1 | using System;
|
---|
2 | using System.Collections.Generic;
|
---|
3 | using System.ComponentModel;
|
---|
4 | using System.ComponentModel.DataAnnotations;
|
---|
5 | using System.Globalization;
|
---|
6 | using System.Linq;
|
---|
7 | using System.Web;
|
---|
8 | using System.Web.Mvc;
|
---|
9 | using System.Web.Security;
|
---|
10 |
|
---|
11 | namespace HLWebPluginHost.Models {
|
---|
12 |
|
---|
13 | #region Models
|
---|
14 | [PropertiesMustMatch("NewPassword", "ConfirmPassword", ErrorMessage = "The new password and confirmation password do not match.")]
|
---|
15 | public class ChangePasswordModel {
|
---|
16 | [Required]
|
---|
17 | [DataType(DataType.Password)]
|
---|
18 | [DisplayName("Current password")]
|
---|
19 | public string OldPassword { get; set; }
|
---|
20 |
|
---|
21 | [Required]
|
---|
22 | [ValidatePasswordLength]
|
---|
23 | [DataType(DataType.Password)]
|
---|
24 | [DisplayName("New password")]
|
---|
25 | public string NewPassword { get; set; }
|
---|
26 |
|
---|
27 | [Required]
|
---|
28 | [DataType(DataType.Password)]
|
---|
29 | [DisplayName("Confirm new password")]
|
---|
30 | public string ConfirmPassword { get; set; }
|
---|
31 | }
|
---|
32 |
|
---|
33 | public class LogOnModel {
|
---|
34 | [Required]
|
---|
35 | [DisplayName("User name")]
|
---|
36 | public string UserName { get; set; }
|
---|
37 |
|
---|
38 | [Required]
|
---|
39 | [DataType(DataType.Password)]
|
---|
40 | [DisplayName("Password")]
|
---|
41 | public string Password { get; set; }
|
---|
42 |
|
---|
43 | [DisplayName("Remember me?")]
|
---|
44 | public bool RememberMe { get; set; }
|
---|
45 | }
|
---|
46 |
|
---|
47 | [PropertiesMustMatch("Password", "ConfirmPassword", ErrorMessage = "The password and confirmation password do not match.")]
|
---|
48 | public class RegisterModel {
|
---|
49 | [Required]
|
---|
50 | [DisplayName("User name")]
|
---|
51 | public string UserName { get; set; }
|
---|
52 |
|
---|
53 | [Required]
|
---|
54 | [DataType(DataType.EmailAddress)]
|
---|
55 | [DisplayName("Email address")]
|
---|
56 | public string Email { get; set; }
|
---|
57 |
|
---|
58 | [Required]
|
---|
59 | [ValidatePasswordLength]
|
---|
60 | [DataType(DataType.Password)]
|
---|
61 | [DisplayName("Password")]
|
---|
62 | public string Password { get; set; }
|
---|
63 |
|
---|
64 | [Required]
|
---|
65 | [DataType(DataType.Password)]
|
---|
66 | [DisplayName("Confirm password")]
|
---|
67 | public string ConfirmPassword { get; set; }
|
---|
68 | }
|
---|
69 | #endregion
|
---|
70 |
|
---|
71 | #region Services
|
---|
72 | // The FormsAuthentication type is sealed and contains static members, so it is difficult to
|
---|
73 | // unit test code that calls its members. The interface and helper class below demonstrate
|
---|
74 | // how to create an abstract wrapper around such a type in order to make the AccountController
|
---|
75 | // code unit testable.
