Teknikode
/
Teknik
Watch 3
Star 16
Fork 4
Code Issues 38 Pull Requests 0 Releases 3 Wiki Activity
The next generation of the Teknik Services. Written in ASP.NET. https://www.teknik.io/
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
713 Commits
2 Branches
Tree: 6865b5c5bc
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6865b5c5bc'
${ noResults }
Teknik/Teknik/Areas/User/Utility/UserHelper.cs

UserHelper.cs 40KB
Raw Blame History

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075 
  1. using System;

  2. using System.Collections.Generic;

  3. using System.IO;

  4. using System.Linq;

  5. using System.Net;

  6. using System.Net.Mail;

  7. using System.Runtime.InteropServices;

  8. using System.Security.Cryptography;

  9. using System.Text;

  10. using System.Text.RegularExpressions;

  11. using System.Threading.Tasks;

  12. using System.Web;

  13. using Teknik.Areas.Blog.Models;

  14. using Teknik.Areas.Shortener.Models;

  15. using Teknik.Areas.Users.Models;

  16. using Teknik.Configuration;

  17. using Teknik.Utilities;

  18. using Teknik.Models;

  19. using Teknik.Utilities.Cryptography;

  20. using MD5 = Teknik.Utilities.Cryptography.MD5;

  21. using SHA256 = Teknik.Utilities.Cryptography.SHA256;

  22. using SHA384 = Teknik.Utilities.Cryptography.SHA384;

  23. using Teknik.Data;

  24. using Microsoft.EntityFrameworkCore;

  25. using Microsoft.AspNetCore.Http;

  26. using System.Security.Claims;

  27. using Microsoft.AspNetCore.Authentication.Cookies;

  28. using Teknik.MailService;

  29. using Teknik.GitService;

  30. using IdentityModel.Client;

  31. using System.Net.Http;

  32. using Newtonsoft.Json.Linq;

  33. using Newtonsoft.Json;

  34. using Microsoft.AspNetCore.Mvc;

  35. 

  36. namespace Teknik.Areas.Users.Utility

  37. {

  38.     public static class UserHelper

  39.     {

  40.         #region Account Management

  41.         public static List<string> GetReservedUsernames(Config config)

  42.         {

  43.             List<string> foundNames = new List<string>();

  44.             if (config != null)

  45.             {

  46.                 string path = config.UserConfig.ReservedUsernameDefinitionFile;

  47.                 if (File.Exists(path))

  48.                 {

  49.                     string[] names = File.ReadAllLines(path);

  50.                     foundNames = names.ToList();

  51.                 }

  52.             }

  53.             return foundNames;

  54.         }

  55. 

  56.         public static bool UsernameReserved(Config config, string username)

  57.         {

  58.             // Load reserved usernames

  59.             List<string> reserved = GetReservedUsernames(config);

  60.             return (reserved.Exists(u => u.ToLower() == username.ToLower()));

  61.         }

  62. 

  63.         public static bool ValidUsername(Config config, string username)

  64.         {

  65.             bool isValid = true;

  66. 

  67.             // Must be something there

  68.             isValid &= !string.IsNullOrEmpty(username);

  69. 

  70.             // Is the format correct?

  71.             Regex reg = new Regex(config.UserConfig.UsernameFilter);

  72.             isValid &= reg.IsMatch(username);

  73. 

  74.             // Meets the min length?

  75.             isValid &= (username.Length >= config.UserConfig.MinUsernameLength);

  76. 

  77.             // Meets the max length?

  78.             isValid &= (username.Length <= config.UserConfig.MaxUsernameLength);

  79. 

  80.             return isValid;

  81.         }

  82. 

  83.         public static async Task<bool> UsernameAvailable(TeknikEntities db, Config config, string username)

  84.         {

  85.             bool isAvailable = true;

  86. 

  87.             isAvailable &= ValidUsername(config, username);

  88.             isAvailable &= !UsernameReserved(config, username);

  89.             isAvailable &= !await IdentityHelper.UserExists(config, username);

  90.             isAvailable &= !UserExists(db, username);

  91.             isAvailable &= !UserEmailExists(config, GetUserEmailAddress(config, username));

  92.             isAvailable &= !UserGitExists(config, username);

  93. 

  94.             return isAvailable;

  95.         }

  96. 

  97.         public static async Task<DateTime> GetLastAccountActivity(TeknikEntities db, Config config, string username)

  98.         {

  99.             var userInfo = await IdentityHelper.GetIdentityUserInfo(config, username);

  100.             return GetLastAccountActivity(db, config, username, userInfo);

  101.         }

  102. 

  103.         public static DateTime GetLastAccountActivity(TeknikEntities db, Config config, string username, IdentityUserInfo userInfo)

  104.         {

  105.             try

  106.             {

  107.                 DateTime lastActive = new DateTime(1900, 1, 1);

  108. 

  109.                 if (UserEmailExists(config, GetUserEmailAddress(config, username)))

  110.                 {

  111.                     DateTime emailLastActive = UserEmailLastActive(config, GetUserEmailAddress(config, username));

  112.                     if (lastActive < emailLastActive)

  113.                         lastActive = emailLastActive;

  114.                 }

  115. 

