Exemplo n.º 1
0
        public async Task AddAsync(WebSite webSite)
        {
            webSite.Login.Password = _passwordEncryptor.Encrypt(webSite.Login.Password);

            _webSiteManagerData.WebSiteRepository.Add(webSite);
            await _webSiteManagerData.SaveChangesAsync();
        }
Exemplo n.º 2
0
        public UserAccountModule(IDispatcherFactory dispatcherFactory, IPasswordEncryptor passwordEncryptor)
        {
            Post["/register"] =
                _ =>
                    {
                        var req = this.Bind<NewUserRequest>();
                        var command = new CreateUser(req.Email, passwordEncryptor.Encrypt(req.Password), req.Name, req.PhoneNumber);
                        dispatcherFactory.Create(this.UserSession(), command)
                            .Dispatch(this.UserSession(), command);
                        return null;
                    };

            Post["/password/requestReset"] =
                _ =>
                {
                    var req = this.Bind<ResetPasswordRequest>();
                    var command = new CreatePasswordResetToken(req.Email);
                    dispatcherFactory.Create(this.UserSession(), command)
                        .Dispatch(this.UserSession(),
                                               command );
                    return null;
                };

            Put["/password/reset/{token}"] =
                p =>
                {
                    var newPasswordRequest = this.Bind<NewPasswordRequest>();
                    var token = Guid.Parse((string)p.token);
                    var command = new ResetPassword(token, passwordEncryptor.Encrypt(newPasswordRequest.Password));
                    dispatcherFactory.Create(this.UserSession(), command)
                        .Dispatch(this.UserSession(), command);
                    return null;
                };
        }
        public async Task <int> Handle(CreateUserCommand request, CancellationToken cancellationToken)
        {
            if (await _dbContext.Users.AnyAsync(s => s.Email == request.Email))
            {
                throw new MonumentsManagerAppException(ExceptionType.UserAlreadyExists, $"User with email {request.Email} already exists");
            }

            if (!await _emailSender.TrySendWelcomeMailAsync(request.Email))
            {
                throw new MonumentsManagerAppException(ExceptionType.CannotSendEmail, $"Cannot send welcome mail to {request.Email}");
            }

            var entity = new UserEntity()
            {
                Password     = _passwordEncryptor.Encrypt(request.Password),
                Email        = request.Email,
                JobTitle     = request.JobTitle,
                LastLoggedIn = DateTime.UtcNow
            };

            var result = await _dbContext.AddAsync(entity, cancellationToken);

            await _dbContext.SaveChangesAsync();

            return(result.Entity.Id);
        }
Exemplo n.º 4
0
        public UserAccountModule(ICommandDispatcher commandDispatcher, IPasswordEncryptor passwordEncryptor)
        {
            Post["/register"] =
                _ =>
                    {
                        var req = this.Bind<NewUserRequest>();
                        commandDispatcher.Dispatch(this.UserSession(),
                                                   new CreateUser(req.Email, passwordEncryptor.Encrypt(req.Password), req.Name, req.PhoneNumber));
                        return null;
                    };

            Post["/password/requestReset"] =
                _ =>
                {
                    var req = this.Bind<ResetPasswordRequest>();
                    commandDispatcher.Dispatch(this.UserSession(),
                                               new CreatePasswordResetToken(req.Email) );
                    return null;
                };

            Put["/password/reset/{token}"] =
                _ =>
                {
                    return null;
                };
        }
Exemplo n.º 5
0
        public LoginModule(
            IReadOnlyRepository readOnlyRepository, 
            IPasswordEncryptor passwordEncryptor,
            IUserSessionFactory userSessionFactory)
        {
            
            Post["/login"] =
                r =>
                    {
                        var loginInfo = this.Bind<LoginRequest>();

                        EncryptedPassword encryptedPassword = passwordEncryptor.Encrypt(loginInfo.Password);

                        try
                        {
                            var user =
                            readOnlyRepository.First<User>(
                                x => x.Email == loginInfo.Email && x.EncryptedPassword == encryptedPassword.Password);

                            if (!user.Activated) return new Response().WithStatusCode(HttpStatusCode.Forbidden);

                            var userSession = userSessionFactory.Create(user);

