DocSpace-buildtools/products/ASC.People/Server/Controllers/PeopleController.cs

using System;
using System.Collections.Generic;
using System.Drawing;
using System.Drawing.Imaging;
using System.IO;
using System.Linq;
using System.Net;
using System.Net.Mail;
using System.Security;

using ASC.Api.Core;
using ASC.Common.Web;
using ASC.Core;
using ASC.Core.Tenants;
using ASC.Core.Users;
using ASC.Data.Reassigns;
using ASC.FederatedLogin;
using ASC.FederatedLogin.Profile;
using ASC.MessagingSystem;
using ASC.People;
using ASC.People.Models;
using ASC.People.Resources;
using ASC.Web.Api.Models;
using ASC.Web.Api.Routing;
using ASC.Web.Core;
using ASC.Web.Core.PublicResources;
using ASC.Web.Core.Users;
using ASC.Web.Studio.Core;
using ASC.Web.Studio.Core.Notify;
using ASC.Web.Studio.UserControls.Statistics;
using ASC.Web.Studio.Utility;

using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Http.Extensions;
using Microsoft.AspNetCore.Mvc;

using SecurityContext = ASC.Core.SecurityContext;

namespace ASC.Employee.Core.Controllers
{
    [DefaultRoute]
    [ApiController]
    public class PeopleController : ControllerBase
    {
        public Common.Logging.LogManager LogManager { get; }
        public Tenant Tenant { get { return ApiContext.Tenant; } }

        public ApiContext ApiContext { get; }
        public MessageService MessageService { get; }
        public QueueWorkerReassign QueueWorkerReassign { get; }
        public QueueWorkerRemove QueueWorkerRemove { get; }
        public StudioNotifyService StudioNotifyService { get; }
        public UserManagerWrapper UserManagerWrapper { get; }

        public PeopleController(Common.Logging.LogManager logManager,
            MessageService messageService,
            QueueWorkerReassign queueWorkerReassign,
            QueueWorkerRemove queueWorkerRemove,
            StudioNotifyService studioNotifyService,
            UserManagerWrapper userManagerWrapper,
            ApiContext apiContext)
        {
            LogManager = logManager;
            MessageService = messageService;
            QueueWorkerReassign = queueWorkerReassign;
            QueueWorkerRemove = queueWorkerRemove;
            StudioNotifyService = studioNotifyService;
            UserManagerWrapper = userManagerWrapper;
            ApiContext = apiContext;
        }

        [Read("info")]
        public Module GetModule()
        {
            var product = new PeopleProduct();
            product.Init();
            return new Module(product, true);
        }

        [Read]
        public IEnumerable<EmployeeWraper> GetAll()
        {
            return GetByStatus(EmployeeStatus.Active);
        }

        [Read("status/{status}")]
        public IEnumerable<EmployeeWraper> GetByStatus(EmployeeStatus status)
        {
            if (CoreContext.Configuration.Personal) throw new Exception("Method not available");
            var query = CoreContext.UserManager.GetUsers(Tenant, status).AsEnumerable();
            if ("group".Equals(ApiContext.FilterBy, StringComparison.OrdinalIgnoreCase) && !string.IsNullOrEmpty(ApiContext.FilterValue))
            {
                var groupId = new Guid(ApiContext.FilterValue);
                //Filter by group
                query = query.Where(x => CoreContext.UserManager.IsUserInGroup(Tenant, x.ID, groupId));
                ApiContext.SetDataFiltered();
            }
            return query.Select(x => new EmployeeWraperFull(x, ApiContext));
        }

        [Read("@self")]
        public EmployeeWraper Self()
        {
            return new EmployeeWraperFull(CoreContext.UserManager.GetUsers(Tenant.TenantId, SecurityContext.CurrentAccount.ID), ApiContext);
        }

        [Read("email")]
        public EmployeeWraperFull GetByEmail([FromQuery]string email)
        {
            if (CoreContext.Configuration.Personal && !CoreContext.UserManager.GetUsers(Tenant.TenantId, SecurityContext.CurrentAccount.ID).IsOwner(Tenant))
                throw new MethodAccessException("Method not available");
            var user = CoreContext.UserManager.GetUserByEmail(Tenant.TenantId, email);
            if (user.ID == Constants.LostUser.ID)
            {
                throw new ItemNotFoundException("User not found");
            }

            return new EmployeeWraperFull(user, ApiContext);
        }

        [Read("{username}", order: int.MaxValue)]
        public EmployeeWraperFull GetById(string username)
        {
            if (CoreContext.Configuration.Personal) throw new MethodAccessException("Method not available");
            var user = CoreContext.UserManager.GetUserByUserName(Tenant.TenantId, username);
            if (user.ID == Constants.LostUser.ID)
            {
                if (Guid.TryParse(username, out var userId))
                {
                    user = CoreContext.UserManager.GetUsers(Tenant.TenantId, userId);
                }
                else
                {
                    LogManager.Get("ASC.Api").Error(string.Format("Account {0} сould not get user by name {1}", SecurityContext.CurrentAccount.ID, username));
                }
            }

            if (user.ID == Constants.LostUser.ID)
            {
                throw new ItemNotFoundException("User not found");
            }

            return new EmployeeWraperFull(user, ApiContext);
        }

        [Read("@search/{query}")]
        public IEnumerable<EmployeeWraperFull> GetSearch(string query)
        {
            if (CoreContext.Configuration.Personal) throw new MethodAccessException("Method not available");
            try
            {
                var groupId = Guid.Empty;
                if ("group".Equals(ApiContext.FilterBy, StringComparison.OrdinalIgnoreCase) && !string.IsNullOrEmpty(ApiContext.FilterValue))
                {
                    groupId = new Guid(ApiContext.FilterValue);
                }

                return CoreContext.UserManager.Search(Tenant, query, EmployeeStatus.Active, groupId).Select(x => new EmployeeWraperFull(x, ApiContext));
            }
            catch (Exception error)
            {
                LogManager.Get("ASC.Api").Error(error);
            }
            return null;
        }

        [Read("search")]
        public IEnumerable<EmployeeWraperFull> GetPeopleSearch([FromQuery]string query)
        {
            return GetSearch(query);
        }

        [Read("status/{status}/search")]
        public IEnumerable<EmployeeWraperFull> GetAdvanced(EmployeeStatus status, [FromQuery]string query)
        {
            if (CoreContext.Configuration.Personal) throw new MethodAccessException("Method not available");
            try
            {
                var list = CoreContext.UserManager.GetUsers(Tenant, status).AsEnumerable();

                if ("group".Equals(ApiContext.FilterBy, StringComparison.OrdinalIgnoreCase) && !string.IsNullOrEmpty(ApiContext.FilterValue))
                {
                    var groupId = new Guid(ApiContext.FilterValue);
                    //Filter by group
                    list = list.Where(x => CoreContext.UserManager.IsUserInGroup(Tenant, x.ID, groupId));
                    ApiContext.SetDataFiltered();
                }

                list = list.Where(x => x.FirstName != null && x.FirstName.IndexOf(query, StringComparison.OrdinalIgnoreCase) > -1 || (x.LastName != null && x.LastName.IndexOf(query, StringComparison.OrdinalIgnoreCase) != -1) ||
                                       (x.UserName != null && x.UserName.IndexOf(query, StringComparison.OrdinalIgnoreCase) != -1) || (x.Email != null && x.Email.IndexOf(query, StringComparison.OrdinalIgnoreCase) != -1) || (x.Contacts != null && x.Contacts.Any(y => y.IndexOf(query, StringComparison.OrdinalIgnoreCase) != -1)));

                return list.Select(x => new EmployeeWraperFull(x, ApiContext));
            }
            catch (Exception error)
            {
                LogManager.Get("ASC.Api").Error(error);
            }
            return null;
        }

        ///// <summary>
        ///// Adds a new portal user from import with the first and last name, email address
        ///// </summary>
        ///// <short>
        ///// Add new import user
        ///// </short>
        ///// <param name="userList">The list of users to add</param>
        ///// <param name="importUsersAsCollaborators" optional="true">Add users as guests (bool type: false|true)</param>
        ///// <returns>Newly created users</returns>
        //[Create("import/save")]
        //public void SaveUsers(string userList, bool importUsersAsCollaborators)
        //{
        //    lock (progressQueue.SynchRoot)
        //    {
        //        var task = progressQueue.GetItems().OfType<ImportUsersTask>().FirstOrDefault(t => (int)t.Id == TenantProvider.CurrentTenantID);
        //        if (task != null && task.IsCompleted)
        //        {
        //            progressQueue.Remove(task);
        //            task = null;
        //        }
        //        if (task == null)
        //        {
        //            progressQueue.Add(new ImportUsersTask(userList, importUsersAsCollaborators, GetHttpHeaders(HttpContext.Current.Request))
        //            {
        //                Id = TenantProvider.CurrentTenantID,
        //                UserId = SecurityContext.CurrentAccount.ID,
        //                Percentage = 0
        //            });
        //        }
        //    }
        //}

        //[Read("import/status")]
        //public object GetStatus()
        //{
        //    lock (progressQueue.SynchRoot)
        //    {
        //        var task = progressQueue.GetItems().OfType<ImportUsersTask>().FirstOrDefault(t => (int)t.Id == TenantProvider.CurrentTenantID);
        //        if (task == null) return null;

        //        return new
        //        {
        //            Completed = task.IsCompleted,
        //            Percents = (int)task.Percentage,
        //            UserCounter = task.GetUserCounter,
        //            Status = (int)task.Status,
        //            Error = (string)task.Error,
        //            task.Data
        //        };
        //    }
        //}


        [Read("filter")]
        public IEnumerable<EmployeeWraperFull> GetFullByFilter(EmployeeStatus? employeeStatus, Guid? groupId, EmployeeActivationStatus? activationStatus, EmployeeType? employeeType, bool? isAdministrator)
        {
            var users = GetByFilter(employeeStatus, groupId, activationStatus, employeeType, isAdministrator);

            return users.Select(u => new EmployeeWraperFull(u, ApiContext)).ToList();
        }

        [Read("simple/filter")]
        public IEnumerable<EmployeeWraper> GetSimpleByFilter(EmployeeStatus? employeeStatus, Guid? groupId, EmployeeActivationStatus? activationStatus, EmployeeType? employeeType, bool? isAdministrator)
        {
            var users = GetByFilter(employeeStatus, groupId, activationStatus, employeeType, isAdministrator);

            return users.Select(u => new EmployeeWraper(u, ApiContext));
        }

        private IEnumerable<UserInfo> GetByFilter(EmployeeStatus? employeeStatus, Guid? groupId, EmployeeActivationStatus? activationStatus, EmployeeType? employeeType, bool? isAdministrator)
        {
            if (CoreContext.Configuration.Personal) throw new MethodAccessException("Method not available");
            var isAdmin = CoreContext.UserManager.GetUsers(Tenant.TenantId, SecurityContext.CurrentAccount.ID).IsAdmin(Tenant) ||
                          WebItemSecurity.IsProductAdministrator(Tenant, WebItemManager.PeopleProductID, SecurityContext.CurrentAccount.ID);

            var includeGroups = new List<List<Guid>>();
            if (groupId.HasValue)
            {
                includeGroups.Add(new List<Guid> { groupId.Value });
            }

            var excludeGroups = new List<Guid>();

            if (employeeType != null)
            {
                switch (employeeType)
                {
                    case EmployeeType.User:
                        excludeGroups.Add(Constants.GroupVisitor.ID);
                        break;
                    case EmployeeType.Visitor:
                        includeGroups.Add(new List<Guid> { Constants.GroupVisitor.ID });
                        break;
                }
            }

            if (isAdministrator.HasValue && isAdministrator.Value)
            {
                var adminGroups = new List<Guid>
                {
                    Constants.GroupAdmin.ID
                };

                var products = WebItemManager.Instance.GetItemsAll().Where(i => i is IProduct || i.ID == WebItemManager.MailProductID);
                adminGroups.AddRange(products.Select(r => r.ID));

                includeGroups.Add(adminGroups);
            }

            var users = CoreContext.UserManager.GetUsers(Tenant.TenantId, isAdmin, employeeStatus, includeGroups, excludeGroups, activationStatus, ApiContext.FilterValue, ApiContext.SortBy, !ApiContext.SortDescending, ApiContext.Count - 1, ApiContext.StartIndex, out var total);