  116.                 if (UserGitExists(config, username))

  117.                 {

  118.                     DateTime gitLastActive = UserGitLastActive(config, username);

  119.                     if (lastActive < gitLastActive)

  120.                         lastActive = gitLastActive;

  121.                 }

  122. 

  123.                 if (userInfo.LastSeen.HasValue)

  124.                 {

  125.                     DateTime userLastActive = userInfo.LastSeen.Value;

  126.                     if (lastActive < userLastActive)

  127.                         lastActive = userLastActive;

  128.                 }

  129. 

  130.                 return lastActive;

  131.             }

  132.             catch (Exception ex)

  133.             {

  134.                 throw new Exception("Unable to determine last account activity.", ex);

  135.             }

  136.         }

  137. 

  138.         public static async Task CreateAccount(TeknikEntities db, Config config, IUrlHelper url, string username, string password, string recoveryEmail, string inviteCode)

  139.         {

  140.             try

  141.             {

  142.                 var result = await IdentityHelper.CreateUser(config, username, password, recoveryEmail);

  143.                 if (result.Success)

  144.                 {

  145.                     // Create an Email Account

  146.                     CreateUserEmail(config, GetUserEmailAddress(config, username), password);

  147. 

  148.                     // Disable the email account

  149.                     DisableUserEmail(config, GetUserEmailAddress(config, username));

  150. 

  151.                     // Create a Git Account

  152.                     CreateUserGit(config, username, password);

  153. 

  154.                     // Add User

  155.                     User newUser = CreateUser(db, config, username, inviteCode);

  156. 

  157.                     // If they have a recovery email, let's send a verification

  158.                     if (!string.IsNullOrEmpty(recoveryEmail))

  159.                     {

  160.                         var token = await IdentityHelper.UpdateRecoveryEmail(config, username, recoveryEmail);

  161.                         string resetUrl = url.SubRouteUrl("account", "User.ResetPassword", new { Username = username });

  162.                         string verifyUrl = url.SubRouteUrl("account", "User.VerifyRecoveryEmail", new { Code = WebUtility.UrlEncode(token) });

  163.                         SendRecoveryEmailVerification(config, username, recoveryEmail, resetUrl, verifyUrl);

  164.                     }

  165.                     return;

  166.                 }

  167.                 throw new Exception("Error creating account: " + result.Message);

  168.             }

  169.             catch (Exception ex)

  170.             {

  171.                 throw new Exception("Unable to create account.", ex);

  172.             }

  173.         }

  174. 

  175.         public static void EditAccount(TeknikEntities db, Config config, User user)

  176.         {

  177.             try

  178.             {

  179.                 // Update User

  180.                 EditUser(db, config, user);

  181.             }

  182.             catch (Exception ex)

  183.             {

  184.                 throw new Exception("Unable to edit account.", ex);

  185.             }

  186.         }

  187. 

  188.         public static async Task ChangeAccountPassword(TeknikEntities db, Config config, string username, string currentPassword, string newPassword)

  189.         {

  190.             IdentityResult result = await IdentityHelper.UpdatePassword(config, username, currentPassword, newPassword);

  191.             if (result.Success)

  192.             {

  193.                 ChangeServicePasswords(db, config, username, newPassword);

  194.             }

  195.             else

  196.             {

  197.                 throw new Exception(result.Message);

  198.             }

  199.         }

  200. 

  201.         public static async Task ResetAccountPassword(TeknikEntities db, Config config, string username, string token, string newPassword)

  202.         {

  203.             IdentityResult result = await IdentityHelper.ResetPassword(config, username, token, newPassword);

  204.             if (result.Success)

  205.             {

  206.                 ChangeServicePasswords(db, config, username, newPassword);

  207.             }

  208.             else

  209.             {

  210.                 throw new Exception(result.Message);

  211.             }

  212.         }

  213. 

  214.         public static void ChangeServicePasswords(TeknikEntities db, Config config, string username, string newPassword)

  215.         {

  216.             try

  217.             {

  218.                 // Make sure they have a git and email account before resetting their password

  219.                 string email = GetUserEmailAddress(config, username);

  220.                 if (config.EmailConfig.Enabled && !UserEmailExists(config, email))

  221.                 {

  222.                     CreateUserEmail(config, email, newPassword);

  223.                 }

  224. 

  225.                 if (config.GitConfig.Enabled && !UserGitExists(config, username))

  226.                 {

  227.                     CreateUserGit(config, username, newPassword);

  228.                 }

  229. 

  230.                 // Change email password

  231.                 EditUserEmailPassword(config, GetUserEmailAddress(config, username), newPassword);

  232. 

  233.                 // Update Git password

  234.                 EditUserGitPassword(config, username, newPassword);

  235.             }

  236.             catch (Exception ex)

  237.             {

  238.                 throw new Exception("Unable to change service password.", ex);

  239.             }

  240.         }

  241. 

  242.         public static async Task EditAccountType(TeknikEntities db, Config config, string username, AccountType type)

  243.         {

  244.             try

  245.             {

  246.                 if (!UserExists(db, username))

  247.                     throw new Exception($"The user provided does not exist: {username}");

  248. 

  249.                 var result = await IdentityHelper.UpdateAccountType(config, username, type);

  250. 

