Esempio n. 1
0
        public void UpdateUser()
        {
            string         userName = UserNameTextBox.Text;
            MembershipUser user     = Membership.GetUser(userName);

            if (PasswordTextBox.Text != user.GetPassword())
            {
                user.ChangePassword(user.GetPassword(), PasswordTextBox.Text);
                Membership.UpdateUser(user);
            }
            if (PasswordQuestionTextBox.Text.Length > 0 && PasswordAnswerTextBox.Text.Length > 0)
            {
                user.ChangePasswordQuestionAndAnswer(user.GetPassword(), PasswordQuestionTextBox.Text, PasswordAnswerTextBox.Text);
                Membership.UpdateUser(user);
            }
            user.Comment    = CommentTextBox.Text;
            user.Email      = EmailTextBox.Text;
            user.IsApproved = IsApprovedCheckBox.Checked;
            Membership.UpdateUser(user);
            //user.LastActivityDate
            //user.LastLoginDate
            if (IsLockedOutCheckBox.Checked != user.IsLockedOut)
            {
                user.UnlockUser();
                Membership.UpdateUser(user);
            }
            LoadUser(userName);
            RiseUpdated(new UserEditEventArgs(userName));
        }
Esempio n. 2
0
        public ViewResult ChangeAnswer(UserFull userModification)
        {
            UserAnswer userAnswer = new UserAnswer(userModification);
            var        errors     = userAnswer.Validate();

            if (errors == null)
            {
                MembershipUser mu = Membership.GetUser();
                if (!mu.ChangePasswordQuestionAndAnswer(userAnswer.Password, securityQuestionRepository.Get(userModification.SecurityQuestion).Description, userAnswer.SecurityAnswer))
                {
                    errors = new ErrorSummary();
                    errors.RegisterErrorMessage("SecurityQuestion", "There was an error while we was updating your security answer, please check your password and try again.");
                }
                else
                {
                    userModification.Alert = "User security question and answer changed successfully";
                }
            }

            if (errors != null)
            {
                Session["Errors"] = errors.ErrorMessages;
            }

            userModification.Tab = 3;
            userModification     = GetAccountData(userModification);
            return(View("Index", userModification));
        }
        public ActionResult ChangePassword(string UserName, string currentPassword, string newPassword, string confirmPassword, string newSecurityQuestion, string newSecurityAnswer)
        {
            Security_Users viewSecurity_Users = new Security_Users();

            viewSecurity_Users.username = UserName;

            // Basic parameter validation
            if (String.IsNullOrEmpty(currentPassword))
            {
                ViewData.ModelState.AddModelError("currentPassword", "You must specify a current password.");
            }
            if (newPassword == null || newPassword.Length < Provider.MinRequiredPasswordLength)
            {
                ViewData.ModelState.AddModelError("newPassword", String.Format(CultureInfo.InvariantCulture,
                                                                               "You must specify a new password of {0} or more characters.",
                                                                               Provider.MinRequiredPasswordLength));
            }
            if (!String.Equals(newPassword, confirmPassword, StringComparison.Ordinal))
            {
                ViewData.ModelState.AddModelError("newPassword", "The new password and confirmation password do not match.");
            }

            if (ViewData.ModelState.IsValid)
            {
                // Attempt to change password
                MembershipUser currentUser              = Provider.GetUser(User.Identity.Name, true /* userIsOnline */);
                bool           changeSuccessful         = false;
                bool           changeQuestionSuccessful = false;
                try
                {
                    changeSuccessful         = currentUser.ChangePassword(currentPassword, newPassword);
                    changeQuestionSuccessful = currentUser.ChangePasswordQuestionAndAnswer(newPassword, newSecurityQuestion, newSecurityAnswer);
                }
                catch
                {
                    // An exception is thrown if the new password does not meet the provider's requirements
                }

                if (changeSuccessful)
                {
                    if (changeQuestionSuccessful)
                    {
                        return(RedirectToAction("ChangePasswordSuccess", "Security"));
                    }
                    else
                    {
                        ViewData.ModelState.AddModelError("newSecurityQuestion", "The new security question/answer combination was not accepted. Please try again.");
                    }
                }
                else
                {
                    ViewData.ModelState.AddModelError("password", "The current password is incorrect or the new password is invalid.");
                }
            }

            // If we got this far, something failed, redisplay form

            return(View(viewSecurity_Users));
        }
        protected virtual void UpdateMyAccount(string userName, string oldPassword, string password, string confirmPassword, string email, string passwordQuestion, string passwordAnswer)
        {
            PreventDefault();
            MembershipUser user = Membership.GetUser(userName);

            if (user != null)
            {
                if (String.IsNullOrEmpty(oldPassword))
                {
                    Result.ShowAlert(Localize("EnterCurrentPassword", "Please enter your current password."), "OldPassword");
                    return;
                }
                if (!(Membership.ValidateUser(userName, oldPassword)))
                {
                    Result.ShowAlert(Localize("PasswordDoesNotMatchRecords", "Your password does not match our records."), "OldPassword");
                    return;
                }
                if (!(String.IsNullOrEmpty(password)) || !(String.IsNullOrEmpty(confirmPassword)))
                {
                    if (password != confirmPassword)
                    {
                        Result.ShowAlert(Localize("NewPasswordAndConfirmatinDoNotMatch", "New password and confirmation do not match."), "Password");
                        return;
                    }
                    if (!(user.ChangePassword(oldPassword, password)))
                    {
                        Result.ShowAlert(Localize("NewPasswordInvalid", "Your new password is invalid."), "Password");
                        return;
                    }
                }
                if (email != user.Email)
                {
                    user.Email = email;
                    Membership.UpdateUser(user);
                }
                if (user.PasswordQuestion != passwordQuestion && String.IsNullOrEmpty(passwordAnswer))
                {
                    Result.ShowAlert(Localize("EnterPasswordAnswer", "Please enter a password answer."), "PasswordAnswer");
                    return;
                }
                if (!(String.IsNullOrEmpty(passwordAnswer)))
                {
                    user.ChangePasswordQuestionAndAnswer(oldPassword, passwordQuestion, passwordAnswer);
                    Membership.UpdateUser(user);
                }
                Result.HideModal();
            }
            else
            {
                Result.ShowAlert(Localize("UserNotFound", "User not found."));
            }
        }
Esempio n. 5
0
 protected void ButtonQa_Click(object sender, EventArgs e)
 {
     try
     {
         MembershipUser mu = Membership.GetUser();
         mu.ChangePasswordQuestionAndAnswer(txtpswqa.Text, txtquestion.Text, txtanswer.Text);
         Response.Redirect("homepage.aspx");
     }
     catch (Exception ex)
     {
         lblQa.Text = ex.Message;
     }
     lblQa.Visible = true;
 }
Esempio n. 6
0
        public void CreateUser()
        {
            MembershipUser user = null;

