Teknikode
/
Teknik
關註 3
收藏 18
複製 4
程式碼 問題管理 39 合併請求 0 版本發佈 3 Wiki Activity
The next generation of the Teknik Services. Written in ASP.NET. https://www.teknik.io/
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
628 Commit
2 分支
目錄樹: f5d1f94eef
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from 'f5d1f94eef'
${ noResults }
Teknik/Teknik/Areas/User/Utility/UserHelper.cs

UserHelper.cs 50KB
原始文件 Blame 文件歷史

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356 
  1. using System;

  2. using System.Collections.Generic;

  3. using System.IO;

  4. using System.Linq;

  5. using System.Net;

  6. using System.Net.Mail;

  7. using System.Runtime.InteropServices;

  8. using System.Security.Cryptography;

  9. using System.Text;

  10. using System.Text.RegularExpressions;

  11. using System.Threading.Tasks;

  12. using System.Web;

  13. using Teknik.Areas.Blog.Models;

  14. using Teknik.Areas.Shortener.Models;

  15. using Teknik.Areas.Users.Models;

  16. using Teknik.Configuration;

  17. using Teknik.Utilities;

  18. using Teknik.Models;

  19. using Teknik.Utilities.Cryptography;

  20. using MD5 = Teknik.Utilities.Cryptography.MD5;

  21. using SHA256 = Teknik.Utilities.Cryptography.SHA256;

  22. using SHA384 = Teknik.Utilities.Cryptography.SHA384;

  23. using Teknik.Data;

  24. using Microsoft.EntityFrameworkCore;

  25. using Microsoft.AspNetCore.Http;

  26. using System.Security.Claims;

  27. using Microsoft.AspNetCore.Authentication.Cookies;

  28. using Teknik.MailService;

  29. using Teknik.GitService;

  30. 

  31. namespace Teknik.Areas.Users.Utility

  32. {

  33.     public static class UserHelper

  34.     {

  35.         #region Account Management

  36.         public static List<string> GetReservedUsernames(Config config)

  37.         {

  38.             List<string> foundNames = new List<string>();

  39.             if (config != null)

  40.             {

  41.                 string path = config.UserConfig.ReservedUsernameDefinitionFile;

  42.                 if (File.Exists(path))

  43.                 {

  44.                     string[] names = File.ReadAllLines(path);

  45.                     foundNames = names.ToList();

  46.                 }

  47.             }

  48.             return foundNames;

  49.         }

  50. 

  51.         public static bool UsernameReserved(Config config, string username)

  52.         {

  53.             // Load reserved usernames

  54.             List<string> reserved = GetReservedUsernames(config);

  55.             return (reserved.Exists(u => u.ToLower() == username.ToLower()));

  56.         }

  57. 

  58.         public static bool ValidUsername(Config config, string username)

  59.         {

  60.             bool isValid = true;

  61. 

  62.             // Must be something there

  63.             isValid &= !string.IsNullOrEmpty(username);

  64. 

  65.             // Is the format correct?

  66.             Regex reg = new Regex(config.UserConfig.UsernameFilter);

  67.             isValid &= reg.IsMatch(username);

  68. 

  69.             // Meets the min length?

  70.             isValid &= (username.Length >= config.UserConfig.MinUsernameLength);

  71. 

  72.             // Meets the max length?

  73.             isValid &= (username.Length <= config.UserConfig.MaxUsernameLength);

  74. 

  75.             return isValid;

  76.         }

  77. 

  78.         public static bool UsernameAvailable(TeknikEntities db, Config config, string username)

  79.         {

  80.             bool isAvailable = true;

  81. 

  82.             isAvailable &= ValidUsername(config, username);

  83.             isAvailable &= !UsernameReserved(config, username);

  84.             isAvailable &= !UserExists(db, username);

  85.             isAvailable &= !UserEmailExists(config, GetUserEmailAddress(config, username));

  86.             isAvailable &= !UserGitExists(config, username);

  87. 

  88.             return isAvailable;

  89.         }

  90. 

  91.         public static DateTime GetLastAccountActivity(TeknikEntities db, Config config, User user)

  92.         {

  93.             try

  94.             {

  95.                 DateTime lastActive = new DateTime(1900, 1, 1);

  96. 

  97.                 if (UserEmailExists(config, GetUserEmailAddress(config, user.Username)))

  98.                 {

  99.                     DateTime emailLastActive = UserEmailLastActive(config, GetUserEmailAddress(config, user.Username));

  100.                     if (lastActive < emailLastActive)

  101.                         lastActive = emailLastActive;

  102.                 }

  103. 

  104.                 if (UserGitExists(config, user.Username))

  105.                 {

  106.                     DateTime gitLastActive = UserGitLastActive(config, user.Username);

  107.                     if (lastActive < gitLastActive)

  108.                         lastActive = gitLastActive;

  109.                 }

  110. 

  111.                 if (UserExists(db, user.Username))

  112.                 {

  113.                     DateTime userLastActive = UserLastActive(db, config, user);

  114.                     if (lastActive < userLastActive)

  115.                         lastActive = userLastActive;

  116.                 }

  117. 

  118.                 return lastActive;

  119.             }

  120.             catch (Exception ex)

  121.             {

  122.                 throw new Exception("Unable to determine last account activity.", ex);

  123.             }

  124.         }

  125. 

  126.         public static string GeneratePassword(Config config, User user, string password)

  127.         {

  128.             try

  129.             {

  130.                 string username = user.Username.ToLower();

  131.                 if (user.Transfers.ToList().Exists(t => t.Type == TransferTypes.CaseSensitivePassword))

  132.                 {

  133.                     username = user.Username;

  134.                 }

  135.                 byte[] hashBytes = SHA384.Hash(username, password);

  136.                 string hash = hashBytes.ToHex();

  137. 

  138.                 if (user.Transfers.ToList().Exists(t => t.Type == TransferTypes.ASCIIPassword))

  139.                 {

  140.                     hash = Encoding.ASCII.GetString(hashBytes);

  141.                 }

  142. 

  143.                 if (user.Transfers.ToList().Exists(t => t.Type == TransferTypes.Sha256Password))

  144.                 {

  145.                     hash = SHA256.Hash(password, config.Salt1, config.Salt2);

  146.                 }

  147. 

  148.                 return hash;

  149.             }

  150.             catch (Exception ex)

  151.             {

  152.                 throw new Exception("Unable to generate password.", ex);

  153.             }

  154.         }

  155. 