  251.                 if (result.Success)

  252.                 {

  253. 

  254.                     string email = GetUserEmailAddress(config, username);

  255.                     // Add/Remove account type features depending on the type

  256.                     switch (type)

  257.                     {

  258.                         case AccountType.Basic:

  259.                             // Disable their email

  260.                             DisableUserEmail(config, email);

  261.                             break;

  262.                         case AccountType.Premium:

  263.                             // Enable their email account

  264.                             EnableUserEmail(config, email);

  265.                             break;

  266.                     }

  267.                 }

  268.                 else

  269.                 {

  270.                     throw new Exception($"Unable to edit the account type [{type}] for {username}: " + result.Message);

  271.                 }

  272.             }

  273.             catch (Exception ex)

  274.             {

  275.                 throw new Exception($"Unable to edit the account type [{type}] for: {username}", ex);

  276.             }

  277.         }

  278. 

  279.         public static async Task EditAccountStatus(TeknikEntities db, Config config, string username, AccountStatus status)

  280.         {

  281.             try

  282.             {

  283.                 if (!UserExists(db, username))

  284.                     throw new Exception($"The user provided does not exist: {username}");

  285. 

  286.                 var result = await IdentityHelper.UpdateAccountStatus(config, username, status);

  287. 

  288.                 if (result.Success)

  289.                 {

  290.                     string email = GetUserEmailAddress(config, username);

  291. 

  292.                     // Add/Remove account type features depending on the type

  293.                     switch (status)

  294.                     {

  295.                         case AccountStatus.Active:

  296.                             // Enable Email

  297.                             EnableUserEmail(config, email);

  298.                             // Enable Git

  299.                             EnableUserGit(config, username);

  300.                             break;

  301.                         case AccountStatus.Banned:

  302.                             // Disable Email

  303.                             DisableUserEmail(config, email);

  304.                             // Disable Git

  305.                             DisableUserGit(config, username);

  306.                             break;

  307.                     }

  308.                 }

  309.                 else

  310.                 {

  311.                     throw new Exception($"Unable to edit the account status [{status}] for {username}: " + result.Message);

  312.                 }

  313.             }

  314.             catch (Exception ex)

  315.             {

  316.                 throw new Exception($"Unable to edit the account status [{status}] for: {username}", ex);

  317.             }

  318.         }

  319. 

  320.         public static async Task DeleteAccount(TeknikEntities db, Config config, User user)

  321.         {

  322.             try

  323.             {

  324.                 string username = user.Username;

  325. 

  326.                 // Delete identity account

  327.                 var result = await IdentityHelper.DeleteUser(config, username);

  328. 

  329.                 if (result)

  330.                 {

  331.                     // Delete User Account

  332.                     DeleteUser(db, config, user);

  333. 

  334.                     // Delete Email Account

  335.                     if (UserEmailExists(config, GetUserEmailAddress(config, username)))

  336.                         DeleteUserEmail(config, GetUserEmailAddress(config, username));

  337. 

  338.                     // Delete Git Account

  339.                     if (UserGitExists(config, username))

  340.                         DeleteUserGit(config, username);

  341.                 }

  342.                 else

  343.                 {

  344.                     throw new Exception("Unable to delete identity account.");

  345.                 }

  346.             }

  347.             catch (Exception ex)

  348.             {

  349.                 throw new Exception("Unable to delete account.", ex);

  350.             }

  351.         }

  352.         #endregion

  353. 

  354.         #region User Management

  355.         public static User GetUser(TeknikEntities db, string username)

  356.         {

  357.             User user = db.Users

  358.                 .Include(u => u.UserSettings)

  359.                 .Include(u => u.BlogSettings)

  360.                 .Include(u => u.UploadSettings)

  361.                 .Where(b => b.Username == username).FirstOrDefault();

  362. 

  363.             return user;

  364.         }

  365. 

  366.         public static bool UserExists(TeknikEntities db, string username)

  367.         {

  368.             User user = GetUser(db, username);

  369.             if (user != null)

  370.             {

  371.                 return true;

  372.             }

  373. 

  374.             return false;

  375.         }

  376. 

  377.         public static async Task<bool> UserPasswordCorrect(Config config, string username, string password)

  378.         {

  379.             try

  380.             {

  381.                 return await IdentityHelper.CheckPassword(config, username, password);

  382.             }

  383.             catch (Exception ex)

  384.             {

  385.                 throw new Exception("Unable to determine if password is correct.", ex);

  386.             }

  387.         }

  388. 

  389.         public static User CreateUser(TeknikEntities db, Config config, string username, string inviteCode)

  390.         {

  391.             try

  392.             {

  393.                 User newUser = new User();

  394.                 newUser.Username = username;

  395.                 newUser.UserSettings = new UserSettings();

  396.                 newUser.BlogSettings = new BlogSettings();

  397.                 newUser.UploadSettings = new UploadSettings();

  398. 

  399.                 // if they provided an invite code, let's assign them to it

  400.                 if (!string.IsNullOrEmpty(inviteCode))

  401.                 {

  402.                     InviteCode code = db.InviteCodes.Where(c => c.Code == inviteCode).FirstOrDefault();

  403.                     db.Entry(code).State = EntityState.Modified;

  404. 

