly
else
{
template = EmailTemplateProvider.GetEmailTemplate("Membership.Registration", siteName);
emailSubject = EmailHelper.GetSubject(template, GetString("RegistrationForm.RegistrationSubject"));
}
}
if (template != null)
{
// Rretrieve contact ID for confirmation e-mail
int contactId = 0;
if (ActivitySettingsHelper.ActivitiesEnabledAndModuleLoaded(siteName))
{
// Check if loggin registration activity is enabled
if (ActivitySettingsHelper.UserRegistrationEnabled(siteName))
{
if (ActivitySettingsHelper.ActivitiesEnabledForThisUser(ui))
{
contactId = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
}
}
}
// Prepare macro replacements
string[,] replacements = new string[6, 2];
replacements[0, 0] = "confirmaddress";
replacements[0, 1] = (this.ApprovalPage != String.Empty) ? URLHelper.GetAbsoluteUrl(this.ApprovalPage) : URLHelper.GetAbsoluteUrl("~/CMSPages/Dialogs/UserRegistration.aspx");
replacements[0, 1] += "?userguid=" + ui.UserGUID + (contactId > 0?"&contactid=" + contactId.ToString():String.Empty);
replacements[1, 0] = "username";
replacements[1, 1] = plainUserName;
replacements[2, 0] = "password";
replacements[2, 1] = passStrength.Text;
replacements[3, 0] = "Email";
replacements[3, 1] = txtEmail.Text;
replacements[4, 0] = "FirstName";
replacements[4, 1] = txtFirstName.Text;
replacements[5, 0] = "LastName";
replacements[5, 1] = txtLastName.Text;
// Set resolver
ContextResolver resolver = CMSContext.CurrentResolver;
resolver.SourceParameters = replacements;
resolver.EncodeResolvedValues = true;
// Email message
EmailMessage email = new EmailMessage();
email.EmailFormat = EmailFormatEnum.Default;
email.Recipients = ui.Email;
email.From = EmailHelper.GetSender(template, SettingsKeyProvider.GetStringValue(siteName + ".CMSNoreplyEmailAddress"));
email.Body = resolver.ResolveMacros(template.TemplateText);
resolver.EncodeResolvedValues = false;
email.PlainTextBody = resolver.ResolveMacros(template.TemplatePlainText);
email.Subject = resolver.ResolveMacros(emailSubject);
email.CcRecipients = template.TemplateCc;
email.BccRecipients = template.TemplateBcc;
try
{
MetaFileInfoProvider.ResolveMetaFileImages(email, template.TemplateID, EmailObjectType.EMAILTEMPLATE, MetaFileInfoProvider.OBJECT_CATEGORY_TEMPLATE);
// Send the e-mail immediately
EmailSender.SendEmail(siteName, email, true);
}
catch (Exception ex)
{
ev.LogEvent("E", "RegistrationForm - SendEmail", ex);
error = true;
}
}
// If there was some error, user must be deleted
if (error)
{
lblError.Visible = true;
lblError.Text = GetString("RegistrationForm.UserWasNotCreated");
// Email was not send, user can't be approved - delete it
UserInfoProvider.DeleteUser(ui);
return;
}
#endregion
#region "Administrator notification email"
// Notify administrator if enabled and e-mail confirmation is not required
if (!requiresConfirmation && this.NotifyAdministrator && (this.FromAddress != String.Empty) && (this.ToAddress != String.Empty))
{
EmailTemplateInfo mEmailTemplate = null;
if (requiresAdminApprove)
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.Approve", siteName);
}
else
{
mEmailTemplate = EmailTemplateProvider.GetEmailTemplate("Registration.New", siteName);
}
if (mEmailTemplate == null)
{
// Log missing e-mail template