  156.         public static string GenerateAuthToken(TeknikEntities db, string username)

  157.         {

  158.             try

  159.             {

  160.                 bool validToken = false;

  161.                 string token = string.Empty;

  162.                 while (!validToken)

  163.                 {

  164.                     username = username.ToLower();

  165.                     byte[] hashBytes = SHA384.Hash(username, StringHelper.RandomString(24));

  166.                     token = hashBytes.ToHex();

  167. 

  168.                     // Make sure it isn't a duplicate

  169.                     string hashedToken = SHA256.Hash(token);

  170.                     if (!db.AuthTokens.Where(t => t.HashedToken == hashedToken).Any())

  171.                     {

  172.                         validToken = true;

  173.                     }

  174.                 }

  175. 

  176.                 return token;

  177.             }

  178.             catch (Exception ex)

  179.             {

  180.                 throw new Exception("Unable to generate user auth token.", ex);

  181.             }

  182.         }

  183. 

  184.         public static void AddAccount(TeknikEntities db, Config config, User user, string password)

  185.         {

  186.             try

  187.             {

  188.                 // Create an Email Account

  189.                 AddUserEmail(config, GetUserEmailAddress(config, user.Username), password);

  190. 

  191.                 // Create a Git Account

  192.                 AddUserGit(config, user.Username, password);

  193. 

  194.                 // Add User

  195.                 AddUser(db, config, user, password);

  196.             }

  197.             catch (Exception ex)

  198.             {

  199.                 throw new Exception("Unable to create account.", ex);

  200.             }

  201.         }

  202. 

  203.         public static void EditAccount(TeknikEntities db, Config config, User user)

  204.         {

  205.             EditAccount(db, config, user, false, string.Empty);

  206.         }

  207. 

  208.         public static void EditAccount(TeknikEntities db, Config config, User user, bool changePass, string password)

  209.         {

  210.             try

  211.             {

  212.                 // Changing Password?

  213.                 if (changePass)

  214.                 {

  215.                     // Make sure they have a git and email account before resetting their password

  216.                     string email = GetUserEmailAddress(config, user.Username);

  217.                     if (config.EmailConfig.Enabled && !UserEmailExists(config, email))

  218.                     {

  219.                         AddUserEmail(config, email, password);

  220.                     }

  221. 

  222.                     if (config.GitConfig.Enabled && !UserGitExists(config, user.Username))

  223.                     {

  224.                         AddUserGit(config, user.Username, password);

  225.                     }

  226. 

  227.                     // Change email password

  228.                     EditUserEmailPassword(config, GetUserEmailAddress(config, user.Username), password);

  229. 

  230.                     // Update Git password

  231.                     EditUserGitPassword(config, user.Username, password);

  232.                 }

  233.                 // Update User

  234.                 EditUser(db, config, user, changePass, password);

  235.             }

  236.             catch (Exception ex)

  237.             {

  238.                 throw new Exception("Unable to edit account.", ex);

  239.             }

  240.         }

  241. 

  242.         public static void EditAccountType(TeknikEntities db, Config config, string username, AccountType type)

  243.         {

  244.             try

  245.             {

  246.                 if (!UserExists(db, username))

  247.                     throw new Exception($"The user provided does not exist: {username}");

  248. 

  249.                 // Get the user to edit

  250.                 User user = GetUser(db, username);

  251. 

  252.                 string email = GetUserEmailAddress(config, username);

  253. 

  254.                 // Edit the user type

  255.                 user.AccountType = type;

  256.                 EditUser(db, config, user);

  257. 

  258.                 // Add/Remove account type features depending on the type

  259.                 switch (type)

  260.                 {

  261.                     case AccountType.Basic:

  262.                         // Set the email size to 1GB

  263.                         EditUserEmailMaxSize(config, email, config.EmailConfig.MaxSize);

  264. 

  265.                         // Set the email max/day to 100

  266.                         EditUserEmailMaxEmailsPerDay(config, email, 100);

  267.                         break;

  268.                     case AccountType.Premium:

  269.                         // Set the email size to 5GB

  270.                         EditUserEmailMaxSize(config, email, 5000);

  271. 

  272.                         // Set the email max/day to infinite (-1)

  273.                         EditUserEmailMaxEmailsPerDay(config, email, -1);

  274.                         break;

  275.                 }

  276.             }

  277.             catch (Exception ex)

  278.             {

  279.                 throw new Exception($"Unable to edit the account type [{type}] for: {username}", ex);

  280.             }

  281.         }

  282. 

  283.         public static void EditAccountStatus(TeknikEntities db, Config config, string username, AccountStatus status)

  284.         {

  285.             try

  286.             {

  287.                 if (!UserExists(db, username))

  288.                     throw new Exception($"The user provided does not exist: {username}");

  289. 

  290.                 // Get the user to edit

  291.                 User user = GetUser(db, username);

  292. 

  293.                 string email = GetUserEmailAddress(config, username);

  294. 

  295.                 // Edit the user type

  296.                 user.AccountStatus = status;

  297.                 EditUser(db, config, user);

  298. 

  299.                 // Add/Remove account type features depending on the type

  300.                 switch (status)

  301.                 {

  302.                     case AccountStatus.Active:

  303.                         // Enable Email

  304.                         EnableUserEmail(config, email);

  305.                         // Enable Git

  306.                         EnableUserGit(config, username);

  307.                         break;

  308.                     case AccountStatus.Banned:

  309.                         // Disable Email

  310.                         DisableUserEmail(config, email);

  311.                         // Disable Git

  312.                         DisableUserGit(config, username);

  313.                         break;

  314.                 }

  315.             }

  316.             catch (Exception ex)

  317.             {

  318.                 throw new Exception($"Unable to edit the account status [{status}] for: {username}", ex);

  319.             }

  320.         }

  321. 

  322.         public static void DeleteAccount(TeknikEntities db, Config config, User user)

  323.         {

  324.             try

  325.             {

  326.                 // Delete Email Account

  327.                 if (UserEmailExists(config, GetUserEmailAddress(config, user.Username)))

  328.                     DeleteUserEmail(config, GetUserEmailAddress(config, user.Username));

  329. 

  330.                 // Delete Git Account

  331.                 if (UserGitExists(config, user.Username))

  332.                     DeleteUserGit(config, user.Username);

  333. 

  334.                 // Delete User Account

  335.                 DeleteUser(db, config, user);

  336.             }

  337.             catch (Exception ex)

  338.             {

  339.                 throw new Exception("Unable to delete account.", ex);

  340.             }

  341.         }

  342.         #endregion

  343. 

  344.         #region User Management

  345.         public static User GetUser(TeknikEntities db, string username)

  346.         {

  347.             User user = db.Users

  348.                 .Include(u => u.UserSettings)

  349.                 .Include(u => u.SecuritySettings)

  350.                 .Include(u => u.BlogSettings)

  351.                 .Include(u => u.UploadSettings)

  352.                 .Where(b => b.Username == username).FirstOrDefault();

  353. 