            CreatedUserTextBox.Text = "";
            string userName = UserNameTextBox.Text;
            Guid   userId   = new Guid(UserIdTextBox.Text);

            try
            {
                MembershipCreateStatus mcStatus;
                user = Membership.CreateUser(userName, PasswordTextBox.Text, EmailTextBox.Text, null, null, IsApprovedCheckBox.Checked, userId, out mcStatus);
            }
            catch (Exception ex)
            {
                CreateStatusLabel.ForeColor = System.Drawing.Color.Red;
                CreateStatusLabel.Text      = ex.Message;
            }
            if (user != null)
            {
                user.Comment    = CommentTextBox.Text;
                user.IsApproved = IsApprovedCheckBox.Checked;
                if ((PasswordQuestionTextBox.Text.Length > 0) && (PasswordAnswerTextBox.Text.Length > 0))
                {
                    user.ChangePasswordQuestionAndAnswer(PasswordTextBox.Text, PasswordQuestionTextBox.Text, PasswordAnswerTextBox.Text);
                }
                CreateStatusLabel.ForeColor = System.Drawing.Color.Green;
                CreateStatusLabel.Text      = "User '" + user.UserName + "' was created.";
                CreatedUserTextBox.Text     = userName;
                switch (PostCreateMode)
                {
                case PostCreateModeEnum.None:
                    break;

                case PostCreateModeEnum.Create:
                    PrepareToCreate();
                    break;

                case PostCreateModeEnum.Update:
                    PrepareToUpdate();
                    LoadUser(userName);
                    break;

                default:
                    break;
                }
                RiseCreated(new UserEditEventArgs(user));
            }
        }
Esempio n. 7
0
 private void ChangePasswordQAHelper(MembershipUser user, string pw, string newQ, string newA)
 {
     try
     {
         user.ChangePasswordQuestionAndAnswer(pw, newQ, newA);
     }
     catch (ArgumentNullException ane)
     {
         Assert.Equal("password", ane.ParamName);
     }
     catch (ArgumentException)
     {
         Assert.NotNull(pw);
     }
 }
Esempio n. 8
0
 protected void btnChangeQuestion_Click(object sender, EventArgs e)
 {
     lblMessage.Visible = false;
     if (user.ChangePasswordQuestionAndAnswer(tbCurrentPassword.Text, dlistPasswordQuestion.SelectedValue, tbPasswordAnswer.Text))
     {
         lblMessage.Visible   = true;
         lblMessage.ForeColor = GREEN;
         lblMessage.Text      = STR_PASSWORD_QUESTION_CHANGED_MESSAGE;
     }
     else
     {
         lblMessage.Visible   = true;
         lblMessage.ForeColor = RED;
         lblMessage.Text      = STR_PASSWORD_QUESTION_FAILED_MESSAGE;
     }
 }
Esempio n. 9
0
    protected void btnSaveSQ_Click(object sender, EventArgs e)
    {
        MembershipUser mu = Membership.GetUser(Utility.GetUserName());

        if (mu.ChangePasswordQuestionAndAnswer(txtCurPass.Text, txtSecQuest.Text, txtSecAnswer.Text))
        {
            lblSQresult.Text = "Security Question Saved!";
        }
        else
        {
            lblSQresult.Text = "Error: Question could not be saved! Check Password";
        }

        btnContinueSQ.Visible = true;
        btnSaveSQ.Visible     = false;
        btnCancelSQ.Visible   = false;
        LoadUser();
    }
    void IMembershipManager.UpdateUser(string application, string userName, string email, string oldAnswer, string newQuestion, string newAnswer, bool isApproved, bool isLockedOut)
    {
        Membership.ApplicationName = application;
        MembershipUser membershipUser = Membership.GetUser(userName);

        membershipUser.Email      = email;
        membershipUser.IsApproved = isApproved;
        if (isLockedOut == false)
        {
            membershipUser.UnlockUser();
        }
        if (Membership.EnablePasswordRetrieval)
        {
            string password = membershipUser.GetPassword(oldAnswer);
            membershipUser.ChangePasswordQuestionAndAnswer(password, newQuestion, newAnswer);
        }
        Membership.UpdateUser(membershipUser);
    }
Esempio n. 11
0
        public ViewResult ChangeAnswer(UserFull userModification)
        {
            UserAnswer userAnswer = new UserAnswer(userModification);

            if (ModelState.IsValid)
            {
                MembershipUser mu = Membership.GetUser();
                if (mu.ChangePasswordQuestionAndAnswer(userAnswer.Password, securityQuestionRepository.Get(userModification.SecurityQuestion).Description, userAnswer.SecurityAnswer))
                {
                    userModification.Alert = "User security question and answer changed successfully";
                }
                else
                {
                    ModelState.AddModelError("Password", "The password dont match");
                }
            }

            userModification.Tab = 3;
            userModification     = GetAccountData(userModification);
            return(View("Index", userModification));
        }
        public void ChangePasswordQuestionAndAnswer()
        {
            MembershipCreateStatus status;

            Membership.CreateUser("foo", "barbar!", "*****@*****.**", "color", "blue", true, out status);
            Assert.AreEqual(MembershipCreateStatus.Success, status);

            MembershipUser user = Membership.GetUser("foo");

            ChangePasswordQAHelper(user, "", "newQ", "newA");
            ChangePasswordQAHelper(user, "barbar!", "", "newA");
            ChangePasswordQAHelper(user, "barbar!", "newQ", "");
            ChangePasswordQAHelper(user, null, "newQ", "newA");

            bool result = user.ChangePasswordQuestionAndAnswer("barbar!", "newQ", "newA");

            Assert.IsTrue(result);

            user = Membership.GetUser("foo");
            Assert.AreEqual("newQ", user.PasswordQuestion);
        }
Esempio n. 13
0
 protected void btnChangePassword_Click(object sender, EventArgs e)
 {
     try
     {
         MembershipUser user = Membership.GetUser(User.Identity.Name);
         if (!Membership.ValidateUser(user.UserName, tbCurrentPassword.Text))
         {
             tbCurrentPassword.ErrorText = "Contraseña Anterior Incorrecta";
             tbCurrentPassword.IsValid   = false;
         }
         else if (!user.ChangePassword(tbCurrentPassword.Text, tbPassword.Text))
         {
             tbPassword.ErrorText = "Nueva Contraseña no Válida.";
             tbPassword.IsValid   = false;
         }
         else
         {
             if (Check_CambiarPregunta.Checked == true)
             {
                 if (BootstrapComboBox_Pregunta_Change.Text == "" || BootstrapTextBox_Respuesta_Change.Text == "")
                 {
                     ScriptManager.RegisterStartupScript(Page, Page.GetType(), "err_msj", "alert(Debe seleccionar una Pregunta y Respuesta Secreta);", true);
                     return;
                 }
                 if (!user.ChangePasswordQuestionAndAnswer(tbPassword.Text, BootstrapComboBox_Pregunta_Change.Text, BootstrapTextBox_Respuesta_Change.Text.Trim()))
                 {
                 }
                 else
                 {
                     Response.Redirect("~/");
                 }
             }
             Response.Redirect("~/");
         }
     }
     catch (Exception Ex)
     {
         FG.Controlador_Error(Ex, Page.Response);
     }
 }
Esempio n. 14
0
        public void ChangePasswordQuestion_OnClick(object sender, EventArgs args)
        {
            try
            {
                MembershipUser u      = Membership.GetUser();
                Boolean        result = u.ChangePasswordQuestionAndAnswer(PasswordTextbox.Text,
                                                                          QuestionTextbox.Text,
                                                                          AnswerTextbox.Text);

                if (result)
                {
                    Msg.Text = "Password Question and Answer changed.";
                }
                else
                {
                    Msg.Text = "Password Question and Answer change failed.";
                }
            }
            catch (Exception e)
            {
                Msg.Text = "Change failed. Please re-enter your values and try again.";
            }
        }
Esempio n. 15
0
        public override TUser Update(TUser instance)
        {
            var user = (TUser)instance;

            base.Update(instance);
            if (user.Profile != null)
            {
                var exist = ProfileBase <TProfile> .Select(user.Id);

                if (exist == null)
                {
                    user.Profile.UserId = user.Id;
                    user.Profile.Insert();
                }
                user.Profile.Update();
            }
            else
            {
                user.Profile.Delete();
            }
            MembershipUser u = null;

            if (!string.IsNullOrWhiteSpace(user.InputNewPassword))
            {
                u = Membership.GetUser(user.Id);
                u.ChangePassword(user.InputOldPassword, user.InputNewPassword);
            }
            if (!string.IsNullOrWhiteSpace(user.InputNewPasswordQuestion))
            {
                if (u == null)
                {
                    u = Membership.GetUser(user.Id);
                }
                u.ChangePasswordQuestionAndAnswer(u.GetPassword(), user.InputNewPasswordQuestion, user.InputNewPasswordAnswer);
            }
            return(user);
        }
Esempio n. 16
0
    protected void buttonChangeQuestionAnswer_Click(object sender, EventArgs e)
    {
        //if (Page.IsValid)
        //{
        string  password = "", question = "", answer = "";
        TextBox txt = (TextBox)ChangePassword1.Controls[0].FindControl("CurrentPassword");

        password = txt.Text;