  405.                     newUser.ClaimedInviteCode = code;

  406.                 }

  407. 

  408.                 // Add User

  409.                 db.Users.Add(newUser);

  410. 

  411.                 // Generate blog for the user

  412.                 var newBlog = new Blog.Models.Blog();

  413.                 newBlog.User = newUser;

  414.                 db.Blogs.Add(newBlog);

  415. 

  416.                 // Save the changes

  417.                 db.SaveChanges();

  418. 

  419.                 return newUser;

  420.             }

  421.             catch (Exception ex)

  422.             {

  423.                 throw new Exception("Unable to create user.", ex);

  424.             }

  425.         }

  426. 

  427.         public static void EditUser(TeknikEntities db, Config config, User user)

  428.         {

  429.             try

  430.             {

  431.                 db.Entry(user).State = EntityState.Modified;

  432.                 db.SaveChanges();

  433.             }

  434.             catch (Exception ex)

  435.             {

  436.                 throw new Exception(string.Format("Unable to edit user {0}.", user.Username), ex);

  437.             }

  438.         }

  439. 

  440.         public static void DeleteUser(TeknikEntities db, Config config, User user)

  441.         {

  442.             try

  443.             {

  444.                 // Update uploads

  445.                 List<Upload.Models.Upload> uploads = db.Uploads.Where(u => u.User.Username == user.Username).ToList();

  446.                 if (uploads.Any())

  447.                 {

  448.                     foreach (Upload.Models.Upload upload in uploads)

  449.                     {

  450.                         upload.UserId = null;

  451.                         db.Entry(upload).State = EntityState.Modified;

  452.                     }

  453.                     db.SaveChanges();

  454.                 }

  455. 

  456.                 // Update pastes

  457.                 List<Paste.Models.Paste> pastes = db.Pastes.Where(u => u.User.Username == user.Username).ToList();

  458.                 if (pastes.Any())

  459.                 {

  460.                     foreach (Paste.Models.Paste paste in pastes)

  461.                     {

  462.                         paste.UserId = null;

  463.                         db.Entry(paste).State = EntityState.Modified;

  464.                     }

  465.                     db.SaveChanges();

  466.                 }

  467. 

  468.                 // Update shortened urls

  469.                 List<ShortenedUrl> shortUrls = db.ShortenedUrls.Where(u => u.User.Username == user.Username).ToList();

  470.                 if (shortUrls.Any())

  471.                 {

  472.                     foreach (ShortenedUrl shortUrl in shortUrls)

  473.                     {

  474.                         shortUrl.UserId = null;

  475.                         db.Entry(shortUrl).State = EntityState.Modified;

  476.                     }

  477.                     db.SaveChanges();

  478.                 }

  479. 

  480.                 // Update vaults

  481.                 List<Vault.Models.Vault> vaults = db.Vaults.Where(u => u.User.Username == user.Username).ToList();

  482.                 if (vaults.Any())

  483.                 {

  484.                     foreach (Vault.Models.Vault vault in vaults)

  485.                     {

  486.                         vault.UserId = null;

  487.                         db.Entry(vault).State = EntityState.Modified;

  488.                     }

  489.                     db.SaveChanges();

  490.                 }

  491. 

  492.                 // Delete Blogs

  493.                 Blog.Models.Blog blog = db.Blogs.Where(u => u.User.Username == user.Username).FirstOrDefault();

  494.                 if (blog != null)

  495.                 {

  496.                     db.Blogs.Remove(blog);

  497.                     db.SaveChanges();

  498.                 }

  499. 

  500.                 // Delete post comments

  501.                 List<BlogPostComment> postComments = db.BlogPostComments.Where(u => u.User.Username == user.Username).ToList();

  502.                 if (postComments.Any())

  503.                 {

  504.                     foreach (BlogPostComment postComment in postComments)

  505.                     {

  506.                         db.BlogPostComments.Remove(postComment);

  507.                     }

  508.                     db.SaveChanges();

  509.                 }

  510. 

  511.                 // Delete podcast comments

  512.                 List<Podcast.Models.PodcastComment> podComments = db.PodcastComments.Where(u => u.User.Username == user.Username).ToList();

  513.                 if (podComments.Any())

  514.                 {

  515.                     foreach (Podcast.Models.PodcastComment podComment in podComments)

  516.                     {

  517.                         db.PodcastComments.Remove(podComment);

  518.                     }

  519.                     db.SaveChanges();

  520.                 }

  521. 

  522.                 // Delete Owned Invite Codes

  523.                 List<InviteCode> ownedCodes = db.InviteCodes.Where(i => i.Owner.Username == user.Username).ToList();

  524.                 if (ownedCodes.Any())

  525.                 {

  526.                     foreach (InviteCode code in ownedCodes)

  527.                     {

  528.                         db.InviteCodes.Remove(code);

  529.                     }

  530.                     db.SaveChanges();

  531.                 }

  532. 

  533.                 // Delete Claimed Invite Code

  534.                 List<InviteCode> claimedCodes = db.InviteCodes.Where(i => i.ClaimedUser.Username == user.Username).ToList();

  535.                 if (claimedCodes.Any())

  536.                 {

  537.                     foreach (InviteCode code in claimedCodes)

  538.                     {

  539.                         db.InviteCodes.Remove(code);

  540.                     }

  541.                     db.SaveChanges();

  542.                 }

  543. 