            ApiContext.SetTotalCount(total);

            return users;
        }

        [Create]
        public EmployeeWraperFull AddMember(MemberModel memberModel)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_AddRemoveUser);

            if (string.IsNullOrEmpty(memberModel.Password))
                memberModel.Password = UserManagerWrapper.GeneratePassword();

            memberModel.Password = memberModel.Password.Trim();

            var user = new UserInfo();

            //Validate email
            var address = new MailAddress(memberModel.Email);
            user.Email = address.Address;
            //Set common fields
            user.FirstName = memberModel.Firstname;
            user.LastName = memberModel.Lastname;
            user.Title = memberModel.Title;
            user.Location = memberModel.Location;
            user.Notes = memberModel.Comment;
            user.Sex = "male".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase)
                           ? true
                           : ("female".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase) ? (bool?)false : null);

            user.BirthDate = memberModel.Birthday != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Birthday)) : (DateTime?)null;
            user.WorkFromDate = memberModel.Worksfrom != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Worksfrom)) : DateTime.UtcNow.Date;

            UpdateContacts(memberModel.Contacts, user);

            user = UserManagerWrapper.AddUser(Tenant, user, memberModel.Password, false, true, memberModel.IsVisitor);

            var messageAction = memberModel.IsVisitor ? MessageAction.GuestCreated : MessageAction.UserCreated;
            MessageService.Send(messageAction, MessageTarget.Create(user.ID), user.DisplayUserName(false));

            UpdateDepartments(memberModel.Department, user);

            if (memberModel.Files != UserPhotoManager.GetDefaultPhotoAbsoluteWebPath())
            {
                UpdatePhotoUrl(memberModel.Files, user);
            }

            return new EmployeeWraperFull(user, ApiContext);
        }

        [Create("active")]
        public EmployeeWraperFull AddMemberAsActivated(MemberModel memberModel)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_AddRemoveUser);

            var user = new UserInfo();

            if (string.IsNullOrEmpty(memberModel.Password))
                memberModel.Password = UserManagerWrapper.GeneratePassword();

            //Validate email
            var address = new MailAddress(memberModel.Email);
            user.Email = address.Address;
            //Set common fields
            user.FirstName = memberModel.Firstname;
            user.LastName = memberModel.Lastname;
            user.Title = memberModel.Title;
            user.Location = memberModel.Location;
            user.Notes = memberModel.Comment;
            user.Sex = "male".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase)
                           ? true
                           : ("female".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase) ? (bool?)false : null);

            user.BirthDate = memberModel.Birthday != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Birthday)) : (DateTime?)null;
            user.WorkFromDate = memberModel.Worksfrom != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Worksfrom)) : DateTime.UtcNow.Date;

            UpdateContacts(memberModel.Contacts, user);

            user = UserManagerWrapper.AddUser(Tenant, user, memberModel.Password, false, false, memberModel.IsVisitor);

            user.ActivationStatus = EmployeeActivationStatus.Activated;

            UpdateDepartments(memberModel.Department, user);

            if (memberModel.Files != UserPhotoManager.GetDefaultPhotoAbsoluteWebPath())
            {
                UpdatePhotoUrl(memberModel.Files, user);
            }

            return new EmployeeWraperFull(user, ApiContext);
        }

        [Update("{userid}")]
        public EmployeeWraperFull UpdateMember(string userid, UpdateMemberModel memberModel)
        {
            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);

            var self = SecurityContext.CurrentAccount.ID.Equals(user.ID);
            var resetDate = new DateTime(1900, 01, 01);

            //Update it

            var isLdap = user.IsLDAP();
            var isSso = user.IsSSO();
            var isAdmin = WebItemSecurity.IsProductAdministrator(Tenant, WebItemManager.PeopleProductID, SecurityContext.CurrentAccount.ID);

            if (!isLdap && !isSso)
            {
                //Set common fields

                user.FirstName = memberModel.Firstname ?? user.FirstName;
                user.LastName = memberModel.Lastname ?? user.LastName;
                user.Location = memberModel.Location ?? user.Location;

                if (isAdmin)
                {
                    user.Title = memberModel.Title ?? user.Title;
                }
            }

            if (!UserFormatter.IsValidUserName(user.FirstName, user.LastName))
                throw new Exception(Resource.ErrorIncorrectUserName);

            user.Notes = memberModel.Comment ?? user.Notes;
            user.Sex = ("male".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase)
                            ? true
                            : ("female".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase) ? (bool?)false : null)) ?? user.Sex;

            user.BirthDate = memberModel.Birthday != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Birthday)) : user.BirthDate;

            if (user.BirthDate == resetDate)
            {
                user.BirthDate = null;
            }

            user.WorkFromDate = memberModel.Worksfrom != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Worksfrom)) : user.WorkFromDate;

            if (user.WorkFromDate == resetDate)
            {
                user.WorkFromDate = null;
            }

            //Update contacts
            UpdateContacts(memberModel.Contacts, user);
            UpdateDepartments(memberModel.Department, user);

            if (memberModel.Files != UserPhotoManager.GetPhotoAbsoluteWebPath(Tenant, user.ID))
            {
                UpdatePhotoUrl(memberModel.Files, user);
            }
            if (memberModel.Disable.HasValue)
            {
                user.Status = memberModel.Disable.Value ? EmployeeStatus.Terminated : EmployeeStatus.Active;
                user.TerminatedDate = memberModel.Disable.Value ? DateTime.UtcNow : (DateTime?)null;
            }

            if (self && !isAdmin)
            {
                StudioNotifyService.SendMsgToAdminAboutProfileUpdated(Tenant.TenantId);
            }

            // change user type
            var canBeGuestFlag = !user.IsOwner(Tenant) && !user.IsAdmin(Tenant) && !user.GetListAdminModules(Tenant).Any() && !user.IsMe();

            if (memberModel.IsVisitor && !user.IsVisitor(Tenant) && canBeGuestFlag)
            {
                CoreContext.UserManager.AddUserIntoGroup(Tenant, user.ID, Constants.GroupVisitor.ID);
                WebItemSecurity.ClearCache();
            }

            if (!self && !memberModel.IsVisitor && user.IsVisitor(Tenant))
            {
                var usersQuota = TenantExtra.GetTenantQuota().ActiveUsers;
                if (TenantStatisticsProvider.GetUsersCount(Tenant) < usersQuota)
                {
                    CoreContext.UserManager.RemoveUserFromGroup(Tenant, user.ID, Constants.GroupVisitor.ID);
                    WebItemSecurity.ClearCache();
                }
                else
                {
                    throw new TenantQuotaException(string.Format("Exceeds the maximum active users ({0})", usersQuota));
                }
            }

            CoreContext.UserManager.SaveUserInfo(Tenant, user, memberModel.IsVisitor);
            MessageService.Send(MessageAction.UserUpdated, MessageTarget.Create(user.ID), user.DisplayUserName(false));

            if (memberModel.Disable.HasValue && memberModel.Disable.Value)
            {
                HttpContext.ResetUserCookie(Tenant.TenantId, user.ID);
                MessageService.Send(MessageAction.CookieSettingsUpdated);
            }

            return new EmployeeWraperFull(user, ApiContext);
        }

        [Delete("{userid}")]
        public EmployeeWraperFull DeleteMember(string userid)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_AddRemoveUser);

            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID) || user.IsLDAP())
                throw new SecurityException();

            if (user.Status != EmployeeStatus.Terminated)
                throw new Exception("The user is not suspended");

            CheckReassignProccess(new[] { user.ID });

            var userName = user.DisplayUserName(false);

            UserPhotoManager.RemovePhoto(Tenant, user.ID);
            CoreContext.UserManager.DeleteUser(Tenant, user.ID);
            QueueWorkerRemove.Start(Tenant.TenantId, user, SecurityContext.CurrentAccount.ID, false);

            MessageService.Send(MessageAction.UserDeleted, MessageTarget.Create(user.ID), userName);

            return new EmployeeWraperFull(user, ApiContext);
        }

        [Update("{userid}/contacts")]
        public EmployeeWraperFull UpdateMemberContacts(string userid, UpdateMemberModel memberModel)
        {
            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            UpdateContacts(memberModel.Contacts, user);
            CoreContext.UserManager.SaveUserInfo(Tenant, user);
            return new EmployeeWraperFull(user, ApiContext);
        }

        [Create("{userid}/contacts")]
        public EmployeeWraperFull SetMemberContacts(string userid, UpdateMemberModel memberModel)
        {
            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            user.Contacts.Clear();
            UpdateContacts(memberModel.Contacts, user);
            CoreContext.UserManager.SaveUserInfo(Tenant, user);
            return new EmployeeWraperFull(user, ApiContext);
        }

        [Delete("{userid}/contacts")]
        public EmployeeWraperFull DeleteMemberContacts(string userid, UpdateMemberModel memberModel)
        {
            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            DeleteContacts(memberModel.Contacts, user);
            CoreContext.UserManager.SaveUserInfo(Tenant, user);
            return new EmployeeWraperFull(user, ApiContext);
        }

        [Read("{userid}/photo")]
        public ThumbnailsDataWrapper GetMemberPhoto(string userid)
        {
            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            return new ThumbnailsDataWrapper(Tenant, user.ID);
        }

        [Create("{userid}/photo")]
        public FileUploadResult UploadMemberPhoto(string userid, UploadPhotoModel model)
        {
            var result = new FileUploadResult();
            try
            {
                if (model.Files.Count != 0)
                {
                    Guid userId;
                    try
                    {
                        userId = new Guid(userid);
                    }
                    catch
                    {
                        userId = SecurityContext.CurrentAccount.ID;
                    }

                    SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(userId), Constants.Action_EditUser);

                    var userPhoto = model.Files[0];

                    if (userPhoto.Length > SetupInfo.MaxImageUploadSize)
                    {
                        result.Success = false;
                        result.Message = FileSizeComment.FileImageSizeExceptionString;
                        return result;
                    }

                    var data = new byte[userPhoto.Length];
                    using var inputStream = userPhoto.OpenReadStream();

                    var br = new BinaryReader(inputStream);
                    br.Read(data, 0, (int)userPhoto.Length);
                    br.Close();

                    CheckImgFormat(data);

                    if (model.Autosave)
                    {
                        if (data.Length > SetupInfo.MaxImageUploadSize)
                            throw new ImageSizeLimitException();

                        var mainPhoto = UserPhotoManager.SaveOrUpdatePhoto(Tenant, userId, data);

                        result.Data =
                            new
                            {
                                main = mainPhoto,
                                retina = UserPhotoManager.GetRetinaPhotoURL(Tenant.TenantId, userId),
                                max = UserPhotoManager.GetMaxPhotoURL(Tenant.TenantId, userId),
                                big = UserPhotoManager.GetBigPhotoURL(Tenant.TenantId, userId),
                                medium = UserPhotoManager.GetMediumPhotoURL(Tenant.TenantId, userId),
                                small = UserPhotoManager.GetSmallPhotoURL(Tenant.TenantId, userId),
                            };
                    }
                    else
                    {
                        result.Data = UserPhotoManager.SaveTempPhoto(data, SetupInfo.MaxImageUploadSize, UserPhotoManager.OriginalFotoSize.Width, UserPhotoManager.OriginalFotoSize.Height);
                    }

                    result.Success = true;
                }
                else
                {
                    result.Success = false;
                    result.Message = PeopleResource.ErrorEmptyUploadFileSelected;
                }