        HiddenField hf = (HiddenField)ChangePassword1.Controls[0].FindControl("txtQuestion");

        question = hf.Value;

        txt    = (TextBox)ChangePassword1.Controls[0].FindControl("Answer");
        answer = txt.Text;

        MembershipUser mu = Membership.GetUser();

        if (mu.ChangePasswordQuestionAndAnswer(password, question, answer))
        {
            Response.Redirect("~/Account/Manage.aspx?m=SetQuestionSuccess");
        }
        //}
    }
        void IUserStore.UpdateUser(IUser pUser)
        {
            this.Log("username:"******"Could not find user with user name '" + pUser.GetUsername() + "' in the user store.");
            }
            if (!user.PasswordQuestion.Equals(pUser.GetSecretQuestion()))
            {
                string password = pUser.GetPassword();
                if ((password == null) || password.Equals(""))
                {
                    throw new Exception("To change secret question and answer, original password must be provided.");
                }
                user.ChangePasswordQuestionAndAnswer(pUser.GetPassword(), pUser.GetSecretQuestion(), pUser.GetSecretAnswer());
                user = this._innerMemProvider.GetUser(pUser.GetUsername(), false);
            }
            user.Email = pUser.GetEmail();
            this._innerMemProvider.UpdateUser(user);
        }
Esempio n. 18
0
 public override bool ChangePasswordQuestionAndAnswer(string password, string newPasswordQuestion, string newPasswordAnswer)
 {
     return(_innerUser.ChangePasswordQuestionAndAnswer(password, newPasswordQuestion, newPasswordAnswer));
 }
Esempio n. 19
0
    protected void lbtnNextStep_Click(object sender, EventArgs e)
    {
        try
        {
            bool password = txtPassword.Text == txtConfirmPassword.Text;
            bool answer   = txtAnswer.Text == txtConfirmAnswer.Text;

            if (!password)
            {
                lblError.Text = "Въведените пароли не съвпадат.";
                return;
            }

            if (password && answer)
            {
                if (hdnEditAccountSecutiry.Value == "") //New Account
                {
                    DictionaryModel.Account account = new DictionaryModel.Account();

                    MembershipCreateStatus status;
                    MembershipUser         user = Membership.CreateUser(DateTime.Now.ToString("ddhhmmssfff"), txtPassword.Text, txtEmail.Text.Trim().ToLower(), txtQuestion.Text.Trim(), txtAnswer.Text.Trim(), chkApproved.Checked, out status);

                    if (status != MembershipCreateStatus.Success)
                    {
                        switch (status)
                        {
                        case MembershipCreateStatus.DuplicateEmail:
                            lblError.Text = "Въведеният Email адрес е зает.";
                            break;

                        case MembershipCreateStatus.DuplicateProviderUserKey:
                            lblError.Text = "Дублиращ се потребителски код.";
                            break;

                        case MembershipCreateStatus.DuplicateUserName:
                            lblError.Text = "Въведеното потребителско име е заето.";
                            break;

                        case MembershipCreateStatus.InvalidAnswer:
                            lblError.Text = "Въведохте невалиден отговор на тайният въпрос.";
                            break;

                        case MembershipCreateStatus.InvalidEmail:
                            lblError.Text = "Въведохте невалиден Email адрес.";
                            break;

                        case MembershipCreateStatus.InvalidPassword:
                            lblError.Text = "Въведохте невалидна парола.";
                            break;

                        case MembershipCreateStatus.InvalidProviderUserKey:
                            lblError.Text = "Невалиден потретбителски код.";
                            break;

                        case MembershipCreateStatus.InvalidQuestion:
                            lblError.Text = "Веведохте невалиден таен въпрос.";
                            break;

                        case MembershipCreateStatus.InvalidUserName:
                            lblError.Text = "Въведохте невалидно потребителско име.";
                            break;

                        case MembershipCreateStatus.ProviderError:
                            lblError.Text = "Възникна грешка, моля опитайте отново.";
                            break;

                        case MembershipCreateStatus.UserRejected:
                            lblError.Text = "Вашият профил е спрян.";
                            break;

                        default:
                            break;
                        }
                        return;
                    }

                    user.IsApproved = chkApproved.Checked;
                    user.Comment    = txtReminder.Text;
                    Membership.UpdateUser(user);
                    Roles.AddUserToRole(user.UserName, "User");

                    account.ASPNETID  = (Guid)user.ProviderUserKey;
                    account.FirstName = string.Empty;
                    account.LastName  = string.Empty;
                    entities.Accounts.AddObject(account);
                    entities.SaveChanges();



                    if (StepCompleted != null)
                    {
                        NewAccountStepCompletedEventArgs args = new NewAccountStepCompletedEventArgs(NewAccountWizardSteps.AccountSecurity);

                        Session["SetupASPNETID"] = args.ASPNETID = account.ASPNETID;
                        Session["SetupAcountId"] = args.CurrentAccountId = account.Id;

                        StepCompleted.Invoke(this, args);
                        //HideEditAddControls();
                    }
                }
                else //Edit Account
                {
                    MembershipUser user = Membership.GetUser(SetupASPNETID);

                    user.ChangePasswordQuestionAndAnswer(txtPassword.Text, txtQuestion.Text, txtAnswer.Text);
                    user.Comment    = txtReminder.Text;
                    user.IsApproved = chkApproved.Checked;
                    Membership.UpdateUser(user);
                    hdnEditAccountSecutiry.Value = null;

                    HideEditAddControls();

                    if (StepCompleted != null)
                    {
                        NewAccountStepCompletedEventArgs args = new NewAccountStepCompletedEventArgs(NewAccountWizardSteps.AccountSecurity);

                        args.ASPNETID = (Guid)user.ProviderUserKey;

                        StepCompleted.Invoke(this, args);
                    }
                }
            }
            else
            {
                lblError.Text = "Въведените отговори на тайният въпрос не съвпадат.";
            }
        }
        catch (Exception ex)
        {
            lblError.Text = ex.Message;// "Възникна проблем, моля опитайте по-късно.";
        }
    }
Esempio n. 20
0
    protected void CreateUserWizard1_CreatedUser(object sender, EventArgs e)
    {
        try
        {
            CreateUserWizard1.UserName = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("UserName")).Text;

            user = Membership.GetUser(CreateUserWizard1.UserName);

            user.ChangePasswordQuestionAndAnswer(user.GetPassword(), "1", "1");
            user.IsApproved = true;
            user.Comment    = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Corp")).Text;

            Roles.AddUserToRole(CreateUserWizard1.UserName, "user");
            Membership.UpdateUser(user);

            p = (ProfileCommon)ProfileCommon.Create(CreateUserWizard1.UserName, true);
            p.UserProfile.Owner    = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Name")).Text;
            p.UserProfile.Name     = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Name")).Text;
            p.UserProfile.Tel      = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Tel")).Text;
            p.UserProfile.Corp     = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Corp")).Text;
            p.UserProfile.City     = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedValue;
            p.UserProfile.Postcode = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedValue;
            p.UserProfile.Address  = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Address")).Text;
            p.UserProfile.Fax      = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Fax")).Text;
            p.UserProfile.Kind     = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("Kind")).SelectedValue;
            p.UserProfile.Type     = "1";
            p.UserProfile.Zipcht   = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedValue +
                                     ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedItem.Text +
                                     ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedItem.Text;
            p.Save();


