Union/ProjectLighthouse
1
0
Fork 0
mirror of https://github.com/LBPUnion/ProjectLighthouse.git synced 2025-10-05 07:39:39 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
ProjectLighthouse/ProjectLighthouse.Servers.Website/Pages/Email/CompleteEmailVerificationPage.cshtml.cs
Slendy 1737a16f38
 Use SQLite in-memory in lieu of EF In-Memory for testing 
Also replaces usages of DateTime.Now with DateTime.UtcNow for internal time storage
2024-03-24 20:52:39 -05:00

71 lines
No EOL
2.4 KiB
C#
Raw Blame History

#nullable enable
using LBPUnion.ProjectLighthouse.Configuration;
using LBPUnion.ProjectLighthouse.Database;
using LBPUnion.ProjectLighthouse.Helpers;
using LBPUnion.ProjectLighthouse.Servers.Website.Pages.Layouts;
using LBPUnion.ProjectLighthouse.Types.Entities.Profile;
using LBPUnion.ProjectLighthouse.Types.Entities.Token;
using Microsoft.AspNetCore.Mvc;
using Microsoft.EntityFrameworkCore;
namespace LBPUnion.ProjectLighthouse.Servers.Website.Pages.Email;
public class CompleteEmailVerificationPage : BaseLayout
{
public CompleteEmailVerificationPage(DatabaseContext database) : base(database)
{}
public string? Error;
public async Task<IActionResult> OnGet(string token)
{
if (!ServerConfiguration.Instance.Mail.MailEnabled) return this.NotFound();
EmailVerificationTokenEntity? emailVerifyToken = await this.Database.EmailVerificationTokens.FirstOrDefaultAsync(e => e.EmailToken == token);
if (emailVerifyToken == null)
{
this.Error = "Invalid verification token";
return this.Page();
}
UserEntity user = await this.Database.Users.FirstAsync(u => u.UserId == emailVerifyToken.UserId);
if (DateTime.UtcNow > emailVerifyToken.ExpiresAt)
{
this.Error = "This token has expired";
return this.Page();
}
if (emailVerifyToken.UserId != user.UserId)
{
this.Error = "This token doesn't belong to you!";
return this.Page();
}
this.Database.EmailVerificationTokens.Remove(emailVerifyToken);
user.EmailAddressVerified = true;
await this.Database.SaveChangesAsync();
if (user.Password != null) return this.Page();
// if user's account was created automatically
WebTokenEntity webToken = new()
{
ExpiresAt = DateTime.UtcNow.AddDays(7),
Verified = true,
UserId = user.UserId,
UserToken = CryptoHelper.GenerateAuthToken(),
};
user.PasswordResetRequired = true;
this.Database.WebTokens.Add(webToken);
await this.Database.SaveChangesAsync();
this.Response.Cookies.Append("LighthouseToken",
webToken.UserToken,
new CookieOptions
{
Expires = DateTimeOffset.UtcNow.AddDays(7),
});
return this.Redirect("/passwordReset");
}
}
Reference in a new issue View git blame Copy permalink