            }
            catch (UnknownImageFormatException)
            {
                result.Success = false;
                result.Message = PeopleResource.ErrorUnknownFileImageType;
            }
            catch (ImageWeightLimitException)
            {
                result.Success = false;
                result.Message = PeopleResource.ErrorImageWeightLimit;
            }
            catch (ImageSizeLimitException)
            {
                result.Success = false;
                result.Message = PeopleResource.ErrorImageSizetLimit;
            }
            catch (Exception ex)
            {
                result.Success = false;
                result.Message = ex.Message.HtmlEncode();
            }

            return result;
        }

        [Update("{userid}/photo")]
        public ThumbnailsDataWrapper UpdateMemberPhoto(string userid, UpdateMemberModel model)
        {
            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            if (model.Files != UserPhotoManager.GetPhotoAbsoluteWebPath(Tenant, user.ID))
            {
                UpdatePhotoUrl(model.Files, user);
            }

            CoreContext.UserManager.SaveUserInfo(Tenant, user);
            MessageService.Send(MessageAction.UserAddedAvatar, MessageTarget.Create(user.ID), user.DisplayUserName(false));

            return new ThumbnailsDataWrapper(Tenant, user.ID);
        }

        [Delete("{userid}/photo")]
        public ThumbnailsDataWrapper DeleteMemberPhoto(string userid)
        {
            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);

            UserPhotoManager.RemovePhoto(Tenant, user.ID);

            CoreContext.UserManager.SaveUserInfo(Tenant, user);
            MessageService.Send(MessageAction.UserDeletedAvatar, MessageTarget.Create(user.ID), user.DisplayUserName(false));

            return new ThumbnailsDataWrapper(Tenant, user.ID);
        }


        [Create("{userid}/photo/thumbnails")]
        public ThumbnailsDataWrapper CreateMemberPhotoThumbnails(string userid, ThumbnailsModel thumbnailsModel)
        {
            var user = GetUserInfo(userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);

            if (!string.IsNullOrEmpty(thumbnailsModel.TmpFile))
            {
                var fileName = Path.GetFileName(thumbnailsModel.TmpFile);
                var data = UserPhotoManager.GetTempPhotoData(fileName);

                var settings = new UserPhotoThumbnailSettings(thumbnailsModel.X, thumbnailsModel.Y, thumbnailsModel.Width, thumbnailsModel.Height);
                settings.SaveForUser(user.ID);

                UserPhotoManager.SaveOrUpdatePhoto(Tenant, user.ID, data);
                UserPhotoManager.RemoveTempPhoto(fileName);
            }
            else
            {
                UserPhotoThumbnailManager.SaveThumbnails(Tenant.TenantId, thumbnailsModel.X, thumbnailsModel.Y, thumbnailsModel.Width, thumbnailsModel.Height, user.ID);
            }

            CoreContext.UserManager.SaveUserInfo(Tenant, user);
            MessageService.Send(MessageAction.UserUpdatedAvatarThumbnails, MessageTarget.Create(user.ID), user.DisplayUserName(false));

            return new ThumbnailsDataWrapper(Tenant, user.ID);
        }


        [AllowAnonymous]
        [Create("password", false)]
        public string SendUserPassword(MemberModel memberModel)
        {
            var userInfo = UserManagerWrapper.SendUserPassword(Tenant.TenantId, memberModel.Email, MessageService, HttpContext);

            return string.Format(Resource.MessageYourPasswordSuccessfullySendedToEmail, userInfo.Email);
        }

        [Update("{userid}/password")]
        public EmployeeWraperFull ChangeUserPassword(Guid userid, MemberModel memberModel)
        {
            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(userid), Constants.Action_EditUser);

            if (!CoreContext.UserManager.UserExists(Tenant.TenantId, userid)) return null;

            var user = CoreContext.UserManager.GetUsers(Tenant.TenantId, userid);

            if (CoreContext.UserManager.IsSystemUser(user.ID))
                throw new SecurityException();

            if (!string.IsNullOrEmpty(memberModel.Email))
            {
                var address = new MailAddress(memberModel.Email);
                if (!string.Equals(address.Address, user.Email, StringComparison.OrdinalIgnoreCase))
                {
                    user.Email = address.Address.ToLowerInvariant();
                    user.ActivationStatus = EmployeeActivationStatus.Activated;
                    CoreContext.UserManager.SaveUserInfo(Tenant, user);
                }
            }

            if (!string.IsNullOrEmpty(memberModel.Password))
            {
                SecurityContext.SetUserPassword(Tenant.TenantId, userid, memberModel.Password);
                MessageService.Send(MessageAction.UserUpdatedPassword);

                HttpContext.ResetUserCookie(Tenant.TenantId, userid);
                MessageService.Send(MessageAction.CookieSettingsUpdated);
            }

            return new EmployeeWraperFull(GetUserInfo(userid.ToString()), ApiContext);
        }

        private UserInfo GetUserInfo(string userNameOrId)
        {
            UserInfo user;
            try
            {
                var userId = new Guid(userNameOrId);
                user = CoreContext.UserManager.GetUsers(Tenant.TenantId, userId);
            }
            catch (FormatException)
            {
                user = CoreContext.UserManager.GetUserByUserName(Tenant.TenantId, userNameOrId);
            }
            if (user == null || user.ID == Constants.LostUser.ID)
                throw new ItemNotFoundException("user not found");
            return user;
        }

        [Update("activationstatus/{activationstatus}")]
        public IEnumerable<EmployeeWraperFull> UpdateEmployeeActivationStatus(EmployeeActivationStatus activationstatus, UpdateMembersModel model)
        {
            var retuls = new List<EmployeeWraperFull>();
            foreach (var id in model.UserIds.Where(userId => !CoreContext.UserManager.IsSystemUser(userId)))
            {
                SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(id), Constants.Action_EditUser);
                var u = CoreContext.UserManager.GetUsers(Tenant.TenantId, id);
                if (u.ID == Constants.LostUser.ID || u.IsLDAP()) continue;

                u.ActivationStatus = activationstatus;
                CoreContext.UserManager.SaveUserInfo(Tenant, u);
                retuls.Add(new EmployeeWraperFull(u, ApiContext));
            }

            return retuls;
        }


        [Update("type/{type}")]
        public IEnumerable<EmployeeWraperFull> UpdateUserType(EmployeeType type, UpdateMembersModel model)
        {
            var users = model.UserIds
                .Where(userId => !CoreContext.UserManager.IsSystemUser(userId))
                .Select(userId => CoreContext.UserManager.GetUsers(Tenant.TenantId, userId))
                .ToList();

            foreach (var user in users)
            {
                if (user.IsOwner(Tenant) || user.IsAdmin(Tenant) || user.IsMe() || user.GetListAdminModules(Tenant).Any())
                    continue;

                switch (type)
                {
                    case EmployeeType.User:
                        if (user.IsVisitor(Tenant))
                        {
                            if (TenantStatisticsProvider.GetUsersCount(Tenant) < TenantExtra.GetTenantQuota().ActiveUsers)
                            {
                                CoreContext.UserManager.RemoveUserFromGroup(Tenant, user.ID, Constants.GroupVisitor.ID);
                                WebItemSecurity.ClearCache();
                            }
                        }
                        break;
                    case EmployeeType.Visitor:
                        CoreContext.UserManager.AddUserIntoGroup(Tenant, user.ID, Constants.GroupVisitor.ID);
                        WebItemSecurity.ClearCache();
                        break;
                }
            }

            MessageService.Send(MessageAction.UsersUpdatedType, MessageTarget.Create(users.Select(x => x.ID)), users.Select(x => x.DisplayUserName(false)));

            return users.Select(user => new EmployeeWraperFull(user, ApiContext));
        }

        [Update("status/{status}")]
        public IEnumerable<EmployeeWraperFull> UpdateUserStatus(EmployeeStatus status, UpdateMembersModel model)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);

            var users = model.UserIds.Select(userId => CoreContext.UserManager.GetUsers(Tenant.TenantId, userId))
                .Where(u => !CoreContext.UserManager.IsSystemUser(u.ID) && !u.IsLDAP())
                .ToList();

            foreach (var user in users)
            {
                if (user.IsOwner(Tenant) || user.IsMe())
                    continue;

                switch (status)
                {
                    case EmployeeStatus.Active:
                        if (user.Status == EmployeeStatus.Terminated)
                        {
                            if (TenantStatisticsProvider.GetUsersCount(Tenant) < TenantExtra.GetTenantQuota().ActiveUsers || user.IsVisitor(Tenant))
                            {
                                user.Status = EmployeeStatus.Active;
                                CoreContext.UserManager.SaveUserInfo(Tenant, user);
                            }
                        }
                        break;
                    case EmployeeStatus.Terminated:
                        user.Status = EmployeeStatus.Terminated;
                        CoreContext.UserManager.SaveUserInfo(Tenant, user);

                        HttpContext.ResetUserCookie(Tenant.TenantId, user.ID);
                        MessageService.Send(MessageAction.CookieSettingsUpdated);
                        break;
                }
            }

            MessageService.Send(MessageAction.UsersUpdatedStatus, MessageTarget.Create(users.Select(x => x.ID)), users.Select(x => x.DisplayUserName(false)));

            return users.Select(user => new EmployeeWraperFull(user, ApiContext));
        }


        [Update("invite")]
        public IEnumerable<EmployeeWraperFull> ResendUserInvites(UpdateMembersModel model)
        {
            var users = model.UserIds
                .Where(userId => !CoreContext.UserManager.IsSystemUser(userId))
                .Select(userId => CoreContext.UserManager.GetUsers(Tenant.TenantId, userId))
                .ToList();

            foreach (var user in users)
            {
                if (user.IsActive) continue;

                if (user.ActivationStatus == EmployeeActivationStatus.Pending)
                {
                    if (user.IsVisitor(Tenant))
                    {
                        StudioNotifyService.GuestInfoActivation(Tenant.TenantId, user);
                    }
                    else
                    {
                        StudioNotifyService.UserInfoActivation(Tenant.TenantId, user);
                    }
                }
                else
                {
                    StudioNotifyService.SendEmailActivationInstructions(user, user.Email);
                }
            }

            MessageService.Send(MessageAction.UsersSentActivationInstructions, MessageTarget.Create(users.Select(x => x.ID)), users.Select(x => x.DisplayUserName(false)));

            return users.Select(user => new EmployeeWraperFull(user, ApiContext));
        }

        [Update("delete")]
        public IEnumerable<EmployeeWraperFull> RemoveUsers(UpdateMembersModel model)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_AddRemoveUser);

            CheckReassignProccess(model.UserIds);

            var users = model.UserIds.Select(userId => CoreContext.UserManager.GetUsers(Tenant.TenantId, userId))
                .Where(u => !CoreContext.UserManager.IsSystemUser(u.ID) && !u.IsLDAP())
                .ToList();

            var userNames = users.Select(x => x.DisplayUserName(false)).ToList();

            foreach (var user in users)
            {
                if (user.Status != EmployeeStatus.Terminated) continue;

                UserPhotoManager.RemovePhoto(Tenant, user.ID);
                CoreContext.UserManager.DeleteUser(Tenant, user.ID);
                QueueWorkerRemove.Start(Tenant.TenantId, user, SecurityContext.CurrentAccount.ID, false);
            }

            MessageService.Send(MessageAction.UsersDeleted, MessageTarget.Create(users.Select(x => x.ID)), userNames);

            return users.Select(user => new EmployeeWraperFull(user, ApiContext));
        }


        [Update("self/delete")]
        public string SendInstructionsToDelete()
        {
            var user = CoreContext.UserManager.GetUsers(Tenant.TenantId, SecurityContext.CurrentAccount.ID);

            if (user.IsLDAP())
                throw new SecurityException();

            StudioNotifyService.SendMsgProfileDeletion(user);
            MessageService.Send(MessageAction.UserSentDeleteInstructions);

            return string.Format(Resource.SuccessfullySentNotificationDeleteUserInfoMessage, "<b>" + user.Email + "</b>");
        }


