public DtoUser GetUserGeneralInfo(Int64 userId)
{
_command = new SqlCommand(StoredProcedure.Names.spGetUserGeneralInfo.ToString(), _connection)
{
CommandType = CommandType.StoredProcedure
};
_command.Parameters.Add("@UserID", SqlDbType.BigInt);
_command.Parameters[0].Value = userId;
_user = new DtoUser();
_connection.Open();
_datareader = _command.ExecuteReader();
if (!_datareader.HasRows)
{
return(null);
}
while (_datareader.Read())
{
_user = new DtoUser();
_user.UserId = Convert.ToInt64(_datareader["UserID"].ToString());
_user.Email = _datareader["Email"].ToString();
_user.Lastname = _datareader["Lastname"].ToString();
_user.FirstName = _datareader["FirstName"].ToString();
_user.ImageUrl = _datareader["ProfileImage"].ToString();
_user.CoverPhoto = _datareader["CoverPhoto"].ToString();
}
_connection.Close();
return(_user);
}
public long RegisterUser(DtoUser dtouser)
{
_command = new SqlCommand(StoredProcedure.Names.spRegisterUser.ToString(), _connection)
{
CommandType = CommandType.StoredProcedure
};
_command.Parameters.Add("@Email", SqlDbType.VarChar);
_command.Parameters.Add("@Password", SqlDbType.VarChar);
_command.Parameters.Add("@VerificationCode", SqlDbType.VarChar);
_command.Parameters.Add("@isUser", SqlDbType.Bit);
_command.Parameters[0].Value = dtouser.Email;
_command.Parameters[1].Value = dtouser.Password;
_command.Parameters[2].Value = dtouser.Guid;
_command.Parameters[3].Value = dtouser.IsUser;
_connection.Open();
long id = Convert.ToInt64(_command.ExecuteScalar());
_connection.Close();
return(id);
}
public async Task <bool> SaveUser(DtoUser user)
{
try
{
using (var data = Context)
{
var u = await(from item in data.Users where user.Id == item.id select item).FirstOrDefaultAsync();
// Updating user
if (u != null)
{
u.login = user.Login;
u.cardId = user.CardId;
u.password = AuthenticationLogic.HashPassword(user.Password, user.Login);
//u.isAdmin = user.IsAdmin;
u.averageScore = user.AverageScore;
}
// Adding new user
else
{
data.Users.Add(UserConverter.DtoToDataAccess(user));
}
await data.SaveChangesAsync();
}
return(true);
}
catch (Exception)
{
return(false);
}
}
protected void BtnSave_Click(object sender, EventArgs e)
{
try
{
_blluser = new BllUser();
_dtouser = new DtoUser
{
Password = TxtCurrent.Text,
NewPassword = TxtNew.Text,
UserId = GetUserId()
};
var flag = _blluser.UpdatePassword(_dtouser);
if (flag < 0)
{
LblPassworderror.Visible = true;
LblPasswordChanged.Visible = false;
}
else
{
LblPassworderror.Visible = false;
LblPasswordChanged.Visible = true;
}
}
catch (Exception ex)
{
ex.ToExceptionless().Submit();
}
}
public List <DtoUser> GetUsers()
{
List <DtoUser> users = new List <DtoUser>();
var text = client.DownloadString(_urlApi);
object desSerializedObject = _serializer.DeserializeObject(text);
if (desSerializedObject != null)
{
var respuesta = (object[])desSerializedObject;
foreach (var item in respuesta)
{
var dataUser = (Dictionary <string, object>)item;
DtoUser user = new DtoUser
{
Id = (int)dataUser["id"],
Name = dataUser["name"].ToString(),
Username = dataUser["username"].ToString(),
Email = dataUser["email"].ToString(),
};
users.Add(user);
}
}
return(users);
}
public Int64 UpdateUser(DtoUser dtouser)
{
long userid;
try
{
_command = new SqlCommand(StoredProcedure.Names.spUpdateUser.ToString(), _connection)
{
CommandType = CommandType.StoredProcedure
};
_lstuser = new List <DtoUser>();
_command.Parameters.Add("@FirstName", SqlDbType.VarChar);
_command.Parameters.Add("@LastName", SqlDbType.VarChar);
_command.Parameters.Add("@Email", SqlDbType.VarChar);
_command.Parameters.Add("@UserID", SqlDbType.BigInt);
_command.Parameters[0].Value = dtouser.FirstName;
_command.Parameters[1].Value = dtouser.Lastname;
_command.Parameters[2].Value = dtouser.Email;
_command.Parameters[3].Value = dtouser.UserId;
_connection.Open();
userid = Convert.ToInt64(_command.ExecuteNonQuery());
}
catch (Exception error)
{
throw;
}
finally
{
_connection.Close();
}
