public OperationResult<UserWithRoles> CreateUser(string username, string email, string password, string[] roles) {
var existingUser = _userRepository.GetAll().Any(
x => x.Name == username);
if (existingUser) {
return new OperationResult<UserWithRoles>(false);
}
var passwordSalt = _cryptoService.GenerateSalt();
var user = new User() {
Name = username,
Salt = passwordSalt,
Email = email,
IsLocked = false,
HashedPassword = _cryptoService.EncryptPassword(password, passwordSalt),
CreatedOn = DateTime.Now
};
_userRepository.Add(user);
_userRepository.Save();
if (roles != null || roles.Length > 0) {
foreach (var roleName in roles) {
addUserToRole(user, roleName);
}
}
return new OperationResult<UserWithRoles>(true) {
Entity = GetUserWithRoles(user)
};
}
public UserWithRoles UpdateUser(
User user,
string username,
string email) {
user.Name = username;
user.Email = email;
user.LastUpdatedOn = DateTime.Now;
_userRepository.Edit(user);
_userRepository.Save();
return GetUserWithRoles(user);
}
private UserWithRoles GetUserWithRoles(User user) {
if (user != null) {
var userRoles = GetUserRoles(user.Key);
return new UserWithRoles() {
User = user,
Roles = userRoles
};
}
return null;
}
private void addUserToRole(User user, string roleName) {
var role = _roleRepository.GetSingleByRoleName(roleName);
if (role == null) {
var tempRole = new Role() {
Name = roleName
};
_roleRepository.Add(tempRole);
_roleRepository.Save();
role = tempRole;
}
var userInRole = new UserInRole() {
RoleKey = role.Key,
UserKey = user.Key
};
_userInRoleRepository.Add(userInRole);
_userInRoleRepository.Save();
}
private bool isPasswordValid(User user, string password) {
return string.Equals(
_cryptoService.EncryptPassword(
password, user.Salt), user.HashedPassword);
}
// Private helpers
private bool isUserValid(User user, string password) {
if (isPasswordValid(user, password)) {
return !user.IsLocked;
}
return false;
}
