Changeset 7612

Timestamp:

03/13/12 17:28:04 (12 years ago)

Author:

ascheibe

Message:

#1648

• added a ws method for resetting a password
• added user role checking for the service

Location:

branches/ClientUserManagement

Files:

• HeuristicLab.Clients.Access.Views/3.3/UserViews/ChangePasswordDialog.cs (modified) (1 diff)
• HeuristicLab.Clients.Access/3.3/ServiceClients/AccessServiceClient.cs (modified) (9 diffs)
• HeuristicLab.Services.Access/3.3/AccessService.cs (modified) (18 diffs)
• HeuristicLab.Services.Access/3.3/IAccessService.cs (modified) (2 diffs)

branches/ClientUserManagement/HeuristicLab.Clients.Access.Views/3.3/UserViews/ChangePasswordDialog.cs

@@ -46 +46 @@
         MessageBox.Show("Couldn't fetch user information from the server." + Environment.NewLine + "Please verify that you have an existing user and that your user name and password is correct. ", "HeuristicLab Access Service", MessageBoxButtons.OK, MessageBoxIcon.Error);
       } else {
-        bool result = AccessClient.CallAccessService<bool>(x => x.ResetPassword(UserInformation.Instance.User.Id, oldPasswordTextBox.Text, newPasswordTextBox.Text));
+        bool result = AccessClient.CallAccessService<bool>(x => x.ChangePassword(UserInformation.Instance.User.Id, oldPasswordTextBox.Text, newPasswordTextBox.Text));
         if (result) {
           MessageBox.Show("Password change successfull.", "HeuristicLab Access Service", MessageBoxButtons.OK, MessageBoxIcon.Information);

branches/ClientUserManagement/HeuristicLab.Clients.Access/3.3/ServiceClients/AccessServiceClient.cs

@@ -11 +11 @@
 namespace HeuristicLab.Clients.Access {
 
-
-  [System.Diagnostics.DebuggerStepThroughAttribute()]
-  [System.CodeDom.Compiler.GeneratedCodeAttribute("System.Runtime.Serialization", "4.0.0.0")]
-  [System.Runtime.Serialization.DataContractAttribute(Name = "UserGroupBase", Namespace = "http://schemas.datacontract.org/2004/07/HeuristicLab.Services.Access.DataTransfer" +
-      "")]
-  [System.SerializableAttribute()]
-  [System.Runtime.Serialization.KnownTypeAttribute(typeof(HeuristicLab.Clients.Access.UserGroup))]
-  [System.Runtime.Serialization.KnownTypeAttribute(typeof(HeuristicLab.Clients.Access.User))]
-  [System.Runtime.Serialization.KnownTypeAttribute(typeof(HeuristicLab.Clients.Access.LightweightUser))]
-  public partial class UserGroupBase : HeuristicLab.Clients.Access.AccessItem {
-
-    [System.Runtime.Serialization.OptionalFieldAttribute()]
-    private System.Guid IdField;
-
-    [System.Runtime.Serialization.DataMemberAttribute()]
-    public System.Guid Id {
-      get {
-        return this.IdField;
-      }
-      set {
-        if ((this.IdField.Equals(value) != true)) {
-          this.IdField = value;
-          this.RaisePropertyChanged("Id");
-        }
-      }
-    }
-  }
 
   [System.Diagnostics.DebuggerStepThroughAttribute()]
@@ -73 +46 @@
 
     public event System.ComponentModel.PropertyChangedEventHandler PropertyChanged;
+
+
   }
 
@@ -680 +655 @@
           this.TimestampField = value;
           this.RaisePropertyChanged("Timestamp");
+        }
+      }
+    }
+  }
+
+  [System.Diagnostics.DebuggerStepThroughAttribute()]
+  [System.CodeDom.Compiler.GeneratedCodeAttribute("System.Runtime.Serialization", "4.0.0.0")]
+  [System.Runtime.Serialization.DataContractAttribute(Name = "UserGroupBase", Namespace = "http://schemas.datacontract.org/2004/07/HeuristicLab.Services.Access.DataTransfer" +
+      "")]
+  [System.SerializableAttribute()]
+  [System.Runtime.Serialization.KnownTypeAttribute(typeof(HeuristicLab.Clients.Access.UserGroup))]
+  [System.Runtime.Serialization.KnownTypeAttribute(typeof(HeuristicLab.Clients.Access.User))]
+  [System.Runtime.Serialization.KnownTypeAttribute(typeof(HeuristicLab.Clients.Access.LightweightUser))]
+  public partial class UserGroupBase : HeuristicLab.Clients.Access.AccessItem {
+
+    [System.Runtime.Serialization.OptionalFieldAttribute()]
+    private System.Guid IdField;
+
+    [System.Runtime.Serialization.DataMemberAttribute()]
+    public System.Guid Id {
+      get {
+        return this.IdField;
+      }
+      set {
+        if ((this.IdField.Equals(value) != true)) {
+          this.IdField = value;
+          this.RaisePropertyChanged("Id");
         }
       }
@@ -1059 +1061 @@
   public interface IAccessService {
 
