public HttpResponseMessage Post([FromBody] preg_auth data)
{
try
{
int user_id = Convert.ToInt32(((ClaimsIdentity)(User.Identity)).FindFirst("id").Value);
if (!data.DeepEquals(new preg_auth()))
{
//Check exist
preg_auth checkExist = dao.GetItemsByParams(new preg_auth()
{
user_id = user_id
}).FirstOrDefault();
if (checkExist != null)
{
return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, SysConst.DATA_EXIST));
}
dao.InsertData(data);
return(Request.CreateResponse(HttpStatusCode.Created, SysConst.DATA_INSERT_SUCCESS));
}
else
{
HttpError err = new HttpError(SysConst.DATA_NOT_EMPTY);
return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, err));
}
}
catch (Exception ex)
{
HttpError err = new HttpError(ex.Message);
return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, err));
}
}
public IQueryable <preg_auth> GetItemsByParams(preg_auth data)
{
IQueryable <preg_auth> result = connect.preg_auth;
for (int i = 0; i < data.GetType().GetProperties().ToList().Count(); i++)
{
string propertyName = data.GetType().GetProperties().ToList()[i].Name;
var propertyValue = data.GetType().GetProperty(propertyName).GetValue(data, null);
if (propertyName == "id" && (int)(propertyValue) != 0)
{
result = result.Where(c => c.id == (int)(propertyValue));
}
else if (propertyName == "user_id" && propertyValue != null)
{
result = result.Where(c => c.user_id == (int)(propertyValue));
}
else if (propertyName == "token" && propertyValue != null)
{
result = result.Where(c => SqlFunctions.PatIndex("%" + propertyValue.ToString() + "%", c.token) > 0);
}
else if (propertyName == "valid_to" && propertyValue != null)
{
result = result.Where(c => SqlFunctions.PatIndex("%" + propertyValue.ToString() + "%", c.valid_to) > 0);
}
}
return(result);
}
public HttpResponseMessage GetAll([FromUri] preg_auth data)
{
try
{
IEnumerable <preg_auth> result;
if (!data.DeepEquals(new preg_auth()))
{
result = dao.GetItemsByParams(data);
}
else
{
result = dao.GetListItem();
}
if (result.Count() > 0)
{
return(Request.CreateResponse(HttpStatusCode.OK, result));
}
else
{
HttpError err = new HttpError(SysConst.DATA_NOT_FOUND);
return(Request.CreateErrorResponse(HttpStatusCode.NotFound, err));
}
}
catch (Exception ex)
{
HttpError err = new HttpError(ex.Message);
return(Request.CreateErrorResponse(HttpStatusCode.NotFound, err));
}
}
public async Task <HttpResponseMessage> Get([FromUri] preg_auth data)
{
try
{
int user_id = Convert.ToInt32(((ClaimsIdentity)(User.Identity)).FindFirst("id").Value);
IEnumerable <preg_auth> result;
if (!data.DeepEquals(new preg_auth()))
{
data.user_id = user_id;
result = dao.GetItemsByParams(data);
}
else
{
result = dao.GetListItem().Where(c => c.user_id == user_id);
}
if (result.Count() > 0)
{
return(Request.CreateResponse(HttpStatusCode.OK, result));
}
else
{
HttpError err = new HttpError(SysConst.DATA_NOT_FOUND);
return(Request.CreateErrorResponse(HttpStatusCode.NotFound, err));
}
}
catch (Exception ex)
{
HttpError err = new HttpError(ex.Message);
return(Request.CreateErrorResponse(HttpStatusCode.NotFound, err));
}
}
public HttpResponseMessage Delete()
{
try
{
int user_id = Convert.ToInt32(((ClaimsIdentity)(User.Identity)).FindFirst("id").Value);
preg_auth auth = dao.GetListItem().Where(c => c.user_id == user_id).FirstOrDefault();
if (auth == null)
{
return(Request.CreateErrorResponse(HttpStatusCode.NotFound, SysConst.DATA_NOT_FOUND));
}
dao.DeleteData(auth);
return(Request.CreateResponse(HttpStatusCode.Accepted, SysConst.DATA_DELETE_SUCCESS));
}
catch (Exception ex)
{
HttpError err = new HttpError(ex.Message);
return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, err));
}
}
public HttpResponseMessage Put([FromBody] preg_auth dataUpdate)
{
try
{
int user_id = Convert.ToInt32(((ClaimsIdentity)(User.Identity)).FindFirst("id").Value);
if (!dataUpdate.DeepEquals(new preg_auth()))
{
preg_auth auth = new preg_auth();
auth = dao.GetListItem().Where(c => c.user_id == user_id).FirstOrDefault();
if (auth == null)
{
return(Request.CreateErrorResponse(HttpStatusCode.NotFound, SysConst.DATA_NOT_FOUND));
}
if (dataUpdate.token != null)
{
auth.token = dataUpdate.token;
}
if (dataUpdate.valid_to != null)
{
auth.valid_to = dataUpdate.valid_to;
}
dao.UpdateData(auth);
return(Request.CreateResponse(HttpStatusCode.Accepted, SysConst.DATA_UPDATE_SUCCESS));
}
else
{
HttpError err = new HttpError(SysConst.DATA_NOT_EMPTY);
return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, err));
}
}
catch (Exception ex)
{
HttpError err = new HttpError(ex.Message);
return(Request.CreateErrorResponse(HttpStatusCode.BadRequest, err));
}
}
public void DeleteData(preg_auth item)
{
connect.preg_auth.Remove(item);
connect.SaveChanges();
}
public void UpdateData(preg_auth item)
{
connect.SaveChanges();
}
public void InsertData(preg_auth item)
{
connect.preg_auth.Add(item);
connect.SaveChanges();
}
/// <summary>
/// Validate provided username and password when the grant_type is set to "password".