ev.LogEvent("E", DateTime.Now, "RegistrationForm", "GetEmailTemplate", HTTPHelper.GetAbsoluteUri());
}
else
{
string[,] replacements = new string[4, 2];
replacements[0, 0] = "firstname";
replacements[0, 1] = ui.FirstName;
replacements[1, 0] = "lastname";
replacements[1, 1] = ui.LastName;
replacements[2, 0] = "email";
replacements[2, 1] = ui.Email;
replacements[3, 0] = "username";
replacements[3, 1] = plainUserName;
ContextResolver resolver = CMSContext.CurrentResolver;
resolver.SourceParameters = replacements;
resolver.EncodeResolvedValues = true;
EmailMessage message = new EmailMessage();
message.EmailFormat = EmailFormatEnum.Default;
message.From = EmailHelper.GetSender(mEmailTemplate, this.FromAddress);
message.Recipients = this.ToAddress;
message.Body = resolver.ResolveMacros(mEmailTemplate.TemplateText);
resolver.EncodeResolvedValues = false;
message.PlainTextBody = resolver.ResolveMacros(mEmailTemplate.TemplatePlainText);
message.Subject = resolver.ResolveMacros(EmailHelper.GetSubject(mEmailTemplate, GetString("RegistrationForm.EmailSubject")));
message.CcRecipients = mEmailTemplate.TemplateCc;
message.BccRecipients = mEmailTemplate.TemplateBcc;
try
{
// Attach template meta-files to e-mail
MetaFileInfoProvider.ResolveMetaFileImages(message, mEmailTemplate.TemplateID, EmailObjectType.EMAILTEMPLATE, MetaFileInfoProvider.OBJECT_CATEGORY_TEMPLATE);
EmailSender.SendEmail(siteName, message);
}
catch
{
ev.LogEvent("E", DateTime.Now, "Membership", "RegistrationEmail", CMSContext.CurrentSite.SiteID);
}
}
}
#endregion
#region "Web analytics"
// Track successful registration conversion
if (this.TrackConversionName != String.Empty)
{
if (AnalyticsHelper.AnalyticsEnabled(siteName) && AnalyticsHelper.TrackConversionsEnabled(siteName) && !AnalyticsHelper.IsIPExcluded(siteName, HTTPHelper.UserHostAddress))
{
// Log conversion
HitLogProvider.LogConversions(siteName, CMSContext.PreferredCultureCode, this.TrackConversionName, 0, ConversionValue);
}
}
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
AnalyticsHelper.LogRegisteredUser(siteName, ui);
}
#endregion
#region "On-line marketing - activity"
// Log registered user if confirmation is not required
if (!requiresConfirmation)
{
if (ActivitySettingsHelper.ActivitiesEnabledAndModuleLoaded(siteName))
{
int contactId = 0;
// Log registration activity
if (ActivitySettingsHelper.UserRegistrationEnabled(siteName))
{
if (ActivitySettingsHelper.ActivitiesEnabledForThisUser(ui))
{
contactId = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
ActivityLogProvider.LogRegistrationActivity(contactId,
ui, URLHelper.CurrentRelativePath, CMSContext.CurrentDocument.DocumentID, siteName, CMSContext.Campaign, CMSContext.CurrentDocument.DocumentCulture);
}
}
// Log login activity
if (ui.Enabled && ActivitySettingsHelper.UserLoginEnabled(siteName))
{
if (contactId <= 0)
{
contactId = ModuleCommands.OnlineMarketingGetUserLoginContactID(ui);
}
ActivityLogHelper.UpdateContactLastLogon(contactId); // Update last logon time
if (ActivitySettingsHelper.ActivitiesEnabledForThisUser(ui))
{
ActivityLogProvider.LogLoginActivity(contactId,
ui, URLHelper.CurrentRelativePath, CMSContext.CurrentDocument.DocumentID, siteName, CMSContext.Campaign, CMSContext.CurrentDocument.DocumentCulture);