            /* UserProfiles */
            UserProfiles up = new UserProfiles();
            up.Username = CreateUserWizard1.UserName;
            up.Owner    = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Name")).Text;
            up.Name     = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Name")).Text;
            up.Tel      = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Tel")).Text;
            up.Corp     = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Corp")).Text;
            up.City     = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedValue;
            up.Postcode = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedValue;
            up.Address  = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Address")).Text;
            up.Fax      = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Fax")).Text;
            up.Kind     = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("Kind")).SelectedValue;
            up.Type     = "1";
            up.Zipcht   = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedValue +
                          ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedItem.Text +
                          ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedItem.Text;


            String sqlUp = "";
            sqlUp = sqlUp + " insert into UserProfiles ([address],[city],[corp],[fax]	,[kind],[name],[owner],[postcode],[tel],[type],[username],[zipcht]) ";
            sqlUp = sqlUp + " values (@address,@city,@corp,@fax	,@kind,@name,@owner,@postcode,@tel,@type,@username,@zipcht)";
            //sqlUp = sqlUp + " insert into UserProfiles ([address],[city],[corp],[fax],[kind],[name],[owner],[postcode],[tel],[type],[username],[zipcht]) ";
            //sqlUp = sqlUp + " values (@address,@city,@corp,@fax,@kind,@name,@owner,@postcode,@tel,@type,@username,@zipcht) ";
            OleDbCommand cmdM = new OleDbCommand(sqlUp);
            cmdM.Parameters.Add("@address", OleDbType.VarChar).Value  = up.Address;
            cmdM.Parameters.Add("@city", OleDbType.VarChar).Value     = up.City;
            cmdM.Parameters.Add("@corp", OleDbType.VarChar).Value     = up.Corp;
            cmdM.Parameters.Add("@fax", OleDbType.VarChar).Value      = up.Fax;
            cmdM.Parameters.Add("@kind", OleDbType.VarChar).Value     = up.Kind;
            cmdM.Parameters.Add("@name", OleDbType.VarChar).Value     = up.Name;
            cmdM.Parameters.Add("@owner", OleDbType.VarChar).Value    = up.Owner;
            cmdM.Parameters.Add("@postcode", OleDbType.VarChar).Value = up.Postcode;
            cmdM.Parameters.Add("@tel", OleDbType.VarChar).Value      = up.Tel;
            cmdM.Parameters.Add("@type", OleDbType.VarChar).Value     = up.Type;
            cmdM.Parameters.Add("@username", OleDbType.VarChar).Value = up.Username;
            cmdM.Parameters.Add("@zipcht", OleDbType.VarChar).Value   = up.Zipcht;
            cmdM.CommandType = CommandType.Text;

            //SQLUtil.ExecuteSql(cmdM);
            object objUserProfile = SQLUtil.ExecuteScalar(cmdM);
            //mgr.Save(null, null, up);

            ((Label)CompleteWizardStep1.ContentTemplateContainer.FindControl("Msg")).Text = "學研機構會員新增完成。";
        }
        catch (Exception err)
        {
            Membership.DeleteUser(CreateUserWizard1.UserName, true);

            ((Label)CompleteWizardStep1.ContentTemplateContainer.FindControl("Msg")).Text = "錯誤: " + err.ToString();
        }
    }
Esempio n. 21
0
 public bool ChangePasswordQuestionAndAnswer(string oldAnswer, string newQuestion, string newAnswer)
 {
     return(MembershipUser.ChangePasswordQuestionAndAnswer(oldAnswer, newQuestion, newAnswer));
 }
        public bool ChangePasswordQuestionAndAnswer(string username, string password, string newPasswordQuestion, string newPasswordAnswer)
        {
            MembershipUser user = Membership.GetUser(username);

            return(user.ChangePasswordQuestionAndAnswer(password, newPasswordQuestion, newPasswordAnswer));
        }
Esempio n. 23
0
    protected void CreateUserWizard1_CreatedUser(object sender, EventArgs e)
    {
        try
        {
            CreateUserWizard1.UserName = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("UserName")).Text;

            user = Membership.GetUser(CreateUserWizard1.UserName);

            user.ChangePasswordQuestionAndAnswer(user.GetPassword(), "2", "2");
            user.IsApproved = false;
            user.Comment    = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Corp")).Text;

            Roles.AddUserToRole(CreateUserWizard1.UserName, "user");
            Membership.UpdateUser(user);


            p = (ProfileCommon)ProfileCommon.Create(CreateUserWizard1.UserName, true);
            p.UserProfile.Name     = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Name")).Text;
            p.UserProfile.Owner    = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Owner")).Text;
            p.UserProfile.Tel      = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Tel")).Text;
            p.UserProfile.Corp     = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Corp")).Text;
            p.UserProfile.City     = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedValue;
            p.UserProfile.Postcode = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedValue;
            p.UserProfile.Address  = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Address")).Text;
            p.UserProfile.Fax      = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Fax")).Text;
            p.UserProfile.Kind     = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("Kind")).SelectedValue;
            p.UserProfile.Type     = "2";
            p.UserProfile.Zipcht   = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedValue +
                                     ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedItem.Text +
                                     ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedItem.Text;
            p.Save();

            ReuseTech obj = new ReuseTech();
            obj.Username = CreateUserWizard1.UserName;
            obj.Techitem = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("TechItem")).SelectedValue;
            if (!obj.Techitem.Equals("V"))
            {
                obj.Techother = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("TechItem")).SelectedItem.Text;
            }
            else
            {
                obj.Techother = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("TechOther")).Text;
            }
            obj.Techname  = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("TechName")).Text;
            obj.Wasteitem = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("WasteItem")).SelectedValue;
            if (!obj.Wasteitem.Equals("U"))
            {
                obj.Wasteother = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("WasteItem")).SelectedItem.Text;
            }
            else
            {
                obj.Wasteother = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("WasteOther")).Text;
            }
            obj.Wastename = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("WasteName")).Text;
            obj.Reusename = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("ReuseName")).Text;
            //obj.Researchitem = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("ResearchItem")).SelectedValue;
            //obj.Patent = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Patent")).Text;
            //obj.Techadv = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("TechAdv")).Text;
            //obj.Techdesc = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("TechDesc")).Text;
            obj.Type       = "2";
            obj.Isapproved = false;
            obj.Createdate = DateTime.Now;

            obj.Researchitem = "";
            obj.Patent       = "";
            obj.Techadv      = "";
            obj.Techdesc     = "";


            /* UserProfiles */
            UserProfiles up = new UserProfiles();
            up.Username = CreateUserWizard1.UserName;
            up.Owner    = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Name")).Text;
            up.Name     = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Name")).Text;
            up.Tel      = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Tel")).Text;
            up.Corp     = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Corp")).Text;
            up.City     = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedValue;
            up.Postcode = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedValue;
            up.Address  = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Address")).Text;
            up.Fax      = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Fax")).Text;
            up.Kind     = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("Kind")).SelectedValue;
            up.Type     = "2";
            up.Zipcht   = ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedValue +
                          ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedItem.Text +
                          ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedItem.Text;


            /* 配對 */
            //at = SpringUtil.at();
            String sql = "SELECT * FROM ReuseTech   ";
            sql += " WHERE type='1' and ((TechOther like @param1) or (WasteOther like @param2) or (TechName  like @param3) or (WasteName like @param4)) ";
            //IDbParameters parameters = at.CreateDbParameters();