                            return new SuccessfulLoginResponse<Guid>(userSession.Id, userSession.Expires);
                        }
                        catch (ItemNotFoundException<User> ex)
                        {
                            return new Response().WithStatusCode(HttpStatusCode.Unauthorized);
                        }
                    };
        }
Exemplo n.º 6
0
        public LoginModule(IPasswordEncryptor passwordEncryptor, IReadOnlyRepository readOnlyRepository,
            IUserSessionFactory userSessionFactory)
        {
            Post["/login"] =
                _ =>
                {
                    var loginInfo = this.Bind<LoginRequest>();
                    if (loginInfo.Email == null) throw new UserInputPropertyMissingException("Email");
                    if (loginInfo.Password == null) throw new UserInputPropertyMissingException("Password");

                    EncryptedPassword encryptedPassword = passwordEncryptor.Encrypt(loginInfo.Password);

                    try
                    {
                        var user =
                            readOnlyRepository.First<User>(
                                x => x.Email == loginInfo.Email && x.EncryptedPassword == encryptedPassword.Password);

                        UserLoginSession userLoginSession = userSessionFactory.Create(user);

                        return new SuccessfulLoginResponse<Guid>(userLoginSession.Id, user.Id, user.Name,
                            userLoginSession.Expires);
                    }
                    catch (ItemNotFoundException<User>)
                    {
                        throw new UnauthorizedAccessException();
                    }
                };
        }
Exemplo n.º 7
0
        public NewUserModule(IPasswordEncryptor passwordEncryptor, ICommandDispatcher commandDispatcher,
                             IReadOnlyRepository readOnlyRepository)
        {
            Post["/user/facebook"] = r =>
                                         {
                                             var newUserRequest = this.Bind<NewUserRequest>();
                                             CheckForExistingFacebookUser(readOnlyRepository, newUserRequest);
                                             DispatchCommand(commandDispatcher, newUserRequest);
                                             return new Response().WithStatusCode(HttpStatusCode.OK);
                                         };

            Post["/user"] = r =>
                                {
                                    var newUserRequest = this.Bind<NewUserRequest>();
                                    CheckForExistingUser(readOnlyRepository, newUserRequest);
                                    commandDispatcher.Dispatch(this.VisitorSession(), new NewUserCommand
                                                                                          {
                                                                                              Email =
                                                                                                  newUserRequest.Email,
                                                                                              EncryptedPassword =
                                                                                                  passwordEncryptor.
                                                                                                  Encrypt(
                                                                                                      newUserRequest.
                                                                                                          Password)
                                                                                          });
                                    return new Response().WithStatusCode(HttpStatusCode.OK);
                                };
        }
        public async Task <Unit> Handle(UpdateUserCommand request, CancellationToken cancellationToken)
        {
            var entity = await _dbContext.Users.FindAsync(request.Id);

            if (entity is null)
            {
                throw new MonumentsManagerAppException(ExceptionType.EntityNotFound, $"Entity of type UserEntity with id {request.Id} does not exists");
            }

            entity.JobTitle  = request.JobTitle;
            entity.FirstName = request.FirstName;
            entity.LastName  = request.LastName;

            if (!string.IsNullOrEmpty(request.Password))
            {
                entity.Password = _passwordEncryptor.Encrypt(request.Password);
                var userContext = await _dbContext.Users.FindAsync(_applicationContext.UserId);

                await _emailSender.SendPasswordHasBeenChangedByAdministrator(entity.Email, userContext.Email);
            }

            _dbContext.Users.Update(entity);
            await _dbContext.SaveChangesAsync();

            return(Unit.Value);
        }
Exemplo n.º 9
0
        public async Task <TokenResponse> CreateAnAccount(UserCredential userCredential)
        {
            if (userCredential == null)
            {
                throw new ArgumentNullException(nameof(userCredential));
            }
            if (!IsValidPassword(userCredential.UserPassword))
            {
                throw new ValidationException(_stringLocalizer["PasswordIsNotValid"]);
            }
            if (!IsValidUserName(userCredential.Login))
            {
                throw new ValidationException(_stringLocalizer["LoginIsNotValid"]);
            }

            var newUser = new UserDto
            {
                Login     = userCredential.Login,
                CountryId = default
            };
            var user = await _userService.CreateAsync(newUser);

            if (user != null)
            {
                var hashedPassword = _passwordEncryptor.Encrypt(userCredential.UserPassword);
                var _ = await _authService.CreateUserAuthenticationAsync(user.Id, hashedPassword, false, userCredential.FcmToken, userCredential.Os);
            }

            var claimIdentity = _authService.GetIdentity(user);

            var pathToDirectory = Path.Combine(_appEnvironment.WebRootPath, "Photos", "Users", $"{user.Login}");

            if (!Directory.Exists(pathToDirectory))
            {
                Directory.CreateDirectory(pathToDirectory);
            }

            var jwtToken = _authService.GetJwtToken(claimIdentity);

