public string PostSignUp(SignInUpDto credentials) { var manager = new LoginManager(); var result = manager.SignUp(credentials.Email, credentials.Password); return result ? manager.SignIn(credentials.Email, credentials.Password) : null; }
public void SignUpTest() { var manager = new LoginManager(); Assert.Throws<InvalidOperationException>(() => manager.SignIn(Guid.NewGuid() + "*****@*****.**", "ttt")); var email = Guid.NewGuid() + "*****@*****.**"; manager.SignUp(email, "ttt"); var sid = manager.SignIn(email, "ttt"); Assert.IsNotEmpty(sid); }
internal virtual void OnActionExecuting(HttpActionContext context) { IEnumerable<string> values; context.Request.Headers.TryGetValues(AuthenticationHeaderName, out values); if (values != null && values.Any()) { SessionId = values.First(); } var insecure = context.ActionDescriptor.GetFilters().FirstOrDefault(f => f.GetType() == typeof (InsecureAttribute)); if (SessionId == null && insecure == null) { throw new InvalidOperationException("You won't hack me!"); } if (SessionId != null && insecure == null) { var manager = new LoginManager(); if (!manager.ValidateSession(SessionId)) { throw new NotImplementedException("Session key is invalid."); } } }
public string PostSignIn(SignInUpDto credentials) { var manager = new LoginManager(); return manager.SignIn(credentials.Email, credentials.Password); }