            //parameters.Add("param1", OleDbType.VarChar).Value = obj.Techother;
            //parameters.Add("param2", OleDbType.VarChar).Value = obj.Wasteother;
            //parameters.Add("param3", OleDbType.VarChar).Value = "%" + obj.Techname + "%";
            //parameters.Add("param4", OleDbType.VarChar).Value = "%" + obj.Wastename + "%";
            //DataSet ds = new DataSet();
            //at.DataSetFillWithParameters(ds, CommandType.Text, sql, parameters);

            OleDbCommand cmd = new OleDbCommand(sql);
            cmd.Parameters.Add("param1", OleDbType.VarChar).Value = obj.Techother;
            cmd.Parameters.Add("param2", OleDbType.VarChar).Value = obj.Wasteother;
            cmd.Parameters.Add("param3", OleDbType.VarChar).Value = "%" + obj.Techname + "%";
            cmd.Parameters.Add("param4", OleDbType.VarChar).Value = "%" + obj.Wastename + "%";
            cmd.CommandType = CommandType.Text;
            DataSet ds = SQLUtil.QueryDS(cmd);

            ArrayList matchList = new ArrayList();
            foreach (DataRow dRow in ds.Tables[0].Rows)
            {
                Match match = new Match();
                user2             = Membership.GetUser(dRow["UserName"].ToString());
                p2                = (ProfileCommon)ProfileCommon.Create(dRow["UserName"].ToString(), true);
                match.Username2   = CreateUserWizard1.UserName;
                match.Username1   = dRow["UserName"].ToString();
                match.Rid1        = (int)dRow["Id"];
                match.Name2       = p.UserProfile.Name;
                match.Name1       = p2.UserProfile.Name;
                match.Corp2       = p.UserProfile.Corp;
                match.Corp1       = p2.UserProfile.Corp;
                match.Tel2        = p.UserProfile.Tel;
                match.Tel1        = p2.UserProfile.Tel;
                match.Wasteitem2  = obj.Wasteother;
                match.Wasteitem1  = dRow["WasteOther"].ToString();
                match.Wastename2  = obj.Wastename;
                match.Wastename1  = dRow["WasteName"].ToString();
                match.Techitem2   = obj.Techother;
                match.Techitem1   = dRow["TechOther"].ToString();
                match.Techname2   = obj.Techname;
                match.Techname1   = dRow["TechName"].ToString();
                match.Reusename2  = obj.Reusename;
                match.Reusename1  = dRow["ReuseName"].ToString();
                match.Matchdate   = DateTime.Now;
                match.Ischecked   = "A";
                match.Isdeleted   = false;
                match.Isconfirm2  = "A";
                match.Isconfirm1  = "A";
                match.Isdroped2   = "A";
                match.Isdroped1   = "A";
                match.Createdate2 = DateTime.Now;
                match.Createdate1 = (DateTime)dRow["Createdate"];
                match.Isapproved2 = false;

                if (user2 != null)
                {
                    if (user2.IsApproved)
                    {
                        match.Isapproved1 = true;
                    }
                    else
                    {
                        match.Isapproved1 = false;
                    }
                }
                else
                {
                    match.Isapproved1 = false;
                }

                match.Techdesc = dRow["TechDesc"].ToString();
                match.Techadv  = dRow["TechAdv"].ToString();

                matchList.Add(match);
            }
            Save(obj, matchList, up);
            //mgr.Save(obj, matchList, up);

            ((Label)CompleteWizardStep1.ContentTemplateContainer.FindControl("Msg")).Text = "您的帳號申請資料已經送出,請等待審核通知。";

            #region  Email

            /* Mail */
            /* to 會員 */
            //Marquee objM = mgrM.getMarquee("B");
            String       sqlMarquee = "SELECT * from Marquee where Id=?   ";
            OleDbCommand cmdM       = new OleDbCommand(sqlMarquee);
            cmdM.Parameters.Add("?", OleDbType.VarChar).Value = "B";
            cmdM.CommandType = CommandType.Text;
            DataSet dsm         = SQLUtil.QueryDS(cmdM);
            string  strEmailMsg = "";
            foreach (DataRow dr in dsm.Tables[0].Rows)
            {
                strEmailMsg = dr["Msg"].ToString();
            }

            SmtpClient sc = new SmtpClient("smtp.tgpf.org.tw");
            sc.Credentials = new System.Net.NetworkCredential("*****@*****.**", "IDB.riw@2018");
            string strMsg     = "";
            string strTo      = "";
            string strFrom    = "";
            string strSubject = "資源化技術研發供需資訊平台通知";
            //strMsg += "帳號: " + CreateUserWizard1.UserName + "\n";
            //strMsg += "單位: " + p.UserProfile.Corp + "\n";
            //strMsg += "會員姓名: " + p.UserProfile.Name + "\n";
            //strMsg += "Email: " + ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Email")).Text + "\n";
            strMsg += "<p>" + p.UserProfile.Name + " 先生/小姐您好</p>";
            strMsg += "<p>感謝您加入「資源化技術研發供需資訊平台」 會員!!</p>";
            strMsg += "<p>目前正在審核您的會員資料,造成不便敬請見諒。</p>";
            strMsg += "<p>待審核後系統將主動通知您審核結果,</p>";
            strMsg += "<p>通過審核後即可再次登入「資源化技術研發供需資訊平台」,</p>";
            strMsg += "<p>獲得平台所提供的相關功能與服務!</p><br/><br/>";
            strMsg += "<p>此信件為系統自動發送,請勿直接回覆,謝謝。</p>";
            MembershipUser mng = Membership.GetUser("isrmng");
            strFrom = mng.Email;
            strTo   = ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Email")).Text;

            //try
            //{
            MailMessage msgMail = new MailMessage(strFrom, strTo);
            msgMail.Subject    = strSubject;
            msgMail.IsBodyHtml = true;
            msgMail.Body       = strMsg;
            msgMail.CC.Add("*****@*****.**");
            new util().SendMail(strFrom, strTo, strSubject, strMsg, "*****@*****.**");

            /* to Manager */
            strSubject = "資源化技術研發供需資訊平台-新增會員通知";
            strMsg     = "<p>業者廠商</p>";
            strMsg    += "<p>單位名稱:" + p.UserProfile.Corp + "</p>";
            strMsg    += "<p>聯絡人:" + p.UserProfile.Name + "</p>";
            strMsg    += "<p>地址:" + ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("cityList")).SelectedItem.Text +
                         ((DropDownList)UserTemplate.ContentTemplateContainer.FindControl("zipList")).SelectedItem.Text +
                         ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Address")).Text + "</p>";
            strMsg += "<p>電話:" + ((TextBox)UserTemplate.ContentTemplateContainer.FindControl("Tel")).Text + "</p>";
            if (strEmailMsg.Length > 0)
            {
                strMsg += "<p><a href=\"" + strEmailMsg + "\">" + strEmailMsg + "</a></p>";
            }
            //strMsg += "<p><a href=\"" + objM.Msg + "\">" + objM.Msg + "</a></p>";
            strTo = mng.Email;

            msgMail            = new MailMessage(strFrom, strTo);
            msgMail.Subject    = strSubject;
            msgMail.IsBodyHtml = true;
            msgMail.Body       = strMsg;
            msgMail.CC.Add("*****@*****.**");
            new util().SendMail(strFrom, strTo, strSubject, strMsg, "*****@*****.**");

            /* Mail End */
            //}
            //catch
            //{
            //    ((Label)CompleteWizardStep1.ContentTemplateContainer.FindControl("Msg")).Text = "您的帳號申請資料已經送出,請等待審核通知。<br/>錯誤:信件寄送失敗 ";
            //}
            #endregion
        }
        catch (Exception err)
        {
            Membership.DeleteUser(CreateUserWizard1.UserName, true);