            var encodedJwt = new JwtSecurityTokenHandler().WriteToken(jwtToken);

            return(new TokenResponse {
                Token = encodedJwt, Login = user.Login
            });
        }
Exemplo n.º 10
0
        /// <inheritdoc />
        public async Task <User> AddAsync(User user)
        {
            var userDto = _mapper.Map <UserDto>(user);

            userDto.Password = _passwordEncryptor.Encrypt(user);
            var addedUser = await _usersRepository.AddAsync(userDto);

            var result = _mapper.Map <User>(addedUser);

            return(result);
        }
Exemplo n.º 11
0
 static void DispatchCommand(IPasswordEncryptor passwordEncryptor, ICommandDispatcher commandDispatcher,
                             NewUserRequest newUserRequest)
 {
     commandDispatcher.Dispatch(new NewUserCommand
                                    {
                                        Email = newUserRequest.Email,
                                        EncryptedPassword =
                                            passwordEncryptor.Encrypt(
                                                newUserRequest.Password),
                                        AgreementVersion =
                                            newUserRequest.AgreementVersion
                                    });
 }
Exemplo n.º 12
0
        public AuthenticationModule( IDatabase database, IPasswordEncryptor passwordEncryptor )
        {
            Get[Route.Login] = o => View[Route.Login, new LoginRequest()];

            Post[Route.Login] = o =>
            {
                var request = this.Bind<LoginRequest>();

                try
                {
                    // TODO: Use validation attributes, or call Validate on LoginRequest

                    if ( string.IsNullOrWhiteSpace(request.UserName) || string.IsNullOrWhiteSpace(request.Password) )
                    {
                        throw new Exception("Username and password are required");
                    }

                    var user = database.GetUserByName( request.UserName );

                    if ( null == user )
                    {
                        throw new Exception( LoginFailureMessage );
                    }

                    var credentials = database.GetUserCredentialsByUserId( user.Id );

                    if ( passwordEncryptor.Encrypt(request.Password) != credentials.EncryptedPassword )
                    {
                        throw new Exception( LoginFailureMessage );
                    }

                    var expiry = DateTime.MaxValue;

                    return this.LoginAndRedirect( credentials.AuthId, expiry, Route.Home );
                }
                catch ( Exception exception )
                {
                    this.AddUserMessage(exception.Message);

                    return View[Route.Login, request];
                }
            };

            Get[Route.Logout] = o =>
            {
            //				this.AddUserMessage("You have been logged out");

                return this.LogoutAndRedirect( Route.Login );
            };
        }
Exemplo n.º 13
0
        public async Task <Unit> Handle(ChangePasswordByRecoveryKeyCommand request, CancellationToken cancellationToken)
        {
            var decryptedRecoveryKey = _stringEncoder.Decrypt(request.RecoveryKey);
            var encrytedUserDto      = JsonConvert.DeserializeObject <EncryptedUserDto>(decryptedRecoveryKey);

            var userEntity = await _dbContext.Users.FindAsync(encrytedUserDto.Id);

            if (userEntity is null || userEntity.Password != encrytedUserDto.Password)
            {
                throw new MonumentsManagerAppException(ExceptionType.RecoveryKeyValidationFailed, $"Recovery key is invalid for user with id {userEntity.Id}");
            }

            userEntity.Password = _passwordEncryptor.Encrypt(request.Password);
            await _dbContext.SaveChangesAsync();

            return(Unit.Value);
        }
        public async Task <CreateUserResponse> Handle(CreateUserCommand request, CancellationToken cancellationToken)
        {
            await _validator.ValidateAndThrowAsync(request, cancellationToken);

            var salt           = Guid.NewGuid().ToString();
            var hashedPassword = _passwordEncryptor.Encrypt(request.Password, salt);

            var user = new User
            {
                Id       = Guid.NewGuid(),
                Username = request.Username,
                Password = hashedPassword,
                Roles    = new [] { "user" },
                Salt     = salt,
            };

