public async Task <BaseApiResponse> ResetPasswordAsync(UserForResetPasswordDto userForResetPasswordDto)
        {
            if (userForResetPasswordDto == null)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "handle your request.", null, new List <string> {
                    "Invalid request."
                }));
            }

            var user = await _userManager.FindByEmailAsync(userForResetPasswordDto.Email);

            if (user == null)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "handle your request.", null, new List <string> {
                    "Could not found any users registered with this email."
                }));
            }

            var decodedToken = WebEncoders.Base64UrlDecode(userForResetPasswordDto.Token);

            string normalToken = Encoding.UTF8.GetString(decodedToken);

            var result = await _userManager.ResetPasswordAsync(user, normalToken, userForResetPasswordDto.NewPassword);

            if (!result.Succeeded)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "handle your request.", null, new List <string> {
                    "Could not reset password."
                }));
            }

            return(BaseApiResponseHelper.GenerateApiResponse(true, "Reset password", null, null));
        }
        // Revoke Token
        public async Task <BaseApiResponse> RevokeTokenAsync(string refreshToken)
        {
            // STEP 1: Check if refreshToken match any users
            var user = _context.Users.SingleOrDefault(u => u.RefreshTokens.Any(t => t.Token == refreshToken));

            if (user == null)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get refresh token", null, new List <string> {
                    "Refresh token did not match any users."
                }));
            }

            // STEP 2: Check if refreshToken is active or not
            var refreshTokenFromDb = user.RefreshTokens.Single(x => x.Token == refreshToken);

            if (!refreshTokenFromDb.IsActive)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get refresh token", null, new List <string> {
                    "Refresh token is not active."
                }));
            }

            // STEP 3: Revoke the current refresh token
            refreshTokenFromDb.Revoked = DateTime.UtcNow;

            // STEP 4: Delete all revoked tokens
            var revokedTokens = user.RefreshTokens.Where(t => t.IsActive == false).ToList();

            _context.RemoveRange(revokedTokens);
            _context.Update(user);

            await _context.SaveChangesAsync();

            return(BaseApiResponseHelper.GenerateApiResponse(true, "Revoke a token", null, null));
        }
Esempio n. 3
0
        public async Task <BaseApiResponse> CreateRole(string roleName)
        {
            try
            {
                var result = await _roleManager.CreateAsync(new IdentityRole(roleName.ToLower().Trim()));

                if (!result.Succeeded)
                {
                    var errs = new List <string>();

                    foreach (var item in result.Errors)
                    {
                        errs.Add(item.Description);
                    }
                    return(BaseApiResponseHelper.GenerateApiResponse(false, "create a new role", null, errs));
                }
                else
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(true, "Create a new role", null, null));
                }
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "create a new role", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }
Esempio n. 4
0
        public async Task <BaseApiResponse> GetByRoleId(string roleId)
        {
            try
            {
                var role = await _roleManager.FindByIdAsync(roleId);

                if (role == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(false, "get role", null, new List <string> {
                        $"Role with id {roleId} did not match any roles."
                    }));
                }

                var roleDto = _mapper.Map <RoleDto>(role);

                return(BaseApiResponseHelper.GenerateApiResponse(true, "Get role", new List <RoleDto> {
                    roleDto
                }, null));
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get role", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }
        // Remove User
        public async Task <BaseApiResponse> RemoveUserById(string userId)
        {
            var userToRemove = await _userManager.FindByIdAsync(userId);

            if (userToRemove == null)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(true, "remove user", null, new List <string> {
                    $"User ID {userId} did not match any users."
                }));
            }

            var result = await _userManager.DeleteAsync(userToRemove);

            if (!result.Succeeded)
            {
                var errs = new List <string>();

                foreach (var err in result.Errors)
                {
                    errs.Add(err.Description);
                }

                return(BaseApiResponseHelper.GenerateApiResponse(true, "remove user", null, errs));
            }
            else
            {
                return(BaseApiResponseHelper.GenerateApiResponse(true, "Remove user", null, null));
            }
        }
        // Get Specific User
        public async Task <BaseApiResponse> GetUserById(string userId)
        {
            try
            {
                var currentUser = await _userManager.FindByIdAsync(userId);

                var userRoles = await _userManager.GetRolesAsync(currentUser);

                var userRolesDto = _mapper.Map <IList <string> >(userRoles);

