using Microsoft.AspNet.Identity; using Microsoft.AspNet.Mvc; using IdentitySample.Models; using System.Security.Principal; using System.Threading.Tasks; namespace IdentitySample.Models { [Authorize] public class AccountController : Controller { public AccountController(UserManager userManager, SignInManager signInManager) { UserManager = userManager; SignInManager = signInManager; } public UserManager UserManager { get; private set; } public SignInManager SignInManager { get; private set; } // // GET: /Account/Login [AllowAnonymous] public IActionResult Login(string returnUrl = null) { ViewBag.ReturnUrl = returnUrl; return View(); } // // POST: /Account/Login [HttpPost] [AllowAnonymous] [ValidateAntiForgeryToken] public async Task Login(LoginViewModel model, string returnUrl = null) { if (ModelState.IsValid) { var signInStatus = await SignInManager.PasswordSignInAsync(model.UserName, model.Password, model.RememberMe, shouldLockout: false); switch (signInStatus) { case SignInStatus.Success: return RedirectToLocal(returnUrl); case SignInStatus.LockedOut: ModelState.AddModelError("", "User is locked out, try again later."); return View(model); case SignInStatus.Failure: default: ModelState.AddModelError("", "Invalid username or password."); return View(model); } } // If we got this far, something failed, redisplay form return View(model); } // // GET: /Account/Register [AllowAnonymous] public IActionResult Register() { return View(); } // // POST: /Account/Register [HttpPost] [AllowAnonymous] [ValidateAntiForgeryToken] public async Task Register(RegisterViewModel model) { if (ModelState.IsValid) { var user = new ApplicationUser { UserName = model.UserName }; var result = await UserManager.CreateAsync(user, model.Password); if (result.Succeeded) { await SignInManager.SignInAsync(user, isPersistent: false); return RedirectToAction("Index", "Home"); } else { AddErrors(result); } } // If we got this far, something failed, redisplay form return View(model); } // // GET: /Account/Manage public IActionResult Manage(ManageMessageId? message = null) { ViewBag.StatusMessage = message == ManageMessageId.ChangePasswordSuccess ? "Your password has been changed." : message == ManageMessageId.Error ? "An error has occurred." : ""; ViewBag.ReturnUrl = Url.Action("Manage"); return View(); } // // POST: /Account/Manage [HttpPost] [ValidateAntiForgeryToken] public async Task Manage(ManageUserViewModel model) { ViewBag.ReturnUrl = Url.Action("Manage"); if (ModelState.IsValid) { var user = await GetCurrentUserAsync(); var result = await UserManager.ChangePasswordAsync(user, model.OldPassword, model.NewPassword); if (result.Succeeded) { return RedirectToAction("Manage", new { Message = ManageMessageId.ChangePasswordSuccess }); } else { AddErrors(result); } } // If we got this far, something failed, redisplay form return View(model); } // // POST: /Account/LogOff [HttpPost] [ValidateAntiForgeryToken] public IActionResult LogOff() { SignInManager.SignOut(); return RedirectToAction("Index", "Home"); } #region Helpers private void AddErrors(IdentityResult result) { foreach (var error in result.Errors) { ModelState.AddModelError("", error); } } private async Task GetCurrentUserAsync() { return await UserManager.FindByIdAsync(Context.User.Identity.GetUserId()); } public enum ManageMessageId { ChangePasswordSuccess, Error } private IActionResult RedirectToLocal(string returnUrl) { if (Url.IsLocalUrl(returnUrl)) { return Redirect(returnUrl); } else { return RedirectToAction("Index", "Home"); } } #endregion } }