/// <summary>
/// Reset the specified user account password.
/// </summary>
/// <param name="jsonResetPasswordRequest">The password reset details.</param>
/// <returns></returns>
private HttpResponseMessage ResetPasswordSoftwarePlatform(JsonResetPasswordRequest jsonResetPasswordRequest)
{
string tenant = jsonResetPasswordRequest.Tenant;
string newPassword = jsonResetPasswordRequest.NewPassword;
if (string.IsNullOrEmpty(newPassword))
{
return(new HttpResponseMessage <string>("The new password is invalid", HttpStatusCode.BadRequest));
}
if (string.IsNullOrEmpty(tenant))
{
return(new HttpResponseMessage <string>("The tenant is invalid", HttpStatusCode.BadRequest));
}
try
{
using (new TenantAdministratorContext(tenant))
{
string key = jsonResetPasswordRequest.Key;
// Create query
var type = new EntityRef("core", "userAccount");
var query = new EDC.ReadiNow.Metadata.Query.Structured.StructuredQuery
{
RootEntity = new EDC.ReadiNow.Metadata.Query.Structured.ResourceEntity(type)
};
var passwordResetEntity = new EDC.ReadiNow.Metadata.Query.Structured.RelatedResource(new EntityRef("core:passwordReset"));
query.RootEntity.RelatedEntities.Add(passwordResetEntity);
query.Conditions.Add(new EDC.ReadiNow.Metadata.Query.Structured.QueryCondition
{
Expression = new EDC.ReadiNow.Metadata.Query.Structured.ResourceDataColumn(passwordResetEntity, new EntityRef("core:passwordResetKey")),
Operator = EDC.ReadiNow.Metadata.Query.Structured.ConditionType.Equal,
Argument = new EDC.ReadiNow.Metadata.TypedValue(key)
});
// Get results
IEnumerable <UserAccount> entities = ReadiNow.Model.Entity.GetMatches <UserAccount>(query);
UserAccount accountInfo = entities != null && entities.Count() > 0 ? entities.FirstOrDefault() : null;
if (accountInfo == null || accountInfo.PasswordReset == null)
{
return(new HttpResponseMessage <string>("This key is invalid, Please contact your administrator.", HttpStatusCode.BadRequest));
}
if (accountInfo.PasswordReset.PasswordResetExpiry < DateTime.UtcNow)
{
return(new HttpResponseMessage <string>("This key is expired, Please contact your administrator.", HttpStatusCode.BadRequest));
}
UserAccount account = accountInfo.AsWritable <UserAccount>();
if (account.AccountStatus_Enum == UserAccountStatusEnum_Enumeration.Expired || account.AccountStatus_Enum == UserAccountStatusEnum_Enumeration.Disabled)
{
return(new HttpResponseMessage <string>("Your account has expired or has been disabled. Please contact your administrator", HttpStatusCode.BadRequest));
}
if (account == null)
{
throw new InvalidCredentialException("Invalid account, Please contact your administrator.");
}
account.Password = newPassword;
account.PasswordReset.AsWritable <PasswordResetRecord>();
account.PasswordReset.Delete();
//unlock the account
account.AccountStatus_Enum = UserAccountStatusEnum_Enumeration.Active;
try
{
account.Save();
}
catch (Exception ex)
{
EventLog.Application.WriteError("Reset Password: Unhandled internal exception: " + ex.ToString());
return(new HttpResponseMessage <string>("There is an error to reset your new password. Please contact your administrator", HttpStatusCode.BadRequest));
}
}
}
catch (EntityNotFoundException tenantEx)
{
string errorMessage = tenantEx.InnerException != null ? tenantEx.InnerException.Message : tenantEx.Message;
EventLog.Application.WriteError("Reset Password: Unhandled internal Entity Not Found Exception: " + errorMessage);
return(new HttpResponseMessage <string>(errorMessage, HttpStatusCode.BadRequest));
}
catch (Exception otherEx)
{
EventLog.Application.WriteError("Reset Password: Unhandled internal Exception: " + otherEx.Message);
return(new HttpResponseMessage <string>(otherEx.Message, HttpStatusCode.BadRequest));
}
return(new HttpResponseMessage(HttpStatusCode.OK));
}
public HttpResponseMessage ResetPasswordSoftwarePlatform_Post([FromBody] JsonResetPasswordRequest jsonResetPasswordRequest)
{
return(ResetPasswordSoftwarePlatform(jsonResetPasswordRequest));
}