  354.             return user;

  355.         }

  356. 

  357.         public static User GetUserFromToken(TeknikEntities db, string username, string token)

  358.         {

  359.             if (token != null && !string.IsNullOrEmpty(username))

  360.             {

  361.                 string hashedToken = SHA256.Hash(token);

  362.                 return db.Users.FirstOrDefault(u => u.AuthTokens.Select(a => a.HashedToken).Contains(hashedToken) && u.Username == username);

  363.             }

  364.             return null;

  365.         }

  366. 

  367.         public static bool UserExists(TeknikEntities db, string username)

  368.         {

  369.             User user = GetUser(db, username);

  370.             if (user != null)

  371.             {

  372.                 return true;

  373.             }

  374. 

  375.             return false;

  376.         }

  377. 

  378.         public static DateTime UserLastActive(TeknikEntities db, Config config, User user)

  379.         {

  380.             try

  381.             {

  382.                 DateTime lastActive = new DateTime(1900, 1, 1);

  383. 

  384.                 if (lastActive < user.LastSeen)

  385.                     lastActive = user.LastSeen;

  386. 

  387.                 return lastActive;

  388.             }

  389.             catch (Exception ex)

  390.             {

  391.                 throw new Exception("Unable to determine last user activity.", ex);

  392.             }

  393.         }

  394. 

  395.         public static void UpdateTokenLastUsed(TeknikEntities db, string username, string token, DateTime lastUsed)

  396.         {

  397.             User foundUser = GetUser(db, username);

  398.             if (foundUser != null)

  399.             {

  400.                 // Update the user's last seen date

  401.                 if (foundUser.LastSeen < lastUsed)

  402.                 {

  403.                     foundUser.LastSeen = lastUsed;

  404.                     db.Entry(foundUser).State = EntityState.Modified;

  405.                 }

  406. 

  407.                 string hashedToken = SHA256.Hash(token);

  408.                 List<AuthToken> tokens = foundUser.AuthTokens.Where(t => t.HashedToken == hashedToken).ToList();

  409.                 if (tokens != null)

  410.                 {

  411.                     foreach (AuthToken foundToken in tokens)

  412.                     {

  413.                         foundToken.LastDateUsed = lastUsed;

  414.                         db.Entry(foundToken).State = EntityState.Modified;

  415.                     }

  416.                 }

  417.                 db.SaveChanges();

  418.             }

  419.         }

  420. 

  421.         public static bool UserPasswordCorrect(TeknikEntities db, Config config, User user, string password)

  422.         {

  423.             try

  424.             {

  425.                 string hash = GeneratePassword(config, user, password);

  426.                 return db.Users.Any(b => b.Username == user.Username && b.HashedPassword == hash);

  427.             }

  428.             catch (Exception ex)

  429.             {

  430.                 throw new Exception("Unable to determine if password is correct.", ex);

  431.             }

  432.         }

  433. 

  434.         public static bool UserTokenCorrect(TeknikEntities db, string username, string token)

  435.         {

  436.             User foundUser = GetUserFromToken(db, username, token);

  437.             if (foundUser != null)

  438.             {

  439.                 return true;

  440.             }

  441.             return false;

  442.         }

  443. 

  444.         public static bool UserHasRoles(User user, params string[] roles)

  445.         {

  446.             bool hasRole = true;

  447.             if (user != null)

  448.             {

  449.                 // Check if they have the role specified

  450.                 if (roles.Any())

  451.                 {

  452.                     foreach (string role in roles)

  453.                     {

  454.                         if (!string.IsNullOrEmpty(role))

  455.                         {

  456.                             if (user.UserRoles.Where(ur => ur.Role.Name == role).Any())

  457.                             {

  458.                                 // They have the role!

  459.                                 return true;

  460.                             }

  461.                             else

  462.                             {

  463.                                 // They don't have this role, so let's reset the hasRole

  464.                                 hasRole = false;

  465.                             }

  466.                         }

  467.                         else

  468.                         {

  469.                             // Only set this if we haven't failed once already

  470.                             hasRole &= true;

  471.                         }

  472.                     }

  473.                 }

  474.                 else

  475.                 {

  476.                     // No roles to check, so they pass!

  477.                     return true;

  478.                 }

  479.             }

  480.             else

  481.             {

  482.                 hasRole = false;

  483.             }

  484.             return hasRole;

  485.         }

  486. 

  487.         public static void TransferUser(TeknikEntities db, Config config, User user, string password)

  488.         {

  489.             try

  490.             {

  491.                 List<TransferType> transfers = user.Transfers.ToList();

  492.                 for (int i = 0; i < transfers.Count; i++)

  493.                 {

  494.                     TransferType transfer = transfers[i];

  495.                     switch (transfer.Type)

  496.                     {

  497.                         case TransferTypes.Sha256Password:

  498.                         case TransferTypes.CaseSensitivePassword:

  499.                         case TransferTypes.ASCIIPassword:

  500.                             user.HashedPassword = SHA384.Hash(user.Username.ToLower(), password).ToHex();

  501.                             break;

  502.                         default:

  503.                             break;

  504.                     }

  505.                     user.Transfers.Remove(transfer);

  506.                 }

  507.                 db.Entry(user).State = EntityState.Modified;

  508.                 db.SaveChanges();

  509.             }

  510.             catch (Exception ex)

  511.             {

  512.                 throw new Exception("Unable to transfer user info.", ex);

  513.             }

  514.         }

  515. 

  516.         public static void AddUser(TeknikEntities db, Config config, User user, string password)

  517.         {

  518.             try

  519.             {

  520.                 // Add User

  521.                 user.HashedPassword = GeneratePassword(config, user, password);

  522.                 db.Users.Add(user);

  523.                 db.SaveChanges();

  524. 

  525.                 // Generate blog for the user

  526.                 var newBlog = new Blog.Models.Blog();

  527.                 newBlog.UserId = user.UserId;

  528.                 db.Blogs.Add(newBlog);

  529.                 db.SaveChanges();

  530.             }

  531.             catch (Exception ex)

  532.             {

  533.                 throw new Exception("Unable to create user.", ex);

  534.             }

  535.         }

  536. 

  537.         public static void EditUser(TeknikEntities db, Config config, User user)

  538.         {

  539.             EditUser(db, config, user, false, string.Empty);

  540.         }

  541. 

  542.         public static void EditUser(TeknikEntities db, Config config, User user, bool changePass, string password)

  543.         {

  544.             try

  545.             {

  546.                 // Changing Password?