            _collection.Insert(user);

            return(new CreateUserResponse());
        }
Exemplo n.º 15
0
        public async Task <UserDto> Handle(AuthenticateUserCommand request, CancellationToken cancellationToken)
        {
            var encryptedPassword = _passwordEncryptor.Encrypt(request.Password);

            var user = await _dbContext.Users
                       .FirstOrDefaultAsync(s => s.Email == request.Email && s.Password == encryptedPassword);

            if (user is null)
            {
                return(null);
            }

            user.LastLoggedIn = DateTime.UtcNow;
            await _dbContext.SaveChangesAsync();

            return(new UserDto()
            {
                Id = user.Id,
                JobTitle = user.JobTitle,
                Role = user.Role.ConvertTo <UserRoleDto>(),
                Email = user.Email
            });
        }
Exemplo n.º 16
0
        public UserAccountModule(IUserAbilityRepository abilityReadRepo, ICommandDispatcher commandDispatcher,
                                 IPasswordEncryptor passwordEncryptor, IMapper mapper, IUserSessionFactory userSessionFactory)
        {
            Post["/register", true] =
                async(a, ct) =>
            {
                var req = this.Bind <NewUserRequest>();
                IEnumerable <UserAbility> abilities =
                    mapper.Map <IEnumerable <UserAbilityRequest>, IEnumerable <UserAbility> >(req.Abilities);
                await commandDispatcher.Dispatch(userSessionFactory.Create(Context.CurrentUser),
                                                 new CreateEmailLoginUser(req.Email, passwordEncryptor.Encrypt(req.Password), req.Name,
                                                                          req.PhoneNumber, abilities));

                return(null);
            };


            Post["/register/facebook", true] =
                async(a, ct) =>
            {
                var req = this.Bind <FacebookRegisterRequest>();
                await commandDispatcher.Dispatch(userSessionFactory.Create(Context.CurrentUser),
                                                 new CreateFacebookLoginUser(req.id, req.email, req.first_name, req.last_name, req.link,
                                                                             req.name,
                                                                             req.url_image));

                return(null);
            };

            Post["/register/google", true] =
                async(a, ct) =>
            {
                var req = this.Bind <GoogleRegisterRequest>();
                await commandDispatcher.Dispatch(userSessionFactory.Create(Context.CurrentUser),
                                                 new CreateGoogleLoginUser(req.id, req.email, req.name.givenName, req.name.familyName,
                                                                           req.url,
                                                                           req.displayName, req.image.url));

                return(null);
            };

            Post["/password/requestReset", true] =
                async(a, ct) =>
            {
                var req = this.Bind <ResetPasswordRequest>();
                await commandDispatcher.Dispatch(userSessionFactory.Create(Context.CurrentUser),
                                                 new StartPasswordResetProcess(req.Email));

                return(null);
            };

            Put["/password/reset/{token}", true] =
                async(a, ct) =>
            {
                var  newPasswordRequest = this.Bind <NewPasswordRequest>();
                Guid token = Guid.Parse((string)a.token);
                await commandDispatcher.Dispatch(userSessionFactory.Create(Context.CurrentUser),
                                                 new ResetPassword(token, passwordEncryptor.Encrypt(newPasswordRequest.Password)));

                return(null);
            };

            Post["/user/abilites", true] =
                async(a, ct) =>
            {
                var requestAbilites = this.Bind <UserAbilitiesRequest>();
                await commandDispatcher.Dispatch(userSessionFactory.Create(Context.CurrentUser),
                                                 new AddAbilitiesToUser(requestAbilites.UserId,
                                                                        requestAbilites.Abilities.Select(x => x.Id)));

                return(null);
            };

            Get["/abilities", true] = async(_, c) =>
            {
                IEnumerable <UserAbility> abilites =
                    await abilityReadRepo.GetAll();

                IEnumerable <UserAbilityRequest> mappedAbilites =
                    mapper
                    .Map <IEnumerable <UserAbility>, IEnumerable <UserAbilityRequest> >(
                        abilites);

                return(mappedAbilites);
            };
        }
Exemplo n.º 17
0
        public UserAccountModule(IReadOnlyRepository readOnlyRepository,ICommandDispatcher commandDispatcher, IPasswordEncryptor passwordEncryptor, IMappingEngine mappingEngine)
        {
            Post["/register"] =
                _ =>
                    {
                        var req = this.Bind<NewUserRequest>();
                        var abilities = mappingEngine.Map<IEnumerable<UserAbilityRequest>, IEnumerable<UserAbility>>(req.Abilities);
                        commandDispatcher.Dispatch(this.UserSession(),
                                                   new CreateEmailLoginUser(req.Email, passwordEncryptor.Encrypt(req.Password), req.Name, req.PhoneNumber, abilities));
                        return null;
                    };


            Post["/register/facebook"] =
                _ =>
                    {
                        var req = this.Bind<FacebookRegisterRequest>();
                        commandDispatcher.Dispatch(this.UserSession(), new CreateFacebookLoginUser(req.id,req.email, req.first_name, req.last_name,req.link,req.name,req.url_image));
                        return null;
                    };