            String       strDelReuseTech = "delete from ReuseTech where UserName = @username";
            OleDbCommand cmdDelReuseTech = new OleDbCommand(strDelReuseTech);
            cmdDelReuseTech.Parameters.Add("@username", OleDbType.VarChar).Value = CreateUserWizard1.UserName;
            cmdDelReuseTech.CommandType = CommandType.Text;
            SQLUtil.ExecuteSql(cmdDelReuseTech);

            String       strDelUserProfile = "delete from UserProfiles where UserName = @username";
            OleDbCommand cmdDelUserProfile = new OleDbCommand(strDelUserProfile);
            cmdDelUserProfile.Parameters.Add("@username", OleDbType.VarChar).Value = CreateUserWizard1.UserName;
            cmdDelUserProfile.CommandType = CommandType.Text;
            SQLUtil.ExecuteSql(cmdDelUserProfile);


            ((Label)CompleteWizardStep1.ContentTemplateContainer.FindControl("Msg")).Text = "錯誤: " + err.ToString();
        }
    }
Esempio n. 24
0
        protected void ButtonSave_Click(object sender, EventArgs e)
        {
            MembershipUser membershipUser = null;
            string         password       = "";

            LabelError.Text = "";

            if (TextBoxPassword.Text != TextBoxConfirmPassword.Text)
            {
                LabelError.Text    = "Password and Confirm Password must be the same.";
                PanelError.Visible = true;
                return;
            }

            try
            {
                membershipUser = Membership.GetUser(TextBoxUserName.Text);
                password       = answer.Replace("-", "");
                password       = password.Substring(0, 10);
                password      += "#$";
                if (membershipUser.GetPassword(this.answer) != password)
                {
                    LabelError.Text    = "Your Account could not be confirmed. Please contact the System Administrator.";
                    PanelError.Visible = true;
                    return;
                }
            }
            catch (Exception exception)
            {
                LabelError.Text   += "Please enter User Name as indicated on email.";
                PanelError.Visible = true;
            }

            try
            {
                if (membershipUser.ChangePassword(password, TextBoxPassword.Text) == false)
                {
                    LabelError.Text    = ("Password is not valid. Please re-enter.<br />");
                    PanelError.Visible = true;
                    return;
                }

                membershipUser.ChangePasswordQuestionAndAnswer(TextBoxPassword.Text, DropDownListSecurityQuestion.SelectedValue, TextBoxSecurityAnswer.Text);
                membershipUser.IsApproved = true;
                Membership.UpdateUser(membershipUser);

                Account account = Account.GetAccountByUserName(TextBoxUserName.Text);

                MailMessage mailMessage = new MailMessage(ConfigurationManager.AppSettings["administrationEmailAddress"].ToString(), membershipUser.Email);

                mailMessage.Subject    = "IN - SPAR MAPPER - Registration Confirmed";
                mailMessage.Body       = String.Format("Hi {3} {4},\n\nCongratulations your account on IN - SPAR MAPPER is now active.\n\nYour profile is as follows: \n User Name: {0} \n Password: {1} \n\nPlease navigate your web browser to {2} to Login.\n\nKind Regards,\nIN - SPAR MAPPER Administrator.", TextBoxUserName.Text, TextBoxPassword.Text, ConfigurationManager.AppSettings["applicationUri"].ToString(), account.FirstName, account.LastName);
                mailMessage.IsBodyHtml = false;

                SmtpClient smtpClient = new SmtpClient(ConfigurationManager.AppSettings["mailRelay"].ToString());
                smtpClient.Port        = Convert.ToInt32(ConfigurationManager.AppSettings["port"]);
                smtpClient.Credentials = new System.Net.NetworkCredential(ConfigurationManager.AppSettings["administrationEmailAddress"].ToString(), ConfigurationManager.AppSettings["password"].ToString());
                smtpClient.EnableSsl   = true;
                smtpClient.Send(mailMessage);

                Response.Redirect("Default.aspx");
            }
            catch (Exception exception)
            {
                LabelError.Text   += (exception.Message + "<br />");
                PanelError.Visible = true;
            }
        }
        public HttpResponseMessage SetSecurityAnswer(UserAuthenticationRequest securityRequest)
        {
            HttpResponseMessage hrm = Request.CreateErrorResponse(
                HttpStatusCode.PreconditionFailed, "Unexpected Error locating user membership");

            if (securityRequest == null)
            {
                return(hrm = Request.CreateErrorResponse(
                           HttpStatusCode.PreconditionFailed, "Unexpected Error parsing request."));
            }

            string         userName = Request.UserName();
            MembershipUser mu       = Membership.GetUser(userName);

            if (mu != null)
            {
                // Validate answer length.
                if (securityRequest.SecretAnswer.Length < SecurityConfiguration.Settings.MinimumSecretAnswerLength)
                {
                    hrm = Request.CreateErrorResponse(
                        HttpStatusCode.PreconditionFailed,
                        String.Format("The secret question answer is less than the minimum length of {0}",
                                      SecurityConfiguration.Settings.MinimumSecretAnswerLength
                                      )
                        );

                    return(hrm);
                }

                string secretQuestion = string.IsNullOrEmpty(securityRequest.SecretQuestion)
                    ? mu.PasswordQuestion
                    : securityRequest.SecretQuestion;



                if (!string.IsNullOrEmpty(securityRequest.Password) &&
                    !string.IsNullOrEmpty(secretQuestion) &&
                    !string.IsNullOrEmpty(securityRequest.SecretAnswer))
                {
                    try {
                        if (mu.ChangePasswordQuestionAndAnswer(
                                securityRequest.Password,
                                secretQuestion,
                                securityRequest.SecretAnswer))
                        {
                            mu.Comment = string.Empty;
                            Membership.UpdateUser(mu);

                            if (!Roles.IsUserInRole(userName, "Customer"))
                            {
                                Roles.AddUserToRole(userName, "Customer");
                            }
                            hrm = Request.CreateResponse(HttpStatusCode.OK);
                        }
                        else
                        {
                            hrm = Request.CreateErrorResponse(HttpStatusCode.Unauthorized, "Wrong Password");
                        }
                    }
                    catch (Exception exc) {
                        hrm = Request.CreateErrorResponse(HttpStatusCode.NoContent, exc.Message);
                    }
                }
                else
                {
                    hrm = Request.CreateErrorResponse(
                        HttpStatusCode.PreconditionFailed, "Missing Password or Secret Answer");
                }
            }
            return(hrm);
        }
Esempio n. 26
0
 /// <summary>
 /// Updates question and answer for the facade user in the data store.
 /// </summary>
 /// <param name="password">The current password for the facade user.</param>
 /// <param name="question">The new question for the facade user.</param>
 /// <param name="answer">The answer for the question for the facade user.</param>
 /// <returns>true if the update was successful; otherwise, false.</returns>
 public bool ChangePasswordQuestionAndAnswer(string password, string question, string answer)
 {
     return(_membershipUser.ChangePasswordQuestionAndAnswer(password, question, answer));
 }
Esempio n. 27
0
        protected void OnSubmittedFormSave(object sender, EventArgs e)
        {
            List <dynamic> ReturnObj = new List <dynamic>();

            try
            {
                Byte[] imgByte          = null;
                NameValueCollection nvc = Request.Form;

                MasterUser objMasterUser = new MasterUser();
                objMasterUser.UserName = nvc["ctl00$MainContent$username"];

                MembershipUser _User = Membership.GetUser(objMasterUser.UserName);
                if (_User == null)
                {
                    throw new Exception("Username " + HttpUtility.HtmlEncode(objMasterUser.UserName) + " not found. Please check the value and re-enter.");
                }
                else
                {
                    MasterUser _MasterUser = new UsersDAL().GetValidUser(_User.UserName);
                    if (_MasterUser.UUID == (Guid)_User.ProviderUserKey)
                    {
                        HttpPostedFile File = Request.Files["ctl00$MainContent$imgUpload"];
                        if (File != null && File.ContentLength > 0)
                        {
                            imgByte = new Byte[File.ContentLength];
                            File.InputStream.Read(imgByte, 0, File.ContentLength);