  547.                 if (changePass)

  548.                 {

  549.                     // Update User password

  550.                     user.HashedPassword = SHA384.Hash(user.Username.ToLower(), password).ToHex();

  551. 

  552.                     // Remove any password transfer items for the account

  553.                     for (int i = 0; i < user.Transfers.Count; i++)

  554.                     {

  555.                         TransferType type = user.Transfers.ToList()[i];

  556.                         if (type.Type == TransferTypes.ASCIIPassword || type.Type == TransferTypes.CaseSensitivePassword || type.Type == TransferTypes.Sha256Password)

  557.                         {

  558.                             user.Transfers.Remove(type);

  559.                             i--;

  560.                         }

  561.                     }

  562.                 }

  563.                 db.Entry(user).State = EntityState.Modified;

  564.                 db.SaveChanges();

  565.             }

  566.             catch (Exception ex)

  567.             {

  568.                 throw new Exception(string.Format("Unable to edit user {0}.", user.Username), ex);

  569.             }

  570.         }

  571. 

  572.         public static void DeleteUser(TeknikEntities db, Config config, User user)

  573.         {

  574.             try

  575.             {

  576.                 // Update uploads

  577.                 List<Upload.Models.Upload> uploads = db.Uploads.Where(u => u.User.Username == user.Username).ToList();

  578.                 if (uploads.Any())

  579.                 {

  580.                     foreach (Upload.Models.Upload upload in uploads)

  581.                     {

  582.                         upload.UserId = null;

  583.                         db.Entry(upload).State = EntityState.Modified;

  584.                     }

  585.                     db.SaveChanges();

  586.                 }

  587. 

  588.                 // Update pastes

  589.                 List<Paste.Models.Paste> pastes = db.Pastes.Where(u => u.User.Username == user.Username).ToList();

  590.                 if (pastes.Any())

  591.                 {

  592.                     foreach (Paste.Models.Paste paste in pastes)

  593.                     {

  594.                         paste.UserId = null;

  595.                         db.Entry(paste).State = EntityState.Modified;

  596.                     }

  597.                     db.SaveChanges();

  598.                 }

  599. 

  600.                 // Update shortened urls

  601.                 List<ShortenedUrl> shortUrls = db.ShortenedUrls.Where(u => u.User.Username == user.Username).ToList();

  602.                 if (shortUrls.Any())

  603.                 {

  604.                     foreach (ShortenedUrl shortUrl in shortUrls)

  605.                     {

  606.                         shortUrl.UserId = null;

  607.                         db.Entry(shortUrl).State = EntityState.Modified;

  608.                     }

  609.                     db.SaveChanges();

  610.                 }

  611. 

  612.                 // Update vaults

  613.                 List<Vault.Models.Vault> vaults = db.Vaults.Where(u => u.User.Username == user.Username).ToList();

  614.                 if (vaults.Any())

  615.                 {

  616.                     foreach (Vault.Models.Vault vault in vaults)

  617.                     {

  618.                         vault.UserId = null;

  619.                         db.Entry(vault).State = EntityState.Modified;

  620.                     }

  621.                     db.SaveChanges();

  622.                 }

  623. 

  624.                 // Delete Blogs

  625.                 Blog.Models.Blog blog = db.Blogs.Where(u => u.User.Username == user.Username).FirstOrDefault();

  626.                 if (blog != null)

  627.                 {

  628.                     db.Blogs.Remove(blog);

  629.                     db.SaveChanges();

  630.                 }

  631. 

  632.                 // Delete post comments

  633.                 List<BlogPostComment> postComments = db.BlogPostComments.Where(u => u.User.Username == user.Username).ToList();

  634.                 if (postComments.Any())

  635.                 {

  636.                     foreach (BlogPostComment postComment in postComments)

  637.                     {

  638.                         db.BlogPostComments.Remove(postComment);

  639.                     }

  640.                     db.SaveChanges();

  641.                 }

  642. 

  643.                 // Delete podcast comments

  644.                 List<Podcast.Models.PodcastComment> podComments = db.PodcastComments.Where(u => u.User.Username == user.Username).ToList();

  645.                 if (podComments.Any())

  646.                 {

  647.                     foreach (Podcast.Models.PodcastComment podComment in podComments)

  648.                     {

  649.                         db.PodcastComments.Remove(podComment);

  650.                     }

  651.                     db.SaveChanges();

  652.                 }

  653. 

  654.                 // Delete Recovery Email Verifications

  655.                 List<RecoveryEmailVerification> verCodes = db.RecoveryEmailVerifications.Where(r => r.User.Username == user.Username).ToList();

  656.                 if (verCodes.Any())

  657.                 {

  658.                     foreach (RecoveryEmailVerification verCode in verCodes)

  659.                     {

  660.                         db.RecoveryEmailVerifications.Remove(verCode);

  661.                     }

  662.                     db.SaveChanges();

  663.                 }

  664. 

  665.                 // Delete Password Reset Verifications 

  666.                 List<ResetPasswordVerification> verPass = db.ResetPasswordVerifications.Where(r => r.User.Username == user.Username).ToList();

  667.                 if (verPass.Any())

  668.                 {

  669.                     foreach (ResetPasswordVerification ver in verPass)

  670.                     {

  671.                         db.ResetPasswordVerifications.Remove(ver);

  672.                     }

  673.                     db.SaveChanges();

  674.                 }

  675. 

  676.                 // Delete Owned Invite Codes

  677.                 List<InviteCode> ownedCodes = db.InviteCodes.Where(i => i.Owner.Username == user.Username).ToList();

  678.                 if (ownedCodes.Any())

  679.                 {

  680.                     foreach (InviteCode code in ownedCodes)

  681.                     {

  682.                         db.InviteCodes.Remove(code);

  683.                     }

  684.                     db.SaveChanges();

  685.                 }

  686. 

  687.                 // Delete Claimed Invite Code

  688.                 List<InviteCode> claimedCodes = db.InviteCodes.Where(i => i.ClaimedUser.Username == user.Username).ToList();

  689.                 if (claimedCodes.Any())

  690.                 {

  691.                     foreach (InviteCode code in claimedCodes)

  692.                     {

  693.                         db.InviteCodes.Remove(code);

  694.                     }

  695.                     db.SaveChanges();

  696.                 }

  697. 

  698.                 // Delete Auth Tokens

  699.                 List<AuthToken> authTokens = db.AuthTokens.Where(t => t.User.UserId == user.UserId).ToList();

  700.                 if (authTokens.Any())

  701.                 {

  702.                     foreach (AuthToken authToken in authTokens)

  703.                     {

  704.                         db.AuthTokens.Remove(authToken);

  705.                     }

  706.                     db.SaveChanges();

  707.                 }

  708. 