            Post["/register/google"] =
                _ =>
                    {
                        var req = this.Bind<GoogleRegisterRequest>();
                        commandDispatcher.Dispatch(this.UserSession(), new CreateGoogleLoginUser(req.id,req.email,req.name.givenName,req.name.familyName,req.url,req.displayName,req.image.url));
                        return null;
                    };

            Post["/password/requestReset"] =
                _ =>
                {
                    var req = this.Bind<ResetPasswordRequest>();
                    commandDispatcher.Dispatch(this.UserSession(),
                                               new CreatePasswordResetToken(req.Email) );
                    return null;
                };

            Put["/password/reset/{token}"] =
                p =>
                {
                    var newPasswordRequest = this.Bind<NewPasswordRequest>();
                    var token = Guid.Parse((string)p.token);
                    commandDispatcher.Dispatch(this.UserSession(),
                                               new ResetPassword(token, passwordEncryptor.Encrypt(newPasswordRequest.Password)));
                    return null;
                };

            Post["/user/abilites"] = p =>
            {

                var requestAbilites = this.Bind<UserAbilitiesRequest>();
                commandDispatcher.Dispatch(this.UserSession(), new AddAbilitiesToUser(requestAbilites.UserId, requestAbilites.Abilities.Select(x => x.Id)));

                return null;


            };

            Get["/abilities"] = _ =>
            {
                var abilites = readOnlyRepository.GetAll<UserAbility>();

                var mappedAbilites = mappingEngine.Map<IEnumerable<UserAbility>, IEnumerable<UserAbilityRequest>>(abilites);

                return mappedAbilites;
            };
        }
Exemplo n.º 18
0
        public virtual string Encrypt(string password)
        {
            var prefix = PrefixHandler.GeneratePrefix(DefaultPasswordEncryptor.HashAlgorithmName());

            return(prefix + DefaultPasswordEncryptor.Encrypt(password));
        }
        public UserAccountModule(IReadOnlyRepository readOnlyRepository, ICommandDispatcher commandDispatcher, IPasswordEncryptor passwordEncryptor, IMappingEngine mappingEngine)
        {
            Post["/register"] =
                _ =>
            {
                var req       = this.Bind <NewUserRequest>();
                var abilities = mappingEngine.Map <IEnumerable <UserAbilityRequest>, IEnumerable <UserAbility> >(req.Abilities);
                commandDispatcher.Dispatch(this.UserSession(),
                                           new CreateEmailLoginUser(req.Email, passwordEncryptor.Encrypt(req.Password), req.Name, req.PhoneNumber, abilities));
                return(null);
            };


            Post["/register/facebook"] =
                _ =>
            {
                var req = this.Bind <FacebookRegisterRequest>();
                commandDispatcher.Dispatch(this.UserSession(), new CreateFacebookLoginUser(req.id, req.email, req.first_name, req.last_name, req.link, req.name, req.url_image));
                return(null);
            };

            Post["/register/google"] =
                _ =>
            {
                var req = this.Bind <GoogleRegisterRequest>();
                commandDispatcher.Dispatch(this.UserSession(), new CreateGoogleLoginUser(req.id, req.email, req.name.givenName, req.name.familyName, req.url, req.displayName, req.image.url));
                return(null);
            };

            Post["/password/requestReset"] =
                _ =>
            {
                var req = this.Bind <ResetPasswordRequest>();
                commandDispatcher.Dispatch(this.UserSession(),
                                           new CreatePasswordResetToken(req.Email));
                return(null);
            };

            Put["/password/reset/{token}"] =
                p =>
            {
                var newPasswordRequest = this.Bind <NewPasswordRequest>();
                var token = Guid.Parse((string)p.token);
                commandDispatcher.Dispatch(this.UserSession(),
                                           new ResetPassword(token, passwordEncryptor.Encrypt(newPasswordRequest.Password)));
                return(null);
            };

            Post["/user/abilites"] = p =>
            {
                var requestAbilites = this.Bind <UserAbilitiesRequest>();
                commandDispatcher.Dispatch(this.UserSession(), new AddAbilitiesToUser(requestAbilites.UserId, requestAbilites.Abilities.Select(x => x.Id)));

                return(null);
            };

            Get["/abilities"] = _ =>
            {
                var abilites = readOnlyRepository.GetAll <UserAbility>();

                var mappedAbilites = mappingEngine.Map <IEnumerable <UserAbility>, IEnumerable <UserAbilityRequest> >(abilites);

                return(mappedAbilites);
            };