                            objMasterUser.Image = imgByte;
                        }
                        else
                        {
                            if (_MasterUser.Image != null)
                            {
                                objMasterUser.Image = _MasterUser.Image;
                            }
                        }

                        objMasterUser.UUID     = (Guid)_User.ProviderUserKey;
                        objMasterUser.FullName = (!string.IsNullOrEmpty(nvc["ctl00$MainContent$fullname"]) ? nvc["ctl00$MainContent$fullname"].Trim() : string.Empty);

                        string birthDate = (!string.IsNullOrEmpty(nvc["ctl00$MainContent$birthdate"]) ? nvc["ctl00$MainContent$birthdate"].Trim() : string.Empty);
                        if (birthDate != "")
                        {
                            objMasterUser.BirthDate = DateTime.ParseExact(birthDate, "dd-MM-yyyy", null);
                        }
                        else
                        {
                            objMasterUser.BirthDate = null;
                        }

                        if (!string.IsNullOrEmpty(nvc["ctl00$MainContent$Gender"]))
                        {
                            string selectedGender = nvc["ctl00$MainContent$Gender"].ToString();
                            objMasterUser.Gender = (selectedGender == "male" ? "M" : "F");
                        }

                        objMasterUser.Comment     = (!string.IsNullOrEmpty(nvc["ctl00$MainContent$comment"]) ? nvc["ctl00$MainContent$comment"].Trim() : string.Empty);
                        objMasterUser.Website     = (!string.IsNullOrEmpty(nvc["ctl00$MainContent$website"]) ? nvc["ctl00$MainContent$website"].Trim() : string.Empty);
                        objMasterUser.UserPhoneNo = nvc["ctl00$MainContent$phone"];

                        //email:new=update
                        if (_User.Email.Trim() != nvc["ctl00$MainContent$email"].Trim())
                        {
                            _User.Email = nvc["ctl00$MainContent$email"].Trim();
                            Membership.UpdateUser(_User);

                            objMasterUser.UserEmail = _User.Email;
                        }

                        //password:notnull=change()
                        if (!string.IsNullOrEmpty(nvc["ctl00$MainContent$oldpassword"]))
                        {
                            string oldpassword = string.Empty;
                            string newpassword = string.Empty;

                            oldpassword = nvc["ctl00$MainContent$oldpassword"].Trim();

                            if (!string.IsNullOrEmpty(nvc["ctl00$MainContent$newpassword"]) && !string.IsNullOrEmpty(nvc["ctl00$MainContent$confirmpassword"]))
                            {
                                newpassword = nvc["ctl00$MainContent$newpassword"].Trim();
                            }
                            else
                            {
                                throw new Exception("A password-related error has occured. Please try again.");
                            }

                            if (_User.ChangePassword(oldpassword, newpassword))
                            {
                                objMasterUser.UserPassword = newpassword;

                                bool mail = MailHelper.SendMail(new MasterUser()
                                {
                                    UserEmail = _User.Email,
                                    FullName  = objMasterUser.FullName,
                                    UserName  = objMasterUser.UserName
                                },
                                                                newpassword);

                                ReturnObj.Add(new
                                {
                                    source  = "Password Updated",
                                    message = "Password successfully updated. Your new password will be sent to your email id : "
                                              + new Helper().EmailClipper(_User.Email)
                                });
                            }
                            else
                            {
                                throw new Exception("A password-related error has occured. Please check your old password and Try Again!");
                            }
                        }

                        //sec. question/answer:notnull=change()
                        if ((_MasterUser.SecQuestion.Trim() != nvc["ctl00$MainContent$question"].Trim()) ||
                            (Security.Decrypt(_MasterUser.SecAnswer.Trim()) != nvc["ctl00$MainContent$answer"].Trim()))
                        {
                            string question = string.Empty;
                            string answer   = string.Empty;

                            if (!string.IsNullOrEmpty(nvc["ctl00$MainContent$question"]) && !string.IsNullOrEmpty(nvc["ctl00$MainContent$answer"]))
                            {
                                question = nvc["ctl00$MainContent$question"].Trim();
                                answer   = nvc["ctl00$MainContent$answer"].Trim();
                            }
                            else
                            {
                                throw new Exception("A security-related error has occured. Please try again.");
                            }

                            if (_User.ChangePasswordQuestionAndAnswer(_User.GetPassword(Security.Decrypt(_MasterUser.SecAnswer.Trim())), question, answer))
                            {
                                objMasterUser.SecQuestion = question;
                                objMasterUser.SecAnswer   = answer;

                                ReturnObj.Add(new
                                {
                                    source  = "Security Details Updated",
                                    message = "Security details (question/answer) successfully updated."
                                });
                            }
                        }

                        objMasterUser.ModifiedBy        = new UsersDAL().GetValidUser(HttpContext.Current.User.Identity.Name).UserID;
                        objMasterUser.ModifiedTimeStamp = DateTime.Now;

                        if (new UsersDAL().UpdateProfileUser(objMasterUser))
                        {
                            ReturnObj.Add(new
                            {
                                source  = "Profile Updated",
                                message = "Profile successfully updated."
                            });

                            string json   = JsonConvert.SerializeObject(ReturnObj, Formatting.Indented);
                            string script = "var data = " + json + ";";
                            ClientScript.RegisterClientScriptBlock(this.Page.GetType(), "dataVar", script, true);

                            ScriptManager.RegisterStartupScript(Page, Page.GetType(), "output", "ShowOutput('" + _MasterUser.UserID + "');", true);
                        }
                        else
                        {
                            throw new Exception("An error occurred while updating user profile");
                        }
                    }
                }
            }
            catch (Exception ex)
            {
                ((SiteMaster)this.Master).ShowMessage("Error", "An error occurred", ex, true);
            }
        }
Esempio n. 28
0
        public AspUser SaveAspUser(AspUser saveUser)
        {
            if (saveUser != null)
            {
                MembershipProvider simpleProvider = Membership.Providers["SimpleProvider"];

                if (saveUser.UserId == Guid.Empty) //means this is new user : create user
                {
                    // Insert New Membership Account
                    MembershipCreateStatus status;
                    MembershipUser         newUser = Membership.CreateUser(saveUser.UserName, saveUser.Password, saveUser.Email,
                                                                           saveUser.PasswordQuestion, saveUser.PasswordAnswer, saveUser.IsApproved, out status);

                    if (status == MembershipCreateStatus.Success)
                    {
                        Guid newUserId = Utilities.ToGuid(newUser.ProviderUserKey);
                        ApartmentMethods.UpdateAspUserOrganisationId(newUserId, saveUser.OrganisationId);
                        saveUser = GetAspUser(newUserId);
                    }
                    else
                    {
                        switch (status)
                        {
                        case MembershipCreateStatus.DuplicateEmail:
                            saveUser.ErrorMessage = "The e-mail address already exists in the database for the application."; break;

                        case MembershipCreateStatus.DuplicateProviderUserKey:
                            saveUser.ErrorMessage = "The provider user key already exists in the database for the application."; break;

                        case MembershipCreateStatus.DuplicateUserName:
                            saveUser.ErrorMessage = "The user name already exists in the database for the application."; break;

                        case MembershipCreateStatus.InvalidAnswer:
                            saveUser.ErrorMessage = "The password answer is not formatted correctly."; break;

                        case MembershipCreateStatus.InvalidEmail:
                            saveUser.ErrorMessage = "The e-mail address is not formatted correctly."; break;

                        case MembershipCreateStatus.InvalidProviderUserKey:
                            saveUser.ErrorMessage = "The provider user key is of an invalid type or format."; break;