        [Update("thirdparty/linkaccount")]
        public void LinkAccount(string serializedProfile)
        {
            var profile = new LoginProfile(serializedProfile);

            if (string.IsNullOrEmpty(profile.AuthorizationError))
            {
                GetLinker().AddLink(SecurityContext.CurrentAccount.ID.ToString(), profile);
                MessageService.Send(MessageAction.UserLinkedSocialAccount, GetMeaningfulProviderName(profile.Provider));
            }
            else
            {
                // ignore cancellation
                if (profile.AuthorizationError != "Canceled at provider")
                {
                    throw new Exception(profile.AuthorizationError);
                }
            }
        }

        [Delete("thirdparty/unlinkaccount")]
        public void UnlinkAccount(string provider)
        {
            GetLinker().RemoveProvider(SecurityContext.CurrentAccount.ID.ToString(), provider);
            MessageService.Send(MessageAction.UserUnlinkedSocialAccount, GetMeaningfulProviderName(provider));
        }

        private static AccountLinker GetLinker()
        {
            return new AccountLinker("webstudio");
        }

        private static string GetMeaningfulProviderName(string providerName)
        {
            switch (providerName)
            {
                case "google":
                case "openid":
                    return "Google";
                case "facebook":
                    return "Facebook";
                case "twitter":
                    return "Twitter";
                case "linkedin":
                    return "LinkedIn";
                default:
                    return "Unknown Provider";
            }
        }


        [Read(@"reassign/progress")]
        public ReassignProgressItem GetReassignProgress(Guid userId)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);

            return QueueWorkerReassign.GetProgressItemStatus(Tenant.TenantId, userId);
        }

        [Update(@"reassign/terminate")]
        public void TerminateReassign(Guid userId)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);

            QueueWorkerReassign.Terminate(Tenant.TenantId, userId);
        }

        [Create(@"reassign/start")]
        public ReassignProgressItem StartReassign(Guid fromUserId, Guid toUserId, bool deleteProfile)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);

            var fromUser = CoreContext.UserManager.GetUsers(Tenant.TenantId, fromUserId);

            if (fromUser == null || fromUser.ID == Constants.LostUser.ID)
                throw new ArgumentException("User with id = " + fromUserId + " not found");

            if (fromUser.IsOwner(Tenant) || fromUser.IsMe() || fromUser.Status != EmployeeStatus.Terminated)
                throw new ArgumentException("Can not delete user with id = " + fromUserId);

            var toUser = CoreContext.UserManager.GetUsers(Tenant.TenantId, toUserId);

            if (toUser == null || toUser.ID == Constants.LostUser.ID)
                throw new ArgumentException("User with id = " + toUserId + " not found");

            if (toUser.IsVisitor(Tenant) || toUser.Status == EmployeeStatus.Terminated)
                throw new ArgumentException("Can not reassign data to user with id = " + toUserId);

            return QueueWorkerReassign.Start(Tenant.TenantId, fromUserId, toUserId, SecurityContext.CurrentAccount.ID, deleteProfile);
        }

        private void CheckReassignProccess(IEnumerable<Guid> userIds)
        {
            foreach (var userId in userIds)
            {
                var reassignStatus = QueueWorkerReassign.GetProgressItemStatus(Tenant.TenantId, userId);
                if (reassignStatus == null || reassignStatus.IsCompleted)
                    continue;

                var userName = CoreContext.UserManager.GetUsers(Tenant.TenantId, userId).DisplayUserName();
                throw new Exception(string.Format(Resource.ReassignDataRemoveUserError, userName));
            }
        }

        //#endregion


        #region Remove user data


        [Read(@"remove/progress")]
        public RemoveProgressItem GetRemoveProgress(Guid userId)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);

            return QueueWorkerRemove.GetProgressItemStatus(Tenant.TenantId, userId);
        }

        [Update(@"remove/terminate")]
        public void TerminateRemove(Guid userId)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);

            QueueWorkerRemove.Terminate(Tenant.TenantId, userId);
        }

        [Create(@"remove/start")]
        public RemoveProgressItem StartRemove(Guid userId)
        {
            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);

            var user = CoreContext.UserManager.GetUsers(Tenant.TenantId, userId);

            if (user == null || user.ID == Constants.LostUser.ID)
                throw new ArgumentException("User with id = " + userId + " not found");

            if (user.IsOwner(Tenant) || user.IsMe() || user.Status != EmployeeStatus.Terminated)
                throw new ArgumentException("Can not delete user with id = " + userId);

            return QueueWorkerRemove.Start(Tenant.TenantId, user, SecurityContext.CurrentAccount.ID, true);
        }

        #endregion

        private void UpdateDepartments(IEnumerable<Guid> department, UserInfo user)
        {
            if (!SecurityContext.CheckPermissions(Tenant, Constants.Action_EditGroups)) return;
            if (department == null) return;

            var groups = CoreContext.UserManager.GetUserGroups(Tenant, user.ID);
            var managerGroups = new List<Guid>();
            foreach (var groupInfo in groups)
            {
                CoreContext.UserManager.RemoveUserFromGroup(Tenant, user.ID, groupInfo.ID);
                var managerId = CoreContext.UserManager.GetDepartmentManager(Tenant.TenantId, groupInfo.ID);
                if (managerId == user.ID)
                {
                    managerGroups.Add(groupInfo.ID);
                    CoreContext.UserManager.SetDepartmentManager(Tenant.TenantId, groupInfo.ID, Guid.Empty);
                }
            }
            foreach (var guid in department)
            {
                var userDepartment = CoreContext.UserManager.GetGroupInfo(Tenant.TenantId, guid);
                if (userDepartment != Constants.LostGroupInfo)
                {
                    CoreContext.UserManager.AddUserIntoGroup(Tenant, user.ID, guid);
                    if (managerGroups.Contains(guid))
                    {
                        CoreContext.UserManager.SetDepartmentManager(Tenant.TenantId, guid, user.ID);
                    }
                }
            }
        }

        private void UpdateContacts(IEnumerable<Contact> contacts, UserInfo user)
        {
            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);
            user.Contacts.Clear();
            if (contacts == null) return;

            foreach (var contact in contacts)
            {
                user.Contacts.Add(contact.Type);
                user.Contacts.Add(contact.Value);
            }
        }

        private void DeleteContacts(IEnumerable<Contact> contacts, UserInfo user)
        {
            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);
            if (contacts == null) return;

            foreach (var contact in contacts)
            {
                var index = user.Contacts.IndexOf(contact.Type);
                if (index != -1)
                {
                    //Remove existing
                    user.Contacts.RemoveRange(index, 2);
                }
            }
        }

        private void UpdatePhotoUrl(string files, UserInfo user)
        {
            if (string.IsNullOrEmpty(files))
            {
                return;
            }

            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);

            if (!files.StartsWith("http://") && !files.StartsWith("https://"))
            {
                files = new Uri(ApiContext.HttpContext.Request.GetDisplayUrl()).GetLeftPart(UriPartial.Scheme | UriPartial.Authority) + "/" + files.TrimStart('/');
            }
            var request = WebRequest.Create(files);
            using var response = (HttpWebResponse)request.GetResponse();
            using var inputStream = response.GetResponseStream();
            using var br = new BinaryReader(inputStream);
            var imageByteArray = br.ReadBytes((int)response.ContentLength);
            UserPhotoManager.SaveOrUpdatePhoto(Tenant, user.ID, imageByteArray);
        }

        private static void CheckImgFormat(byte[] data)
        {
            ImageFormat imgFormat;

            try
            {
                using var stream = new MemoryStream(data);
                using var img = new Bitmap(stream);
                imgFormat = img.RawFormat;
            }
            catch (OutOfMemoryException)
            {
                throw new ImageSizeLimitException();
            }
            catch (ArgumentException error)
            {
                throw new UnknownImageFormatException(error);
            }

            if (!imgFormat.Equals(ImageFormat.Png) && !imgFormat.Equals(ImageFormat.Jpeg))
            {
                throw new UnknownImageFormatException();
            }
        }
    }
}
-												Api: added response wrapper

											
										
										
											2019-05-27 09:46:04 +00:00
+								using System;
 								using System.Collections.Generic;
-												People: api. Added UploadMemberPhoto method

											
										
										
											2019-07-17 08:55:08 +00:00
+								using System.Drawing;
 								using System.Drawing.Imaging;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								using System.IO;
-												Api: added response wrapper

											
										
										
											2019-05-27 09:46:04 +00:00
+								using System.Linq;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								using System.Net;
 								using System.Net.Mail;
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								using System.Security;
-												Api: fixed context

											
										
										
											2019-07-19 08:38:31 +00:00
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								using ASC.Api.Core;
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								using ASC.Common.Web;
-												Api: added response wrapper

											
										
										
											2019-05-27 09:46:04 +00:00
+								using ASC.Core;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								using ASC.Core.Tenants;
-												Api: added response wrapper

											
										
										
											2019-05-27 09:46:04 +00:00
+								using ASC.Core.Users;
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								using ASC.Data.Reassigns;
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								using ASC.FederatedLogin;
 								using ASC.FederatedLogin.Profile;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								using ASC.MessagingSystem;
-												People as external product
nginx reverse proxy

											
										
										
											2019-07-05 13:58:04 +00:00
+								using ASC.People;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								using ASC.People.Models;
-												Removed unused resources

											
										
										
											2019-08-13 13:05:36 +00:00
+								using ASC.People.Resources;
-												Core: added CustomClaimsPrincipal.
Api: fixed auth. Added EmployeeWrapper

											
										
										
											2019-05-22 09:28:34 +00:00
+								using ASC.Web.Api.Models;
-												Api: added custom routing

											
										
										
											2019-05-27 12:49:48 +00:00
+								using ASC.Web.Api.Routing;
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								using ASC.Web.Core;
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								using ASC.Web.Core.PublicResources;
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								using ASC.Web.Core.Users;
-												People: api. Added UploadMemberPhoto method

											
										
										
											2019-07-17 08:55:08 +00:00
+								using ASC.Web.Studio.Core;
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								using ASC.Web.Studio.Core.Notify;
 								using ASC.Web.Studio.UserControls.Statistics;
 								using ASC.Web.Studio.Utility;
-												Api: fixed context

											
										
										
											2019-07-19 08:38:31 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								using Microsoft.AspNetCore.Authorization;
-												Remove HttpContext.Current

											
										
										
											2019-07-02 15:30:31 +00:00
+								using Microsoft.AspNetCore.Http;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								using Microsoft.AspNetCore.Http.Extensions;
-												Replace Singletons with DI.
Added support for working with db.
Added first version of CookieAuthHandler.
Added PeopleController for test auth.

											
										
										
											2019-05-17 08:32:23 +00:00
+								using Microsoft.AspNetCore.Mvc;
-												Api: fixed context

											
										
										
											2019-07-19 08:38:31 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								using SecurityContext = ASC.Core.SecurityContext;
-												Replace Singletons with DI.
Added support for working with db.
Added first version of CookieAuthHandler.
Added PeopleController for test auth.

											
										
										
											2019-05-17 08:32:23 +00:00
 								namespace ASC.Employee.Core.Controllers
 								{
-												Api: added custom routing

											
										
										
											2019-05-27 12:49:48 +00:00
+								    [DefaultRoute]
-												Replace Singletons with DI.
Added support for working with db.
Added first version of CookieAuthHandler.
Added PeopleController for test auth.