|
---|
76 |
|
---|
77 | public interface IMembershipService {
|
---|
78 | int MinPasswordLength { get; }
|
---|
79 |
|
---|
80 | bool ValidateUser(string userName, string password);
|
---|
81 | MembershipCreateStatus CreateUser(string userName, string password, string email);
|
---|
82 | bool ChangePassword(string userName, string oldPassword, string newPassword);
|
---|
83 | }
|
---|
84 |
|
---|
85 | public class AccountMembershipService : IMembershipService {
|
---|
86 | private readonly MembershipProvider _provider;
|
---|
87 |
|
---|
88 | public AccountMembershipService()
|
---|
89 | : this(null) {
|
---|
90 | }
|
---|
91 |
|
---|
92 | public AccountMembershipService(MembershipProvider provider) {
|
---|
93 | _provider = provider ?? Membership.Provider;
|
---|
94 | }
|
---|
95 |
|
---|
96 | public int MinPasswordLength {
|
---|
97 | get {
|
---|
98 | return _provider.MinRequiredPasswordLength;
|
---|
99 | }
|
---|
100 | }
|
---|
101 |
|
---|
102 | public bool ValidateUser(string userName, string password) {
|
---|
103 | if (String.IsNullOrEmpty(userName)) throw new ArgumentException("Value cannot be null or empty.", "userName");
|
---|
104 | if (String.IsNullOrEmpty(password)) throw new ArgumentException("Value cannot be null or empty.", "password");
|
---|
105 |
|
---|
106 | return _provider.ValidateUser(userName, password);
|
---|
107 | }
|
---|
108 |
|
---|
109 | public MembershipCreateStatus CreateUser(string userName, string password, string email) {
|
---|
110 | if (String.IsNullOrEmpty(userName)) throw new ArgumentException("Value cannot be null or empty.", "userName");
|
---|
111 | if (String.IsNullOrEmpty(password)) throw new ArgumentException("Value cannot be null or empty.", "password");
|
---|
112 | if (String.IsNullOrEmpty(email)) throw new ArgumentException("Value cannot be null or empty.", "email");
|
---|
113 |
|
---|
114 | MembershipCreateStatus status;
|
---|
115 | _provider.CreateUser(userName, password, email, null, null, true, null, out status);
|
---|
116 | return status;
|
---|
117 | }
|
---|
118 |
|
---|
119 | public bool ChangePassword(string userName, string oldPassword, string newPassword) {
|
---|
120 | if (String.IsNullOrEmpty(userName)) throw new ArgumentException("Value cannot be null or empty.", "userName");
|
---|
121 | if (String.IsNullOrEmpty(oldPassword)) throw new ArgumentException("Value cannot be null or empty.", "oldPassword");
|
---|
122 | if (String.IsNullOrEmpty(newPassword)) throw new ArgumentException("Value cannot be null or empty.", "newPassword");
|
---|
123 |
|
---|
124 | // The underlying ChangePassword() will throw an exception rather
|
---|
125 | // than return false in certain failure scenarios.
|
---|
126 | try {
|
---|
127 | MembershipUser currentUser = _provider.GetUser(userName, true /* userIsOnline */);
|
---|
128 | return currentUser.ChangePassword(oldPassword, newPassword);
|
---|
129 | }
|
---|
130 | catch (ArgumentException) {
|
---|
131 | return false;
|
---|
132 | }
|
---|
133 | catch (MembershipPasswordException) {
|
---|
134 | return false;
|
---|
135 | }
|
---|
136 | }
|
---|
137 | }
|
---|
138 |
|
---|
139 | public interface IFormsAuthenticationService {
|
---|
140 | void SignIn(string userName, bool createPersistentCookie);
|
---|
141 | void SignOut();
|
---|
142 | }
|
---|
143 |
|
---|
144 | public class FormsAuthenticationService : IFormsAuthenticationService {
|
---|
145 | public void SignIn(string userName, bool createPersistentCookie) {
|
---|
146 | if (String.IsNullOrEmpty(userName)) throw new ArgumentException("Value cannot be null or empty.", "userName");
|
---|
147 |
|
---|
148 | FormsAuthentication.SetAuthCookie(userName, createPersistentCookie);
|
---|
149 | }
|
---|
150 |
|
---|
151 | public void SignOut() {
|
---|
152 | FormsAuthentication.SignOut();
|
---|
153 | }
|
---|
154 | }
|
---|
155 | #endregion
|
---|
156 |
|
---|
157 | #region Validation
|
---|
158 | public static class AccountValidation {
|
---|
159 | public static string ErrorCodeToString(MembershipCreateStatus createStatus) {
|
---|
160 | // See http://go.microsoft.com/fwlink/?LinkID=177550 for
|
---|
161 | // a full list of status codes.