                        case MembershipCreateStatus.InvalidQuestion:
                            saveUser.ErrorMessage = "The password question is not formatted correctly."; break;

                        case MembershipCreateStatus.InvalidUserName:
                            saveUser.ErrorMessage = "The user name was not found in the database."; break;

                        case MembershipCreateStatus.InvalidPassword:
                            saveUser.ErrorMessage = "The password is not formatted correctly."; break;

                        default:
                            saveUser.ErrorMessage = "Fail to create new user";
                            break;
                        }
                    }
                }
                else
                {
                    MembershipUser memberShipUser = Membership.GetUser(saveUser.UserId);
                    int?           updateCode     = null;
                    if (memberShipUser.UserName != saveUser.UserName)
                    {
                        updateCode     = ApartmentMethods.UpdateMembershipUserName(Membership.ApplicationName, memberShipUser.UserName, saveUser.UserName);
                        memberShipUser = Membership.GetUser(saveUser.UserId);
                    }

                    string newGenPassword = string.Empty;
                    bool   saveQAerror    = false;
                    if (updateCode == null || updateCode == 0)
                    {
                        memberShipUser.Email      = saveUser.Email;
                        memberShipUser.IsApproved = saveUser.IsApproved;
                        Membership.UpdateUser(memberShipUser);

                        if (!string.IsNullOrEmpty(saveUser.PasswordQuestion) && !string.IsNullOrEmpty(saveUser.PasswordAnswer))
                        {
                            saveQAerror = !memberShipUser.ChangePasswordQuestionAndAnswer(saveUser.InputPassword, saveUser.PasswordQuestion, saveUser.PasswordAnswer);
                        }

                        if (saveUser.IsResetPassword)
                        {
                            if (simpleProvider != null)
                            {
                                MembershipUser simpleUser = simpleProvider.GetUser(saveUser.UserId, false);
                                if (simpleUser != null)
                                {
                                    if (saveUser.IsResetPassword)
                                    {
                                        newGenPassword = simpleUser.ResetPassword();
                                    }
                                }
                            }
                        }
                    }
                    saveUser = GetAspUser(saveUser.UserId);
                    saveUser.NewGenPassword = newGenPassword;
                    saveUser.IsSavedQAError = saveQAerror;
                }
            }

            return(saveUser);
        }
    public void UpdateUser(object sender, EventArgs e)
    {
        if (!Page.IsValid)
        {
            return;
        }

        string resultMsg  = "";
        string userIDText = UserID.Text;
        string emailText  = Email.Text;

        string password    = null;
        string newPassword = null;
        string question    = null;
        string answer      = null;

        if (Membership.EnablePasswordRetrieval)
        {
            password    = Password.Text.Trim();
            newPassword = NewPassword.Text.Trim();

            if (Membership.RequiresQuestionAndAnswer)
            {
                question = SecretQuestion.Text;
                answer   = SecretAnswer.Text;
            }
        }

        try
        {
            MembershipUser mu = Membership.GetUser(userIDText);

            mu.Email      = Email.Text;
            mu.IsApproved = ActiveUser.Checked;

            Membership.UpdateUser(mu);

            UpdateRoleMembership(userIDText);

            // Are we allowed to change secret question & answer?
            // We will need old password for this.
            //
            if (Membership.EnablePasswordRetrieval &&
                Membership.RequiresQuestionAndAnswer &&
                password != null &&
                question != null && answer != null)
            {
                mu.ChangePasswordQuestionAndAnswer(password, question, answer);
            }

            // Are we allowed to change the password?
            // We will need old password for this.
            //
            if (Membership.EnablePasswordRetrieval &&
                !string.IsNullOrEmpty(password) &&
                !string.IsNullOrEmpty(newPassword))
            {
                mu.ChangePassword(password, newPassword);
            }

            resultMsg = "User details has been successfully updated.";
        }
        catch (Exception ex)
        {
            resultMsg = "Failed to update user details. Error message: " + ex.Message;
        }
        SetResultMessage(resultMsg);
    }
Esempio n. 30
0
        protected void Button_Continuar_Change_Click(object sender, EventArgs e)
        {
            if (BootstrapTextBox_Contraseña_Anterior_Change.Text.Trim() == "")
            {
                //ScriptManager.RegisterStartupScript(Page, Page.GetType(), "err_msg", "alert('Debe ingresar la contraseña actual.');", true);
                Toast.ShowToast(this, Toast.ToastType.Error, "Debe ingresar la contraseña actual.");
                return;
            }

            if (BootstrapTextBox_Nueva_Contraseña_change.Text.Trim() == "" || BootstrapTextBox_Confirmar_Contra_Change.Text.Trim() == "")
            {
                //ScriptManager.RegisterStartupScript(Page, Page.GetType(), "err_msg", "alert('Debe ingresar la nueva contraseña y su confirmacion.');", true);
                Toast.ShowToast(this, Toast.ToastType.Error, "Debe ingresar la nueva contraseña y su confirmacion.");
                return;
            }

            if (FG.ValidarPassword(BootstrapTextBox_Nueva_Contraseña_change.Text.Trim()) == false)
            {
                Label_Mensaje_NuevaContra_Change.Text = "Mensaje: La nueva constraseña no cumple con los requisitos de longitud y complejidad. Esta debe contener un mínimo de 8 caracteres incluyendo Mayúscula, Minúscula, Caracter especial y Número.";
                return;
            }

            if (BootstrapTextBox_Nueva_Contraseña_change.Text.Trim() != BootstrapTextBox_Confirmar_Contra_Change.Text.Trim())
            {
                //ScriptManager.RegisterStartupScript(Page, Page.GetType(), "err_msg", "alert('Las contraseñas no coinciden.');", true);
                Toast.ShowToast(this, Toast.ToastType.Error, "Las contraseñas no coinciden.");
                return;
            }
            MembershipUser User = Membership.GetUser(LoginUser.Text.Trim());

            if (User.IsLockedOut)
            {
                User.UnlockUser();
            }
            if (Membership.ValidateUser(LoginUser.Text.Trim(), BootstrapTextBox_Contraseña_Anterior_Change.Text.Trim()))
            {
                string ContraseñaAnterior = BootstrapTextBox_Contraseña_Anterior_Change.Text.Trim();
                string NuevaContraseña    = BootstrapTextBox_Nueva_Contraseña_change.Text.Trim();
                if (User != null)
                {
                    User.ChangePassword(ContraseñaAnterior, NuevaContraseña);
                    User.ChangePasswordQuestionAndAnswer(NuevaContraseña, BootstrapComboBox_Pregunta_Change.Text.Trim(), BootstrapTextBox_Respuesta_Change.Text.Trim());
                    if (Roles.GetRolesForUser(LoginUser.Text.Trim()).Count() == 0)
                    {
                        //ScriptManager.RegisterStartupScript(Page, Page.GetType(), "err_msg", "alert('El Usuario no pertenece a ningún Perfil. Contacte al Administrador.');", true);
                        Toast.ShowToast(this, Toast.ToastType.Error, "El Usuario no pertenece a ningún Perfil. Contacte al Administrador.");
                        return;
                    }

                    string Rol = Roles.GetRolesForUser(LoginUser.Text.Trim())[0].ToString();
                    //Roles.AddUserToRole(LoginUser.Text.Trim(), "Administrador");
                    FG.Logueos_Usuarios(LoginUser.Text.Trim(), Rol);
                    FormsAuthentication.RedirectFromLoginPage(LoginUser.Text.Trim(), false);
                }
            }
            else if (User.IsApproved == false)
            {
                Toast.ShowToast(this, Toast.ToastType.Error, "El Usuario está Deshabilitado del sistema. Contacte al Administrador.");
                return;
            }
        }