											
										
										
											2019-05-17 08:32:23 +00:00
+								    [ApiController]
 								    public class PeopleController : ControllerBase
 								    {
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								        public Common.Logging.LogManager LogManager { get; }
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								        public Tenant Tenant { get { return ApiContext.Tenant; } }
-												Api: fixed context

											
										
										
											2019-07-19 08:38:31 +00:00
-												Api: added total

											
										
										
											2019-07-29 10:51:14 +00:00
+								        public ApiContext ApiContext { get; }
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								        public MessageService MessageService { get; }
-												Reaasign: refactoring

											
										
										
											2019-06-21 12:42:27 +00:00
+								        public QueueWorkerReassign QueueWorkerReassign { get; }
 								        public QueueWorkerRemove QueueWorkerRemove { get; }
-												Added ASC.Studio.Notify service

											
										
										
											2019-08-01 08:47:15 +00:00
+								        public StudioNotifyService StudioNotifyService { get; }
 								        public UserManagerWrapper UserManagerWrapper { get; }
 								        public PeopleController(Common.Logging.LogManager logManager,
 								            MessageService messageService,
 								            QueueWorkerReassign queueWorkerReassign,
 								            QueueWorkerRemove queueWorkerRemove,
 								            StudioNotifyService studioNotifyService,
 								            UserManagerWrapper userManagerWrapper,
 								            ApiContext apiContext)
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								        {
 								            LogManager = logManager;
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService = messageService;
-												Reaasign: refactoring

											
										
										
											2019-06-21 12:42:27 +00:00
+								            QueueWorkerReassign = queueWorkerReassign;
 								            QueueWorkerRemove = queueWorkerRemove;
-												Added ASC.Studio.Notify service

											
										
										
											2019-08-01 08:47:15 +00:00
+								            StudioNotifyService = studioNotifyService;
 								            UserManagerWrapper = userManagerWrapper;
-												Api: added total

											
										
										
											2019-07-29 10:51:14 +00:00
+								            ApiContext = apiContext;
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								        }
-												People as external product
nginx reverse proxy

											
										
										
											2019-07-05 13:58:04 +00:00
+								        [Read("info")]
 								        public Module GetModule()
 								        {
 								            var product = new PeopleProduct();
 								            product.Init();
 								            return new Module(product, true);
 								        }
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read]
-												Api: added response wrapper

											
										
										
											2019-05-27 09:46:04 +00:00
+								        public IEnumerable<EmployeeWraper> GetAll()
 								        {
 								            return GetByStatus(EmployeeStatus.Active);
 								        }
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        [Read("status/{status}")]
-												Api: added response wrapper

											
										
										
											2019-05-27 09:46:04 +00:00
+								        public IEnumerable<EmployeeWraper> GetByStatus(EmployeeStatus status)
 								        {
 								            if (CoreContext.Configuration.Personal) throw new Exception("Method not available");
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var query = CoreContext.UserManager.GetUsers(Tenant, status).AsEnumerable();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								            if ("group".Equals(ApiContext.FilterBy, StringComparison.OrdinalIgnoreCase) && !string.IsNullOrEmpty(ApiContext.FilterValue))
 								            {
 								                var groupId = new Guid(ApiContext.FilterValue);
 								                //Filter by group
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                query = query.Where(x => CoreContext.UserManager.IsUserInGroup(Tenant, x.ID, groupId));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								                ApiContext.SetDataFiltered();
 								            }
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return query.Select(x => new EmployeeWraperFull(x, ApiContext));
-												Api: added response wrapper

											
										
										
											2019-05-27 09:46:04 +00:00
+								        }
-												Api: added custom routing

											
										
										
											2019-05-27 12:49:48 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read("@self")]
-												Api: added custom routing

											
										
										
											2019-05-27 12:49:48 +00:00
+								        public EmployeeWraper Self()
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            return new EmployeeWraperFull(CoreContext.UserManager.GetUsers(Tenant.TenantId, SecurityContext.CurrentAccount.ID), ApiContext);
-												Api: added custom routing

											
										
										
											2019-05-27 12:49:48 +00:00
+								        }
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read("email")]
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        public EmployeeWraperFull GetByEmail([FromQuery]string email)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (CoreContext.Configuration.Personal && !CoreContext.UserManager.GetUsers(Tenant.TenantId, SecurityContext.CurrentAccount.ID).IsOwner(Tenant))
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								                throw new MethodAccessException("Method not available");
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var user = CoreContext.UserManager.GetUserByEmail(Tenant.TenantId, email);
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								            if (user.ID == Constants.LostUser.ID)
 								            {
 								                throw new ItemNotFoundException("User not found");
 								            }
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        }
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read("{username}", order: int.MaxValue)]
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								        public EmployeeWraperFull GetById(string username)
 								        {
 								            if (CoreContext.Configuration.Personal) throw new MethodAccessException("Method not available");
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var user = CoreContext.UserManager.GetUserByUserName(Tenant.TenantId, username);
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								            if (user.ID == Constants.LostUser.ID)
 								            {
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								                if (Guid.TryParse(username, out var userId))
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								                {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                    user = CoreContext.UserManager.GetUsers(Tenant.TenantId, userId);
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								                }
 								                else
 								                {
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								                    LogManager.Get("ASC.Api").Error(string.Format("Account {0} сould not get user by name {1}", SecurityContext.CurrentAccount.ID, username));
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								                }
 								            }
 								            if (user.ID == Constants.LostUser.ID)
 								            {
 								                throw new ItemNotFoundException("User not found");
 								            }
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Api: removed FormatIndexRoute.

											
										
										
											2019-06-13 15:01:29 +00:00
+								        }
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
 								        [Read("@search/{query}")]
 								        public IEnumerable<EmployeeWraperFull> GetSearch(string query)
 								        {
 								            if (CoreContext.Configuration.Personal) throw new MethodAccessException("Method not available");
 								            try
 								            {
 								                var groupId = Guid.Empty;
 								                if ("group".Equals(ApiContext.FilterBy, StringComparison.OrdinalIgnoreCase) && !string.IsNullOrEmpty(ApiContext.FilterValue))
 								                {
 								                    groupId = new Guid(ApiContext.FilterValue);
 								                }
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                return CoreContext.UserManager.Search(Tenant, query, EmployeeStatus.Active, groupId).Select(x => new EmployeeWraperFull(x, ApiContext));
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								            }
 								            catch (Exception error)
 								            {
 								                LogManager.Get("ASC.Api").Error(error);
 								            }
 								            return null;
 								        }
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read("search")]
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        public IEnumerable<EmployeeWraperFull> GetPeopleSearch([FromQuery]string query)
 								        {
 								            return GetSearch(query);
 								        }
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read("status/{status}/search")]
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        public IEnumerable<EmployeeWraperFull> GetAdvanced(EmployeeStatus status, [FromQuery]string query)
 								        {
 								            if (CoreContext.Configuration.Personal) throw new MethodAccessException("Method not available");
 								            try
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                var list = CoreContext.UserManager.GetUsers(Tenant, status).AsEnumerable();
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
 								                if ("group".Equals(ApiContext.FilterBy, StringComparison.OrdinalIgnoreCase) && !string.IsNullOrEmpty(ApiContext.FilterValue))
 								                {
 								                    var groupId = new Guid(ApiContext.FilterValue);
 								                    //Filter by group
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                    list = list.Where(x => CoreContext.UserManager.IsUserInGroup(Tenant, x.ID, groupId));
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								                    ApiContext.SetDataFiltered();
 								                }
 								                list = list.Where(x => x.FirstName != null && x.FirstName.IndexOf(query, StringComparison.OrdinalIgnoreCase) > -1 || (x.LastName != null && x.LastName.IndexOf(query, StringComparison.OrdinalIgnoreCase) != -1) ||
 								                                       (x.UserName != null && x.UserName.IndexOf(query, StringComparison.OrdinalIgnoreCase) != -1) || (x.Email != null && x.Email.IndexOf(query, StringComparison.OrdinalIgnoreCase) != -1) || (x.Contacts != null && x.Contacts.Any(y => y.IndexOf(query, StringComparison.OrdinalIgnoreCase) != -1)));
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								                return list.Select(x => new EmployeeWraperFull(x, ApiContext));
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								            }
 								            catch (Exception error)
 								            {
 								                LogManager.Get("ASC.Api").Error(error);
 								            }
 								            return null;
 								        }
 								        ///// <summary>
 								        ///// Adds a new portal user from import with the first and last name, email address
 								        ///// </summary>
 								        ///// <short>
 								        ///// Add new import user
 								        ///// </short>
 								        ///// <param name="userList">The list of users to add</param>
 								        ///// <param name="importUsersAsCollaborators" optional="true">Add users as guests (bool type: false|true)</param>
 								        ///// <returns>Newly created users</returns>
 								        //[Create("import/save")]
 								        //public void SaveUsers(string userList, bool importUsersAsCollaborators)
 								        //{
 								        //    lock (progressQueue.SynchRoot)
 								        //    {
 								        //        var task = progressQueue.GetItems().OfType<ImportUsersTask>().FirstOrDefault(t => (int)t.Id == TenantProvider.CurrentTenantID);
 								        //        if (task != null && task.IsCompleted)
 								        //        {
 								        //            progressQueue.Remove(task);
 								        //            task = null;
 								        //        }
 								        //        if (task == null)
 								        //        {
 								        //            progressQueue.Add(new ImportUsersTask(userList, importUsersAsCollaborators, GetHttpHeaders(HttpContext.Current.Request))
 								        //            {
 								        //                Id = TenantProvider.CurrentTenantID,
 								        //                UserId = SecurityContext.CurrentAccount.ID,
 								        //                Percentage = 0
 								        //            });
 								        //        }
 								        //    }
 								        //}
 								        //[Read("import/status")]
 								        //public object GetStatus()
 								        //{
 								        //    lock (progressQueue.SynchRoot)
 								        //    {
 								        //        var task = progressQueue.GetItems().OfType<ImportUsersTask>().FirstOrDefault(t => (int)t.Id == TenantProvider.CurrentTenantID);
 								        //        if (task == null) return null;
 								        //        return new
 								        //        {
 								        //            Completed = task.IsCompleted,
 								        //            Percents = (int)task.Percentage,
 								        //            UserCounter = task.GetUserCounter,
 								        //            Status = (int)task.Status,
 								        //            Error = (string)task.Error,
 								        //            task.Data
 								        //        };
 								        //    }
 								        //}
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read("filter")]
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        public IEnumerable<EmployeeWraperFull> GetFullByFilter(EmployeeStatus? employeeStatus, Guid? groupId, EmployeeActivationStatus? activationStatus, EmployeeType? employeeType, bool? isAdministrator)
 								        {
 								            var users = GetByFilter(employeeStatus, groupId, activationStatus, employeeType, isAdministrator);
-												Api: fields

											
										
										
											2019-08-02 14:40:33 +00:00
+								            return users.Select(u => new EmployeeWraperFull(u, ApiContext)).ToList();
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        }
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read("simple/filter")]
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        public IEnumerable<EmployeeWraper> GetSimpleByFilter(EmployeeStatus? employeeStatus, Guid? groupId, EmployeeActivationStatus? activationStatus, EmployeeType? employeeType, bool? isAdministrator)
 								        {
 								            var users = GetByFilter(employeeStatus, groupId, activationStatus, employeeType, isAdministrator);
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return users.Select(u => new EmployeeWraper(u, ApiContext));
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								        }
 								        private IEnumerable<UserInfo> GetByFilter(EmployeeStatus? employeeStatus, Guid? groupId, EmployeeActivationStatus? activationStatus, EmployeeType? employeeType, bool? isAdministrator)
 								        {
 								            if (CoreContext.Configuration.Personal) throw new MethodAccessException("Method not available");
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var isAdmin = CoreContext.UserManager.GetUsers(Tenant.TenantId, SecurityContext.CurrentAccount.ID).IsAdmin(Tenant) ||
 								                          WebItemSecurity.IsProductAdministrator(Tenant, WebItemManager.PeopleProductID, SecurityContext.CurrentAccount.ID);
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
-												People: fix search by filter

											
										
										
											2019-08-08 14:42:29 +00:00
+								            var includeGroups = new List<List<Guid>>();
-												People: method "get by filter" optimized

											
										
										
											2019-08-05 13:45:33 +00:00
+								            if (groupId.HasValue)
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								            {
-												People: fix search by filter

											
										
										
											2019-08-08 14:42:29 +00:00
+								                includeGroups.Add(new List<Guid> { groupId.Value });
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								            }
-												People: method "get by filter" optimized

											
										