  709.                 // Delete User

  710.                 db.Users.Remove(user);

  711.                 db.SaveChanges();

  712.             }

  713.             catch (Exception ex)

  714.             {

  715.                 throw new Exception(string.Format("Unable to delete user {0}.", user.Username), ex);

  716.             }

  717.         }

  718. 

  719.         public static string CreateRecoveryEmailVerification(TeknikEntities db, Config config, User user)

  720.         {

  721.             // Check to see if there already is a verification code for the user

  722.             List<RecoveryEmailVerification> verCodes = db.RecoveryEmailVerifications.Where(r => r.User.Username == user.Username).ToList();

  723.             if (verCodes != null && verCodes.Any())

  724.             {

  725.                 foreach (RecoveryEmailVerification verCode in verCodes)

  726.                 {

  727.                     db.RecoveryEmailVerifications.Remove(verCode);

  728.                 }

  729.             }

  730. 

  731.             // Create a new verification code and add it

  732.             string verifyCode = StringHelper.RandomString(24);

  733.             RecoveryEmailVerification ver = new RecoveryEmailVerification();

  734.             ver.UserId = user.UserId;

  735.             ver.Code = verifyCode;

  736.             ver.DateCreated = DateTime.Now;

  737.             db.RecoveryEmailVerifications.Add(ver);

  738.             db.SaveChanges();

  739. 

  740.             return verifyCode;

  741.         }

  742. 

  743.         public static void SendRecoveryEmailVerification(Config config, string username, string email, string resetUrl, string verifyUrl)

  744.         {

  745.             SmtpClient client = new SmtpClient();

  746.             client.Host = config.ContactConfig.EmailAccount.Host;

  747.             client.Port = config.ContactConfig.EmailAccount.Port;

  748.             client.EnableSsl = config.ContactConfig.EmailAccount.SSL;

  749.             client.DeliveryMethod = SmtpDeliveryMethod.Network;

  750.             client.UseDefaultCredentials = true;

  751.             client.Credentials = new NetworkCredential(config.ContactConfig.EmailAccount.Username, config.ContactConfig.EmailAccount.Password);

  752.             client.Timeout = 5000;

  753. 

  754.             MailMessage mail = new MailMessage(new MailAddress(config.ContactConfig.EmailAccount.EmailAddress, "Teknik"), new MailAddress(email, username));

  755.             mail.Subject = "Recovery Email Validation";

  756.             mail.Body = string.Format(@"Hello {0},

  757. 

  758. You are recieving this email because you have specified this email address as your recovery email.  In the event that you forget your password, you can visit {1} and request a temporary password reset key be sent to this email.  You will then be able to reset and choose a new password.

  759. 

  760. In order to verify that you own this email, please click the following link or paste it into your browser: {2}  

  761. 

  762. If you recieved this email and you did not sign up for an account, please email us at {3} and ignore the verification link.

  763. 

  764. - Teknik", username, resetUrl, verifyUrl, config.SupportEmail);

  765.             mail.BodyEncoding = UTF8Encoding.UTF8;

  766.             mail.DeliveryNotificationOptions = DeliveryNotificationOptions.Never;

  767. 

  768.             client.Send(mail);

  769.         }

  770. 

  771.         public static bool VerifyRecoveryEmail(TeknikEntities db, Config config, string username, string code)

  772.         {

  773.             User user = GetUser(db, username);

  774.             RecoveryEmailVerification verCode = db.RecoveryEmailVerifications.Where(r => r.User.Username == username && r.Code == code).FirstOrDefault();

  775.             if (verCode != null)

  776.             {

  777.                 // We have a match, so clear out the verifications for that user

  778.                 List<RecoveryEmailVerification> verCodes = db.RecoveryEmailVerifications.Where(r => r.User.Username == username).ToList();

  779.                 if (verCodes != null && verCodes.Any())

  780.                 {

  781.                     foreach (RecoveryEmailVerification ver in verCodes)

  782.                     {

  783.                         db.RecoveryEmailVerifications.Remove(ver);

  784.                     }

  785.                 }

  786.                 // Update the user

  787.                 user.SecuritySettings.RecoveryVerified = true;

  788.                 db.Entry(user).State = EntityState.Modified;

  789.                 db.SaveChanges();

  790. 

  791.                 return true;

  792.             }

  793.             return false;

  794.         }

  795. 

  796.         public static string CreateResetPasswordVerification(TeknikEntities db, Config config, User user)

  797.         {

  798.             // Check to see if there already is a verification code for the user

  799.             List<ResetPasswordVerification> verCodes = db.ResetPasswordVerifications.Where(r => r.User.Username == user.Username).ToList();

  800.             if (verCodes != null && verCodes.Any())

  801.             {

  802.                 foreach (ResetPasswordVerification verCode in verCodes)

  803.                 {

  804.                     db.ResetPasswordVerifications.Remove(verCode);

  805.                 }

  806.             }

  807. 

  808.             // Create a new verification code and add it

  809.             string verifyCode = StringHelper.RandomString(24);

  810.             ResetPasswordVerification ver = new ResetPasswordVerification();

  811.             ver.UserId = user.UserId;

  812.             ver.Code = verifyCode;

  813.             ver.DateCreated = DateTime.Now;

  814.             db.ResetPasswordVerifications.Add(ver);

  815.             db.SaveChanges();

  816. 

  817.             return verifyCode;

  818.         }

  819. 

  820.         public static void SendResetPasswordVerification(Config config, string username, string email, string resetUrl)

  821.         {

  822.             SmtpClient client = new SmtpClient();

  823.             client.Host = config.ContactConfig.EmailAccount.Host;

  824.             client.Port = config.ContactConfig.EmailAccount.Port;

  825.             client.EnableSsl = config.ContactConfig.EmailAccount.SSL;

  826.             client.DeliveryMethod = SmtpDeliveryMethod.Network;

  827.             client.UseDefaultCredentials = true;

  828.             client.Credentials = new NetworkCredential(config.ContactConfig.EmailAccount.Username, config.ContactConfig.EmailAccount.Password);

  829.             client.Timeout = 5000;

  830. 

  831.             MailMessage mail = new MailMessage(new MailAddress(config.ContactConfig.EmailAccount.EmailAddress, "Teknik"), new MailAddress(email, username));

  832.             mail.Subject = "Password Reset Request";

  833.             mail.Body = string.Format(@"Hello {0},

  834. 

  835. You are recieving this email because either you or someone has requested a password reset for your account and this email was specified as the recovery email.