}
}
}
}
#endregion
#region "Roles & authentication"
string[] roleList = this.AssignRoles.Split(';');
string[] siteList;
// If AssignToSites field set
if (!String.IsNullOrEmpty(this.AssignToSites))
{
siteList = this.AssignToSites.Split(';');
}
else // If not set user current site
{
siteList = new string[] { siteName };
}
foreach (string sn in siteList)
{
// Add new user to the current site
UserInfoProvider.AddUserToSite(ui.UserName, sn);
foreach (string roleName in roleList)
{
if (!String.IsNullOrEmpty(roleName))
{
String s = roleName.StartsWith(".") ? "" : siteName;
// Add user to desired roles
if (RoleInfoProvider.RoleExists(roleName, s))
{
UserInfoProvider.AddUserToRole(ui.UserName, roleName, s);
}
}
}
}
if (this.DisplayMessage.Trim() != String.Empty)
{
pnlForm.Visible = false;
lblText.Visible = true;
lblText.Text = this.DisplayMessage;
}
else
{
if (ui.Enabled)
{
CMSContext.AuthenticateUser(ui.UserName, true);
}
if (this.RedirectToURL != String.Empty)
{
URLHelper.Redirect(this.RedirectToURL);
}
else if (QueryHelper.GetString("ReturnURL", "") != String.Empty)
{
string url = QueryHelper.GetString("ReturnURL", "");
// Do url decode
url = Server.UrlDecode(url);
// Check that url is relative path or hash is ok
if (url.StartsWith("~") || url.StartsWith("/") || QueryHelper.ValidateHash("hash"))
{
URLHelper.Redirect(url);
}
// Absolute path with wrong hash
else
{
URLHelper.Redirect(ResolveUrl("~/CMSMessages/Error.aspx?title=" + ResHelper.GetString("general.badhashtitle") + "&text=" + ResHelper.GetString("general.badhashtext")));
}
}
}
#endregion
lblError.Visible = false;
}
}
public override async Task ProcessRequestAsync(HttpContext context)
{
try
{
ClientCredential credential = new ClientCredential(Constants.AzureActiveDirectory.ClientId,
Constants.AzureActiveDirectory.ApplicationKey);
var authContext =
new AuthenticationContext(string.Format(Constants.AzureActiveDirectory.AuthorityUrl,
Constants.AzureActiveDirectory.TenantId));
var code = ValidationHelper.GetString(HttpContext.Current.Request.QueryString["code"], string.Empty);
AuthenticationResult result =
await
authContext.AcquireTokenByAuthorizationCodeAsync(code,
new Uri(Request.Url.GetLeftPart(UriPartial.Path)), credential,
string.Format(Constants.AzureActiveDirectory.GraphUrl, ""));
var adClient = new ActiveDirectoryClient(
new Uri(string.Format(Constants.AzureActiveDirectory.GraphUrl, result.TenantId)),
async() => await GetAppTokenAsync(result.TenantId));
var adUser =
(User)
await
adClient.Users.Where(x => x.UserPrincipalName.Equals(result.UserInfo.DisplayableId))
.Expand(x => x.MemberOf)
.ExecuteSingleAsync();
var user =
UserInfoProvider.GetUsers()
.Where("AzureADUsername", QueryOperator.Equals, adUser.UserPrincipalName)
.FirstOrDefault();
var groupsToAdd = adUser.MemberOf.OfType <Group>()
.Select(x => x.DisplayName)
.Where(x => Constants.AzureActiveDirectory.GroupsToSync.Contains(x));
var groupsToRemove = Constants.AzureActiveDirectory.GroupsToSync
.Where(x => !groupsToAdd.Contains(x));
// check if any of the Azure Active Directory groups are matching by name any Kentico roles
// if not save an error message in ErrorLog and return
bool isGroupMatchRole = false;
