public bool ChangeUserStatus(ModifyUserModel changedUser)
{
var connectionString = ConfigurationManager.ConnectionStrings["cs_login"].ConnectionString;
var connection = new MySqlConnection(connectionString);
var commandString = $"UPDATE `users` SET `status_id` = '{changedUser.UserStatusId}'" +
$" WHERE (`user_id` = '{changedUser.UserId}');";
var sqlCommand = new MySqlCommand(commandString, connection);
try
{
connection.Open();
var result = (int)sqlCommand.ExecuteNonQuery();
if (result > 0)
{
return(true);
}
return(false);
}
finally
{
connection.Close();
sqlCommand?.Dispose();
}
}
public ActionResult Modify(string userId, int pageNo)
{
ViewBag.Title = "Home Page";
ViewBag.pageNo = pageNo;
var db = new Context();
var user = db.Users.Include(x => x.AuthorityRs).SingleOrDefault(x => x.Id == userId);
if (user == null)
{
return(PartialView("index"));
}
ViewBag.Authorities = user.Authorities.ToList();
var model = new ModifyUserModel
{
Id = userId,
Name = user.Name,
Sex = user.Sex,
Department = user.Department,
Position = user.Position,
Authorities = user.Authorities,
pageNo = pageNo
};
return(View("Modify", model));
}
public ActionResult Modify(ModifyUserModel model)
{
var db = new Context();
var user = db.Users.Include(x => x.AuthorityRs)
.SingleOrDefault(x => x.Id == model.Id);
if (user == null)
{
return(View(model));
}
ViewBag.pageNo = model.pageNo;
user.Name = model.Name;
user.Sex = model.Sex;
user.Department = model.Department;
user.Position = model.Position;
db.Authorities.RemoveRange(user.AuthorityRs);
user.AuthorityRs = model.Authorities.ToAuthorityRs();
foreach (var auth in user.AuthorityRs)
{
auth.User = user;
}
db.SaveChanges();
return(RedirectToAction("Index" + "/" + model.pageNo));
}
public List <ModifyUserModel> GetAvailableUsers(string connectionString)
{
var connection = new MySqlConnection(connectionString);
var commandString = "SELECT user_id, user_name, status_id FROM users " +
$"WHERE status_id < '{AccessID}'; ";
var sqlCommand = new MySqlCommand(commandString, connection);
try
{
var result = new List <ModifyUserModel>();
var usersTable = new DataTable();
connection.Open();
var dbReader = sqlCommand.ExecuteReader();
usersTable.Load(dbReader);
foreach (DataRow row in usersTable.Rows)
{
var userId = (int)row[0];
var userName = (string)row[1];
var statusId = (int)((sbyte)row[2]);
var modifyUserModel = new ModifyUserModel(userId, userName, statusId);
result.Add(modifyUserModel);
}
return(result);
}
finally
{
connection.Close();
sqlCommand?.Dispose();
}
}
public IActionResult ModifyUser(ModifyUserModel model)
{
if (!AuthorizeService.AuthorizeUser(User, model.Id))
{
return(RedirectToAction("AccessDenied", "Auth"));
}
else
{
if (ModelState.IsValid)
{
Response response = UserService.UpdateUser(model.Id, model.Username);
if (response.IsSuccessful)
{
return(RedirectToAction("Success"));
}
else
{
ModelState.AddModelError(string.Empty, response.Message);
return(View(model));
}
}
else
{
return(View(model));
}
}
}
public ObservableCollection <ModifyUserModel> GetAvailableUsers()
{
var connectionString = ConfigurationManager.ConnectionStrings["cs_login"].ConnectionString;
var connection = new MySqlConnection(connectionString);
var commandString = "SELECT user_id, user_name, status_id FROM users " +
$"WHERE status_id <= '{AccessID}'; ";
var sqlCommand = new MySqlCommand(commandString, connection);
var result = new ObservableCollection <ModifyUserModel>();
var usersTable = new DataTable();
connection.Open();
var dbReader = sqlCommand.ExecuteReader();
usersTable.Load(dbReader);
connection.Close();
sqlCommand?.Dispose();
foreach (DataRow row in usersTable.Rows)
{
var userId = (int)row[0];
var userName = (string)row[1];
var statusId = (int)((sbyte)row[2]);
var modifyUserModel = new ModifyUserModel(userId, userName, statusId);
result.Add(modifyUserModel);
}
return(result);
}
public ActionResult DeleteUser(ModifyUserModel model)
{
var msg = model.Delete();
ViewBag.Message = msg;
return(View("ModifyUser"));
}
private async void Button_Click(object sender, RoutedEventArgs e)
{
var button = (Button)sender;
var password = TbxPassword.Text;
var userName = TbxUserName.Text;
var statusId = ((AccessStatusModel)CbxStatus.SelectedItem).AccessId;
var user = this.modifyUsersViewModel.LaboratoryBookUser as IAdvancedUser;
if (button.Content.ToString() == "Cancel")
{
this.Close();
}
else if (button.Content.ToString() == "Create")
{
if (!CheckData())
{
return;
}
try
{
var createUserResult = await Task.Run(() =>
{
return(user.CreateUser(userName, password, statusId));
});
if (createUserResult == 0)
{
return;
}