  836. 

  837. To proceed in resetting your password, please click the following link or paste it into your browser: {1}  

  838. 

  839. If you recieved this email and you did not reset your password, you can ignore this email and email us at {2} to prevent it occuring again.

  840. 

  841. - Teknik", username, resetUrl, config.SupportEmail);

  842.             mail.BodyEncoding = UTF8Encoding.UTF8;

  843.             mail.DeliveryNotificationOptions = DeliveryNotificationOptions.Never;

  844. 

  845.             client.Send(mail);

  846.         }

  847. 

  848.         public static bool VerifyResetPassword(TeknikEntities db, Config config, string username, string code)

  849.         {

  850.             User user = GetUser(db, username);

  851.             ResetPasswordVerification verCode = db.ResetPasswordVerifications.Where(r => r.User.Username == username && r.Code == code).FirstOrDefault();

  852.             if (verCode != null)

  853.             {

  854.                 // We have a match, so clear out the verifications for that user

  855.                 List<ResetPasswordVerification> verCodes = db.ResetPasswordVerifications.Where(r => r.User.Username == username).ToList();

  856.                 if (verCodes != null && verCodes.Any())

  857.                 {

  858.                     foreach (ResetPasswordVerification ver in verCodes)

  859.                     {

  860.                         db.ResetPasswordVerifications.Remove(ver);

  861.                     }

  862.                 }

  863.                 db.SaveChanges();

  864. 

  865.                 return true;

  866.             }

  867.             return false;

  868.         }

  869.         #endregion

  870. 

  871.         #region Email Management

  872.         public static string GetUserEmailAddress(Config config, string username)

  873.         {

  874.             return string.Format("{0}@{1}", username, config.EmailConfig.Domain);

  875.         }

  876. 

  877.         public static IMailService CreateMailService(Config config)

  878.         {

  879.             return new HMailService(

  880.                 config.EmailConfig.Username,

  881.                 config.EmailConfig.Password,

  882.                 config.EmailConfig.Domain,

  883.                 config.EmailConfig.CounterDatabase.Server,

  884.                 config.EmailConfig.CounterDatabase.Database,

  885.                 config.EmailConfig.CounterDatabase.Username,

  886.                 config.EmailConfig.CounterDatabase.Password,

  887.                 config.EmailConfig.CounterDatabase.Port

  888.                 );

  889.         }

  890. 

  891.         public static bool UserEmailExists(Config config, string email)

  892.         {

  893.             // If Email Server is enabled

  894.             if (config.EmailConfig.Enabled)

  895.             {

  896.                 var svc = CreateMailService(config);

  897.                 return svc.AccountExists(email);

  898.             }

  899.             return false;

  900.         }

  901. 

  902.         public static DateTime UserEmailLastActive(Config config, string email)

  903.         {

  904.             DateTime lastActive = new DateTime(1900, 1, 1);

  905. 

  906.             if (config.EmailConfig.Enabled)

  907.             {

  908.                 var svc = CreateMailService(config);

  909.                 var lastEmail = svc.LastActive(email);

  910.                 if (lastActive < lastEmail)

  911.                     lastActive = lastEmail;

  912.             }

  913.             return lastActive;

  914.         }

  915. 

  916.         public static void AddUserEmail(Config config, string email, string password)

  917.         {

  918.             try

  919.             {

  920.                 // If Email Server is enabled

  921.                 if (config.EmailConfig.Enabled)

  922.                 {

  923.                     var svc = CreateMailService(config);

  924.                     svc.CreateAccount(email, password, config.EmailConfig.MaxSize);

  925.                 }

  926.             }

  927.             catch (Exception ex)

  928.             {

  929.                 throw new Exception("Unable to add email.", ex);

  930.             }

  931.         }

  932. 

  933.         public static void EnableUserEmail(Config config, string email)

  934.         {

  935.             try

  936.             {

  937.                 // If Email Server is enabled

  938.                 if (config.EmailConfig.Enabled)

  939.                 {

  940.                     var svc = CreateMailService(config);

  941.                     svc.EnableAccount(email);

  942.                 }

  943.             }

  944.             catch (Exception ex)

  945.             {

  946.                 throw new Exception("Unable to enable email account.", ex);

  947.             }

  948.         }

  949. 

  950.         public static void DisableUserEmail(Config config, string email)

  951.         {

  952.             try

  953.             {

  954.                 // If Email Server is enabled

  955.                 if (config.EmailConfig.Enabled)

  956.                 {

  957.                     var svc = CreateMailService(config);

  958.                     svc.DisableAccount(email);

  959.                 }

  960.             }

  961.             catch (Exception ex)

  962.             {

  963.                 throw new Exception("Unable to disable email account.", ex);

  964.             }

  965.         }

  966. 

  967.         public static void EditUserEmailPassword(Config config, string email, string password)

  968.         {

  969.             try

  970.             {

  971.                 // If Email Server is enabled

  972.                 if (config.EmailConfig.Enabled)

  973.                 {

  974.                     var svc = CreateMailService(config);

  975.                     svc.EditPassword(email, password);

  976.                 }

  977.             }

  978.             catch (Exception ex)

  979.             {

  980.                 throw new Exception("Unable to edit email account password.", ex);

  981.             }

  982.         }

  983. 

  984.         public static void EditUserEmailMaxSize(Config config, string email, int size)

  985.         {

  986.             try

  987.             {

  988.                 // If Email Server is enabled

  989.                 if (config.EmailConfig.Enabled)

  990.                 {

  991.                     var svc = CreateMailService(config);

  992.                     svc.EditMaxSize(email, size);

  993.                 }

  994.             }

  995.             catch (Exception ex)

  996.             {

  997.                 throw new Exception("Unable to edit email account mailbox size.", ex);

  998.             }

  999.         }

  1000. 

  1001.         public static void EditUserEmailMaxEmailsPerDay(Config config, string email, int maxPerDay)

  1002.         {

  1003.             try

  1004.             {

  1005.                 // If Email Server is enabled

  1006.                 if (config.EmailConfig.Enabled)

  1007.                 {

  1008.                     var svc = CreateMailService(config);

  1009.                     svc.EditMaxEmailsPerDay(email, maxPerDay);

  1010.                 }

  1011.             }

  1012.             catch (Exception ex)

  1013.             {

  1014.                 throw new Exception("Unable to edit email account mailbox size.", ex);

  1015.             }

  1016.         }

  1017. 

