private static RegisteredUser RegisterUser(RegistrationRequest regRequest)
{
RegisteredUser newUserRecord = null;
if (FindUserByUsernameAsync(regRequest.Username).GetAwaiter().GetResult() != null)
{
//BAD! Another conflicting user exists!
throw new SecurityException("A user with the same username already exists!");
}
var db = DatabaseAccessService.OpenOrCreateDefault();
var registeredUsers = db.GetCollection<RegisteredUser>(DatabaseAccessService.UsersCollectionDatabaseKey);
using (var trans = db.BeginTrans())
{
//Calculate cryptographic info
var cryptoConf = PasswordCryptoConfiguration.CreateDefault();
var pwSalt = AuthCryptoHelper.GetRandomSalt(64);
var encryptedPassword = AuthCryptoHelper.CalculateUserPasswordHash(regRequest.Password, pwSalt, cryptoConf);
// Create user
newUserRecord = new RegisteredUser
{
Identifier = Guid.NewGuid().ToString(),
Username = regRequest.Username,
PhoneNumber = regRequest.PhoneNumber,
ApiKey = StringUtils.SecureRandomString(40),
CryptoSalt = pwSalt,
PasswordCryptoConf = cryptoConf,
PasswordKey = encryptedPassword,
};
// Add the user to the database
registeredUsers.Insert(newUserRecord);
// Index database
registeredUsers.EnsureIndex(x => x.Identifier);
registeredUsers.EnsureIndex(x => x.ApiKey);
registeredUsers.EnsureIndex(x => x.Username);
trans.Commit();
}
return newUserRecord;
}
/// <summary>
/// Attempts to register a new user. Only the username is validated, it is expected that other fields have already been validated!
/// </summary>
public static async Task<RegisteredUser> RegisterUserAsync(RegistrationRequest regRequest)
{
return await Task.Run(() => RegisterUser(regRequest));
}