var id = await Task.Run(() =>
{
return(GetUserId(userName));
});
var userModel = new ModifyUserModel(id, userName, statusId);
userModel.PropertyChanged += modifyUsersViewModel.User_PropertyChanged;
modifyUsersViewModel.UserList.Add(userModel);
MessageBox.Show(
$"User '{userName}' was successfully created!",
"User creation",
MessageBoxButton.OK,
MessageBoxImage.Information);
}
catch (Exception exception)
{
MessageBox.Show(
exception.Message,
"Create user error",
MessageBoxButton.OK,
MessageBoxImage.Error);
}
}
}
public IActionResult ModifyUser(int id)
{
if (!AuthorizeService.AuthorizeUser(User, id))
{
return(RedirectToAction("AccessDenied", "Auth"));
}
else
{
User user = UserService.GetById(id);
ModifyUserModel model = ModelConverter.ConvertToModifyUserModel(user);
return(View(model));
}
}
public bool UpdateUsers(ModifyUserModel user)
{
UserModel userM = new UserModel()
{
Email = user.Email,
UserLastName = user.UserLastName,
UserName = user.UserName
};
bool valid;
using (UserDataAccess userDataAccess = new UserDataAccess())
{
valid = userDataAccess.UpdateUser(userM, 2);
}
return(valid);
}
public HttpResponseMessage RemoveUser([FromBody] ModifyUserModel model)
{
try
{
if (_security.Verify(model.Token, model.Email))
{
_user.RemoveUser(model.UserId);
return(Request.CreateResponse(HttpStatusCode.OK));
}
return(Request.CreateResponse(HttpStatusCode.Forbidden));
}
catch (Exception)
{
return(Request.CreateResponse(HttpStatusCode.BadRequest));
}
}
public bool UserUpdate(LoginInfoUpdate userUpdate)
{
ModifyUserModel user = new ModifyUserModel()
{
Email = userUpdate.Email,
// Password = userUpdate.Pass,
// Profile = profile,
UserLastName = userUpdate.UserLastName,
UserName = userUpdate.UserName
};
UserController controller = new UserController();
return(controller.UpdateUsers(user));
//return new UserModel();
}
public async Task <ActionResult> UpdateUser([FromBody] ModifyUserModel User)
{
try
{
var user = await _userManager.FindByIdAsync(User.Id);
if (user == null)
{
return(NotFound("User not found."));
}
user.Email = User.Email;
user.LockoutEnd = User.Lockout ? DateTimeOffset.MaxValue : default(DateTimeOffset?);
user.NormalizedUserName = User.Email.ToUpper();
var result = await _userManager.UpdateAsync(user);
if (result.Succeeded)
{
_logger.LogInformation("Updated user {name}.", user.UserName);
var userRoles = await _userManager.GetRolesAsync(user);
foreach (string role in userRoles)
{
await _userManager.RemoveFromRoleAsync(user, role);
}
await _userManager.AddToRoleAsync(user, User.Roles.Name);
return(NoContent());
}
else
{
return(BadRequest(result.Errors.First().Description));
}
}
catch (Exception ex)
{
_logger.LogError(ex, "Failure updating user {userId}.", User.Id);
return(StatusCode(StatusCodes.Status500InternalServerError, ex.Message));
}
}
public void UpdateUser(ModifyUserModel model)
{
try
{
using (var context = new sparrow_dbEntities())
{
var user = context.SPRW_USER.FirstOrDefault(i => i.USER_ID == model.UserId);
if (user != null)
{
user.EMAIL = model.Email;
user.FIRST_NAME = model.FirstName;
user.LAST_NAME = model.LastName;
}
context.SaveChanges();
}
}
catch (Exception e)
{
throw e;
}
}
public ActionResult ModifyUser(ModifyUserModel ModifyUser)
{
try
{
if (ModelState.IsValid)
{
if (UpdateUsers(ModifyUser))
{
return(RedirectToAction("UserList", "User"));
}
else
{
ViewBag.ErrorModificandoUsuario = "Ocurio un error modificando al usuario " + ModifyUser.UserName + ". Por favor intente nuevamente.";
}
}
}
catch
{
return(View("Error"));
}
return(View("Modify", ModifyUser));
}
public IActionResult UpdateUserStatus([FromBody] ModifyUserModel userInfo)
{
try
{
var connectonString = _configuration
.GetConnectionString("LaboratoryBookConnectionString");
var userStatus = HttpContext
.User
.Claims
.First(claim => claim.Type == "UserStatus").Value;
var user = LaboratoryBookHelper.CurrentUser(userStatus);
if (!(user is IAdvancedUser))
{
return(StatusCode(
StatusCodes.Status403Forbidden,
new { message = "You do not have a permission to change the user satatus" }));
}
var advancedUser = user as IAdvancedUser;
var updateUserStatusResult = advancedUser.ChangeUserStatus(
connectonString,
userInfo);
if (updateUserStatusResult)
{
return(Ok(new { message = $"{userInfo.UserName} status was updated to {userInfo.UserStatusId} " }));
}
return(BadRequest(new { message = $"{userInfo.UserName} status was not updated" }));
}
catch (Exception exception)
{
return(StatusCode(
StatusCodes.Status500InternalServerError,
new { message = exception.Message }));
}
}
public void UpdateUser(ModifyUserModel model)
{
UserRepo.UpdateUser(model);
}