  1018.         public static void DeleteUserEmail(Config config, string email)

  1019.         {

  1020.             try

  1021.             {

  1022.                 // If Email Server is enabled

  1023.                 if (config.EmailConfig.Enabled)

  1024.                 {

  1025.                     var svc = CreateMailService(config);

  1026.                     svc.DeleteAccount(email);

  1027.                 }

  1028.             }

  1029.             catch (Exception ex)

  1030.             {

  1031.                 throw new Exception("Unable to delete email account.", ex);

  1032.             }

  1033.         }

  1034.         #endregion

  1035. 

  1036.         #region Git Management

  1037.         public static IGitService CreateGitService(Config config)

  1038.         {

  1039.             return new GiteaService(

  1040.                 config.GitConfig.SourceId,

  1041.                 config.GitConfig.Host,

  1042.                 config.GitConfig.AccessToken,

  1043.                 config.GitConfig.Database.Server,

  1044.                 config.GitConfig.Database.Database,

  1045.                 config.GitConfig.Database.Username,

  1046.                 config.GitConfig.Database.Password,

  1047.                 config.GitConfig.Database.Port

  1048.                 );

  1049.         }

  1050. 

  1051.         public static bool UserGitExists(Config config, string username)

  1052.         {

  1053.             if (config.GitConfig.Enabled)

  1054.             {

  1055.                 try

  1056.                 {

  1057.                     var svc = CreateGitService(config);

  1058.                     return svc.AccountExists(username);

  1059.                 }

  1060.                 catch { }

  1061.             }

  1062.             return false;

  1063.         }

  1064. 

  1065.         public static DateTime UserGitLastActive(Config config, string username)

  1066.         {

  1067.             DateTime lastActive = new DateTime(1900, 1, 1);

  1068. 

  1069.             if (config.GitConfig.Enabled)

  1070.             {

  1071.                 // Git user exists?

  1072.                 if (!UserGitExists(config, username))

  1073.                 {

  1074.                     throw new Exception($"Git User '{username}' does not exist.");

  1075.                 }

  1076. 

  1077.                 string email = GetUserEmailAddress(config, username);

  1078. 

  1079.                 var svc = CreateGitService(config);

  1080.                 DateTime tmpLast = svc.LastActive(email);

  1081.                 if (lastActive < tmpLast)

  1082.                     lastActive = tmpLast;

  1083.             }

  1084.             return lastActive;

  1085.         }

  1086. 

  1087.         public static void AddUserGit(Config config, string username, string password)

  1088.         {

  1089.             try

  1090.             {

  1091.                 // If Git is enabled

  1092.                 if (config.GitConfig.Enabled)

  1093.                 {

  1094.                     string email = GetUserEmailAddress(config, username);

  1095. 

  1096.                     var svc = CreateGitService(config);

  1097.                     svc.CreateAccount(username, email, password);

  1098.                 }

  1099.             }

  1100.             catch (Exception ex)

  1101.             {

  1102.                 throw new Exception("Unable to add git account.", ex);

  1103.             }

  1104.         }

  1105. 

  1106.         public static void EditUserGitPassword(Config config, string username, string password)

  1107.         {

  1108.             try

  1109.             {

  1110.                 // If Git is enabled

  1111.                 if (config.GitConfig.Enabled)

  1112.                 {

  1113.                     // Git user exists?

  1114.                     if (!UserGitExists(config, username))

  1115.                     {

  1116.                         throw new Exception($"Git User '{username}' does not exist.");

  1117.                     }

  1118. 

  1119.                     string email = GetUserEmailAddress(config, username);

  1120. 

  1121.                     var svc = CreateGitService(config);

  1122.                     svc.EditPassword(username, email, password);

  1123.                 }

  1124.             }

  1125.             catch (Exception ex)

  1126.             {

  1127.                 throw new Exception("Unable to edit git account password.", ex);

  1128.             }

  1129.         }

  1130. 

  1131.         public static void EnableUserGit(Config config, string username)

  1132.         {

  1133.             try

  1134.             {

  1135.                 // If Git is enabled

  1136.                 if (config.GitConfig.Enabled)

  1137.                 {

  1138.                     // Git user exists?

  1139.                     if (!UserGitExists(config, username))

  1140.                     {

  1141.                         throw new Exception($"Git User '{username}' does not exist.");

  1142.                     }

  1143. 

  1144.                     string email = GetUserEmailAddress(config, username);

  1145. 

  1146.                     var svc = CreateGitService(config);

  1147.                     svc.EnableAccount(username, email);

  1148.                 }

  1149.             }

  1150.             catch (Exception ex)

  1151.             {

  1152.                 throw new Exception("Unable to enable git account.", ex);

  1153.             }

  1154.         }

  1155. 

  1156.         public static void DisableUserGit(Config config, string username)

  1157.         {

  1158.             try

  1159.             {

  1160.                 // If Git is enabled

  1161.                 if (config.GitConfig.Enabled)

  1162.                 {

  1163.                     // Git user exists?

  1164.                     if (!UserGitExists(config, username))

  1165.                     {

  1166.                         throw new Exception($"Git User '{username}' does not exist.");

  1167.                     }

  1168. 

  1169.                     string email = GetUserEmailAddress(config, username);

  1170. 

  1171.                     var svc = CreateGitService(config);

  1172.                     svc.EnableAccount(username, email);

  1173.                 }

  1174.             }

  1175.             catch (Exception ex)

  1176.             {

  1177.                 throw new Exception("Unable to disable git account.", ex);

  1178.             }

  1179.         }

  1180. 

  1181.         public static void DeleteUserGit(Config config, string username)

  1182.         {

  1183.             try

  1184.             {

  1185.                 // If Git is enabled

  1186.                 if (config.GitConfig.Enabled)

  1187.                 {

  1188.                     // Git user exists?

  1189.                     if (!UserGitExists(config, username))

  1190.                     {

  1191.                         throw new Exception($"Git User '{username}' does not exist.");

  1192.                     }

  1193. 

  1194.                     var svc = CreateGitService(config);

  1195.                     svc.DeleteAccount(username);

  1196.                 }

  1197.             }

  1198.             catch (Exception ex)

  1199.             {

  1200.                 throw new Exception("Unable to delete git account.", ex);

  1201.             }

  1202.         }

  1203. 

  1204.         public static void CreateUserGitTwoFactor(Config config, string username, string secret, int unixTime)

  1205.         {

  1206.             try

  1207.             {

  1208.                 // If Git is enabled

  1209.                 if (config.GitConfig.Enabled)

  1210.                 {

  1211.                     // Git user exists?

  1212.                     if (!UserGitExists(config, username))

  1213.                     {

  1214.                         throw new Exception($"Git User '{username}' does not exist.");

  1215.                     }

  1216. 

  1217.                     // Generate the scratch token

  1218.                     string token = StringHelper.RandomString(8);

  1219. 

