public void SendPasswordResetToken(SendPasswordResetTokenParameters parameters)
{
if (parameters == null)
{
throw new ClientException("It is not allowed to call this authentication service method with no parameters provided.");
}
_logger.Trace("SendPasswordResetToken " + parameters.UserName);
parameters.Validate();
const string logErrorFormat = "SendPasswordResetToken failed for {0}: {1}";
try
{
string passwordResetToken;
try
{
var tokenParameters = new GeneratePasswordResetTokenParameters
{
UserName = parameters.UserName,
TokenExpirationInMinutesFromNow = Int32.Parse(ConfigUtility.GetAppSetting("AspNetFormsAuth.SendPasswordResetToken.ExpirationInMinutes") ?? "1440")
};
passwordResetToken = GeneratePasswordResetTokenInternal(tokenParameters);
}
// Providing an error information to the client might be a security issue, because this method allows anonymous access.
catch (UserException ex)
{
_logger.Trace(logErrorFormat, parameters.UserName, ex);
return;
}
catch (ClientException ex)
{
_logger.Info(logErrorFormat, parameters.UserName, ex);
return;
}
// The plugin may choose it's own client error messages (UserException and ClientException will not be suppressed).
_sendPasswordResetTokenPlugin.Value.SendPasswordResetToken(parameters.UserName, parameters.AdditionalClientInfo, passwordResetToken);
}
catch (Exception ex)
{
if (ex is UserException || ex is ClientException)
{
ExceptionsUtility.Rethrow(ex);
}
// Don't return an internal error to the client. Log it and return a generic error message:
_logger.Error(logErrorFormat, parameters.UserName, ex);
throw new FrameworkException(FrameworkException.GetInternalServerErrorMessage(_localizer, ex));
}
}
private static bool FromConfigAllowBuiltinAdminOverride()
{
var setting = ConfigUtility.GetAppSetting("BuiltinAdminOverride");
if (setting != null)
{
bool allow;
if (bool.TryParse(setting, out allow))
{
return(allow);
}
throw new FrameworkException("Invalid setting of BuiltinAdminOverride in configuration file. Allowed values are True and False.");
}
return(false);
}
private static bool ShouldAddUnregisteredPrincipal()
{
if (_shouldAddUnregisteredPrincipal == null)
{
string setting = ConfigUtility.GetAppSetting("AuthorizationAddUnregisteredPrincipals");
if (!string.IsNullOrEmpty(setting))
{
_shouldAddUnregisteredPrincipal = bool.Parse(setting);
}
else
{
_shouldAddUnregisteredPrincipal = false;
}
}
return(_shouldAddUnregisteredPrincipal.Value);
}
private double GetDefaultExpirationSeconds()
{
if (_defaultExpirationSeconds == null)
{
string value = ConfigUtility.GetAppSetting("AuthorizationCacheExpirationSeconds");
if (!string.IsNullOrEmpty(value))
{
_defaultExpirationSeconds = double.Parse(value);
}
else
{
_defaultExpirationSeconds = 30;
}
}
return(_defaultExpirationSeconds.Value);
}