+    [System.ServiceModel.OperationContractAttribute(Action = "http://tempuri.org/IAccessService/RemoveUserGroupBaseFromGroup", ReplyAction = "http://tempuri.org/IAccessService/RemoveUserGroupBaseFromGroupResponse")]
+    void RemoveUserGroupBaseFromGroup(HeuristicLab.Clients.Access.UserGroupBase resource, HeuristicLab.Clients.Access.UserGroup group);
+
     [System.ServiceModel.OperationContractAttribute(Action = "http://tempuri.org/IAccessService/GetUsersAndGroups", ReplyAction = "http://tempuri.org/IAccessService/GetUsersAndGroupsResponse")]
     System.Collections.Generic.List<HeuristicLab.Clients.Access.UserGroupBase> GetUsersAndGroups();
@@ -1200 +1205 @@
     void RemoveUserFromRole(HeuristicLab.Clients.Access.Role role, HeuristicLab.Clients.Access.User user);
 
+    [System.ServiceModel.OperationContractAttribute(Action = "http://tempuri.org/IAccessService/ChangePassword", ReplyAction = "http://tempuri.org/IAccessService/ChangePasswordResponse")]
+    bool ChangePassword(System.Guid userId, string oldPassword, string newPassword);
+
     [System.ServiceModel.OperationContractAttribute(Action = "http://tempuri.org/IAccessService/ResetPassword", ReplyAction = "http://tempuri.org/IAccessService/ResetPasswordResponse")]
-    bool ResetPassword(System.Guid userId, string oldPassword, string newPassword);
+    string ResetPassword(System.Guid userId);
 
     [System.ServiceModel.OperationContractAttribute(Action = "http://tempuri.org/IAccessService/GetAllUserGroups", ReplyAction = "http://tempuri.org/IAccessService/GetAllUserGroupsResponse")]
@@ -1223 +1231 @@
     [System.ServiceModel.OperationContractAttribute(Action = "http://tempuri.org/IAccessService/AddUserGroupBaseToGroup", ReplyAction = "http://tempuri.org/IAccessService/AddUserGroupBaseToGroupResponse")]
     void AddUserGroupBaseToGroup(HeuristicLab.Clients.Access.UserGroupBase resource, HeuristicLab.Clients.Access.UserGroup group);
-
-    [System.ServiceModel.OperationContractAttribute(Action = "http://tempuri.org/IAccessService/RemoveUserGroupBaseFromGroup", ReplyAction = "http://tempuri.org/IAccessService/RemoveUserGroupBaseFromGroupResponse")]
-    void RemoveUserGroupBaseFromGroup(HeuristicLab.Clients.Access.UserGroupBase resource, HeuristicLab.Clients.Access.UserGroup group);
   }
 
@@ -1255 +1260 @@
     }
 
+    public void RemoveUserGroupBaseFromGroup(HeuristicLab.Clients.Access.UserGroupBase resource, HeuristicLab.Clients.Access.UserGroup group) {
+      base.Channel.RemoveUserGroupBaseFromGroup(resource, group);
+    }
+
     public System.Collections.Generic.List<HeuristicLab.Clients.Access.UserGroupBase> GetUsersAndGroups() {
       return base.Channel.GetUsersAndGroups();
@@ -1443 +1452 @@
     }
 
-    public bool ResetPassword(System.Guid userId, string oldPassword, string newPassword) {
-      return base.Channel.ResetPassword(userId, oldPassword, newPassword);
+    public bool ChangePassword(System.Guid userId, string oldPassword, string newPassword) {
+      return base.Channel.ChangePassword(userId, oldPassword, newPassword);
+    }
+
+    public string ResetPassword(System.Guid userId) {
+      return base.Channel.ResetPassword(userId);
     }
 