                var userForListingDto = _mapper.Map <UserForListingDto>(currentUser);

                userForListingDto.Roles = userRolesDto;

                return(BaseApiResponseHelper.GenerateApiResponse(true, "Get user", new List <UserForListingDto> {
                    userForListingDto
                }, null));
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get user", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }
        // Get All Users
        public async Task <BaseApiResponse> GetAll(ClaimsPrincipal claimsPrincipal)
        {
            try
            {
                var currentUser = await _userManager.GetUserAsync(claimsPrincipal);

                var allUserExceptCurrentUser = await _userManager.Users.Where(u => u.Id != currentUser.Id).ToListAsync();

                var users = new List <UserForListingDto>();

                foreach (var item in allUserExceptCurrentUser)
                {
                    var userRoles = await _userManager.GetRolesAsync(item);

                    var userRolesDto = _mapper.Map <IList <string> >(userRoles);

                    var userForListingDto = _mapper.Map <UserForListingDto>(item);

                    userForListingDto.Roles = userRolesDto;

                    users.Add(userForListingDto);
                }

                return(BaseApiResponseHelper.GenerateApiResponse(true, "Get all users", users, null));
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get all users", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }
        // Refresh Token
        public async Task <BaseApiResponse> RefreshTokenAsync(string refreshToken)
        {
            // STEP 1: Check if refreshToken match any users
            var user = _context.Users.SingleOrDefault(u => u.RefreshTokens.Any(t => t.Token == refreshToken));

            if (user == null)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get refresh token", null, new List <string> {
                    "Refresh token did not match any users."
                }));
            }

            // STEP 2: Check if refreshToken is active or not
            var refreshTokenFromDb = user.RefreshTokens.Single(x => x.Token == refreshToken);

            if (!refreshTokenFromDb.IsActive)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get refresh token", null, new List <string> {
                    "Refresh token is not active."
                }));
            }

            // STEP 3: Revoke the current refresh token
            refreshTokenFromDb.Revoked = DateTime.UtcNow;

            // STEP 4: Generate a new refresh token and save to database
            var newRefreshToken = CreateRefreshToken();

            user.RefreshTokens.Add(newRefreshToken);

            _context.Update(user);

            await _context.SaveChangesAsync();

            // FINALLY: Generate new JWT Token
            JwtSecurityToken jwtSecurityToken = await CreateJwtToken(user);

            var roles = await _userManager.GetRolesAsync(user).ConfigureAwait(false);

            var userForAuthenticationDto = new UserForAuthenticationDto()
            {
                FirstName              = user.FirstName,
                LastName               = user.LastName,
                Username               = user.UserName,
                Email                  = user.Email,
                Roles                  = roles,
                AccessToken            = new JwtSecurityTokenHandler().WriteToken(jwtSecurityToken),
                RefreshToken           = newRefreshToken.Token,
                RefreshTokenExpiration = newRefreshToken.Expires
            };

            return(BaseApiResponseHelper.GenerateApiResponse(true, "Get refresh token", new List <UserForAuthenticationDto> {
                userForAuthenticationDto
            }, null));
        }
Esempio n. 9
0
        public async Task <BaseApiResponse> UpdateUserRoles(UserRolesForEditDto userRolesForEditDto, ClaimsPrincipal claimsPrincipal)
        {
            try
            {
                if (userRolesForEditDto.UserId == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(true, "update roles for user", null, new List <string> {
                        $"User ID is null."
                    }));
                }

                var user = await _userManager.FindByIdAsync(userRolesForEditDto.UserId);

                if (user == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(true, "update roles for user", null,
                                                                     new List <string> {
                        $"User ID {userRolesForEditDto.UserId} did not match any users."
                    }));
                }

                var roles = await _userManager.GetRolesAsync(user);

                var result = await _userManager.RemoveFromRolesAsync(user, roles);

