public MobileResponseModel UpdateTechnicianPin(TechnicianPinEditModel model)
{
var orgId = _sessionContext.UserSession.CurrentOrganizationRole.OrganizationRoleUserId;
if (!_pinChangeLogService.IsPinRepeated(orgId, model.Pin))
{
_technicianRepository.UpdatePin(orgId, model.Pin);
_pinChangeLogService.Update(model.Pin, orgId, orgId);
int pinExpirationDays = 0;
Int32.TryParse(_configurationSettingRepository.GetConfigurationValue(ConfigurationSettingName.PinExpirationDays), out pinExpirationDays);
int daysBeforAlert = 0;
Int32.TryParse(_configurationSettingRepository.GetConfigurationValue(ConfigurationSettingName.AlertBeforePinExpirationInDays), out daysBeforAlert);
var pinExpireInDays = _technicianRepository.GetPinExpireInDays(orgId, pinExpirationDays);
if (pinExpireInDays <= daysBeforAlert)
{
pinExpireInDays = pinExpireInDays <= 0 ? 0 : pinExpireInDays;
}
return(new MobileResponseModel
{
IsSuccess = true,
Message = "Successfully Updated PIN",
StatusCode = 200,
Data = new PinUpdateResponseModel
{
ShowAlertBeforePinExpirationInDays = daysBeforAlert,
RemainingDays = pinExpireInDays,
}
});
}
else
{
var nonRepeatCount = Convert.ToInt32(_configurationSettingRepository.GetConfigurationValue(ConfigurationSettingName.PreviousPinNonRepetitionCount));
return(new MobileResponseModel
{
IsSuccess = false,
Message = "New password can not be same as last " + nonRepeatCount + " password(s). Please enter a different password.",
StatusCode = 200
});
}
}
public UserEditModel Save(UserEditModel userToSave)
{
_userModelValidator.ValidateAndThrow(userToSave);
var userAddress = _addressService.SaveAfterSanitizing(Mapper.Map <AddressEditModel, Address>(userToSave.Address));
OrganizationRoleUser organizationRoleUser = Mapper.Map <OrganizationRoleUserModel, OrganizationRoleUser>(_sessionContext.UserSession.CurrentOrganizationRole);
userToSave.DataRecorderMetaData = new DataRecorderMetaData(organizationRoleUser, DateTime.Now, DateTime.Now);
var user = Mapper.Map <UserEditModel, User>(userToSave);
var isPasswordUpdatedOrCreated = false;
SecureHash secureHash = null;
if (userToSave.Id > 0 && string.IsNullOrEmpty(userToSave.Password))
{
var existingUser = _userRepository.GetUser(userToSave.Id);
user.UserLogin.Password = existingUser.UserLogin.Password;
user.UserLogin.Salt = existingUser.UserLogin.Salt;
user.UserLogin.UserVerified = existingUser.UserLogin.UserVerified;//For a scenario: User is created and then immediatly updated
user.UserLogin.LastPasswordChangeDate = existingUser.UserLogin.LastPasswordChangeDate;
user.UserLogin.LastLogged = existingUser.UserLogin.LastLogged;
}
else if (!string.IsNullOrEmpty(userToSave.Password))
{
secureHash = _oneWayHashingService.CreateHash(userToSave.Password);
user.UserLogin.Password = secureHash.HashedText;
user.UserLogin.Salt = secureHash.Salt;
isPasswordUpdatedOrCreated = true;
user.UserLogin.LastPasswordChangeDate = DateTime.Now;
}
user.Address = userAddress;
if (isPasswordUpdatedOrCreated)//&& user.Id > 0 && userToSave.UsersRoles.Count() == 1 && userToSave.UsersRoles.Single().RoleId == (long)Roles.Customer)
{
user.UserLogin.UserVerified = false;
}
user.UserLogin.IsTwoFactorAuthrequired = userToSave.OverRideTwoFactorAuthrequired ? userToSave.IsTwoFactorAuthrequired : (bool?)null;
user = _userRepository.SaveUser(user);
if (isPasswordUpdatedOrCreated && secureHash != null && !(user.Id > 0 && userToSave.UsersRoles.Count() == 1 && userToSave.UsersRoles.Single().RoleId == (long)Roles.Customer))
{
_passwordChangelogService.Update(user.Id, secureHash, _sessionContext.UserSession.CurrentOrganizationRole.OrganizationRoleUserId);
}
userToSave.Id = user.Id;
//map & save user roles
_orgRoleUserRepository.DeactivateAllOrganizationRolesForUser(user.Id);
foreach (var organizationRoleModel in userToSave.UsersRoles)
{
organizationRoleModel.UserId = user.Id;
var orgRoleUser = _orgRoleUserRepository.SaveOrganizationRoleUser(Mapper.Map <OrganizationRoleUserModel, OrganizationRoleUser>(organizationRoleModel));
var roleId = GetParentRoleIdByRoleId(orgRoleUser.RoleId);
switch (roleId)
{
case (long)Roles.Technician:
var technician = Mapper.Map <TechnicianModel, Technician>(userToSave.TechnicianProfile);
technician.TechnicianId = orgRoleUser.Id;
var repository = ((IRepository <Technician>)_technicianRepository);
repository.Save(technician);
if (!string.IsNullOrWhiteSpace(userToSave.TechnicianProfile.Pin))
{
_pinChangeLogService.Update(userToSave.TechnicianProfile.Pin.Encrypt(), orgRoleUser.Id, organizationRoleUser.Id);
}
break;
case (long)Roles.MedicalVendorUser:
var physician = Mapper.Map <PhysicianModel, Physician>(userToSave.PhysicianProfile);
physician.PhysicianId = orgRoleUser.Id;
physician.AuthorizedStateLicenses =
_physicianLicenseModelFactory.CreateMultiple(userToSave.PhysicianProfile.Licenses,
orgRoleUser.Id);
_physicianRepository.SavePhysician(physician);
break;
case (long)Roles.CorporateAccountCoordinator:
var accountCoordinator = Mapper.Map <AccountCoordinatorProfileModel, AccountCoordinatorProfile>(userToSave.AccountCoordinatorProfile);
accountCoordinator.AccountCoordinatorId = orgRoleUser.Id;
var accountCoordinatorRepository = ((IRepository <AccountCoordinatorProfile>)_accountCoordinatorProfileRepository);
accountCoordinatorRepository.Save(accountCoordinator);
break;
case (long)Roles.CallCenterRep:
var callCenterRepProfile = new CallCenterRepProfile
{
CallCenterRepId = orgRoleUser.Id,
CanRefund = false,
CanChangeNotes = false,
DialerUrl = organizationRoleModel.DialerUrl
};
_callCenterRepProfileRepository.Save(callCenterRepProfile);
break;
}
}
if (userToSave.UsersRoles.Any(x => x.RoleId == (long)Roles.NursePractitioner))
{
var userNpiInfo = new UserNpiInfo
{
UserId = userToSave.Id,
Npi = !string.IsNullOrEmpty(userToSave.Npi) ? userToSave.Npi : null,
Credential = !string.IsNullOrEmpty(userToSave.Credential) ? userToSave.Credential : null
};
_userNpiInfoRepository.Save(userNpiInfo);
}
var systemUserInfo = new SystemUserInfo
{
EmployeeId = userToSave.UsersRoles.Count() == 1 && userToSave.UsersRoles.Any(x => x.RoleId == (long)Roles.Customer) ? string.Empty : userToSave.EmployeeId,
UserId = userToSave.Id
};
_systemUserInfoRepository.Save(systemUserInfo);
return(userToSave); //this does not return the same object. the saved user are out of sync at this point.!!
}