|
---|
162 | switch (createStatus) {
|
---|
163 | case MembershipCreateStatus.DuplicateUserName:
|
---|
164 | return "Username already exists. Please enter a different user name.";
|
---|
165 |
|
---|
166 | case MembershipCreateStatus.DuplicateEmail:
|
---|
167 | return "A username for that e-mail address already exists. Please enter a different e-mail address.";
|
---|
168 |
|
---|
169 | case MembershipCreateStatus.InvalidPassword:
|
---|
170 | return "The password provided is invalid. Please enter a valid password value.";
|
---|
171 |
|
---|
172 | case MembershipCreateStatus.InvalidEmail:
|
---|
173 | return "The e-mail address provided is invalid. Please check the value and try again.";
|
---|
174 |
|
---|
175 | case MembershipCreateStatus.InvalidAnswer:
|
---|
176 | return "The password retrieval answer provided is invalid. Please check the value and try again.";
|
---|
177 |
|
---|
178 | case MembershipCreateStatus.InvalidQuestion:
|
---|
179 | return "The password retrieval question provided is invalid. Please check the value and try again.";
|
---|
180 |
|
---|
181 | case MembershipCreateStatus.InvalidUserName:
|
---|
182 | return "The user name provided is invalid. Please check the value and try again.";
|
---|
183 |
|
---|
184 | case MembershipCreateStatus.ProviderError:
|
---|
185 | return "The authentication provider returned an error. Please verify your entry and try again. If the problem persists, please contact your system administrator.";
|
---|
186 |
|
---|
187 | case MembershipCreateStatus.UserRejected:
|
---|
188 | return "The user creation request has been canceled. Please verify your entry and try again. If the problem persists, please contact your system administrator.";
|
---|
189 |
|
---|
190 | default:
|
---|
191 | return "An unknown error occurred. Please verify your entry and try again. If the problem persists, please contact your system administrator.";
|
---|
192 | }
|
---|
193 | }
|
---|
194 | }
|
---|
195 |
|
---|
196 | [AttributeUsage(AttributeTargets.Class, AllowMultiple = true, Inherited = true)]
|
---|
197 | public sealed class PropertiesMustMatchAttribute : ValidationAttribute {
|
---|
198 | private const string _defaultErrorMessage = "'{0}' and '{1}' do not match.";
|
---|
199 | private readonly object _typeId = new object();
|
---|
200 |
|
---|
201 | public PropertiesMustMatchAttribute(string originalProperty, string confirmProperty)
|
---|
202 | : base(_defaultErrorMessage) {
|
---|
203 | OriginalProperty = originalProperty;
|
---|
204 | ConfirmProperty = confirmProperty;
|
---|
205 | }
|
---|
206 |
|
---|
207 | public string ConfirmProperty { get; private set; }
|
---|
208 | public string OriginalProperty { get; private set; }
|
---|
209 |
|
---|
210 | public override object TypeId {
|
---|
211 | get {
|
---|
212 | return _typeId;
|
---|
213 | }
|
---|
214 | }
|
---|
215 |
|
---|
216 | public override string FormatErrorMessage(string name) {
|
---|
217 | return String.Format(CultureInfo.CurrentUICulture, ErrorMessageString,
|
---|
218 | OriginalProperty, ConfirmProperty);
|
---|
219 | }
|
---|
220 |
|
---|
221 | public override bool IsValid(object value) {
|
---|
222 | PropertyDescriptorCollection properties = TypeDescriptor.GetProperties(value);
|
---|
223 | object originalValue = properties.Find(OriginalProperty, true /* ignoreCase */).GetValue(value);
|
---|
224 | object confirmValue = properties.Find(ConfirmProperty, true /* ignoreCase */).GetValue(value);
|
---|
225 | return Object.Equals(originalValue, confirmValue);
|
---|
226 | }
|
---|
227 | }
|
---|
228 |
|
---|
229 | [AttributeUsage(AttributeTargets.Field | AttributeTargets.Property, AllowMultiple = false, Inherited = true)]
|
---|
230 | public sealed class ValidatePasswordLengthAttribute : ValidationAttribute {
|
---|
231 | private const string _defaultErrorMessage = "'{0}' must be at least {1} characters long.";
|
---|
232 | private readonly int _minCharacters = Membership.Provider.MinRequiredPasswordLength;
|
---|
233 |
|
---|
234 | public ValidatePasswordLengthAttribute()
|
---|
235 | : base(_defaultErrorMessage) {
|
---|
236 | }
|
---|
237 |
|
---|
238 | public override string FormatErrorMessage(string name) {
|
---|
239 | return String.Format(CultureInfo.CurrentUICulture, ErrorMessageString,
|
---|
240 | name, _minCharacters);
|
---|
241 | }
|
---|
242 |
|
---|
243 | public override bool IsValid(object value) {
|
---|
244 | string valueAsString = value as string;
|
---|
245 | return (valueAsString != null && valueAsString.Length >= _minCharacters);
|
---|
246 | }
|
---|
247 | }
|
---|
248 | #endregion
|
---|
249 |
|
---|
250 | }
|
---|