            Get["/testStatePattern"] = _ =>
            {
                var traficLight = new Domain.DesignPattern.StatePattern.TraficLight();
                var process     = traficLight.StartTheTraficLight();

                return(process);
            };

            Get["/testNullObjectPattern"] = _ =>
            {
                var dog           = new Domain.DesignPattern.NullObjectPattern.Dog();
                var dougSound     = "Dog Sound: " + dog.MakeSound() + ", ";
                var unknown       = Domain.DesignPattern.NullObjectPattern.Animal.Null;
                var noAnimalSound = "No Animal Sound: " + unknown.MakeSound();

                return(dougSound + noAnimalSound);
            };

            Get["/testObserverPattern"] = _ =>
            {
                var observable = new Domain.DesignPattern.ObserverPattern.Observable();
                var observer   = new Domain.DesignPattern.ObserverPattern.Observer();
                observable.SomethingHappened += observer.HandleEvent;

                var observerValue = observable.DoSomething();

                return(observerValue);
            };
            Get["/testBridgePattern/{currentSource}"] = _ =>
            {
                var currentSource = (string)_.currentSource;

                var myCustomTv = new Domain.DesignPattern.BridgePattern.MyCustomTv();
                switch (currentSource)
                {
                case "1":
                    myCustomTv.VideoSource = new Domain.DesignPattern.BridgePattern.LocalCableTv();
                    break;

                case "2":
                    myCustomTv.VideoSource = new Domain.DesignPattern.BridgePattern.CableColorTv();
                    break;

                case "3":
                    myCustomTv.VideoSource = new Domain.DesignPattern.BridgePattern.TigoService();
                    break;
                }

                var tvGuide   = myCustomTv.ShowTvGuide();
                var playVideo = myCustomTv.ShowTvGuide();

                return(tvGuide + " / " + playVideo);
            };
        }
Exemplo n.º 20
0
        public LoginModule(
            IReadOnlyRepository readOnlyRepository,
            IUserSessionFactory userSessionFactory, IPasswordEncryptor passwordEncryptor)
        {
            Post["/login/facebook"] =
                r =>
                    {
                        var loginInfo = this.Bind<FacebookLoginRequest>();
                        try
                        {
                            var user =
                                readOnlyRepository.First<User>(x => x.FacebookId == loginInfo.FacebookId);

                            //if (!user.Verified) return new Response().WithStatusCode(HttpStatusCode.Forbidden);

                            UserSession userSession = userSessionFactory.Create(user);

                            return new SuccessfulLoginResponse<Guid>(userSession.Id, userSession.Expires);
                        }
                        catch (ItemNotFoundException<User> ex)
                        {
                            return new Response().WithStatusCode(HttpStatusCode.Unauthorized);
                        }
                    };

            Post["/login"] =
                r =>
                    {
                        var loginInfo = this.Bind<BasicLoginRequest>();
                        if (loginInfo.Email == null) throw new UserInputPropertyMissingException("Email");
                        if (loginInfo.Password == null) throw new UserInputPropertyMissingException("Password");

                        EncryptedPassword encryptedPassword = passwordEncryptor.Encrypt(loginInfo.Password);

                        try
                        {
                            var user =
                                readOnlyRepository.First<User>(
                                    x => x.Email == loginInfo.Email && x.EncryptedPassword == encryptedPassword.Password);

                            //if (!user.Activated) throw new ForbiddenRequestException();

                            UserSession userSession = userSessionFactory.Create(user);

                            return new SuccessfulLoginResponse<Guid>(userSession.Id, userSession.Expires);
                        }
                        catch (ItemNotFoundException<User>)
                        {
                            throw new UnauthorizedAccessException();
                        }
                    };

            Post["/logout"] =
                r =>
                    {
                        var loginInfo = this.Bind<FacebookLoginRequest>();
                        try
                        {
                            var session =
                                readOnlyRepository.First<UserSession>(x => x.User.FacebookId == loginInfo.FacebookId);

                            userSessionFactory.Delete(session.Id);

                            return new Response().WithStatusCode(HttpStatusCode.OK);
                        }
                        catch (ItemNotFoundException<UserSession> ex)
                        {
                            return new Response().WithStatusCode(HttpStatusCode.Unauthorized);
                        }
                    };
        }
Exemplo n.º 21
0
        public UserAccountModule(IReadOnlyRepository readOnlyRepository, ICommandDispatcher commandDispatcher, IPasswordEncryptor passwordEncryptor, IMappingEngine mappingEngine)
        {
            Post["/register"] =
                _ =>
            {
                var req       = this.Bind <NewUserRequest>();
                var abilities = mappingEngine.Map <IEnumerable <UserAbilityRequest>, IEnumerable <UserAbility> >(req.Abilities);
                commandDispatcher.Dispatch(this.UserSession(),
                                           new CreateEmailLoginUser(req.Email, passwordEncryptor.Encrypt(req.Password), req.Name, req.PhoneNumber, abilities));
                return(null);
            };