  544.                 // Delete Auth Tokens

  545.                 //List<AuthToken> authTokens = db.AuthTokens.Where(t => t.User.UserId == user.UserId).ToList();

  546.                 //if (authTokens.Any())

  547.                 //{

  548.                 //    foreach (AuthToken authToken in authTokens)

  549.                 //    {

  550.                 //        db.AuthTokens.Remove(authToken);

  551.                 //    }

  552.                 //    db.SaveChanges();

  553.                 //}

  554. 

  555.                 // Delete User

  556.                 db.Users.Remove(user);

  557.                 db.SaveChanges();

  558.             }

  559.             catch (Exception ex)

  560.             {

  561.                 throw new Exception(string.Format("Unable to delete user {0}.", user.Username), ex);

  562.             }

  563.         }

  564. 

  565.         public static void SendRecoveryEmailVerification(Config config, string username, string email, string resetUrl, string verifyUrl)

  566.         {

  567.             SmtpClient client = new SmtpClient();

  568.             client.Host = config.ContactConfig.EmailAccount.Host;

  569.             client.Port = config.ContactConfig.EmailAccount.Port;

  570.             client.EnableSsl = config.ContactConfig.EmailAccount.SSL;

  571.             client.DeliveryMethod = SmtpDeliveryMethod.Network;

  572.             client.UseDefaultCredentials = true;

  573.             client.Credentials = new NetworkCredential(config.ContactConfig.EmailAccount.Username, config.ContactConfig.EmailAccount.Password);

  574.             client.Timeout = 5000;

  575. 

  576.             MailMessage mail = new MailMessage(new MailAddress(config.ContactConfig.EmailAccount.EmailAddress, "Teknik"), new MailAddress(email, username));

  577.             mail.Subject = "Recovery Email Validation";

  578.             mail.Body = string.Format(@"Hello {0},

  579. 

  580. You are recieving this email because you have specified this email address as your recovery email.  In the event that you forget your password, you can visit {1} and request a temporary password reset key be sent to this email.  You will then be able to reset and choose a new password.

  581. 

  582. In order to verify that you own this email, please click the following link or paste it into your browser: {2}  

  583. 

  584. If you recieved this email and you did not sign up for an account, please email us at {3} and ignore the verification link.

  585. 

  586. - Teknik", username, resetUrl, verifyUrl, config.SupportEmail);

  587.             mail.BodyEncoding = UTF8Encoding.UTF8;

  588.             mail.DeliveryNotificationOptions = DeliveryNotificationOptions.Never;

  589. 

  590.             client.Send(mail);

  591.         }

  592. 

  593.         public static void SendResetPasswordVerification(Config config, string username, string email, string resetUrl)

  594.         {

  595.             SmtpClient client = new SmtpClient();

  596.             client.Host = config.ContactConfig.EmailAccount.Host;

  597.             client.Port = config.ContactConfig.EmailAccount.Port;

  598.             client.EnableSsl = config.ContactConfig.EmailAccount.SSL;

  599.             client.DeliveryMethod = SmtpDeliveryMethod.Network;

  600.             client.UseDefaultCredentials = true;

  601.             client.Credentials = new NetworkCredential(config.ContactConfig.EmailAccount.Username, config.ContactConfig.EmailAccount.Password);

  602.             client.Timeout = 5000;

  603. 

  604.             MailMessage mail = new MailMessage(new MailAddress(config.ContactConfig.EmailAccount.EmailAddress, "Teknik"), new MailAddress(email, username));

  605.             mail.Subject = "Password Reset Request";

  606.             mail.Body = string.Format(@"Hello {0},

  607. 

  608. You are recieving this email because either you or someone has requested a password reset for your account and this email was specified as the recovery email.

  609. 

  610. To proceed in resetting your password, please click the following link or paste it into your browser: {1}  

  611. 

  612. If you recieved this email and you did not reset your password, you can ignore this email and email us at {2} to prevent it occuring again.

  613. 

  614. - Teknik", username, resetUrl, config.SupportEmail);

  615.             mail.BodyEncoding = UTF8Encoding.UTF8;

  616.             mail.DeliveryNotificationOptions = DeliveryNotificationOptions.Never;

  617. 

  618.             client.Send(mail);

  619.         }

  620.         #endregion

  621. 

  622.         #region Email Management

  623.         public static string GetUserEmailAddress(Config config, string username)

  624.         {

  625.             return string.Format("{0}@{1}", username, config.EmailConfig.Domain);

  626.         }

  627. 

  628.         public static IMailService CreateMailService(Config config)

  629.         {

  630.             return new HMailService(

  631.                 config.EmailConfig.MailHost,

  632.                 config.EmailConfig.Username,

  633.                 config.EmailConfig.Password,

  634.                 config.EmailConfig.Domain,

  635.                 config.EmailConfig.CounterDatabase.Server,

  636.                 config.EmailConfig.CounterDatabase.Database,

  637.                 config.EmailConfig.CounterDatabase.Username,

  638.                 config.EmailConfig.CounterDatabase.Password,

  639.                 config.EmailConfig.CounterDatabase.Port

  640.                 );

  641.         }

  642. 

