public MembersApplication[] GetApplications(Guid id) { if (!(Permissions.IsUser || Permissions.IsSelf(id))) { ThrowAuthError(); } var result = db.Members.Where(f => f.Id == id).SelectMany(f => f.ApplyingTo) .Select(f => new MembersApplication { Id = f.Id, Unit = new NameIdPair { Id = f.Unit.Id, Name = f.Unit.DisplayName }, IsActive = f.IsActive, Started = f.Started }).ToArray(); foreach (var item in result) { item.CanEdit = UnitsController.CanEditApplication(Permissions, id, item.Unit.Id); } return(result); }
public string Signup(AccountSignup data) { if (string.IsNullOrWhiteSpace(data.Firstname)) { return("First name is required"); } if (string.IsNullOrWhiteSpace(data.Lastname)) { return("Last name is required"); } if (string.IsNullOrWhiteSpace(data.Email)) { return("Email is required"); } if (!Regex.IsMatch(data.Email, @"^\S+@\S+\.\S+$")) { return("Unrecognized email address"); } if (data.BirthDate > DateTime.Today.AddYears(-14)) { return("Applicants must be 14 years or older"); } if (data.BirthDate < DateTime.Today.AddYears(-120)) { return("Invalid birthdate"); } if (!(new[] { "m", "f", null }.Contains(data.Gender))) { return("Invalid gender"); } if (data.Units.Length == 0) { return("Must select at least one unit"); } if (string.IsNullOrWhiteSpace(data.Username)) { return("Username is required"); } if (data.Username.Length < 3) { return("Username must be 3 or more characters"); } if (data.Username.Length > 200) { return("Username must be less than 200 characters"); } if (!Regex.IsMatch(data.Username, @"^[a-zA-Z0-9\.\-_]+$")) { return("Username can only contain numbers, letters, and the characters '.', '-', and '_'"); } if (membership.GetUser(data.Username, false) != null) { return("Username is already taken"); } if (string.IsNullOrWhiteSpace(data.Password)) { return("Password is required"); } if (data.Password.Length < 6) { return("Password must be at least 6 characters"); } if (data.Password.Length > 64) { return("Password must be less than 64 characters"); } MembershipCreateStatus status; var user = membership.CreateUser(data.Username, data.Password, data.Email, null, null, false, null, out status); if (status != MembershipCreateStatus.Success) { return("Could not create user"); } try { System.Web.Security.FormsAuthenticationTicket ticket = new System.Web.Security.FormsAuthenticationTicket(data.Username, false, 5); Thread.CurrentPrincipal = new System.Web.Security.RolePrincipal(new System.Web.Security.FormsIdentity(ticket)); Member newMember = new Member { FirstName = data.Firstname, MiddleName = data.Middlename, LastName = data.Lastname, BirthDate = data.BirthDate, InternalGender = data.Gender, Status = MemberStatus.Applicant, Username = data.Username }; db.Members.Add(newMember); PersonContact email = new PersonContact { Person = newMember, Type = "email", Value = data.Email, Priority = 0 }; db.PersonContact.Add(email); foreach (Guid unitId in data.Units) { UnitsController.RegisterApplication(db, unitId, newMember); } SarMembership.KcsarUserProfile profile = ProfileBase.Create(data.Username) as SarMembership.KcsarUserProfile; if (profile != null) { profile.FirstName = data.Firstname; profile.LastName = data.Lastname; profile.LinkKey = newMember.Id.ToString(); profile.Save(); } if (!System.Web.Security.Roles.RoleExists(APPLICANT_ROLE)) { System.Web.Security.Roles.CreateRole(APPLICANT_ROLE); } System.Web.Security.Roles.AddUserToRole(data.Username, APPLICANT_ROLE); string mailSubject = string.Format("{0} account verification", ConfigurationManager.AppSettings["dbNameShort"] ?? "KCSARA"); string mailTemplate = File.ReadAllText(Path.Combine(AppDomain.CurrentDomain.BaseDirectory, "Templates", "Email", "new-account-verification.html")); string mailBody = mailTemplate .Replace("%Username%", data.Username) .Replace("%VerifyLink%", new Uri(this.Request.RequestUri, Url.Route("Default", new { httproute = "", controller = "Account", action = "Verify", id = data.Username })).AbsoluteUri + "?key=" + user.ProviderUserKey.ToString()) .Replace("%WebsiteContact%", "*****@*****.**"); db.SaveChanges(); EmailService.SendMail(data.Email, mailSubject, mailBody); } catch (Exception ex) { log.Error(ex.ToString()); membership.DeleteUser(data.Username, true); return("An error occured while creating your user account"); } return("OK"); }
public string Signup(AccountSignup data) { if (string.IsNullOrWhiteSpace(data.Firstname)) { return("First name is required"); } if (string.IsNullOrWhiteSpace(data.Lastname)) { return("Last name is required"); } if (data.BirthDate > DateTime.Today.AddYears(-14)) { return("Applicants must be 14 years or older"); } if (data.BirthDate < DateTime.Today.AddYears(-120)) { return("Invalid birthdate"); } if (!(new[] { "m", "f", null }.Contains(data.Gender))) { return("Invalid gender"); } if (data.Units.Length == 0) { return("Must select at least one unit"); } return(AddNewMember(data, () => { Member newMember = new Member { FirstName = data.Firstname, MiddleName = data.Middlename, LastName = data.Lastname, BirthDate = data.BirthDate, Gender = (data.Gender == "m") ? Gender.Male : (data.Gender == "f") ? Gender.Female : Gender.Unknown, Status = MemberStatus.Applicant, Username = data.Username }; db.Members.Add(newMember); PersonContact email = new PersonContact { Person = newMember, Type = "email", Value = data.Email, Priority = 0 }; db.PersonContact.Add(email); foreach (Guid unitId in data.Units) { UnitsController.RegisterApplication(db, unitId, newMember); } if (!System.Web.Security.Roles.RoleExists(APPLICANT_ROLE)) { System.Web.Security.Roles.CreateRole(APPLICANT_ROLE); } System.Web.Security.Roles.AddUserToRole(data.Username, APPLICANT_ROLE); return newMember; }, "new-account-verification.html")); }