public void SetPassword(ResetUserPasswordViewModel model, ClaimsPrincipal ctx) { AuthenticablePrincipal principal = this.GetUser(model.Id); authorizationLogic.IsAuthorizedThrowsException(AuthorizationScopes.ManageUsers, ctx, principal, EventCategory.UserManagementResetPassword); principal.PasswordHash = BCrypt.Net.BCrypt.HashPassword(model.NewPassword); configurationRepository.Update <AuthenticablePrincipal>(principal); }
public void UpdateIdp(OidcIdentityProvider idp, ClaimsPrincipal user) { if (idp == null) { throw new Exception("Identity provider was not provided."); } authorizationLogic.IsAuthorizedThrowsException(AuthorizationScopes.ManageIdentityProviders, user, idp); if (!configurationRepository.Exists <OidcIdentityProvider>(idp.Id)) { throw new Exception("Identity provider does not exist"); } configurationRepository.Update <OidcIdentityProvider>(idp); }
public AccessControlEntry AddCertificateAce(Guid certId, AddCertificateAceEntity entity, ClaimsPrincipal user) { Certificate cert = certificateRepository.Get <Certificate>(certId); authorizationLogic.IsAuthorizedThrowsException(AuthorizationScopes.CertificateFullControl, user, cert); if (cert.Acl == null) { cert.Acl = new List <AccessControlEntry>(); } AccessControlEntry ace = new AccessControlEntry(entity); cert.Acl.Add(ace); certificateRepository.Update <Certificate>(cert); ace.IdentityDisplayName = securityPrincipalLogic.ResolveSecurityPrincipalDisplayName(ace.Identity); ace.Identity = string.Empty; return(ace); }
public SecurityRole AddRole(SecurityRole entity, ClaimsPrincipal user) { entity.Id = Guid.NewGuid(); authorizationLogic.IsAuthorizedThrowsException(AuthorizationScopes.ManageRoles, user, entity, EventCategory.RoleManagementNew); configurationRepository.Insert <SecurityRole>(entity); return(entity); }