  643.         public static bool UserEmailExists(Config config, string email)

  644.         {

  645.             // If Email Server is enabled

  646.             if (config.EmailConfig.Enabled)

  647.             {

  648.                 var svc = CreateMailService(config);

  649.                 return svc.AccountExists(email);

  650.             }

  651.             return false;

  652.         }

  653. 

  654.         public static DateTime UserEmailLastActive(Config config, string email)

  655.         {

  656.             DateTime lastActive = new DateTime(1900, 1, 1);

  657. 

  658.             if (config.EmailConfig.Enabled)

  659.             {

  660.                 var svc = CreateMailService(config);

  661.                 var lastEmail = svc.LastActive(email);

  662.                 if (lastActive < lastEmail)

  663.                     lastActive = lastEmail;

  664.             }

  665.             return lastActive;

  666.         }

  667. 

  668.         public static bool UserEmailEnabled(Config config, string email)

  669.         {

  670.             try

  671.             {

  672.                 // If Email Server is enabled

  673.                 if (config.EmailConfig.Enabled)

  674.                 {

  675.                     var svc = CreateMailService(config);

  676.                     return svc.Enabled(email);

  677.                 }

  678.             }

  679.             catch (Exception ex)

  680.             {

  681.                 throw new Exception("Unable to get email account status.", ex);

  682.             }

  683.             return false;

  684.         }

  685. 

  686.         public static void CreateUserEmail(Config config, string email, string password)

  687.         {

  688.             try

  689.             {

  690.                 // If Email Server is enabled

  691.                 if (config.EmailConfig.Enabled)

  692.                 {

  693.                     var svc = CreateMailService(config);

  694.                     svc.CreateAccount(email, password, config.EmailConfig.MaxSize);

  695.                 }

  696.             }

  697.             catch (Exception ex)

  698.             {

  699.                 throw new Exception("Unable to add email.", ex);

  700.             }

  701.         }

  702. 

  703.         public static void EnableUserEmail(Config config, string email)

  704.         {

  705.             try

  706.             {

  707.                 // If Email Server is enabled

  708.                 if (config.EmailConfig.Enabled)

  709.                 {

  710.                     var svc = CreateMailService(config);

  711.                     svc.EnableAccount(email);

  712.                 }

  713.             }

  714.             catch (Exception ex)

  715.             {

  716.                 throw new Exception("Unable to enable email account.", ex);

  717.             }

  718.         }

  719. 

  720.         public static void DisableUserEmail(Config config, string email)

  721.         {

  722.             try

  723.             {

  724.                 // If Email Server is enabled

  725.                 if (config.EmailConfig.Enabled)

  726.                 {

  727.                     var svc = CreateMailService(config);

  728.                     svc.DisableAccount(email);

  729.                 }

  730.             }

  731.             catch (Exception ex)

  732.             {

  733.                 throw new Exception("Unable to disable email account.", ex);

  734.             }

  735.         }

  736. 

  737.         public static void EditUserEmailPassword(Config config, string email, string password)

  738.         {

  739.             try

  740.             {

  741.                 // If Email Server is enabled

  742.                 if (config.EmailConfig.Enabled)

  743.                 {

  744.                     var svc = CreateMailService(config);

  745.                     svc.EditPassword(email, password);

  746.                 }

  747.             }

  748.             catch (Exception ex)

  749.             {

  750.                 throw new Exception("Unable to edit email account password.", ex);

  751.             }

  752.         }

  753. 

  754.         public static void EditUserEmailMaxSize(Config config, string email, int size)

  755.         {

  756.             try

  757.             {

  758.                 // If Email Server is enabled

  759.                 if (config.EmailConfig.Enabled)

  760.                 {

  761.                     var svc = CreateMailService(config);

  762.                     svc.EditMaxSize(email, size);

  763.                 }

  764.             }

  765.             catch (Exception ex)

  766.             {

  767.                 throw new Exception("Unable to edit email account mailbox size.", ex);

  768.             }

  769.         }

  770. 

  771.         public static void EditUserEmailMaxEmailsPerDay(Config config, string email, int maxPerDay)

  772.         {

  773.             try

  774.             {

  775.                 // If Email Server is enabled

  776.                 if (config.EmailConfig.Enabled)

  777.                 {

  778.                     var svc = CreateMailService(config);

  779.                     svc.EditMaxEmailsPerDay(email, maxPerDay);

  780.                 }

  781.             }

  782.             catch (Exception ex)

  783.             {

  784.                 throw new Exception("Unable to edit email account mailbox size.", ex);

  785.             }

  786.         }

  787. 

  788.         public static void DeleteUserEmail(Config config, string email)

  789.         {

  790.             try

  791.             {

  792.                 // If Email Server is enabled

  793.                 if (config.EmailConfig.Enabled)

  794.                 {

  795.                     var svc = CreateMailService(config);

  796.                     svc.DeleteAccount(email);

  797.                 }

  798.             }

  799.             catch (Exception ex)

  800.             {

  801.                 throw new Exception("Unable to delete email account.", ex);

  802.             }

  803.         }

  804.         #endregion

  805. 