										
											2019-08-05 13:45:33 +00:00
+								            var excludeGroups = new List<Guid>();
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
 								            if (employeeType != null)
 								            {
 								                switch (employeeType)
 								                {
 								                    case EmployeeType.User:
-												People: method "get by filter" optimized

											
										
										
											2019-08-05 13:45:33 +00:00
+								                        excludeGroups.Add(Constants.GroupVisitor.ID);
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								                        break;
 								                    case EmployeeType.Visitor:
-												People: fix search by filter

											
										
										
											2019-08-08 14:42:29 +00:00
+								                        includeGroups.Add(new List<Guid> { Constants.GroupVisitor.ID });
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								                        break;
 								                }
 								            }
 								            if (isAdministrator.HasValue && isAdministrator.Value)
 								            {
-												People: fix search by filter

											
										
										
											2019-08-08 14:42:29 +00:00
+								                var adminGroups = new List<Guid>
 								                {
 								                    Constants.GroupAdmin.ID
 								                };
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
-												People: method "get by filter" optimized

											
										
										
											2019-08-05 13:45:33 +00:00
+								                var products = WebItemManager.Instance.GetItemsAll().Where(i => i is IProduct || i.ID == WebItemManager.MailProductID);
-												Code Cleanup

											
										
										
											2019-08-15 12:04:42 +00:00
+								                adminGroups.AddRange(products.Select(r => r.ID));
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
-												People: fix search by filter

											
										
										
											2019-08-08 14:42:29 +00:00
+								                includeGroups.Add(adminGroups);
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
+								            }
-												IDE0007

											
										
										
											2019-08-15 13:03:57 +00:00
+								            var users = CoreContext.UserManager.GetUsers(Tenant.TenantId, isAdmin, employeeStatus, includeGroups, excludeGroups, activationStatus, ApiContext.FilterValue, ApiContext.SortBy, !ApiContext.SortDescending, ApiContext.Count - 1, ApiContext.StartIndex, out var total);
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
-												People: method "get by filter" optimized

											
										
										
											2019-08-05 13:45:33 +00:00
+								            ApiContext.SetTotalCount(total);
-												Api: FormatRoute rename to Read

											
										
										
											2019-06-14 08:15:28 +00:00
 								            return users;
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Create]
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								        public EmployeeWraperFull AddMember(MemberModel memberModel)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_AddRemoveUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
 								            if (string.IsNullOrEmpty(memberModel.Password))
 								                memberModel.Password = UserManagerWrapper.GeneratePassword();
 								            memberModel.Password = memberModel.Password.Trim();
 								            var user = new UserInfo();
 								            //Validate email
 								            var address = new MailAddress(memberModel.Email);
 								            user.Email = address.Address;
 								            //Set common fields
 								            user.FirstName = memberModel.Firstname;
 								            user.LastName = memberModel.Lastname;
 								            user.Title = memberModel.Title;
 								            user.Location = memberModel.Location;
 								            user.Notes = memberModel.Comment;
 								            user.Sex = "male".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase)
 								                           ? true
 								                           : ("female".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase) ? (bool?)false : null);
 								            user.BirthDate = memberModel.Birthday != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Birthday)) : (DateTime?)null;
 								            user.WorkFromDate = memberModel.Worksfrom != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Worksfrom)) : DateTime.UtcNow.Date;
 								            UpdateContacts(memberModel.Contacts, user);
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            user = UserManagerWrapper.AddUser(Tenant, user, memberModel.Password, false, true, memberModel.IsVisitor);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
 								            var messageAction = memberModel.IsVisitor ? MessageAction.GuestCreated : MessageAction.UserCreated;
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(messageAction, MessageTarget.Create(user.ID), user.DisplayUserName(false));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
 								            UpdateDepartments(memberModel.Department, user);
 								            if (memberModel.Files != UserPhotoManager.GetDefaultPhotoAbsoluteWebPath())
 								            {
 								                UpdatePhotoUrl(memberModel.Files, user);
 								            }
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								        }
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Create("active")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public EmployeeWraperFull AddMemberAsActivated(MemberModel memberModel)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_AddRemoveUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            var user = new UserInfo();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (string.IsNullOrEmpty(memberModel.Password))
 								                memberModel.Password = UserManagerWrapper.GeneratePassword();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            //Validate email
 								            var address = new MailAddress(memberModel.Email);
 								            user.Email = address.Address;
 								            //Set common fields
 								            user.FirstName = memberModel.Firstname;
 								            user.LastName = memberModel.Lastname;
 								            user.Title = memberModel.Title;
 								            user.Location = memberModel.Location;
 								            user.Notes = memberModel.Comment;
 								            user.Sex = "male".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase)
 								                           ? true
 								                           : ("female".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase) ? (bool?)false : null);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            user.BirthDate = memberModel.Birthday != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Birthday)) : (DateTime?)null;
 								            user.WorkFromDate = memberModel.Worksfrom != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Worksfrom)) : DateTime.UtcNow.Date;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            UpdateContacts(memberModel.Contacts, user);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            user = UserManagerWrapper.AddUser(Tenant, user, memberModel.Password, false, false, memberModel.IsVisitor);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            user.ActivationStatus = EmployeeActivationStatus.Activated;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            UpdateDepartments(memberModel.Department, user);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (memberModel.Files != UserPhotoManager.GetDefaultPhotoAbsoluteWebPath())
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								            {
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                UpdatePhotoUrl(memberModel.Files, user);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								            }
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								        }
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        [Update("{userid}")]
-												People: api. added userid parameter to UpdateMember method

											
										
										
											2019-07-26 11:37:50 +00:00
+								        public EmployeeWraperFull UpdateMember(string userid, UpdateMemberModel memberModel)
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
+								        {
-												People: api. added userid parameter to UpdateMember method

											
										
										
											2019-07-26 11:37:50 +00:00
+								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);
-												People: api. added userid parameter to UpdateMember method

											
										
										
											2019-07-26 11:37:50 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            var self = SecurityContext.CurrentAccount.ID.Equals(user.ID);
 								            var resetDate = new DateTime(1900, 01, 01);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            //Update it
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            var isLdap = user.IsLDAP();
 								            var isSso = user.IsSSO();
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var isAdmin = WebItemSecurity.IsProductAdministrator(Tenant, WebItemManager.PeopleProductID, SecurityContext.CurrentAccount.ID);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (!isLdap && !isSso)
 								            {
 								                //Set common fields
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                user.FirstName = memberModel.Firstname ?? user.FirstName;
 								                user.LastName = memberModel.Lastname ?? user.LastName;
 								                user.Location = memberModel.Location ?? user.Location;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                if (isAdmin)
 								                {
 								                    user.Title = memberModel.Title ?? user.Title;
 								                }
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (!UserFormatter.IsValidUserName(user.FirstName, user.LastName))
 								                throw new Exception(Resource.ErrorIncorrectUserName);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            user.Notes = memberModel.Comment ?? user.Notes;
 								            user.Sex = ("male".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase)
 								                            ? true
 								                            : ("female".Equals(memberModel.Sex, StringComparison.OrdinalIgnoreCase) ? (bool?)false : null)) ?? user.Sex;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            user.BirthDate = memberModel.Birthday != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Birthday)) : user.BirthDate;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (user.BirthDate == resetDate)
 								            {
 								                user.BirthDate = null;
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            user.WorkFromDate = memberModel.Worksfrom != null ? TenantUtil.DateTimeFromUtc(Convert.ToDateTime(memberModel.Worksfrom)) : user.WorkFromDate;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (user.WorkFromDate == resetDate)
 								            {
 								                user.WorkFromDate = null;
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            //Update contacts
 								            UpdateContacts(memberModel.Contacts, user);
 								            UpdateDepartments(memberModel.Department, user);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (memberModel.Files != UserPhotoManager.GetPhotoAbsoluteWebPath(Tenant, user.ID))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            {
 								                UpdatePhotoUrl(memberModel.Files, user);
 								            }
 								            if (memberModel.Disable.HasValue)
 								            {
 								                user.Status = memberModel.Disable.Value ? EmployeeStatus.Terminated : EmployeeStatus.Active;
 								                user.TerminatedDate = memberModel.Disable.Value ? DateTime.UtcNow : (DateTime?)null;
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (self && !isAdmin)
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                StudioNotifyService.SendMsgToAdminAboutProfileUpdated(Tenant.TenantId);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            // change user type
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var canBeGuestFlag = !user.IsOwner(Tenant) && !user.IsAdmin(Tenant) && !user.GetListAdminModules(Tenant).Any() && !user.IsMe();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (memberModel.IsVisitor && !user.IsVisitor(Tenant) && canBeGuestFlag)
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                CoreContext.UserManager.AddUserIntoGroup(Tenant, user.ID, Constants.GroupVisitor.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                WebItemSecurity.ClearCache();
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (!self && !memberModel.IsVisitor && user.IsVisitor(Tenant))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            {
 								                var usersQuota = TenantExtra.GetTenantQuota().ActiveUsers;
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                if (TenantStatisticsProvider.GetUsersCount(Tenant) < usersQuota)
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                    CoreContext.UserManager.RemoveUserFromGroup(Tenant, user.ID, Constants.GroupVisitor.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                    WebItemSecurity.ClearCache();
 								                }
 								                else
 								                {
 								                    throw new TenantQuotaException(string.Format("Exceeds the maximum active users ({0})", usersQuota));
 								                }
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            CoreContext.UserManager.SaveUserInfo(Tenant, user, memberModel.IsVisitor);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UserUpdated, MessageTarget.Create(user.ID), user.DisplayUserName(false));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (memberModel.Disable.HasValue && memberModel.Disable.Value)
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                HttpContext.ResetUserCookie(Tenant.TenantId, user.ID);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								                MessageService.Send(MessageAction.CookieSettingsUpdated);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        [Delete("{userid}")]
 								        public EmployeeWraperFull DeleteMember(string userid)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_AddRemoveUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID) || user.IsLDAP())
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (user.Status != EmployeeStatus.Terminated)
 								                throw new Exception("The user is not suspended");
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								            CheckReassignProccess(new[] { user.ID });
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            var userName = user.DisplayUserName(false);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            UserPhotoManager.RemovePhoto(Tenant, user.ID);
 								            CoreContext.UserManager.DeleteUser(Tenant, user.ID);
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								            QueueWorkerRemove.Start(Tenant.TenantId, user, SecurityContext.CurrentAccount.ID, false);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UserDeleted, MessageTarget.Create(user.ID), userName);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update("{userid}/contacts")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public EmployeeWraperFull UpdateMemberContacts(string userid, UpdateMemberModel memberModel)
 								        {
 								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            UpdateContacts(memberModel.Contacts, user);
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Create("{userid}/contacts")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public EmployeeWraperFull SetMemberContacts(string userid, UpdateMemberModel memberModel)
 								        {
 								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            user.Contacts.Clear();
 								            UpdateContacts(memberModel.Contacts, user);
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Delete("{userid}/contacts")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public EmployeeWraperFull DeleteMemberContacts(string userid, UpdateMemberModel memberModel)
 								        {
 								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            DeleteContacts(memberModel.Contacts, user);
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(user, ApiContext);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read("{userid}/photo")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public ThumbnailsDataWrapper GetMemberPhoto(string userid)
 								        {
 								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            return new ThumbnailsDataWrapper(Tenant, user.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												People: api. Added UploadMemberPhoto method

											
										
										
											2019-07-17 08:55:08 +00:00
+								        [Create("{userid}/photo")]
 								        public FileUploadResult UploadMemberPhoto(string userid, UploadPhotoModel model)
 								        {
 								            var result = new FileUploadResult();
 								            try
 								            {
 								                if (model.Files.Count != 0)
 								                {
 								                    Guid userId;
 								                    try
 								                    {
 								                        userId = new Guid(userid);
 								                    }
 								                    catch
 								                    {
 								                        userId = SecurityContext.CurrentAccount.ID;
 								                    }
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                    SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(userId), Constants.Action_EditUser);
-												People: api. Added UploadMemberPhoto method