                // In case we forgot to select any roles for user, we will add this user to role user by default.
                var isUserInAnyRoles = userRolesForEditDto.UserRoles.Any(x => x.Selected == true);

                if (!isUserInAnyRoles)
                {
                    result = await _userManager.AddToRolesAsync(user, new List <string> {
                        Authorization.DEFAULT_ROLE.ToString()
                    });
                }
                else
                {
                    result = await _userManager.AddToRolesAsync(user, userRolesForEditDto.UserRoles.Where(x => x.Selected).Select(y => y.RoleName));
                }

                var currentUser = await _userManager.GetUserAsync(claimsPrincipal);

                await _signInManager.RefreshSignInAsync(currentUser);

                await ApplicationDbInitializer.SeedAdministratorUser(_userManager, _roleManager);

                return(BaseApiResponseHelper.GenerateApiResponse(true, "Update roles for user", null, null));
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "update roles for user", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }
        // Forgot Password
        public async Task <BaseApiResponse> ForgotPassword(ForgotPasswordDto forgotPasswordDto)
        {
            try
            {
                if (forgotPasswordDto == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(false, "handle your request.", null, new List <string> {
                        "Email is null."
                    }));
                }

                var user = await _userManager.FindByEmailAsync(forgotPasswordDto.Email);

                if (user == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(false, "handle your request.", null, new List <string> {
                        "Could not found any users registered with this email."
                    }));
                }

                var token = await _userManager.GeneratePasswordResetTokenAsync(user);

                var encodedToken = Encoding.UTF8.GetBytes(token);

                var validToken = WebEncoders.Base64UrlEncode(encodedToken);

                string url = $"{_configuration["ApplicationUrl"]}/reset-password?email={forgotPasswordDto.Email}&token={validToken}";

                var mailRequest = new MailRequest
                {
                    ToEmail     = forgotPasswordDto.Email,
                    Subject     = "Reset Password Confirmation",
                    Attachments = null,
                    Body        = "<h1>Follow the instructions to reset your password</h1>" +
                                  $"<p>To reset your password <a href='{url}'>Click here</a></p>"
                };

                await _emailService.SendEmailAsync(mailRequest);

                return(BaseApiResponseHelper.GenerateApiResponse(true, "Reset password url has been sent to the email", null, null));
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "handle your request.", null, new List <string> {
                    $"{ex.Message}"
                }));
            }
        }
Esempio n. 11
0
        public async Task <BaseApiResponse> ListAllUsersFromRole(string roleId)
        {
            try
            {
                if (roleId == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(false, "list all users from role", null, new List <string> {
                        $"Role Id is null."
                    }));
                }

                var role = await _roleManager.FindByIdAsync(roleId);

                if (role == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(false, "list all users from role", null, new List <string> {
                        $"Role with id {roleId} did not match any roles."
                    }));
                }

                var users = new List <User>(_userManager.GetUsersInRoleAsync(role.Name).Result);

                var usersToReturn = new List <UserDto>();

                foreach (var item in users)
                {
                    usersToReturn.Add(_mapper.Map <UserDto>(item));
                }

                var data = new RoleForListingUserDto
                {
                    Id       = role.Id,
                    RoleName = role.Name,
                    Users    = usersToReturn
                };

                return(BaseApiResponseHelper.GenerateApiResponse(true, "List all users from role", new List <RoleForListingUserDto> {
                    data
                }, null));
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "list all users from role", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }
        // Register
        public async Task <BaseApiResponse> RegisterAsync(UserForRegisterDto userForRegisterDto)
        {
            var newUser = _mapper.Map <User>(userForRegisterDto);

            var userFromDb = await _userManager.FindByEmailAsync(userForRegisterDto.Email);

            if (userFromDb != null)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "register new user", null, new List <string> {
                    $"Email {newUser.Email} is already registered."
                }));
            }

            var result = await _userManager.CreateAsync(newUser, userForRegisterDto.Password);

            if (result.Succeeded)
            {
                await _userManager.AddToRoleAsync(newUser, Authorization.DEFAULT_ROLE.ToString());
            }

            return(BaseApiResponseHelper.GenerateApiResponse(true, "Register new user", null, null));
        }
Esempio n. 13
0
        public async Task <BaseApiResponse> GetAll()
        {
            try
            {
                var rolesDto = new List <RoleDto>();

                var roles = await _roleManager.Roles.ToListAsync();

                foreach (var item in roles)
                {
                    rolesDto.Add(_mapper.Map <RoleDto>(item));
                }

                return(BaseApiResponseHelper.GenerateApiResponse(true, "Get all roles", rolesDto, null));
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get all roles", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }
Esempio n. 14
0
        public async Task <BaseApiResponse> DeleteRole(string roleId)
        {
            try
            {
                var role = await _roleManager.FindByIdAsync(roleId);

                if (role == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(false, "delete role", null, new List <string> {
                        $"Role with id {roleId} did not match any roles."
                    }));
                }