return(userid);
}
public DtoUser GetDtoUserbyId(int id)
{
var result = context.Users.Where(x => x.Id == id).FirstOrDefault();
if (result == null)
{
return(null);
}
else
{
DtoUser dtouser = new DtoUser();
dtouser.FullName = result.FullName;
dtouser.CreatedDate = result.CreatedDate;
dtouser.ProfilPhoto = result.ProfilPhoto;
dtouser.BackgroundImage = result.BackgorundImage;
dtouser.LiveCity = result.LiveCity;
dtouser.Homeland = result.Homeland;
dtouser.PhoneNumber = result.PhoneNumber;
dtouser.IsActive = result.IsActive;
dtouser.IsDeleted = result.IsDeleted;
dtouser.Private = result.Private;
dtouser.Username = result.Username;
dtouser.UserId = result.Id;
return(dtouser);
}
}
public async Task <IActionResult> Login(DtoUser dto)
{
dto.UserName = dto.UserName.ToLower();
var userFromRepos = await _repo.Login(dto.UserName, dto.Password);
if (userFromRepos == null)
{
return(Unauthorized("Pas autorisé à se connecter"));
}
var claims = new[]
{
new Claim(ClaimTypes.NameIdentifier, userFromRepos.Id.ToString()),
new Claim(ClaimTypes.Name, userFromRepos.UserName)
};
var appSettingsToken = _configuration.GetSection("AppSettings:Token").Value;
var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(appSettingsToken));
var creds = new SigningCredentials(key, SecurityAlgorithms.HmacSha512Signature);
var tokenDescriptor = new SecurityTokenDescriptor
{
Subject = new ClaimsIdentity(claims),
Expires = DateTime.Now.AddDays(1),
SigningCredentials = creds,
};
var tokenHandler = new JwtSecurityTokenHandler();
var token = tokenHandler.CreateToken(tokenDescriptor);
var loginDto = new DtoUserForLogin
{
UserName = dto.UserName,
Token = tokenHandler.WriteToken(token)
};
return(Ok(loginDto));
}
public DtoUser Search(string aranan)
{
if (aranan == null)
{
return(null);
}
var result = context.Users.Where(x => x.FullName.ToLower() == aranan.ToLower()).FirstOrDefault();
if (result == null)
{
return(null);
}
else
{
DtoUser dtouser = new DtoUser();
dtouser.FullName = result.FullName;
dtouser.CreatedDate = result.CreatedDate;
dtouser.ProfilPhoto = result.ProfilPhoto;
dtouser.BackgroundImage = result.BackgorundImage;
dtouser.LiveCity = result.LiveCity;
dtouser.Homeland = result.Homeland;
dtouser.PhoneNumber = result.PhoneNumber;
dtouser.IsActive = result.IsActive;
dtouser.IsDeleted = result.IsDeleted;
dtouser.Private = result.Private;
dtouser.Username = result.Username;
dtouser.UserId = result.Id;
return(dtouser);
}
}
public bool CreateUser(string name, string email, string password)
{
DtoUser user = new DtoUser
{
Login = name,
Email = email,
Password = Crypto.HashPassword(password)
};
DtoRole userRole = roleService.GetRoleByTitle("user");
if (!ReferenceEquals(userRole, null))
{
user.Roles.Add(userRole);
}
userService.CreateUser(user);
DtoUser createdUser = userService.GetUserByPredicate(usr => usr.Email.Equals(email, StringComparison.InvariantCultureIgnoreCase)).FirstOrDefault();
if (!ReferenceEquals(createdUser, null))
{
folderService.CreateRootFolder(createdUser.ID);
}
return(true);
}
public void Create(DtoUser entity)
{
var user = Mapper.Map <User>(entity);
unit.Userrepo.Create(user);
unit.Save();
}
////csrf token securirity
//[ValidateAntiForgeryToken]
//[HttpPost]
public async Task <IActionResult> Register(DtoUser register)
{
var User = new UserTable()
{
Email = register.Username,
FullName = register.FullName,
UserName = register.Username,
Password = register.Password,
LiveCity = register.LiveCity,
Homeland = register.Homeland,
ProfilPhoto = register.ProfilPhoto,
BackgorundImage = register.BackgroundImage,
PhoneNumber = register.PhoneNumber
};
int data = 0;
//UserM.Create(register);
var result = await _userMenager.CreateAsync(User, register.Password);
if (result.Succeeded)
{
//generate Token
//Email
data = 1;
await Task.Run(() => UserM.Create(register));
}
else
{
data = 2;
//hata fırlat ajaxla
}
return(Json(data));
}
public object EditUserProfile(DtoUser model)
{
if (model == null)
{
return(new DtoUser());
