public async Task <IActionResult> Post([FromRoute] int departmentId, [FromBody] string userId) { if (!ModelState.IsValid) { return(BadRequest(ModelState)); } var user = await _userManager.FindByIdAsync(userId); var department = _departmentRepository.Get(departmentId); if (user == null) { return(NotFound("User is not found")); } if (department == null) { return(NotFound("Department is not found")); } var depUser = new DepartmentApplicationUser { ApplicationUserId = user.Id, DepartmentId = department.DepartmentId, IsMaintainer = false }; await _departmentApplicationUserRepository.Add(depUser); return(CreatedAtAction("Get", new { id = department.DepartmentId }, department)); }
public async Task <IActionResult> OnPostAsync(string returnUrl = null) { returnUrl ??= Url.Content("~/"); ExternalLogins = (await _signInManager.GetExternalAuthenticationSchemesAsync()).ToList(); const string employeeNumberRegex = @"^[a-zA-Z0-9]*$"; var regex = new Regex(employeeNumberRegex); if (!regex.IsMatch(Input.EmployeeNumber)) { ModelState.AddModelError("EmployeeNumber", "Employee-number is not valid"); } else { var user = _context.Users.FirstOrDefault(u => u.EmployeeNumber == Input.EmployeeNumber); if (user != null) { ModelState.AddModelError("EmployeeNumber", "Employee-number already exists"); } } if (ModelState.IsValid) { var currentUser = await _userManager.FindByNameAsync(User.Identity.Name); var user = new ApplicationUser { UserName = Input.Email, Email = Input.Email, EmployeeNumber = Input.EmployeeNumber, FirstName = Input.FirstName, LastName = Input.LastName, BirthDate = Input.BirthDate, PhoneNumber = Input.PhoneNumber, CreationDate = DateTime.Now, CurrentLoggedInDepartmentId = currentUser.CurrentLoggedInDepartmentId, LockoutEnabled = true, LockoutEnd = null, IsOrganizationMaintainer = false }; var result = await _userManager.CreateAsync(user, Input.Password); if (result.Succeeded) { user = await _userManager.FindByIdAsync(user.Id); await _departmentApplicationUserRepository.Add(new DepartmentApplicationUser { ApplicationUserId = user.Id, DepartmentId = currentUser.CurrentLoggedInDepartmentId, IsMaintainer = false }); result = await _userManager.UpdateAsync(user); if (!result.Succeeded) { _logger.LogInformation("Unable to add user to department. Check error logs for any errors!"); result = await _userManager.DeleteAsync(user); if (!result.Succeeded) { _logger.LogInformation("Unable to remove user. Manual intervention required."); } } _logger.LogInformation("A new user-account with password created."); var code = await _userManager.GenerateEmailConfirmationTokenAsync(user); code = WebEncoders.Base64UrlEncode(Encoding.UTF8.GetBytes(code)); var callbackUrl = Url.Page( "/Account/ConfirmEmail", pageHandler: null, values: new { area = "Identity", userId = user.Id, code = code, returnUrl = returnUrl }, protocol: Request.Scheme); await _emailSender.SendEmailAsync(Input.Email, "Confirm your email", $"Please confirm your account by <a href='{HtmlEncoder.Default.Encode(callbackUrl)}'>clicking here</a>."); if (_userManager.Options.SignIn.RequireConfirmedAccount) { return(RedirectToPage("RegisterConfirmation", new { email = Input.Email, returnUrl = returnUrl })); } else { await _userManager.AddToRoleAsync(user, "User"); return(LocalRedirect(returnUrl)); } } foreach (var error in result.Errors) { ModelState.AddModelError(string.Empty, error.Description); } } return(Page()); }