											
										
										
											2019-07-17 08:55:08 +00:00
 								                    var userPhoto = model.Files[0];
 								                    if (userPhoto.Length > SetupInfo.MaxImageUploadSize)
 								                    {
 								                        result.Success = false;
 								                        result.Message = FileSizeComment.FileImageSizeExceptionString;
 								                        return result;
 								                    }
 								                    var data = new byte[userPhoto.Length];
 								                    using var inputStream = userPhoto.OpenReadStream();
 								                    var br = new BinaryReader(inputStream);
 								                    br.Read(data, 0, (int)userPhoto.Length);
 								                    br.Close();
 								                    CheckImgFormat(data);
 								                    if (model.Autosave)
 								                    {
 								                        if (data.Length > SetupInfo.MaxImageUploadSize)
 								                            throw new ImageSizeLimitException();
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                        var mainPhoto = UserPhotoManager.SaveOrUpdatePhoto(Tenant, userId, data);
-												People: api. Added UploadMemberPhoto method

											
										
										
											2019-07-17 08:55:08 +00:00
 								                        result.Data =
 								                            new
 								                            {
 								                                main = mainPhoto,
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                                retina = UserPhotoManager.GetRetinaPhotoURL(Tenant.TenantId, userId),
 								                                max = UserPhotoManager.GetMaxPhotoURL(Tenant.TenantId, userId),
 								                                big = UserPhotoManager.GetBigPhotoURL(Tenant.TenantId, userId),
 								                                medium = UserPhotoManager.GetMediumPhotoURL(Tenant.TenantId, userId),
 								                                small = UserPhotoManager.GetSmallPhotoURL(Tenant.TenantId, userId),
-												People: api. Added UploadMemberPhoto method

											
										
										
											2019-07-17 08:55:08 +00:00
+								                            };
 								                    }
 								                    else
 								                    {
 								                        result.Data = UserPhotoManager.SaveTempPhoto(data, SetupInfo.MaxImageUploadSize, UserPhotoManager.OriginalFotoSize.Width, UserPhotoManager.OriginalFotoSize.Height);
 								                    }
 								                    result.Success = true;
 								                }
 								                else
 								                {
 								                    result.Success = false;
 								                    result.Message = PeopleResource.ErrorEmptyUploadFileSelected;
 								                }
 								            }
 								            catch (UnknownImageFormatException)
 								            {
 								                result.Success = false;
 								                result.Message = PeopleResource.ErrorUnknownFileImageType;
 								            }
 								            catch (ImageWeightLimitException)
 								            {
 								                result.Success = false;
 								                result.Message = PeopleResource.ErrorImageWeightLimit;
 								            }
 								            catch (ImageSizeLimitException)
 								            {
 								                result.Success = false;
 								                result.Message = PeopleResource.ErrorImageSizetLimit;
 								            }
 								            catch (Exception ex)
 								            {
 								                result.Success = false;
 								                result.Message = ex.Message.HtmlEncode();
 								            }
 								            return result;
 								        }
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update("{userid}/photo")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public ThumbnailsDataWrapper UpdateMemberPhoto(string userid, UpdateMemberModel model)
 								        {
 								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (model.Files != UserPhotoManager.GetPhotoAbsoluteWebPath(Tenant, user.ID))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            {
 								                UpdatePhotoUrl(model.Files, user);
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UserAddedAvatar, MessageTarget.Create(user.ID), user.DisplayUserName(false));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            return new ThumbnailsDataWrapper(Tenant, user.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Delete("{userid}/photo")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public ThumbnailsDataWrapper DeleteMemberPhoto(string userid)
 								        {
 								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            UserPhotoManager.RemovePhoto(Tenant, user.ID);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UserDeletedAvatar, MessageTarget.Create(user.ID), user.DisplayUserName(false));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            return new ThumbnailsDataWrapper(Tenant, user.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Create("{userid}/photo/thumbnails")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public ThumbnailsDataWrapper CreateMemberPhotoThumbnails(string userid, ThumbnailsModel thumbnailsModel)
 								        {
 								            var user = GetUserInfo(userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (!string.IsNullOrEmpty(thumbnailsModel.TmpFile))
 								            {
 								                var fileName = Path.GetFileName(thumbnailsModel.TmpFile);
 								                var data = UserPhotoManager.GetTempPhotoData(fileName);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                var settings = new UserPhotoThumbnailSettings(thumbnailsModel.X, thumbnailsModel.Y, thumbnailsModel.Width, thumbnailsModel.Height);
 								                settings.SaveForUser(user.ID);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                UserPhotoManager.SaveOrUpdatePhoto(Tenant, user.ID, data);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                UserPhotoManager.RemoveTempPhoto(fileName);
 								            }
 								            else
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                UserPhotoThumbnailManager.SaveThumbnails(Tenant.TenantId, thumbnailsModel.X, thumbnailsModel.Y, thumbnailsModel.Width, thumbnailsModel.Height, user.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UserUpdatedAvatarThumbnails, MessageTarget.Create(user.ID), user.DisplayUserName(false));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            return new ThumbnailsDataWrapper(Tenant, user.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        [AllowAnonymous]
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Create("password", false)]
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								        public string SendUserPassword(MemberModel memberModel)
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        {
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								            var userInfo = UserManagerWrapper.SendUserPassword(Tenant.TenantId, memberModel.Email, MessageService, HttpContext);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            return string.Format(Resource.MessageYourPasswordSuccessfullySendedToEmail, userInfo.Email);
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update("{userid}/password")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public EmployeeWraperFull ChangeUserPassword(Guid userid, MemberModel memberModel)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(userid), Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (!CoreContext.UserManager.UserExists(Tenant.TenantId, userid)) return null;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var user = CoreContext.UserManager.GetUsers(Tenant.TenantId, userid);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (CoreContext.UserManager.IsSystemUser(user.ID))
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (!string.IsNullOrEmpty(memberModel.Email))
 								            {
 								                var address = new MailAddress(memberModel.Email);
 								                if (!string.Equals(address.Address, user.Email, StringComparison.OrdinalIgnoreCase))
 								                {
 								                    user.Email = address.Address.ToLowerInvariant();
 								                    user.ActivationStatus = EmployeeActivationStatus.Activated;
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                    CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                }
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (!string.IsNullOrEmpty(memberModel.Password))
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                SecurityContext.SetUserPassword(Tenant.TenantId, userid, memberModel.Password);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								                MessageService.Send(MessageAction.UserUpdatedPassword);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                HttpContext.ResetUserCookie(Tenant.TenantId, userid);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								                MessageService.Send(MessageAction.CookieSettingsUpdated);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return new EmployeeWraperFull(GetUserInfo(userid.ToString()), ApiContext);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								        private UserInfo GetUserInfo(string userNameOrId)
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        {
 								            UserInfo user;
 								            try
 								            {
 								                var userId = new Guid(userNameOrId);
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                user = CoreContext.UserManager.GetUsers(Tenant.TenantId, userId);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
 								            catch (FormatException)
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                user = CoreContext.UserManager.GetUserByUserName(Tenant.TenantId, userNameOrId);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
 								            if (user == null || user.ID == Constants.LostUser.ID)
 								                throw new ItemNotFoundException("user not found");
 								            return user;
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        [Update("activationstatus/{activationstatus}")]
 								        public IEnumerable<EmployeeWraperFull> UpdateEmployeeActivationStatus(EmployeeActivationStatus activationstatus, UpdateMembersModel model)
 								        {
 								            var retuls = new List<EmployeeWraperFull>();
 								            foreach (var id in model.UserIds.Where(userId => !CoreContext.UserManager.IsSystemUser(userId)))
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(id), Constants.Action_EditUser);
 								                var u = CoreContext.UserManager.GetUsers(Tenant.TenantId, id);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                if (u.ID == Constants.LostUser.ID || u.IsLDAP()) continue;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                u.ActivationStatus = activationstatus;
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                CoreContext.UserManager.SaveUserInfo(Tenant, u);
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								                retuls.Add(new EmployeeWraperFull(u, ApiContext));
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            return retuls;
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        [Update("type/{type}")]
 								        public IEnumerable<EmployeeWraperFull> UpdateUserType(EmployeeType type, UpdateMembersModel model)
 								        {
 								            var users = model.UserIds
 								                .Where(userId => !CoreContext.UserManager.IsSystemUser(userId))
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                .Select(userId => CoreContext.UserManager.GetUsers(Tenant.TenantId, userId))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                .ToList();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            foreach (var user in users)
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                if (user.IsOwner(Tenant) || user.IsAdmin(Tenant) || user.IsMe() || user.GetListAdminModules(Tenant).Any())
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                    continue;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                switch (type)
 								                {
 								                    case EmployeeType.User:
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                        if (user.IsVisitor(Tenant))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                            if (TenantStatisticsProvider.GetUsersCount(Tenant) < TenantExtra.GetTenantQuota().ActiveUsers)
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                                CoreContext.UserManager.RemoveUserFromGroup(Tenant, user.ID, Constants.GroupVisitor.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                                WebItemSecurity.ClearCache();
 								                            }
 								                        }
 								                        break;
 								                    case EmployeeType.Visitor:
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                        CoreContext.UserManager.AddUserIntoGroup(Tenant, user.ID, Constants.GroupVisitor.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                        WebItemSecurity.ClearCache();
 								                        break;
 								                }
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UsersUpdatedType, MessageTarget.Create(users.Select(x => x.ID)), users.Select(x => x.DisplayUserName(false)));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return users.Select(user => new EmployeeWraperFull(user, ApiContext));
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        [Update("status/{status}")]
 								        public IEnumerable<EmployeeWraperFull> UpdateUserStatus(EmployeeStatus status, UpdateMembersModel model)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var users = model.UserIds.Select(userId => CoreContext.UserManager.GetUsers(Tenant.TenantId, userId))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                .Where(u => !CoreContext.UserManager.IsSystemUser(u.ID) && !u.IsLDAP())
 								                .ToList();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            foreach (var user in users)
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                if (user.IsOwner(Tenant) || user.IsMe())
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                    continue;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                switch (status)
 								                {
 								                    case EmployeeStatus.Active:
 								                        if (user.Status == EmployeeStatus.Terminated)
 								                        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                            if (TenantStatisticsProvider.GetUsersCount(Tenant) < TenantExtra.GetTenantQuota().ActiveUsers || user.IsVisitor(Tenant))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                            {
 								                                user.Status = EmployeeStatus.Active;
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                                CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                            }
 								                        }
 								                        break;
 								                    case EmployeeStatus.Terminated:
 								                        user.Status = EmployeeStatus.Terminated;
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                        CoreContext.UserManager.SaveUserInfo(Tenant, user);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                        HttpContext.ResetUserCookie(Tenant.TenantId, user.ID);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								                        MessageService.Send(MessageAction.CookieSettingsUpdated);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                        break;
 								                }
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UsersUpdatedStatus, MessageTarget.Create(users.Select(x => x.ID)), users.Select(x => x.DisplayUserName(false)));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return users.Select(user => new EmployeeWraperFull(user, ApiContext));
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update("invite")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public IEnumerable<EmployeeWraperFull> ResendUserInvites(UpdateMembersModel model)
 								        {
 								            var users = model.UserIds
 								                .Where(userId => !CoreContext.UserManager.IsSystemUser(userId))
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                .Select(userId => CoreContext.UserManager.GetUsers(Tenant.TenantId, userId))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                .ToList();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            foreach (var user in users)
 								            {
 								                if (user.IsActive) continue;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                if (user.ActivationStatus == EmployeeActivationStatus.Pending)
 								                {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                    if (user.IsVisitor(Tenant))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                    {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                        StudioNotifyService.GuestInfoActivation(Tenant.TenantId, user);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                    }
 								                    else
 								                    {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                        StudioNotifyService.UserInfoActivation(Tenant.TenantId, user);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                    }
 								                }
 								                else
 								                {
-												Added ASC.Studio.Notify service

											
										
