public void CheckIfUserGetsProperRoles()
{
User user = new User() {UserId = 3,Login = "******"};
string expectedRoles = "admin";
string roles = string.Join(",", _userService.GetUserRoles(user).Select(m => m.Name));
StringAssert.AreEqualIgnoringCase(expectedRoles, roles);
}
public void AddNewUser(User user)
{
user.UserGuid = System.Guid.NewGuid().ToString();
user.Password = _hasher.Encrypt(user.Password + user.UserGuid);
user.CreateDate = DateTime.Now;
_userRepository.Add(user);
}
public void DeleteUsersRoles(User user)
{
string sql = "delete from dbo.UsersRole where UserId=@UserId";
object[] param = new object[]
{
new SqlParameter("@UserId", user.UserId)
};
_userRepository.ExecuteSqlCommand(sql, param);
}
public void AddRoleToUser(User user, Role role)
{
string sql = "insert into dbo.UsersRole values(@UserId,@RoleId)";
object[] param = new object[]
{
new SqlParameter("@UserId", user.UserId),
new SqlParameter("@RoleId", role.RoleId)
};
_userRepository.ExecuteSqlCommand(sql, param);
}
public HttpCookie AuthenticateUserAndGetCookie(User user)
{
FormsAuthenticationTicket ticket = new FormsAuthenticationTicket(2,
user.Login, DateTime.Now,
DateTime.Now.AddMinutes(AuthenticationSessionMinutes),
false, UserData);
string encryptedTicket = FormsAuthentication.Encrypt(ticket);
HttpCookie cookie = new HttpCookie(FormsAuthentication.FormsCookieName, encryptedTicket);
cookie.Expires = ticket.Expiration;
return cookie;
}
public ActionResult Login(User user)
{
User checkUser = _userService.CheckLoginPassword(user.Login, user.Password);
if (checkUser!=null)
{
HttpCookie cookie = _userService.LogInUser(checkUser);
Response.Cookies.Add(cookie);
return RedirectToAction("ScoreBoard", "Stats");
}
else
{
ModelState.AddModelError("PasswordCheck", "Haslo jest błedne");
}
return View("Index");
}
public ActionResult Create(User user)
{
if (_userService.FindBy(m => m.Login == user.Login).Any())
throw new UserException("Uzytkownik istnieje juz w bazie");
if (ModelState.IsValid)
{
int roleId = Convert.ToInt32(Request.Form["RoleId"]);
Role role = _userService.GetRoles().First(r => r.RoleId == roleId);//null check
_userService.AddNewUser(user);
_userService.Save();
_userService.AddRoleToUser(user, role);
return RedirectToAction("Index");
}
if (Session["Roles"] == null)
Session["Roles"] = _userService.GetRoles();
return View();
}
public void Delete(User user)
{
_userRepository.Delete(user);
}
public HttpCookie LogInUser(User user)
{
IList<Role> roles = GetUserRoles(user);
_authenticationService.UserData = string.Join(",", roles.Select(m=>m.Name));
return _authenticationService.AuthenticateUserAndGetCookie(user);
}
public IList<Role> GetUserRoles(User user)
{
RoleRepository roleRepository = new RoleRepository();
return roleRepository.GetUsersRoles(user);
}
public void TestUserCreationWithRole()
{
User user = new User();
user.Login = "******";
user.Password = "******";
_userService.AddNewUser(user);
_userService.Save();
User insertedUser = _userService.FindBy(m => m.Login == user.Login).FirstOrDefault();
Role role = _userService.GetRoles().First(m => m.Name == "admin");
_userService.AddRoleToUser(user,role);
string roleName = _userService.GetUserRoles(insertedUser).First().Name;
StringAssert.AreEqualIgnoringCase("admin", roleName);
}
public void TestUserCreation()
{
User user = new User();
user.Login = "******";
user.Password = "******";
_userService.AddNewUser(user);
_userService.Save();
User insertedUser = _userService.FindBy(m => m.Login == user.Login).FirstOrDefault();
StringAssert.AreEqualIgnoringCase(user.Login,insertedUser.Login);
}