            Post["/register/facebook"] =
                _ =>
            {
                var req = this.Bind <FacebookRegisterRequest>();
                commandDispatcher.Dispatch(this.UserSession(), new CreateFacebookLoginUser(req.id, req.email, req.first_name, req.last_name, req.link, req.name, req.url_image));
                return(null);
            };

            Post["/register/google"] =
                _ =>
            {
                var req = this.Bind <GoogleRegisterRequest>();
                commandDispatcher.Dispatch(this.UserSession(), new CreateGoogleLoginUser(req.id, req.email, req.name.givenName, req.name.familyName, req.url, req.displayName, req.image.url));
                return(null);
            };

            Post["/password/requestReset"] =
                _ =>
            {
                var req = this.Bind <ResetPasswordRequest>();
                commandDispatcher.Dispatch(this.UserSession(),
                                           new CreatePasswordResetToken(req.Email));
                return(null);
            };

            Put["/password/reset/{token}"] =
                p =>
            {
                var newPasswordRequest = this.Bind <NewPasswordRequest>();
                var token = Guid.Parse((string)p.token);
                commandDispatcher.Dispatch(this.UserSession(),
                                           new ResetPassword(token, passwordEncryptor.Encrypt(newPasswordRequest.Password)));
                return(null);
            };

            Post["/user/abilites"] = p =>
            {
                var requestAbilites = this.Bind <UserAbilitiesRequest>();
                commandDispatcher.Dispatch(this.UserSession(), new AddAbilitiesToUser(requestAbilites.UserId, requestAbilites.Abilities.Select(x => x.Id)));

                return(null);
            };

            Get["/abilities"] = _ =>
            {
                var abilites = readOnlyRepository.GetAll <UserAbility>();

                var mappedAbilites = mappingEngine.Map <IEnumerable <UserAbility>, IEnumerable <UserAbilityRequest> >(abilites);

                return(mappedAbilites);
            };
        }
Exemplo n.º 22
0
        public LoginModule(IPasswordEncryptor passwordEncryptor, IReadOnlyRepository readOnlyRepository,
                           IUserSessionFactory userSessionFactory, IMenuProvider menuProvider)
        {
            Post["/login"] =
                _ =>
            {
                var loginInfo = this.Bind <LoginRequest>();
                if (loginInfo.Email == null)
                {
                    throw new UserInputPropertyMissingException("Email");
                }
                if (loginInfo.Password == null)
                {
                    throw new UserInputPropertyMissingException("Password");
                }

                EncryptedPassword encryptedPassword = passwordEncryptor.Encrypt(loginInfo.Password);

                try
                {
                    var user =
                        readOnlyRepository.First <UserEmailLogin>(
                            x => x.Email == loginInfo.Email && x.EncryptedPassword == encryptedPassword.Password);

                    if (!user.IsActive)
                    {
                        throw new DisableUserAccountException();
                    }
                    UserLoginSession userLoginSession = userSessionFactory.Create(user);

                    return(new SuccessfulLoginResponse <Guid>(userLoginSession.Id, user.Name,
                                                              userLoginSession.Expires, menuProvider.getFeatures(userLoginSession.GetClaimsAsArray())));
                }
                catch (ItemNotFoundException <UserEmailLogin> )
                {
                    throw new UnauthorizedAccessException("Invalid email address or password. Please try again.");
                }
                catch (DisableUserAccountException)
                {
                    throw new UnauthorizedAccessException("Your account has been disabled. Please contact your administrator for help.");
                }
            };

            Post["/login/facebook"] = _ =>
            {
                var loginInfo = this.Bind <LoginSocialRequest>();
                if (loginInfo.Email == null)
                {
                    throw new UserInputPropertyMissingException("Email");
                }
                if (loginInfo.Id == null)
                {
                    throw new UserInputPropertyMissingException("Social Id");
                }

                try
                {
                    var user =
                        readOnlyRepository.First <UserFacebookLogin>(
                            x => x.Email == loginInfo.Email && x.FacebookId == loginInfo.Id);

                    if (!user.IsActive)
                    {
                        throw new DisableUserAccountException();
                    }