}
var userProfile = this._context.UserProfile.Where(c => c.Id == model.UserProfileId).FirstOrDefault();
if (userProfile != null)
{
userProfile.Name = model.Name;
userProfile.Surname = model.Surname;
userProfile.Address = model.Address;
userProfile.BirthDate = model.BirthDate;
userProfile.ImageIdFk = model.ImageIdFk;
userProfile.UpdatedBy = model.UpdatedBy;
userProfile.UpdatedDate = DateTime.Now;
this._context.Update(userProfile);
this._context.SaveChanges();
return(true);
}
else
{
return(false);
}
}
public async Task <IActionResult> Register([FromBody] DtoUser dtoUser)
{
var newUser = new User
{
Email = dtoUser.Email,
UserName = dtoUser.Email,
FirstName = dtoUser.FirstName,
LastName = dtoUser.LastName,
NormalizedEmail = dtoUser.Email.Normalize().ToUpperInvariant(),
PasswordHash = HashPassword(dtoUser.Password, BCryptFactor)
};
var userCreationResult = await _userManager.CreateAsync(newUser, dtoUser.Password);
if (userCreationResult.Succeeded)
{
return(Ok(newUser));
}
foreach (var error in userCreationResult.Errors)
{
ModelState.AddModelError(string.Empty, error.Description);
}
return(BadRequest(ModelState));
}
public ActionResult UpdateUser(Guid tenentId, Guid userId, DtoUser usertobeupdated)
{
try
{
if (ModelState.IsValid)
{
User userToCheckIfExist = new User {
Id = userId
};
var user = this._db.GetUser(tenentId, userToCheckIfExist);
user.UserName = usertobeupdated.UserName;
user.Password = usertobeupdated.Password;
user.Role = usertobeupdated.Role;
bool result = this._db.UpdateUser(user);
if (result)
{
return(Ok("User is Updated Successfully"));
}
}
}
catch (Exception e)
{
Debug.WriteLine(e.Message);
return(BadRequest("Usr not Updated"));
}
return(BadRequest("User not Updated"));
}
public Response Edit(long id, DtoUser dto)
{
Response response;
try
{
if (_repository.Exist(_repository.FindById(id)))
{
DtoUser dtoFind = _repository.FindById(id);
dtoFind.Name = dto.Name;
dtoFind.Username = dto.Username;
dtoFind.Password = dto.Password;
dtoFind.UpdatedBy = dto.UpdatedBy;
_repository.UpdateById(id, dtoFind);
response =
ResponseBuilder.Successfully(HttpStatusCode.OK, "Updated Successfully");
}
else
{
response =
ResponseBuilder.Error(HttpStatusCode.NotFound, "Not Found");
}
}
catch (Exception ex)
{
response =
ResponseBuilder.Error(HttpStatusCode.Conflict, ex.Message);
}
return(response);
}
public ActionResult Entry()
{
var dto = new DtoUser
{
Email = Request.Form["User"],
Pass = Request.Form["Pass"]
};
var UserFromRepository = SearchUser(dto.Email);
if (UserFromRepository == null)
{
//user not founded
return(RedirectToAction("Index"));
}
if (UserFromRepository.Pass != dto.Pass)
{
//password incorret
return(RedirectToAction("Index"));
}
RequestCookie(dto.Email);
return(RedirectToAction("Index", "Home", null));
}
public void GetusersById()
{
IUser bl = new User();
DtoUser user = bl.GetUser(2);
Assert.IsTrue(user.Id == 2);
}
private void RegisterNew(DtoUser user)
{
using (RepositoryUser model = new RepositoryUser())
{
model.Create(user);
}
}
public void Login_ValidEmailAndInvalidPassword_ReturnsStatusCode400()
{
// Arrange
DtoUser trueTestUser = new DtoUser
{
Email = "*****@*****.**",
FirstName = "FirstName",
LastName = "LastName",
Password = "******"
};
DtoUser testUser = new DtoUser
{
Email = "*****@*****.**",
FirstName = "FirstName",
LastName = "LastName",
Password = "******"
};
var temp = _uut.Register(trueTestUser);
Thread.Sleep(1000);
// Act
var result = _uut.Login(testUser);
Thread.Sleep(1000);
// Assert
Assert.That(result.Result.GetType(), Is.EqualTo(typeof(BadRequestObjectResult)));
}
public Int64 VerifyEmail(DtoUser dtouser)
{
long userid;
try
{
_command = new SqlCommand(StoredProcedure.Names.spVerifyEmail.ToString(), _connection)
{
CommandType = CommandType.StoredProcedure
};
_lstuser = new List <DtoUser>();
_command.Parameters.Add("@VerificationCode", SqlDbType.VarChar);
_command.Parameters.Add("@Email", SqlDbType.VarChar);
_command.Parameters[0].Value = dtouser.Guid;