										
											2019-08-01 08:47:15 +00:00
+								                    StudioNotifyService.SendEmailActivationInstructions(user, user.Email);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                }
 								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UsersSentActivationInstructions, MessageTarget.Create(users.Select(x => x.ID)), users.Select(x => x.DisplayUserName(false)));
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return users.Select(user => new EmployeeWraperFull(user, ApiContext));
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update("delete")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public IEnumerable<EmployeeWraperFull> RemoveUsers(UpdateMembersModel model)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_AddRemoveUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								            CheckReassignProccess(model.UserIds);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var users = model.UserIds.Select(userId => CoreContext.UserManager.GetUsers(Tenant.TenantId, userId))
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                .Where(u => !CoreContext.UserManager.IsSystemUser(u.ID) && !u.IsLDAP())
 								                .ToList();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            var userNames = users.Select(x => x.DisplayUserName(false)).ToList();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            foreach (var user in users)
 								            {
 								                if (user.Status != EmployeeStatus.Terminated) continue;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                UserPhotoManager.RemovePhoto(Tenant, user.ID);
-												Code Cleanup

											
										
										
											2019-08-15 12:04:42 +00:00
+								                CoreContext.UserManager.DeleteUser(Tenant, user.ID);
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								                QueueWorkerRemove.Start(Tenant.TenantId, user, SecurityContext.CurrentAccount.ID, false);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UsersDeleted, MessageTarget.Create(users.Select(x => x.ID)), userNames);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								            return users.Select(user => new EmployeeWraperFull(user, ApiContext));
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update("self/delete")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public string SendInstructionsToDelete()
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var user = CoreContext.UserManager.GetUsers(Tenant.TenantId, SecurityContext.CurrentAccount.ID);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (user.IsLDAP())
 								                throw new SecurityException();
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Added ASC.Studio.Notify service

											
										
										
											2019-08-01 08:47:15 +00:00
+								            StudioNotifyService.SendMsgProfileDeletion(user);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UserSentDeleteInstructions);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            return string.Format(Resource.SuccessfullySentNotificationDeleteUserInfoMessage, "<b>" + user.Email + "</b>");
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update("thirdparty/linkaccount")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public void LinkAccount(string serializedProfile)
 								        {
 								            var profile = new LoginProfile(serializedProfile);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (string.IsNullOrEmpty(profile.AuthorizationError))
 								            {
 								                GetLinker().AddLink(SecurityContext.CurrentAccount.ID.ToString(), profile);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								                MessageService.Send(MessageAction.UserLinkedSocialAccount, GetMeaningfulProviderName(profile.Provider));
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            }
 								            else
 								            {
 								                // ignore cancellation
 								                if (profile.AuthorizationError != "Canceled at provider")
 								                {
 								                    throw new Exception(profile.AuthorizationError);
 								                }
 								            }
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Delete("thirdparty/unlinkaccount")]
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        public void UnlinkAccount(string provider)
 								        {
 								            GetLinker().RemoveProvider(SecurityContext.CurrentAccount.ID.ToString(), provider);
-												ASC.MessageService: refactoring. DI

											
										
										
											2019-06-17 13:53:10 +00:00
+								            MessageService.Send(MessageAction.UserUnlinkedSocialAccount, GetMeaningfulProviderName(provider));
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        private static AccountLinker GetLinker()
 								        {
 								            return new AccountLinker("webstudio");
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        private static string GetMeaningfulProviderName(string providerName)
 								        {
 								            switch (providerName)
 								            {
 								                case "google":
 								                case "openid":
 								                    return "Google";
 								                case "facebook":
 								                    return "Facebook";
 								                case "twitter":
 								                    return "Twitter";
 								                case "linkedin":
 								                    return "LinkedIn";
 								                default:
 								                    return "Unknown Provider";
 								            }
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read(@"reassign/progress")]
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        public ReassignProgressItem GetReassignProgress(Guid userId)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								            return QueueWorkerReassign.GetProgressItemStatus(Tenant.TenantId, userId);
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update(@"reassign/terminate")]
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        public void TerminateReassign(Guid userId)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								            QueueWorkerReassign.Terminate(Tenant.TenantId, userId);
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Create(@"reassign/start")]
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        public ReassignProgressItem StartReassign(Guid fromUserId, Guid toUserId, bool deleteProfile)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var fromUser = CoreContext.UserManager.GetUsers(Tenant.TenantId, fromUserId);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								            if (fromUser == null || fromUser.ID == Constants.LostUser.ID)
 								                throw new ArgumentException("User with id = " + fromUserId + " not found");
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (fromUser.IsOwner(Tenant) || fromUser.IsMe() || fromUser.Status != EmployeeStatus.Terminated)
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								                throw new ArgumentException("Can not delete user with id = " + fromUserId);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var toUser = CoreContext.UserManager.GetUsers(Tenant.TenantId, toUserId);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								            if (toUser == null || toUser.ID == Constants.LostUser.ID)
 								                throw new ArgumentException("User with id = " + toUserId + " not found");
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (toUser.IsVisitor(Tenant) || toUser.Status == EmployeeStatus.Terminated)
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								                throw new ArgumentException("Can not reassign data to user with id = " + toUserId);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								            return QueueWorkerReassign.Start(Tenant.TenantId, fromUserId, toUserId, SecurityContext.CurrentAccount.ID, deleteProfile);
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        private void CheckReassignProccess(IEnumerable<Guid> userIds)
 								        {
 								            foreach (var userId in userIds)
 								            {
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								                var reassignStatus = QueueWorkerReassign.GetProgressItemStatus(Tenant.TenantId, userId);
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								                if (reassignStatus == null || reassignStatus.IsCompleted)
 								                    continue;
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                var userName = CoreContext.UserManager.GetUsers(Tenant.TenantId, userId).DisplayUserName();
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								                throw new Exception(string.Format(Resource.ReassignDataRemoveUserError, userName));
 								            }
 								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
 								        //#endregion
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        #region Remove user data
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Read(@"remove/progress")]
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        public RemoveProgressItem GetRemoveProgress(Guid userId)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								            return QueueWorkerRemove.GetProgressItemStatus(Tenant.TenantId, userId);
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Update(@"remove/terminate")]
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        public void TerminateRemove(Guid userId)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								            QueueWorkerRemove.Terminate(Tenant.TenantId, userId);
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        }
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: format endpoint via datasource

											
										
										
											2019-06-25 10:46:10 +00:00
+								        [Create(@"remove/start")]
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        public RemoveProgressItem StartRemove(Guid userId)
 								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, Constants.Action_EditUser);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var user = CoreContext.UserManager.GetUsers(Tenant.TenantId, userId);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								            if (user == null || user.ID == Constants.LostUser.ID)
 								                throw new ArgumentException("User with id = " + userId + " not found");
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (user.IsOwner(Tenant) || user.IsMe() || user.Status != EmployeeStatus.Terminated)
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								                throw new ArgumentException("Can not delete user with id = " + userId);
-												Added ASC.Feed, ASC.IPSecurity
Added Resources

											
										
										
											2019-06-14 16:14:24 +00:00
-												Api: added settings controller

											
										
										
											2019-08-12 10:53:12 +00:00
+								            return QueueWorkerRemove.Start(Tenant.TenantId, user, SecurityContext.CurrentAccount.ID, true);
-												added ASC.Data.Reassign

											
										
										
											2019-06-21 10:42:16 +00:00
+								        }
 								        #endregion
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								        private void UpdateDepartments(IEnumerable<Guid> department, UserInfo user)
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            if (!SecurityContext.CheckPermissions(Tenant, Constants.Action_EditGroups)) return;
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (department == null) return;
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            var groups = CoreContext.UserManager.GetUserGroups(Tenant, user.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            var managerGroups = new List<Guid>();
 								            foreach (var groupInfo in groups)
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                CoreContext.UserManager.RemoveUserFromGroup(Tenant, user.ID, groupInfo.ID);
 								                var managerId = CoreContext.UserManager.GetDepartmentManager(Tenant.TenantId, groupInfo.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                if (managerId == user.ID)
 								                {
 								                    managerGroups.Add(groupInfo.ID);
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                    CoreContext.UserManager.SetDepartmentManager(Tenant.TenantId, groupInfo.ID, Guid.Empty);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                }
 								            }
 								            foreach (var guid in department)
 								            {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                var userDepartment = CoreContext.UserManager.GetGroupInfo(Tenant.TenantId, guid);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                if (userDepartment != Constants.LostGroupInfo)
 								                {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                    CoreContext.UserManager.AddUserIntoGroup(Tenant, user.ID, guid);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                    if (managerGroups.Contains(guid))
 								                    {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								                        CoreContext.UserManager.SetDepartmentManager(Tenant.TenantId, guid, user.ID);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								                    }
 								                }
 								            }
 								        }
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								        private void UpdateContacts(IEnumerable<Contact> contacts, UserInfo user)
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            user.Contacts.Clear();
 								            if (contacts == null) return;
 								            foreach (var contact in contacts)
 								            {
 								                user.Contacts.Add(contact.Type);
 								                user.Contacts.Add(contact.Value);
 								            }
 								        }
-												Optimization

											
										
										
											2019-08-08 09:26:58 +00:00
+								        private void DeleteContacts(IEnumerable<Contact> contacts, UserInfo user)
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        {
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								            if (contacts == null) return;
 								            foreach (var contact in contacts)
 								            {
 								                var index = user.Contacts.IndexOf(contact.Type);
 								                if (index != -1)
 								                {
 								                    //Remove existing
 								                    user.Contacts.RemoveRange(index, 2);
 								                }
 								            }
 								        }
 								        private void UpdatePhotoUrl(string files, UserInfo user)
 								        {
 								            if (string.IsNullOrEmpty(files))
 								            {
 								                return;
 								            }
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            SecurityContext.DemandPermissions(Tenant, new UserSecurityProvider(user.ID), Constants.Action_EditUser);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
 								            if (!files.StartsWith("http://") && !files.StartsWith("https://"))
 								            {
 								                files = new Uri(ApiContext.HttpContext.Request.GetDisplayUrl()).GetLeftPart(UriPartial.Scheme | UriPartial.Authority) + "/" + files.TrimStart('/');
 								            }
 								            var request = WebRequest.Create(files);
 								            using var response = (HttpWebResponse)request.GetResponse();
 								            using var inputStream = response.GetResponseStream();
 								            using var br = new BinaryReader(inputStream);
 								            var imageByteArray = br.ReadBytes((int)response.ContentLength);
-												refactoring

											
										
										
											2019-08-09 12:28:19 +00:00
+								            UserPhotoManager.SaveOrUpdatePhoto(Tenant, user.ID, imageByteArray);
-												Api: added some methods

											
										
										
											2019-06-17 11:57:07 +00:00
+								        }
-												People: api. Added UploadMemberPhoto method

											
										
										
											2019-07-17 08:55:08 +00:00
 								        private static void CheckImgFormat(byte[] data)
 								        {
 								            ImageFormat imgFormat;
 								            try
 								            {
-												IDE0063

											
										
										
											2019-08-15 15:08:40 +00:00
+								                using var stream = new MemoryStream(data);
 								                using var img = new Bitmap(stream);
 								                imgFormat = img.RawFormat;
-												People: api. Added UploadMemberPhoto method

											
										
										
											2019-07-17 08:55:08 +00:00
+								            }
 								            catch (OutOfMemoryException)
 								            {
 								                throw new ImageSizeLimitException();
 								            }
 								            catch (ArgumentException error)
 								            {
 								                throw new UnknownImageFormatException(error);
 								            }
 								            if (!imgFormat.Equals(ImageFormat.Png) && !imgFormat.Equals(ImageFormat.Jpeg))
 								            {
 								                throw new UnknownImageFormatException();
 								            }
 								        }
-												Replace Singletons with DI.
Added support for working with db.
Added first version of CookieAuthHandler.
Added PeopleController for test auth.

											
										
										
											2019-05-17 08:32:23 +00:00
+								    }
 								}