                    UserLoginSession userLoginSession = userSessionFactory.Create(user);

                    return(new SuccessfulLoginResponse <Guid>(userLoginSession.Id, user.Name, userLoginSession.Expires, menuProvider.getFeatures(userLoginSession.GetClaimsAsArray())));
                }
                catch (ItemNotFoundException <UserEmailLogin> )
                {
                    throw new UnauthorizedAccessException("Invalid facebook user, you need to register first.");
                }
                catch (DisableUserAccountException)
                {
                    throw new UnauthorizedAccessException("Your account has been disabled. Please contact your administrator for help.");
                }
            };
            Get["/roles"] =
                _ =>
            {
                this.RequiresAuthentication();
                return(Response.AsJson(menuProvider.getAllFeatures()));
            };


            Post["/login/google"] = _ =>
            {
                var loginInfo = this.Bind <LoginSocialRequest>();
                if (loginInfo.Email == null)
                {
                    throw new UserInputPropertyMissingException("Email");
                }
                if (loginInfo.Id == null)
                {
                    throw new UserInputPropertyMissingException("Social Id");
                }

                try
                {
                    var user =
                        readOnlyRepository.First <UserGoogleLogin>(
                            x => x.Email == loginInfo.Email && x.GoogleId == loginInfo.Id);

                    if (!user.IsActive)
                    {
                        throw new DisableUserAccountException();
                    }

                    UserLoginSession userLoginSession = userSessionFactory.Create(user);

                    return(new SuccessfulLoginResponse <Guid>(userLoginSession.Id, user.Name, userLoginSession.Expires, menuProvider.getFeatures(userLoginSession.GetClaimsAsArray())));
                }
                catch (ItemNotFoundException <UserEmailLogin> )
                {
                    throw new UnauthorizedAccessException("Invalid google user, you need to register first.");
                }
                catch (DisableUserAccountException)
                {
                    throw new UnauthorizedAccessException("Your account has been disabled. Please contact your administrator for help.");
                }
            };
        }
Exemplo n.º 23
0
        public UserProfileModule( IDatabase database, IPasswordEncryptor passwordEncryptor )
            : base(database)
        {
            this.passwordEncryptor = passwordEncryptor;

            this.RequiresAuthentication();

            Get[Route.UserProfile] = o =>
            {
                return View[Route.UserProfile];
            };

            Get[Route.ChangePassword] = o =>
            {
                return View[Route.ChangePassword];
            };

            Post[Route.ChangePassword] = o =>
            {
                var request = this.Bind<ChangePasswordRequest>();

                var user = this.CurrentUser;

                try
                {
                    var userCredentials = database.GetUserCredentialsByUserId( user.Id );

                    if ( string.IsNullOrWhiteSpace( request.CurrentPassword ) )
                    {
                        throw new Exception( "Incorrect password" );
                    }

                    if ( passwordEncryptor.Encrypt( request.CurrentPassword ) != userCredentials.EncryptedPassword )
                    {
                        throw new Exception( "Incorrect password" );
                    }

                    if ( request.NewPassword1 != request.NewPassword2 )
                    {
                        throw new Exception( "Passwords don't match" );
                    }

                    var result = PasswordValidator.Validate( request.NewPassword1 );
                    if ( !result.IsValid )
                    {
                        throw new Exception( string.Join( ", ", result.ValidationErrors ) );
                    }

                    userCredentials.EncryptedPassword = passwordEncryptor.Encrypt( request.NewPassword1 );

                    database.UpdateUserCredentials( userCredentials );
                }
                catch ( Exception ex )
                {
                    this.AddUserMessage( ex.Message );
                    return View[Route.ChangePassword];
                }

                this.AddUserMessage( "Your password has been changed" );
                return View[Route.UserProfile];
            };

            Get[Route.SelectGames] = o =>
            {
                var model = new SelectGamesViewModel();

                var availableGames = database.GetGames();
                var gamesPlayedByUser = database.GetGamesPlayedByUser( ((UserIdentity)Context.CurrentUser).UserId );

                foreach ( var availableGame in availableGames )
                {
                    model.SelectableGames.Add( new Selectable<Game>
                    {
                        Item = availableGame,
                        IsSelected = gamesPlayedByUser.Any( game => game.Id == availableGame.Id )
                    } );
                }

                return View[Route.SelectGames, model];
            };

            Post[Route.SelectGames] = o =>
            {
                var request = this.Bind<SelectGamesRequest>();

                database.SetGamesPlayedByUser(((UserIdentity)Context.CurrentUser).UserId, request.GameIds);

                return Response.AsRedirect( Route.Home );
            };
        }