_command.Parameters[1].Value = dtouser.Email;
_connection.Open();
userid = Convert.ToInt64(_command.ExecuteScalar());
}
catch (Exception error)
{
throw;
}
finally
{
_connection.Close();
}
return(userid);
}
private void SetFileds(DtoUser user)
{
TxtFname.Value = user.FirstName;
TxtLname.Value = user.Lastname;
// TxtEmail.Text = user.Email;
}
public long Registerwebsite(DtoUser dtouser)
{
try
{
long flag = 0;
_daluser = new DalUser();
flag = _daluser.RegisterUser(dtouser);
if (flag > 0)
{
var dalwebsite = new DalWebsite();
dalwebsite.RegisterWebsite(new DtoWebsite
{
WebSiteName = dtouser.FirstName,
WebsiteUrl = dtouser.ImageUrl,
UserId = flag
});
}
}
catch (Exception ex)
{
ex.ToExceptionless().Submit();
}
return(0);
}
public IActionResult SaveUser([FromBody] DtoUser objDtoUser)
{
try
{
if (!this.ModelState.IsValid)
{
return(BadRequest(ModelState));
}
int returnValue = _repository.SaveUser(objDtoUser);
if (returnValue > 0)
{
return(Ok(returnValue));
}
return(BadRequest());
}
catch (Exception exp)
{
if (_logger != null)
{
_logger.LogCritical(string.Format("Exception for {0}/{1}", "GetBookings", GetInnerErrorMessage(exp)));
}
return(BadRequest());
}
}
public DtoUser CreateUser(DtoUser e)
{
var user = userRepository.Create(e.ToDalUser());
uow.Commit();
return(user.ToDtoUser());
}
public UserAppModel GetUser(int id)
{
IReadOnlyRepository <DtoUser> readOnlyRepository = repositoryFactory.CreateReadOnlyUsersRepository();
DtoUser user = readOnlyRepository.Get(id);
AbstractMapper <DtoUser, UserAppModel> mapper = mapperFactory.Create <DtoUser, UserAppModel>();
return(mapper.Map(user));
}
public User(DtoUser user)
{
this.Document = user.Document;
this.Email = user.Email;
this.Id = user.Id;
this.Name = user.Name;
this.PasswordHash = user.PasswordHash;
}
public override void Update(BusinessObject sender, BusinessChangeEventArgs args)
{
User user = (User)(args.entity);
DtoUser dtoUser = new DtoUser(user.id, user.username, user.hash, user.active);
IRepository <DtoUser> repository = repositoryFactory.CreateUsersRepository();
repository.Update(dtoUser);
}
public async Task <ActionResult> Register(RegisterViewModel model)
{
if (await new RegistrationLogic().GetStatus() != "Otwarta")
{
ModelState.AddModelError("", "Rejestracja nie jest obecnie otwarta. ");
return(View(model));
}
if (ModelState.IsValid)
{
try
{
NumberFormatInfo provider = new NumberFormatInfo();
if (model.AverageScore.Contains(","))
{
provider = new NumberFormatInfo
{
NumberDecimalSeparator = ",",
};
}
else if (model.AverageScore.Contains("."))
{
provider = new NumberFormatInfo
{
NumberDecimalSeparator = ".",
};
}
double averageScore = Convert.ToDouble(model.AverageScore, provider);
if (averageScore < 1.0 || averageScore > 5.0)
{
ModelState.AddModelError("", "Średnia jest niepoprawna. ");
return(View(model));
}
DtoUser user = new DtoUser
{
Id = model.Id ?? -1,
Login = model.Login,
Password = model.Password,
CardId = model.StudentCardId,
AverageScore = averageScore,
IsAdmin = false
};
if (await new UserLogic().SaveUser(user))
{
FormsAuthentication.RedirectFromLoginPage(model.Login, true);
}
}
catch (Exception)
{
// ignored
ModelState.AddModelError("", "Rejestracja nie powiodła się. Numer legitymacji oraz login muszą być unikalne. Średnia musi być poprawna. ");
return(View(model));
}
}
//If we got this far, something failed, redisplay form
ModelState.AddModelError("", "Rejestracja nie powiodła się. Numer legitymacji oraz login muszą być unikalne. ");
return(View(model));
}
private DtoUser GetUser()
{
if (ReferenceEquals(_user, null))
{
_user = HttpContext.User.Identity.Name.Contains("@") ? userService.GetUserByPredicate(usr => usr.Email.Equals(HttpContext.User.Identity.Name, StringComparison.InvariantCultureIgnoreCase)).FirstOrDefault() :
userService.GetUserByPredicate(usr => usr.Login.Equals(HttpContext.User.Identity.Name, StringComparison.InvariantCultureIgnoreCase)).FirstOrDefault();
}
return(_user);
}