foreach (var group in groupsToAdd)
{
var roleInfo = RoleInfoProvider.GetRoles()
.OnSite(SiteContext.CurrentSiteID)
.Where("RoleDisplayName", QueryOperator.Equals, group).ToList <RoleInfo>();
if (roleInfo.Count > 0)
{
isGroupMatchRole = true;
break;
}
}
if (!isGroupMatchRole)
{
var logerr = $"Attempted login on {DateTime.Now} by user {adUser.UserPrincipalName},[{adUser.DisplayName}] memberOf {groupsToAdd.ToList<string>().Join(",")}";
EventLogProvider.LogEvent(EventType.ERROR,
"Login user through Azure Active Directory",
"AZUREADLOGINFAILURE",
eventDescription: logerr);
var returnUrlWithError = ValidationHelper.GetString(this.Context.Request.Params["state"], string.Empty);
URLHelper.Redirect(URLHelper.GetAbsoluteUrl($"{returnUrlWithError}?logonresult=Failed&firstname={adUser.DisplayName}&lastname={string.Empty}&lastlogoninfo={logerr}"));
return;
}
if (user == null)
{
user = new CMS.Membership.UserInfo();
user.UserName = adUser.UserPrincipalName;
user.FirstName = adUser.GivenName;
user.LastName = adUser.Surname;
user.FullName = adUser.DisplayName;
user.Email = adUser.Mail.IfEmpty(adUser.OtherMails.FirstOrDefault());
user.SetValue("AzureADUsername", adUser.UserPrincipalName);
user.IsExternal = true;
//None 0 User has no privilege level
//Editor 1 User is able to use administration interface
//Admin 2 User can use all applications except the global applications and functionality
//GlobalAdmin 3 User can use all applications and functionality without any exceptions
user.SiteIndependentPrivilegeLevel = CMS.Base.UserPrivilegeLevelEnum.Editor;
user.Enabled = true;
UserInfoProvider.SetUserInfo(user);
UserInfoProvider.AddUserToSite(user.UserName, SiteContext.CurrentSiteName);
foreach (var group in groupsToAdd)
{
UserInfoProvider.AddUserToRole(user.UserName,
RoleInfoProvider.GetRoles()
.OnSite(SiteContext.CurrentSiteID)
.Where("RoleDisplayName", QueryOperator.Equals, group)
.FirstOrDefault()?.RoleName ?? "", SiteContext.CurrentSiteName);
}
}
else
{
user.FirstName = adUser.GivenName;
user.LastName = adUser.Surname;
user.FullName = adUser.DisplayName;
user.Email = adUser.Mail.IfEmpty(adUser.OtherMails.FirstOrDefault());
user.IsExternal = true;
UserInfoProvider.SetUserInfo(user);
UserInfoProvider.AddUserToSite(user.UserName, SiteContext.CurrentSiteName);
foreach (var group in groupsToAdd)
{
UserInfoProvider.AddUserToRole(user.UserName,
RoleInfoProvider.GetRoles()
.OnSite(SiteContext.CurrentSiteID)
.Where("RoleDisplayName", QueryOperator.Equals, group)
.FirstOrDefault()?.RoleName ?? "", SiteContext.CurrentSiteName);
}
foreach (var group in groupsToRemove)
{
UserInfoProvider.RemoveUserFromRole(user.UserName,
RoleInfoProvider.GetRoles()
.OnSite(SiteContext.CurrentSiteID)
.Where("RoleDisplayName", QueryOperator.Equals, group)
.FirstOrDefault()?.RoleName ?? "", SiteContext.CurrentSiteName);
}
}
AuthenticationHelper.AuthenticateUser(user.UserName, false);
MembershipActivityLogger.LogLogin(user.UserName, DocumentContext.CurrentDocument);
var returnUrl = ValidationHelper.GetString(context.Request.Params["state"], string.Empty);
URLHelper.Redirect(URLHelper.GetAbsoluteUrl(returnUrl));
}
catch (Exception exception)
{
EventLogProvider.LogException("AzureActiveDirectory", "Login", exception);
}
}