/// </summary>
/// <param name="context"></param>
/// <returns></returns>
public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
{
if (context.OwinContext.Request.Headers["Provider"] != null)
{
if (context.OwinContext.Request.Headers["Provider"].ToLower() == "facebook" && context.OwinContext.Request.Headers["access_token"] != null)
{
var accessToken = context.OwinContext.Request.Headers["access_token"];
var client = new RestClient("https://graph.facebook.com/");
var request = new RestRequest("me", Method.GET);
request.AddQueryParameter("fields", "id,name,email,picture.width(2000).height(2000)");
request.AddQueryParameter("access_token", accessToken);
var response = client.Execute(request);
if (response.StatusCode == HttpStatusCode.OK)
{
var content = JObject.Parse(response.Content);
var userInfo = new FacebookUserInfo()
{
id = content["id"].ToString()
};
if (content["name"] != null)
{
userInfo.name = content["name"].ToString();
}
if (content["email"] != null)
{
userInfo.email = content["email"].ToString();
}
if (content["picture"]["data"]["url"] != null)
{
userInfo.avatar = content["picture"]["data"]["url"].ToString();
}
PregnancyEntity connect = new PregnancyEntity();
preg_user user = connect.preg_user.Where(c => c.uid == userInfo.id && c.social_type_id == (int)SysConst.SocialTypes.facebook).FirstOrDefault();
if (user != null)
{
//user.email = userInfo.email;
//user.first_name = userInfo.name;
user.time_last_login = DateTime.Now;
connect.SaveChanges();
}
else
{
user = new preg_user();
user.uid = userInfo.id;
user.email = userInfo.email;
user.first_name = userInfo.name;
user.avatar = userInfo.avatar;
user.social_type_id = (int)SysConst.SocialTypes.facebook;
user.time_created = DateTime.Now;
connect.preg_user.Add(user);
SysMethod.createAccountNop(user);
connect.SaveChanges();
user = connect.preg_user.Where(c => c.uid == userInfo.id && c.social_type_id == (int)SysConst.SocialTypes.facebook).FirstOrDefault();
}
preg_auth auth = connect.preg_auth.Where(c => c.user_id == user.id).FirstOrDefault();
if (auth == null)
{
auth = new preg_auth()
{
user_id = user.id
};
connect.preg_auth.Add(auth);
}
auth.token = context.OwinContext.Request.Headers["access_token"];
connect.SaveChanges();
var identity = new ClaimsIdentity(context.Options.AuthenticationType);
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.social.ToString()));
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.user.ToString()));
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.dev.ToString()));
identity.AddClaim(new Claim("id", user.id.ToString()));
context.Validated(identity);
}
else
{
context.SetError("Invalid grant", SysConst.LOGIN_SOCIAL_FAILED);
return;
}
}
else if (context.OwinContext.Request.Headers["Provider"].ToLower() == "google" && context.OwinContext.Request.Headers["access_token"] != null)
{
var accessToken = context.OwinContext.Request.Headers["access_token"];
var client = new RestClient("https://www.googleapis.com/oauth2/v3/");
var request = new RestRequest("tokeninfo", Method.GET);
request.AddQueryParameter("id_token", accessToken);
var response = client.Execute(request);
if (response.StatusCode == HttpStatusCode.OK)
{
var content = JObject.Parse(response.Content);
var userInfo = new GoogleUserInfo()
{
sub = content["sub"].ToString()
};
if (content["name"] != null)
{
userInfo.name = content["name"].ToString();
}
if (content["email"] != null)
{
userInfo.email = content["email"].ToString();
}
if (content["picture"] != null)
{
userInfo.picture = content["picture"].ToString();
}
if (content["given_name"] != null)
{
userInfo.given_name = content["given_name"].ToString();
}
if (content["family_name"] != null)
{
userInfo.family_name = content["family_name"].ToString();
}
PregnancyEntity connect = new PregnancyEntity();
preg_user user = connect.preg_user.Where(c => c.uid == userInfo.sub && c.social_type_id == (int)SysConst.SocialTypes.google).FirstOrDefault();
if (user != null)
{
//user.email = userInfo.email;
//user.first_name = userInfo.name;
//user.avatar = userInfo.picture;
user.time_last_login = DateTime.Now;
connect.SaveChanges();
}
else
{
user = new preg_user();
user.uid = userInfo.sub;
user.email = userInfo.email;
user.first_name = userInfo.name;
user.avatar = userInfo.picture;
user.social_type_id = (int)SysConst.SocialTypes.google;
user.time_created = DateTime.Now;
connect.preg_user.Add(user);