  1220.                     // Get the Encryption Key from the git secret key

  1221.                     byte[] keyBytes = MD5.Hash(Encoding.UTF8.GetBytes(config.GitConfig.SecretKey));

  1222. 

  1223.                     // Modify the input secret

  1224.                     byte[] secBytes = Encoding.UTF8.GetBytes(secret);

  1225. 

  1226.                     // Generate the encrypted secret using AES CGM

  1227.                     byte[] encValue = Aes128CFB.Encrypt(secBytes, keyBytes);

  1228.                     string finalSecret = Convert.ToBase64String(encValue);

  1229. 

  1230.                     // Create connection to the DB

  1231.                     Utilities.MysqlDatabase mySQL = new Utilities.MysqlDatabase(config.GitConfig.Database.Server, config.GitConfig.Database.Database, config.GitConfig.Database.Username, config.GitConfig.Database.Password, config.GitConfig.Database.Port);

  1232.                     mySQL.MysqlErrorEvent += (sender, s) =>

  1233.                     {

  1234.                         throw new Exception("Unable to edit git account two factor.  Mysql Exception: " + s);

  1235.                     };

  1236. 

  1237.                     // Get the user's UID

  1238.                     string email = GetUserEmailAddress(config, username);

  1239.                     string userSelect = @"SELECT gogs.user.id FROM gogs.user WHERE gogs.user.login_name = {0}";

  1240.                     var uid = mySQL.ScalarQuery(userSelect, new object[] { email });

  1241. 

  1242.                     // See if they have Two Factor already

  1243.                     string sqlSelect = @"SELECT tf.id 

  1244.                                 FROM gogs.two_factor tf

  1245.                                 LEFT JOIN gogs.user u ON u.id = tf.uid

  1246.                                 WHERE u.login_name = {0}";

  1247.                     var result = mySQL.ScalarQuery(sqlSelect, new object[] { email });

  1248.                     

  1249.                     if (result != null)

  1250.                     {

  1251.                         // They have an entry!  Let's update it

  1252.                         string update = @"UPDATE gogs.two_factor tf SET tf.uid = {1}, tf.secret = {2}, tf.scratch_token = {3}, tf.updated_unix = {4} WHERE tf.id = {0}";

  1253. 

  1254.                         mySQL.Execute(update, new object[] { result, uid, finalSecret, token, unixTime });

  1255.                     }

  1256.                     else

  1257.                     {

  1258.                         // They need a new entry

  1259.                         string insert = @"INSERT INTO gogs.two_factor (uid, secret, scratch_token, created_unix, updated_unix) VALUES ({0}, {1}, {2}, {3}, {4})";

  1260. 

  1261.                         mySQL.Execute(insert, new object[] { uid, finalSecret, token, unixTime, 0 });

  1262.                     }

  1263.                 }

  1264.             }

  1265.             catch (Exception ex)

  1266.             {

  1267.                 throw new Exception("Unable to edit git account two factor.", ex);

  1268.             }

  1269.         }

  1270. 

  1271.         public static void DeleteUserGitTwoFactor(Config config, string username)

  1272.         {

  1273.             try

  1274.             {

  1275.                 // If Git is enabled

  1276.                 if (config.GitConfig.Enabled)

  1277.                 {

  1278.                     // Git user exists?

  1279.                     if (!UserGitExists(config, username))

  1280.                     {

  1281.                         throw new Exception($"Git User '{username}' does not exist.");

  1282.                     }

  1283. 

  1284.                     // Create connection to the DB

  1285.                     Utilities.MysqlDatabase mySQL = new Utilities.MysqlDatabase(config.GitConfig.Database.Server, config.GitConfig.Database.Database, config.GitConfig.Database.Username, config.GitConfig.Database.Password, config.GitConfig.Database.Port);

  1286. 

  1287.                     // Get the user's UID

  1288.                     string email = GetUserEmailAddress(config, username);

  1289. 

  1290.                     // See if they have Two Factor already

  1291.                     string deleteSql = @"DELETE tf.* 

  1292.                                 FROM gogs.two_factor tf

  1293.                                 LEFT JOIN gogs.user u ON u.id = tf.uid

  1294.                                 WHERE u.login_name = {0}";

  1295.                     mySQL.Execute(deleteSql, new object[] { email });

  1296.                 }

  1297.             }

  1298.             catch (Exception ex)

  1299.             {

  1300.                 throw new Exception("Unable to delete git account two factor.", ex);

  1301.             }

  1302.         }

  1303.         #endregion

  1304. 

  1305.         public static ClaimsIdentity CreateClaimsIdentity(TeknikEntities db, string username)

  1306.         {

  1307.             User user = GetUser(db, username);

  1308. 

  1309.             if (user != null)

  1310.             {

  1311.                 var claims = new List<Claim>

  1312.                 {

  1313.                     new Claim(ClaimTypes.Name, user.Username)

  1314.                 };

  1315. 

  1316.                 // Add their roles

  1317.                 foreach (var role in user.UserRoles)

  1318.                 {

  1319.                     claims.Add(new Claim(ClaimTypes.Role, role.Role.Name));

  1320.                 }

  1321. 

  1322.                 return new ClaimsIdentity(claims, CookieAuthenticationDefaults.AuthenticationScheme);

  1323.             }

  1324.             return null;

  1325.         }

  1326. 

  1327.         public static Tuple<CookieOptions, string> CreateTrustedDeviceCookie(Config config, string username, string domain, bool local)

  1328.         {

  1329.             byte[] time = BitConverter.GetBytes(DateTime.UtcNow.ToBinary());

  1330.             byte[] key = Guid.NewGuid().ToByteArray();

  1331.             string token = Convert.ToBase64String(time.Concat(key).ToArray());

  1332.             var trustCookie = new CookieOptions()

  1333.             {

  1334.                 HttpOnly = true,

  1335.                 Secure = true,

  1336.                 Expires = DateTime.Now.AddYears(1)

  1337.             };

  1338. 

  1339.             // Set domain dependent on where it's being ran from

  1340.             if (local) // localhost

  1341.             {

  1342.                 trustCookie.Domain = null;

  1343.             }

  1344.             else if (config.DevEnvironment) // dev.example.com

  1345.             {

  1346.                 trustCookie.Domain = string.Format("dev.{0}", domain);

  1347.             }

  1348.             else // A production instance

  1349.             {

  1350.                 trustCookie.Domain = string.Format(".{0}", domain);

  1351.             }

  1352. 

  1353.             return new Tuple<CookieOptions, string>(trustCookie, token);

  1354.         }

  1355.     }

  1356. }