                var result = await _roleManager.DeleteAsync(role);

                if (!result.Succeeded)
                {
                    var errs = new List <string>();

                    foreach (var item in result.Errors)
                    {
                        errs.Add(item.Description);
                    }
                    return(BaseApiResponseHelper.GenerateApiResponse(false, "delete role", null, errs));
                }
                else
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(true, "Delete role", null, null));
                }
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "delete role", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }
        // Login
        public async Task <BaseApiResponse> LoginAsync(UserForLoginDto userForLoginDto)
        {
            if (userForLoginDto == null)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "login", null, new List <string> {
                    "Email or password is null."
                }));
            }

            var user = await _userManager.FindByEmailAsync(userForLoginDto.Email);

            if (user == null)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "login", null, new List <string> {
                    "Could not find any accounts registered with this email."
                }));
            }

            // Checking user password
            if (await _userManager.CheckPasswordAsync(user, userForLoginDto.Password))
            {
                JwtSecurityToken jwtSecurityToken = await CreateJwtToken(user);

                var roles = await _userManager.GetRolesAsync(user).ConfigureAwait(false);

                var refreshToken = string.Empty;

                var refreshTokenExpiration = new DateTime();

                // Check if user has any active refreshToken then give them this refreshToken
                if (user.RefreshTokens.Any(token => token.IsActive))
                {
                    var activeRefreshToken = user.RefreshTokens.Where(token => token.IsActive == true).FirstOrDefault();

                    refreshToken = activeRefreshToken.Token;

                    refreshTokenExpiration = activeRefreshToken.Expires;
                }
                else // Otherwise create new refreshToken then update it to the database
                {
                    var newRefreshToken = CreateRefreshToken();

                    user.RefreshTokens.Add(newRefreshToken);

                    refreshToken = newRefreshToken.Token;

                    refreshTokenExpiration = newRefreshToken.Expires;

                    _context.Update(user);
                    _context.SaveChanges();
                }

                var userForAuthenticationDto = new UserForAuthenticationDto()
                {
                    FirstName              = user.FirstName,
                    LastName               = user.LastName,
                    Username               = user.UserName,
                    Email                  = user.Email,
                    Roles                  = roles,
                    AccessToken            = new JwtSecurityTokenHandler().WriteToken(jwtSecurityToken),
                    RefreshToken           = refreshToken,
                    RefreshTokenExpiration = refreshTokenExpiration
                };

                return(BaseApiResponseHelper.GenerateApiResponse(true, "Logged in", new List <UserForAuthenticationDto> {
                    userForAuthenticationDto
                }, null));
            }

            return(BaseApiResponseHelper.GenerateApiResponse(false, "login", null, new List <string> {
                "Username or password is incorrect."
            }));
        }
Esempio n. 16
0
        public async Task <BaseApiResponse> GetUserRoles(string userId)
        {
            try
            {
                if (userId == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(true, "get roles for user", null, new List <string> {
                        $"User ID is null."
                    }));
                }

                var user = await _userManager.FindByIdAsync(userId);

                if (user == null)
                {
                    return(BaseApiResponseHelper.GenerateApiResponse(true, "get roles for user", null,
                                                                     new List <string> {
                        $"User ID {userId} did not match any users."
                    }));
                }

                var listUserRolesDto = new List <UserRolesDto>();

                foreach (var role in await _roleManager.Roles.ToListAsync())
                {
                    var userRolesDto = new UserRolesDto
                    {
                        RoleName = role.Name
                    };

                    if (await _userManager.IsInRoleAsync(user, role.Name))
                    {
                        userRolesDto.Selected = true;
                    }
                    else
                    {
                        userRolesDto.Selected = false;
                    }

                    listUserRolesDto.Add(userRolesDto);
                }

                var data = new UserRolesForEditDto
                {
                    UserId    = user.Id,
                    Username  = user.UserName,
                    Email     = user.Email,
                    UserRoles = listUserRolesDto
                };

                return(BaseApiResponseHelper.GenerateApiResponse(true, "Get roles for user", new List <UserRolesForEditDto> {
                    data
                }, null));
            }
            catch (Exception ex)
            {
                return(BaseApiResponseHelper.GenerateApiResponse(false, "get roles for user", null, new List <string> {
                    $"{ex.Message}."
                }));
            }
        }