SysMethod.createAccountNop(user);
connect.SaveChanges();
user = connect.preg_user.Where(c => c.uid == userInfo.sub && c.social_type_id == (int)SysConst.SocialTypes.google).FirstOrDefault();
}
preg_auth auth = connect.preg_auth.Where(c => c.user_id == user.id).FirstOrDefault();
if (auth == null)
{
auth = new preg_auth()
{
user_id = user.id
};
connect.preg_auth.Add(auth);
}
auth.token = context.OwinContext.Request.Headers["access_token"];
connect.SaveChanges();
var identity = new ClaimsIdentity(context.Options.AuthenticationType);
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.social.ToString()));
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.user.ToString()));
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.dev.ToString()));
identity.AddClaim(new Claim("id", user.id.ToString()));
context.Validated(identity);
}
else
{
var client2 = new RestClient("https://www.googleapis.com/oauth2/v1/");
var request2 = new RestRequest("userinfo", Method.GET);
request2.AddQueryParameter("alt", "json");
request2.AddQueryParameter("access_token", accessToken);
var response2 = client.Execute(request2);
if (response2.StatusCode == HttpStatusCode.OK)
{
var content = JObject.Parse(response2.Content);
var userInfo = new GoogleUserInfo()
{
sub = content["sub"].ToString()
};
if (content["name"] != null)
{
userInfo.name = content["name"].ToString();
}
if (content["email"] != null)
{
userInfo.email = content["email"].ToString();
}
if (content["picture"] != null)
{
userInfo.picture = content["picture"].ToString();
}
if (content["given_name"] != null)
{
userInfo.given_name = content["given_name"].ToString();
}
if (content["family_name"] != null)
{
userInfo.family_name = content["family_name"].ToString();
}
PregnancyEntity connect = new PregnancyEntity();
preg_user user = connect.preg_user.Where(c => c.uid == userInfo.sub && c.social_type_id == (int)SysConst.SocialTypes.google).FirstOrDefault();
if (user != null)
{
//user.email = userInfo.email;
//user.first_name = userInfo.name;
//user.avatar = userInfo.picture;
user.time_last_login = DateTime.Now;
connect.SaveChanges();
}
else
{
user = new preg_user();
user.uid = userInfo.sub;
user.email = userInfo.email;
user.first_name = userInfo.name;
user.avatar = userInfo.picture;
user.social_type_id = (int)SysConst.SocialTypes.google;
user.time_created = DateTime.Now;
connect.preg_user.Add(user);
SysMethod.createAccountNop(user);
connect.SaveChanges();
user = connect.preg_user.Where(c => c.uid == userInfo.sub && c.social_type_id == (int)SysConst.SocialTypes.google).FirstOrDefault();
}
preg_auth auth = connect.preg_auth.Where(c => c.user_id == user.id).FirstOrDefault();
if (auth == null)
{
auth = new preg_auth()
{
user_id = user.id
};
connect.preg_auth.Add(auth);
}
auth.token = context.OwinContext.Request.Headers["access_token"];
connect.SaveChanges();
var identity = new ClaimsIdentity(context.Options.AuthenticationType);
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.social.ToString()));
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.user.ToString()));
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.dev.ToString()));
identity.AddClaim(new Claim("id", user.id.ToString()));
context.Validated(identity);
}
else
{
context.SetError("Invalid grant", SysConst.LOGIN_SOCIAL_FAILED);
return;
}
}
}
}
else if (context.UserName != null && context.Password != null)
{
var identity = new ClaimsIdentity(context.Options.AuthenticationType);
PregnancyEntity connect = new PregnancyEntity();
UserDao dao = new UserDao();
//Check username & password
string phone = context.UserName;
string password = SysMethod.MD5Hash(context.Password);
preg_user user = connect.preg_user.Where(c => c.phone == phone && c.password == password).FirstOrDefault();
if (user != null)
{
user.time_last_login = DateTime.Now;
connect.SaveChanges();
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.dev.ToString()));
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.user.ToString()));
identity.AddClaim(new Claim("id", user.id.ToString()));
context.Validated(identity);
}
else if (context.UserName == "WSPadmin" && context.Password == "WSPadmin")
{
identity.AddClaim(new Claim(ClaimTypes.Role, SysConst.UserType.admin.ToString()));
identity.AddClaim(new Claim("id", "0"));
context.Validated(identity);
}
else
{
context.SetError("Invalid grant", SysConst.LOGIN_FAILED);
return;
}
}
}