@@ -1474 +1487 @@
       base.Channel.AddUserGroupBaseToGroup(resource, group);
     }
-
-    public void RemoveUserGroupBaseFromGroup(HeuristicLab.Clients.Access.UserGroupBase resource, HeuristicLab.Clients.Access.UserGroup group) {
-      base.Channel.RemoveUserGroupBaseFromGroup(resource, group);
-    }
   }
 }

branches/ClientUserManagement/HeuristicLab.Services.Access/3.3/AccessService.cs

@@ -36 +36 @@
     private IUserManager UserManager {
       get {
-        if (userManager == null) userManager = new UserManager();
+        if (userManager == null) userManager = AccessServiceLocator.Instance.UserManager;
         return userManager;
       }
@@ -44 +44 @@
     private IRoleVerifier RoleVerifier {
       get {
-        if (roleVerifier == null) roleVerifier = new RoleVerifier();
+        if (roleVerifier == null) roleVerifier = AccessServiceLocator.Instance.RoleVerifier;
         return roleVerifier;
       }
@@ -143 +143 @@
 
     public void DeleteClient(DT.Client client) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       using (DA.ClientManagementDataContext context = new DA.ClientManagementDataContext()) {
         //load client because we could get a detached object
@@ -198 +200 @@
 
     public void DeleteClientGroup(DT.ClientGroup clientGroup) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       using (DA.ClientManagementDataContext context = new DA.ClientManagementDataContext()) {
         //load clientGroup because we could get a detached object
@@ -289 +293 @@
 
     public void DeleteClientLog(DT.ClientLog log) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       using (DA.ClientManagementDataContext context = new DA.ClientManagementDataContext()) {
         context.ClientLogs.DeleteOnSubmit(Convert.ToEntity(log));
@@ -484 +490 @@
 
     public DT.User AddUser(DT.User user) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       DA.User accessUser;
       DA.aspnet_User aspUser;
@@ -529 +537 @@
 
     public void DeleteUser(DT.User user) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       if (user.Id != null && user.Id != Guid.Empty) {
         //delete asp.net user
@@ -551 +561 @@
 
     public void UpdateUser(DT.User user) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       AddUser(user);
     }
 
     public void AddUserToRole(DT.Role role, DT.User user) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       //TODO: usernames and rolenames have to be unique!
       MembershipUser msUser = Membership.GetUser((object)user.Id);
@@ -563 +577 @@
 
     public void RemoveUserFromRole(DT.Role role, DT.User user) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       MembershipUser msUser = Membership.GetUser((object)user.Id);
       if (msUser != null) {
@@ -569 +585 @@
     }
 
-    public bool ResetPassword(Guid userId, string oldPassword, string newPassword) {
+    public bool ChangePassword(Guid userId, string oldPassword, string newPassword) {
       MembershipUser msUser = Membership.GetUser(userId);
       if (msUser != null) {
@@ -575 +591 @@
       }
       return false;
+    }
+
+    public string ResetPassword(Guid userId) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
+      MembershipUser msUser = Membership.GetUser(userId);
+      if (msUser != null) {
+        return msUser.ResetPassword();
+      } else {
+        throw new Exception("Password reset failed.");
+      }
     }
     #endregion
@@ -626 +653 @@
 
     public void DeleteUserGroup(DT.UserGroup group) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       using (DA.ClientManagementDataContext context = new DA.ClientManagementDataContext()) {
         context.UserGroupBases.DeleteOnSubmit(Convert.ToEntity(group));
@@ -733 +762 @@
 
     public DT.Role AddRole(DT.Role role) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       Roles.CreateRole(role.Name);
       return role;
@@ -738 +769 @@
 
     public void DeleteRole(DT.Role role) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       Roles.DeleteRole(role.Name);
     }
@@ -767 +800 @@
 
     public void RemoveRoleFromGroup(DT.UserGroup userGroup, DT.Role role) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       Guid[] userIds;
       string[] aspUsers;
@@ -795 +830 @@
 
     public IEnumerable<DT.ClientError> GetClientErrors() {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       using (DA.ClientManagementDataContext context = new DA.ClientManagementDataContext()) {
         var query = from c in context.ClientErrors
@@ -803 +840 @@
 
     public IEnumerable<DT.ClientError> GetLastClientErrors(DateTime startDate) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       using (DA.ClientManagementDataContext context = new DA.ClientManagementDataContext()) {
         var query = from c in context.ClientErrors
@@ -812 +851 @@
 
     public void DeleteError(DT.ClientError error) {
+      roleVerifier.AuthenticateForAllRoles(AccessServiceRoles.Administrator);
+
       using (DA.ClientManagementDataContext context = new DA.ClientManagementDataContext()) {
         var query = context.ClientErrors.Where(x => x.Id == error.Id);

branches/ClientUserManagement/HeuristicLab.Services.Access/3.3/IAccessService.cs

@@ -104 +104 @@
 
     #region User
-    //TODO: i don't think this method is needed
     [OperationContract]
     LightweightUser Login();
@@ -142 +141 @@
 
     [OperationContract]
-    bool ResetPassword(Guid userId, string oldPassword, string newPassword);
+    bool ChangePassword(Guid userId, string oldPassword, string newPassword);
+
+    [OperationContract]
+    string ResetPassword(Guid userId);
     #endregion