Aurelien
/
dorset-backend-2
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
dorset-backend-2/Shop/Services/UserServices.cs

165 lines
4.9 KiB
C#
Raw Permalink Blame History

using System.Collections.Generic;
using System.Linq;
using System.Security.Cryptography;
using System.Text;
using Shop.Data;
using Shop.Helpers;
using Shop.Model;
namespace Shop.Services
{
public class UserServices
{
public interface IUserService
{
User Authenticate(string username, string password);
IEnumerable<User> GetAll();
User GetById(int id);
User Create(User user, string password);
void Update(User user, string currentPassword, string password, string confirmPassword);
void Delete(int id);
}
public class UserService : IUserService
{
private Context _context;
public UserService(Context context)
{
_context = context;
}
public User Authenticate(string username, string password)
{
if (string.IsNullOrEmpty(username) || string.IsNullOrEmpty(password))
{
return null;
}
var user = _context.User.FirstOrDefault(x => x.Username == username) ?? null;
// check if username exists
if (user == null)
{
return null;
}
// Granting access if the hashed password in the database matches with the password(hashed in computeHash method) entered by user.
if(computeHash(password) != user.PasswordHash)
{
return null;
}
return user;
}
public IEnumerable<User> GetAll()
{
return _context.User;
}
public User GetById(int id)
{
return _context.User.Find(id);
}
public User Create(User user, string password)
{
// validation
if (string.IsNullOrWhiteSpace(password))
{
throw new AppException("Password is required");
}
if (_context.User.Any(x => x.Username == user.Username))
{
throw new AppException("Username \"" + user.Username + "\" is already taken");
}
//Saving hashed password into Database table
user.PasswordHash = computeHash(password);
_context.User.Add(user);
_context.SaveChanges();
return user;
}
public void Update(User userParam, string currentPassword = null, string password = null, string confirmPassword = null)
{
//Find the user by Id
var user = _context.User.Find(userParam.Id);
if (user == null)
{
throw new AppException("User not found");
}
// update user properties if provided
if (!string.IsNullOrWhiteSpace(userParam.Username) && userParam.Username != user.Username)
{
// throw error if the new username is already taken
if (_context.User.Any(x => x.Username == userParam.Username))
{
throw new AppException("Username " + userParam.Username + " is already taken");
}
else
{
user.Username = userParam.Username;
}
}
if (!string.IsNullOrWhiteSpace(userParam.FirstName))
{
user.FirstName = userParam.FirstName;
}
if (!string.IsNullOrWhiteSpace(userParam.LastName))
{
user.LastName = userParam.LastName;
}
if (!string.IsNullOrWhiteSpace(currentPassword))
{
if(computeHash(currentPassword) != user.PasswordHash)
{
throw new AppException("Invalid Current password!");
}
if(currentPassword == password)
{
throw new AppException("Please choose another password!");
}
if(password != confirmPassword)
{
throw new AppException("Password doesn't match!");
}
//Updating hashed password into Database table
user.PasswordHash = computeHash(password);
}
_context.User.Update(user);
_context.SaveChanges();
}
public void Delete(int id)
{
var user = _context.User.Find(id);
if (user != null)
{
_context.User.Remove(user);
_context.SaveChanges();
}
}
private static string computeHash(string Password)
{
MD5 md5 = new MD5CryptoServiceProvider();
var input = md5.ComputeHash(Encoding.UTF8.GetBytes(Password));
var hashstring = "";
foreach(var hashbyte in input)
{
hashstring += hashbyte.ToString("x2");
}
return hashstring;
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink