393d178b58
* Make create user endpoint work with the supplied id Return 201 instead of 200 with correct resource identifier * Add ResetPassword endpoint * Bring changepassword route inline with other resource actions * Fixed User endpoints not advertising all their possible response codes/ models Fixed certain endpoints not authorizing targeted user(s) versus the admin needs admin authorization requirement Fixed a user not found response bug for the update flow Fix spacing * Fixed CurrentUser endpoints not advertising all their possible response codes/ models Fix incorrect responseStatus in UserService.GetPermissionsAsync * Update OpenApi definition Fix smal model oversights in previous commits * Update incorrect Response type * Check for duplicate id's in user create validation * Remove unnecasary returnmodel from changepassword Renamed the model to it's remaining usage * rename bad constructor parameter * Renamed method parameters for better readability and usage * Fixed wrong userkey being passed down because of (refactored) bad naming Technically doesn't change anything as the two id's should be the same in this case (reset with token is always for self) * Fixed resetpassword bug * Update openapi * Update src/Umbraco.Core/Services/UserService.cs Co-authored-by: Kenn Jacobsen <kja@umbraco.dk> * Remove old password from change user password request model Only makes sense when doing it for the logged in user => current endpoint --------- Co-authored-by: Sven Geusens <sge@umbraco.dk> Co-authored-by: Kenn Jacobsen <kja@umbraco.dk>
383 lines
15 KiB
C#
383 lines
15 KiB
C#
using System.ComponentModel.DataAnnotations;
|
|
using System.Globalization;
|
|
using System.Security.Claims;
|
|
using System.Security.Principal;
|
|
using Microsoft.AspNetCore.Http;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.Extensions.Logging;
|
|
using Microsoft.Extensions.Options;
|
|
using Umbraco.Cms.Core;
|
|
using Umbraco.Cms.Core.Configuration.Models;
|
|
using Umbraco.Cms.Core.Events;
|
|
using Umbraco.Cms.Core.Models;
|
|
using Umbraco.Cms.Core.Models.Membership;
|
|
using Umbraco.Cms.Core.Net;
|
|
using Umbraco.Cms.Core.Notifications;
|
|
using Umbraco.Cms.Core.Security;
|
|
using Umbraco.Cms.Core.Services.OperationStatus;
|
|
using Umbraco.Cms.Infrastructure.Security;
|
|
using Umbraco.Extensions;
|
|
|
|
namespace Umbraco.Cms.Web.Common.Security;
|
|
|
|
public class BackOfficeUserManager : UmbracoUserManager<BackOfficeIdentityUser, UserPasswordConfigurationSettings>,
|
|
IBackOfficeUserManager,
|
|
ICoreBackOfficeUserManager
|
|
{
|
|
private readonly IBackOfficeUserPasswordChecker _backOfficeUserPasswordChecker;
|
|
private readonly GlobalSettings _globalSettings;
|
|
private readonly IEventAggregator _eventAggregator;
|
|
private readonly IHttpContextAccessor _httpContextAccessor;
|
|
|
|
public BackOfficeUserManager(
|
|
IIpResolver ipResolver,
|
|
IUserStore<BackOfficeIdentityUser> store,
|
|
IOptions<BackOfficeIdentityOptions> optionsAccessor,
|
|
IPasswordHasher<BackOfficeIdentityUser> passwordHasher,
|
|
IEnumerable<IUserValidator<BackOfficeIdentityUser>> userValidators,
|
|
IEnumerable<IPasswordValidator<BackOfficeIdentityUser>> passwordValidators,
|
|
BackOfficeErrorDescriber errors,
|
|
IServiceProvider services,
|
|
IHttpContextAccessor httpContextAccessor,
|
|
ILogger<UserManager<BackOfficeIdentityUser>> logger,
|
|
IOptions<UserPasswordConfigurationSettings> passwordConfiguration,
|
|
IEventAggregator eventAggregator,
|
|
IBackOfficeUserPasswordChecker backOfficeUserPasswordChecker,
|
|
IOptions<GlobalSettings> globalSettings)
|
|
: base(
|
|
ipResolver,
|
|
store,
|
|
optionsAccessor,
|
|
passwordHasher,
|
|
userValidators,
|
|
passwordValidators,
|
|
errors,
|
|
services,
|
|
logger,
|
|
passwordConfiguration)
|
|
{
|
|
_httpContextAccessor = httpContextAccessor;
|
|
_eventAggregator = eventAggregator;
|
|
_backOfficeUserPasswordChecker = backOfficeUserPasswordChecker;
|
|
_globalSettings = globalSettings.Value;
|
|
}
|
|
|
|
/// <summary>
|
|
/// Override to check the user approval value as well as the user lock out date, by default this only checks the user's
|
|
/// locked out date
|
|
/// </summary>
|
|
/// <param name="user">The user</param>
|
|
/// <returns>True if the user is locked out, else false</returns>
|
|
/// <remarks>
|
|
/// In the ASP.NET Identity world, there is only one value for being locked out, in Umbraco we have 2 so when checking
|
|
/// this for Umbraco we need to check both values
|
|
/// </remarks>
|
|
public override async Task<bool> IsLockedOutAsync(BackOfficeIdentityUser user)
|
|
{
|
|
if (user == null)
|
|
{
|
|
throw new ArgumentNullException(nameof(user));
|
|
}
|
|
|
|
if (user.IsApproved == false)
|
|
{
|
|
return true;
|
|
}
|
|
|
|
return await base.IsLockedOutAsync(user);
|
|
}
|
|
|
|
public override async Task<IdentityResult> AccessFailedAsync(BackOfficeIdentityUser user)
|
|
{
|
|
IdentityResult result = await base.AccessFailedAsync(user);
|
|
|
|
// Slightly confusing: this will return a Success if we successfully update the AccessFailed count
|
|
if (result.Succeeded)
|
|
{
|
|
NotifyLoginFailed(_httpContextAccessor.HttpContext?.User, user.Id);
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
public override async Task<IdentityResult> ChangePasswordWithResetAsync(string userId, string token, string newPassword)
|
|
{
|
|
IdentityResult result = await base.ChangePasswordWithResetAsync(userId, token, newPassword);
|
|
if (result.Succeeded)
|
|
{
|
|
NotifyPasswordReset(_httpContextAccessor.HttpContext?.User, userId);
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
public override async Task<IdentityResult> ChangePasswordAsync(BackOfficeIdentityUser user, string currentPassword, string newPassword)
|
|
{
|
|
IdentityResult result = await base.ChangePasswordAsync(user, currentPassword, newPassword);
|
|
if (result.Succeeded)
|
|
{
|
|
NotifyPasswordChanged(_httpContextAccessor.HttpContext?.User, user.Id);
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
public override async Task<IdentityResult> SetLockoutEndDateAsync(
|
|
BackOfficeIdentityUser user,
|
|
DateTimeOffset? lockoutEnd)
|
|
{
|
|
if (user == null)
|
|
{
|
|
throw new ArgumentNullException(nameof(user));
|
|
}
|
|
|
|
IdentityResult result = await base.SetLockoutEndDateAsync(user, lockoutEnd);
|
|
|
|
// The way we unlock is by setting the lockoutEnd date to the current datetime
|
|
if (result.Succeeded && lockoutEnd > DateTimeOffset.UtcNow)
|
|
{
|
|
NotifyAccountLocked(_httpContextAccessor.HttpContext?.User, user.Id);
|
|
}
|
|
else
|
|
{
|
|
NotifyAccountUnlocked(_httpContextAccessor.HttpContext?.User, user.Id);
|
|
|
|
// Resets the login attempt fails back to 0 when unlock is clicked
|
|
await ResetAccessFailedCountAsync(user);
|
|
}
|
|
|
|
return result;
|
|
}
|
|
|
|
public async Task<Attempt<UserUnlockResult, UserOperationStatus>> UnlockUser(IUser user)
|
|
{
|
|
BackOfficeIdentityUser? identityUser = await FindByIdAsync(user.Id.ToString());
|
|
|
|
if (identityUser is null)
|
|
{
|
|
return Attempt.FailWithStatus(UserOperationStatus.UserNotFound, new UserUnlockResult());
|
|
}
|
|
|
|
IdentityResult result = await SetLockoutEndDateAsync(identityUser, DateTimeOffset.Now.AddMinutes(-1));
|
|
|
|
return result.Succeeded
|
|
? Attempt.SucceedWithStatus(UserOperationStatus.Success, new UserUnlockResult())
|
|
: Attempt.FailWithStatus(UserOperationStatus.UnknownFailure, new UserUnlockResult { Error = new ValidationResult(result.Errors.ToErrorMessage()) });
|
|
}
|
|
|
|
public override async Task<IdentityResult> ResetAccessFailedCountAsync(BackOfficeIdentityUser user)
|
|
{
|
|
IdentityResult result = await base.ResetAccessFailedCountAsync(user);
|
|
|
|
// notify now that it's reset
|
|
NotifyResetAccessFailedCount(_httpContextAccessor.HttpContext?.User, user.Id);
|
|
|
|
return result;
|
|
}
|
|
|
|
public void NotifyForgotPasswordRequested(IPrincipal currentUser, string userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserForgotPasswordRequestedNotification(ip, userId, currentUserId));
|
|
|
|
public void NotifyForgotPasswordChanged(IPrincipal currentUser, string userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserForgotPasswordChangedNotification(ip, userId, currentUserId));
|
|
|
|
public SignOutSuccessResult NotifyLogoutSuccess(IPrincipal currentUser, string? userId)
|
|
{
|
|
UserLogoutSuccessNotification notification = Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserLogoutSuccessNotification(ip, userId, currentUserId));
|
|
|
|
return new SignOutSuccessResult { SignOutRedirectUrl = notification.SignOutRedirectUrl };
|
|
}
|
|
|
|
public void NotifyAccountLocked(IPrincipal? currentUser, string? userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserLockedNotification(ip, userId, currentUserId));
|
|
|
|
/// <summary>
|
|
/// Override to allow checking the password via the <see cref="IBackOfficeUserPasswordChecker" /> if one is configured
|
|
/// </summary>
|
|
/// <param name="store"></param>
|
|
/// <param name="user"></param>
|
|
/// <param name="password"></param>
|
|
/// <returns></returns>
|
|
protected override async Task<PasswordVerificationResult> VerifyPasswordAsync(
|
|
IUserPasswordStore<BackOfficeIdentityUser> store,
|
|
BackOfficeIdentityUser user,
|
|
string password)
|
|
{
|
|
if (user.HasIdentity == false)
|
|
{
|
|
return PasswordVerificationResult.Failed;
|
|
}
|
|
|
|
BackOfficeUserPasswordCheckerResult result =
|
|
await _backOfficeUserPasswordChecker.CheckPasswordAsync(user, password);
|
|
|
|
// if the result indicates to not fallback to the default, then return true if the credentials are valid
|
|
if (result != BackOfficeUserPasswordCheckerResult.FallbackToDefaultChecker)
|
|
{
|
|
return result == BackOfficeUserPasswordCheckerResult.ValidCredentials
|
|
? PasswordVerificationResult.Success
|
|
: PasswordVerificationResult.Failed;
|
|
}
|
|
|
|
return await base.VerifyPasswordAsync(store, user, password);
|
|
}
|
|
|
|
private string GetCurrentUserId(IPrincipal? currentUser)
|
|
{
|
|
ClaimsIdentity? umbIdentity = currentUser?.GetUmbracoIdentity();
|
|
var currentUserId = umbIdentity?.GetUserId<string>() ?? Core.Constants.Security.SuperUserIdAsString;
|
|
return currentUserId;
|
|
}
|
|
|
|
public void NotifyAccountUnlocked(IPrincipal? currentUser, string userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserUnlockedNotification(ip, userId, currentUserId));
|
|
|
|
public void NotifyLoginFailed(IPrincipal? currentUser, string userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserLoginFailedNotification(ip, userId, currentUserId));
|
|
|
|
public void NotifyLoginRequiresVerification(IPrincipal currentUser, string? userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserLoginRequiresVerificationNotification(ip, userId, currentUserId));
|
|
|
|
public void NotifyLoginSuccess(IPrincipal currentUser, string userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserLoginSuccessNotification(ip, userId, currentUserId));
|
|
|
|
public void NotifyPasswordChanged(IPrincipal? currentUser, string userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserPasswordChangedNotification(ip, userId, currentUserId));
|
|
|
|
public void NotifyPasswordReset(IPrincipal? currentUser, string userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserPasswordResetNotification(ip, userId, currentUserId));
|
|
|
|
public void NotifyResetAccessFailedCount(IPrincipal? currentUser, string userId) => Notify(
|
|
currentUser,
|
|
(currentUserId, ip) => new UserResetAccessFailedCountNotification(ip, userId, currentUserId));
|
|
|
|
private T Notify<T>(IPrincipal? currentUser, Func<string, string, T> createNotification)
|
|
where T : INotification
|
|
{
|
|
var currentUserId = GetCurrentUserId(currentUser);
|
|
var ip = IpResolver.GetCurrentRequestIpAddress();
|
|
|
|
T notification = createNotification(currentUserId, ip);
|
|
_eventAggregator.Publish(notification);
|
|
return notification;
|
|
}
|
|
|
|
public async Task<IdentityCreationResult> CreateForInvite(UserCreateModel createModel)
|
|
{
|
|
var identityUser = BackOfficeIdentityUser.CreateNew(
|
|
_globalSettings,
|
|
createModel.UserName,
|
|
createModel.Email,
|
|
_globalSettings.DefaultUILanguage);
|
|
|
|
identityUser.Name = createModel.Name;
|
|
|
|
IdentityResult created = await CreateAsync(identityUser);
|
|
|
|
return created.Succeeded
|
|
? new IdentityCreationResult { Succeded = true }
|
|
: IdentityCreationResult.Fail(created.Errors.ToErrorMessage());
|
|
}
|
|
|
|
public async Task<IdentityCreationResult> CreateAsync(UserCreateModel createModel)
|
|
{
|
|
var identityUser = BackOfficeIdentityUser.CreateNew(
|
|
_globalSettings,
|
|
createModel.UserName,
|
|
createModel.Email,
|
|
_globalSettings.DefaultUILanguage,
|
|
createModel.Name,
|
|
createModel.Id);
|
|
|
|
IdentityResult created = await CreateAsync(identityUser);
|
|
|
|
if (created.Succeeded is false)
|
|
{
|
|
return IdentityCreationResult.Fail(created.Errors.ToErrorMessage());
|
|
}
|
|
|
|
var password = GeneratePassword();
|
|
|
|
IdentityResult passwordAdded = await AddPasswordAsync(identityUser, password);
|
|
if (passwordAdded.Succeeded is false)
|
|
{
|
|
return IdentityCreationResult.Fail(passwordAdded.Errors.ToErrorMessage());
|
|
}
|
|
|
|
return new IdentityCreationResult { Succeded = true, InitialPassword = password };
|
|
}
|
|
|
|
public async Task<Attempt<string, UserOperationStatus>> GeneratePasswordResetTokenAsync(IUser user)
|
|
{
|
|
BackOfficeIdentityUser? identityUser = await FindByIdAsync(user.Id.ToString());
|
|
|
|
if (identityUser is null)
|
|
{
|
|
return Attempt.FailWithStatus(UserOperationStatus.UserNotFound, string.Empty);
|
|
}
|
|
|
|
var token = await GeneratePasswordResetTokenAsync(identityUser);
|
|
|
|
return Attempt.SucceedWithStatus(UserOperationStatus.Success, token);
|
|
}
|
|
public async Task<Attempt<string, UserOperationStatus>> GenerateEmailConfirmationTokenAsync(IUser user)
|
|
{
|
|
BackOfficeIdentityUser? identityUser = await FindByIdAsync(user.Id.ToString());
|
|
|
|
if (identityUser is null)
|
|
{
|
|
return Attempt.FailWithStatus(UserOperationStatus.UserNotFound, string.Empty);
|
|
}
|
|
|
|
var token = await GenerateEmailConfirmationTokenAsync(identityUser);
|
|
|
|
return Attempt.SucceedWithStatus(UserOperationStatus.Success, token);
|
|
}
|
|
|
|
public async Task<Attempt<ICollection<IIdentityUserLogin>, UserOperationStatus>> GetLoginsAsync(IUser user)
|
|
{
|
|
BackOfficeIdentityUser? identityUser = await FindByIdAsync(user.Id.ToString());
|
|
if (identityUser is null)
|
|
{
|
|
return Attempt.FailWithStatus<ICollection<IIdentityUserLogin>, UserOperationStatus>(UserOperationStatus.UserNotFound, Array.Empty<IIdentityUserLogin>());
|
|
}
|
|
|
|
return Attempt.SucceedWithStatus(UserOperationStatus.Success, identityUser.Logins);
|
|
}
|
|
|
|
public async Task<bool> IsEmailConfirmationTokenValidAsync(IUser user, string token)
|
|
{
|
|
BackOfficeIdentityUser? identityUser = await FindByIdAsync(user.Id.ToString(CultureInfo.InvariantCulture));
|
|
|
|
if (identityUser != null && await VerifyUserTokenAsync(identityUser, Options.Tokens.EmailConfirmationTokenProvider, ConfirmEmailTokenPurpose, token).ConfigureAwait(false))
|
|
{
|
|
return true;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
public async Task<bool> IsResetPasswordTokenValidAsync(IUser user, string token)
|
|
{
|
|
BackOfficeIdentityUser? identityUser = await FindByIdAsync(user.Id.ToString(CultureInfo.InvariantCulture));
|
|
|
|
if (identityUser != null && await VerifyUserTokenAsync(identityUser, Options.Tokens.PasswordResetTokenProvider, ResetPasswordTokenPurpose, token).ConfigureAwait(false))
|
|
{
|
|
return true;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
}
|