  806.         #region Git Management

  807.         public static IGitService CreateGitService(Config config)

  808.         {

  809.             return new GiteaService(

  810.                 config.GitConfig.SourceId,

  811.                 config.GitConfig.Host,

  812.                 config.GitConfig.AccessToken,

  813.                 config.GitConfig.Database.Server,

  814.                 config.GitConfig.Database.Database,

  815.                 config.GitConfig.Database.Username,

  816.                 config.GitConfig.Database.Password,

  817.                 config.GitConfig.Database.Port

  818.                 );

  819.         }

  820. 

  821.         public static bool UserGitExists(Config config, string username)

  822.         {

  823.             if (config.GitConfig.Enabled)

  824.             {

  825.                 try

  826.                 {

  827.                     var svc = CreateGitService(config);

  828.                     return svc.AccountExists(username);

  829.                 }

  830.                 catch { }

  831.             }

  832.             return false;

  833.         }

  834. 

  835.         public static DateTime UserGitLastActive(Config config, string username)

  836.         {

  837.             DateTime lastActive = new DateTime(1900, 1, 1);

  838. 

  839.             if (config.GitConfig.Enabled)

  840.             {

  841.                 // Git user exists?

  842.                 if (!UserGitExists(config, username))

  843.                 {

  844.                     throw new Exception($"Git User '{username}' does not exist.");

  845.                 }

  846. 

  847.                 string email = GetUserEmailAddress(config, username);

  848. 

  849.                 var svc = CreateGitService(config);

  850.                 DateTime tmpLast = svc.LastActive(email);

  851.                 if (lastActive < tmpLast)

  852.                     lastActive = tmpLast;

  853.             }

  854.             return lastActive;

  855.         }

  856. 

  857.         public static void CreateUserGit(Config config, string username, string password)

  858.         {

  859.             try

  860.             {

  861.                 // If Git is enabled

  862.                 if (config.GitConfig.Enabled)

  863.                 {

  864.                     string email = GetUserEmailAddress(config, username);

  865. 

  866.                     var svc = CreateGitService(config);

  867.                     svc.CreateAccount(username, email, password);

  868.                 }

  869.             }

  870.             catch (Exception ex)

  871.             {

  872.                 throw new Exception("Unable to add git account.", ex);

  873.             }

  874.         }

  875. 

  876.         public static void EditUserGitPassword(Config config, string username, string password)

  877.         {

  878.             try

  879.             {

  880.                 // If Git is enabled

  881.                 if (config.GitConfig.Enabled)

  882.                 {

  883.                     // Git user exists?

  884.                     if (!UserGitExists(config, username))

  885.                     {

  886.                         throw new Exception($"Git User '{username}' does not exist.");

  887.                     }

  888. 

  889.                     string email = GetUserEmailAddress(config, username);

  890. 

  891.                     var svc = CreateGitService(config);

  892.                     svc.EditPassword(username, email, password);

  893.                 }

  894.             }

  895.             catch (Exception ex)

  896.             {

  897.                 throw new Exception("Unable to edit git account password.", ex);

  898.             }

  899.         }

  900. 

  901.         public static void EnableUserGit(Config config, string username)

  902.         {

  903.             try

  904.             {

  905.                 // If Git is enabled

  906.                 if (config.GitConfig.Enabled)

  907.                 {

  908.                     // Git user exists?

  909.                     if (!UserGitExists(config, username))

  910.                     {

  911.                         throw new Exception($"Git User '{username}' does not exist.");

  912.                     }

  913. 

  914.                     string email = GetUserEmailAddress(config, username);

  915. 

  916.                     var svc = CreateGitService(config);

  917.                     svc.EnableAccount(username, email);

  918.                 }

  919.             }

  920.             catch (Exception ex)

  921.             {

  922.                 throw new Exception("Unable to enable git account.", ex);

  923.             }

  924.         }

  925. 

  926.         public static void DisableUserGit(Config config, string username)

  927.         {

  928.             try

  929.             {

  930.                 // If Git is enabled

  931.                 if (config.GitConfig.Enabled)

  932.                 {

  933.                     // Git user exists?

  934.                     if (!UserGitExists(config, username))

  935.                     {

  936.                         throw new Exception($"Git User '{username}' does not exist.");

  937.                     }

  938. 

  939.                     string email = GetUserEmailAddress(config, username);

  940. 

  941.                     var svc = CreateGitService(config);

  942.                     svc.EnableAccount(username, email);

  943.                 }

  944.             }

  945.             catch (Exception ex)

  946.             {

  947.                 throw new Exception("Unable to disable git account.", ex);

  948.             }

  949.         }

  950. 

  951.         public static void DeleteUserGit(Config config, string username)

  952.         {

  953.             try

  954.             {

  955.                 // If Git is enabled

  956.                 if (config.GitConfig.Enabled)

  957.                 {

  958.                     // Git user exists?

  959.                     if (!UserGitExists(config, username))

  960.                     {

  961.                         throw new Exception($"Git User '{username}' does not exist.");

  962.                     }

  963. 

