public async Task <string> Handle(Query request, CancellationToken cancellationToken)
{
var user = await _context.Users.FirstOrDefaultAsync(u => u.Email == request.Email);
if (user == null)
{
throw new RestException(System.Net.HttpStatusCode.NotFound, new { email = $"{request.Email} do not exists" });
}
var token = _jwtGenerator.CreateToken(user);
await _sender.SendEmailAsync(
request.Email,
"Restore password",
EmailsMessages.RecoveryPassword(request.Email, token, _configuration["ClientSideURL"]));
return($"A restore password email was sent to {request.Email}");
}
public async Task <AppUser> Handle(Query request, CancellationToken cancellationToken)
{
var user = await _context.Users.Include(u => u.Activities).FirstOrDefaultAsync(u => u.Email.Equals(request.Email));
if (user == null)
{
throw new RestException(System.Net.HttpStatusCode.BadRequest, new { email = "Invalid email" });
}
if (user.IsEmailConfirmed == false)
{
throw new RestException(System.Net.HttpStatusCode.BadRequest, new { email = "Email is not confirmed" });
}
var origHashedParts = user.Password.Split('|');
var origSalt = Convert.FromBase64String(origHashedParts[0]);
var origHash = origHashedParts[1];
var pbkdf2 = new Rfc2898DeriveBytes(request.Password, origSalt, 10000);
byte[] testHash = pbkdf2.GetBytes(20);
if (Convert.ToBase64String(testHash) != origHash)
{
throw new RestException(System.Net.HttpStatusCode.BadRequest, new { password = "******" });
}
return(new AppUser
{
Id = user.Id,
Name = user.Name,
Email = user.Email,
CountFollowers = user.CountFollowers,
CountFollowing = user.CountFollowing,
Token = _jwtGenerator.CreateToken(user),
NumberOfActivities = user.Activities.Count(),
CoverImageExtension = user.CoverImageExtension
});
}
public async Task <string> Handle(Query request, CancellationToken cancellationToken)
{
var user = await _context.Users.FirstOrDefaultAsync(u => u.Email == request.Email);
if (user == null)
{
throw new RestException(System.Net.HttpStatusCode.NotFound, new { email = $"{request.Email} do not exists" });
}
if (user.IsEmailConfirmed == true)
{
throw new RestException(System.Net.HttpStatusCode.BadRequest, new { email = $"{request.Email} is already confirmed" });
}
var token = _jwtGenerator.CreateToken(user);
await _sender.SendEmailAsync(
request.Email,
"Email verification",
EmailsMessages.ConfirmEmail(request.Email, token, _configuration["ClientSideURL"]));
return($"A confirmation email was sent to {request.Email}");
}
public async Task <Unit> Handle(Command request, CancellationToken cancellationToken)
{
if (string.IsNullOrEmpty(request.Email) ||
string.IsNullOrEmpty(request.Password) ||
string.IsNullOrEmpty(request.Name))
{
var errors = new Dictionary <string, string>();
if (string.IsNullOrEmpty(request.Email))
{
errors["email"] = "Invalid email";
}
if (string.IsNullOrEmpty(request.Password))
{
errors["password"] = "******";
}
if (string.IsNullOrEmpty(request.Name))
{
errors["name"] = "Invalid name";
}
throw new RestException(HttpStatusCode.BadRequest, new { errors });
}
var existEmail = await _context.Users.FirstOrDefaultAsync(u => u.Email == request.Email);
if (existEmail != null)
{
throw new RestException(HttpStatusCode.BadRequest, new { email = "Email already exists" });
}
var rfc2898DeriveBytes = new Rfc2898DeriveBytes(request.Password, 32)
{
IterationCount = 10000
};
byte[] hash = rfc2898DeriveBytes.GetBytes(20);
byte[] salt = rfc2898DeriveBytes.Salt;
string hashedPassword = Convert.ToBase64String(salt) + "|" + Convert.ToBase64String(hash);
var user = new User
{
Id = request.Id,
Email = request.Email,
Password = hashedPassword,
Name = request.Name,
CountFollowers = 0,
CountFollowing = 0
};
_context.Users.Add(user);
var success = await _context.SaveChangesAsync() > 0;
var token = _jwtGenerator.CreateToken(user);
await _sender.SendEmailAsync(
request.Email,
"Email verification",
EmailsMessages.ConfirmEmail(request.Email, token, _configuration["ClientSideURL"]));
if (success)
{
return(Unit.Value);
}
throw new Exception("Problem saving changes");
}