  964.                     var svc = CreateGitService(config);

  965.                     svc.DeleteAccount(username);

  966.                 }

  967.             }

  968.             catch (Exception ex)

  969.             {

  970.                 throw new Exception("Unable to delete git account.", ex);

  971.             }

  972.         }

  973. 

  974.         public static void CreateUserGitTwoFactor(Config config, string username, string secret, int unixTime)

  975.         {

  976.             try

  977.             {

  978.                 // If Git is enabled

  979.                 if (config.GitConfig.Enabled)

  980.                 {

  981.                     // Git user exists?

  982.                     if (!UserGitExists(config, username))

  983.                     {

  984.                         throw new Exception($"Git User '{username}' does not exist.");

  985.                     }

  986. 

  987.                     // Generate the scratch token

  988.                     string token = StringHelper.RandomString(8);

  989. 

  990.                     // Get the Encryption Key from the git secret key

  991.                     byte[] keyBytes = MD5.Hash(Encoding.UTF8.GetBytes(config.GitConfig.SecretKey));

  992. 

  993.                     // Modify the input secret

  994.                     byte[] secBytes = Encoding.UTF8.GetBytes(secret);

  995. 

  996.                     // Generate the encrypted secret using AES CGM

  997.                     byte[] encValue = Aes128CFB.Encrypt(secBytes, keyBytes);

  998.                     string finalSecret = Convert.ToBase64String(encValue);

  999. 

  1000.                     // Create connection to the DB

  1001.                     Utilities.MysqlDatabase mySQL = new Utilities.MysqlDatabase(config.GitConfig.Database.Server, config.GitConfig.Database.Database, config.GitConfig.Database.Username, config.GitConfig.Database.Password, config.GitConfig.Database.Port);

  1002.                     mySQL.MysqlErrorEvent += (sender, s) =>

  1003.                     {

  1004.                         throw new Exception("Unable to edit git account two factor.  Mysql Exception: " + s);

  1005.                     };

  1006. 

  1007.                     // Get the user's UID

  1008.                     string email = GetUserEmailAddress(config, username);

  1009.                     string userSelect = @"SELECT gogs.user.id FROM gogs.user WHERE gogs.user.login_name = {0}";

  1010.                     var uid = mySQL.ScalarQuery(userSelect, new object[] { email });

  1011. 

  1012.                     // See if they have Two Factor already

  1013.                     string sqlSelect = @"SELECT tf.id 

  1014.                                 FROM gogs.two_factor tf

  1015.                                 LEFT JOIN gogs.user u ON u.id = tf.uid

  1016.                                 WHERE u.login_name = {0}";

  1017.                     var result = mySQL.ScalarQuery(sqlSelect, new object[] { email });

  1018.                     

  1019.                     if (result != null)

  1020.                     {

  1021.                         // They have an entry!  Let's update it

  1022.                         string update = @"UPDATE gogs.two_factor tf SET tf.uid = {1}, tf.secret = {2}, tf.scratch_token = {3}, tf.updated_unix = {4} WHERE tf.id = {0}";

  1023. 

  1024.                         mySQL.Execute(update, new object[] { result, uid, finalSecret, token, unixTime });

  1025.                     }

  1026.                     else

  1027.                     {

  1028.                         // They need a new entry

  1029.                         string insert = @"INSERT INTO gogs.two_factor (uid, secret, scratch_token, created_unix, updated_unix) VALUES ({0}, {1}, {2}, {3}, {4})";

  1030. 

  1031.                         mySQL.Execute(insert, new object[] { uid, finalSecret, token, unixTime, 0 });

  1032.                     }

  1033.                 }

  1034.             }

  1035.             catch (Exception ex)

  1036.             {

  1037.                 throw new Exception("Unable to edit git account two factor.", ex);

  1038.             }

  1039.         }

  1040. 

  1041.         public static void DeleteUserGitTwoFactor(Config config, string username)

  1042.         {

  1043.             try

  1044.             {

  1045.                 // If Git is enabled

  1046.                 if (config.GitConfig.Enabled)

  1047.                 {

  1048.                     // Git user exists?

  1049.                     if (!UserGitExists(config, username))

  1050.                     {

  1051.                         throw new Exception($"Git User '{username}' does not exist.");

  1052.                     }

  1053. 

  1054.                     // Create connection to the DB

  1055.                     Utilities.MysqlDatabase mySQL = new Utilities.MysqlDatabase(config.GitConfig.Database.Server, config.GitConfig.Database.Database, config.GitConfig.Database.Username, config.GitConfig.Database.Password, config.GitConfig.Database.Port);

  1056. 

  1057.                     // Get the user's UID

  1058.                     string email = GetUserEmailAddress(config, username);

  1059. 

  1060.                     // See if they have Two Factor already

  1061.                     string deleteSql = @"DELETE tf.* 

  1062.                                 FROM gogs.two_factor tf

  1063.                                 LEFT JOIN gogs.user u ON u.id = tf.uid

  1064.                                 WHERE u.login_name = {0}";

  1065.                     mySQL.Execute(deleteSql, new object[] { email });

  1066.                 }

  1067.             }

  1068.             catch (Exception ex)

  1069.             {

  1070.                 throw new Exception("Unable to delete git account two factor.", ex);

  1071.             }

  1072.         }

  1073.         #endregion

  1074.     }

  1075. }