void.cat/VoidCat/Controllers/UserController.cs

using Microsoft.AspNetCore.Mvc;
using VoidCat.Model;
using VoidCat.Services.Abstractions;

namespace VoidCat.Controllers;

[Route("user/{id}")]
public class UserController : Controller
{
    private readonly IUserStore _store;
    private readonly IUserUploadsStore _userUploads;
    private readonly IEmailVerification _emailVerification;

    public UserController(IUserStore store, IUserUploadsStore userUploads, IEmailVerification emailVerification)
    {
        _store = store;
        _userUploads = userUploads;
        _emailVerification = emailVerification;
    }

    [HttpGet]
    [Route("")]
    public async Task<IActionResult> GetUser([FromRoute] string id)
    {
        var loggedUser = HttpContext.GetUserId();
        var requestedId = id.FromBase58Guid();
        if (loggedUser == requestedId)
        {
            return Json(await _store.Get<PrivateVoidUser>(id.FromBase58Guid()));
        }

        var user = await _store.Get<PublicVoidUser>(id.FromBase58Guid());
        if (!(user?.Flags.HasFlag(VoidUserFlags.PublicProfile) ?? false)) return NotFound();

        return Json(user);
    }

    [HttpPost]
    [Route("")]
    public async Task<IActionResult> UpdateUser([FromRoute] string id, [FromBody] PublicVoidUser user)
    {
        var loggedUser = await GetAuthorizedUser(id);
        if (loggedUser == default) return Unauthorized();

        if (!loggedUser.Flags.HasFlag(VoidUserFlags.EmailVerified)) return Forbid();
        
        await _store.UpdateProfile(user);
        return Ok();
    }

    [HttpPost]
    [Route("files")]
    public async Task<IActionResult> ListUserFiles([FromRoute] string id,
        [FromBody] PagedRequest request)
    {
        var loggedUser = HttpContext.GetUserId();
        var isAdmin = HttpContext.IsRole(Roles.Admin);

        var user = await GetRequestedUser(id);
        if (user == default) return NotFound();

        // not logged in user files, check public flag
        var canViewUploads = loggedUser == user.Id || isAdmin;
        if (!canViewUploads &&
            !user.Flags.HasFlag(VoidUserFlags.PublicUploads)) return Forbid();

        var results = await _userUploads.ListFiles(id.FromBase58Guid(), request);
        return Json(await results.GetResults());
    }

    [HttpGet]
    [Route("verify")]
    public async Task<IActionResult> SendVerificationCode([FromRoute] string id)
    {
        var user = await GetAuthorizedUser(id);
        if (user == default) return Unauthorized();

        var isEmailVerified = (user?.Flags.HasFlag(VoidUserFlags.EmailVerified) ?? false);
        if (isEmailVerified) return UnprocessableEntity();

        await _emailVerification.SendNewCode(user!);
        return Accepted();
    }

    [HttpPost]
    [Route("verify")]
    public async Task<IActionResult> VerifyCode([FromRoute] string id, [FromBody] string code)
    {
        var user = await GetAuthorizedUser(id);
        if (user == default) return Unauthorized();

        var token = code.FromBase58Guid();
        if (!await _emailVerification.VerifyCode(user, token)) return BadRequest();

        user.Flags |= VoidUserFlags.EmailVerified;
        await _store.Set(user);
        return Accepted();
    }

    private async Task<InternalVoidUser?> GetAuthorizedUser(string id)
    {
        var loggedUser = HttpContext.GetUserId();
        var gid = id.FromBase58Guid();
        var user = await _store.Get<InternalVoidUser>(gid);
        return user?.Id != loggedUser ? default : user;
    }

    private async Task<InternalVoidUser?> GetRequestedUser(string id)
    {
        var gid = id.FromBase58Guid();
        return await _store.Get<InternalVoidUser>(gid);
    }
}
Add profiles 2022-02-27 13:54:25 +00:00			`using Microsoft.AspNetCore.Mvc;`
			`using VoidCat.Model;`
			`using VoidCat.Services.Abstractions;`

			`namespace VoidCat.Controllers;`

Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`[Route("user/{id}")]`
Add profiles 2022-02-27 13:54:25 +00:00			`public class UserController : Controller`
			`{`
			`private readonly IUserStore _store;`
Add user file list 2022-02-27 23:01:57 +00:00			`private readonly IUserUploadsStore _userUploads;`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`private readonly IEmailVerification _emailVerification;`
Add profiles 2022-02-27 13:54:25 +00:00
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`public UserController(IUserStore store, IUserUploadsStore userUploads, IEmailVerification emailVerification)`
Add profiles 2022-02-27 13:54:25 +00:00			`{`
			`_store = store;`
Add user file list 2022-02-27 23:01:57 +00:00			`_userUploads = userUploads;`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`_emailVerification = emailVerification;`
Add profiles 2022-02-27 13:54:25 +00:00			`}`

			`[HttpGet]`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`[Route("")]`
			`public async Task<IActionResult> GetUser([FromRoute] string id)`
Add profiles 2022-02-27 13:54:25 +00:00			`{`
			`var loggedUser = HttpContext.GetUserId();`
			`var requestedId = id.FromBase58Guid();`
			`if (loggedUser == requestedId)`
			`{`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`return Json(await _store.Get<PrivateVoidUser>(id.FromBase58Guid()));`
Add profiles 2022-02-27 13:54:25 +00:00			`}`
Edit profile 2022-02-27 18:15:37 +00:00
Add user file list 2022-02-27 23:01:57 +00:00			`var user = await _store.Get<PublicVoidUser>(id.FromBase58Guid());`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`if (!(user?.Flags.HasFlag(VoidUserFlags.PublicProfile) ?? false)) return NotFound();`
Add user file list 2022-02-27 23:01:57 +00:00
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`return Json(user);`
Edit profile 2022-02-27 18:15:37 +00:00			`}`

			`[HttpPost]`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`[Route("")]`
Edit profile 2022-02-27 18:15:37 +00:00			`public async Task<IActionResult> UpdateUser([FromRoute] string id, [FromBody] PublicVoidUser user)`
			`{`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`var loggedUser = await GetAuthorizedUser(id);`
			`if (loggedUser == default) return Unauthorized();`
Edit profile 2022-02-27 18:15:37 +00:00
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`if (!loggedUser.Flags.HasFlag(VoidUserFlags.EmailVerified)) return Forbid();`

Delete unverified accounts Misc cleanup 2022-03-04 20:05:01 +00:00			`await _store.UpdateProfile(user);`
Edit profile 2022-02-27 18:15:37 +00:00			`return Ok();`
Add profiles 2022-02-27 13:54:25 +00:00			`}`
Add user file list 2022-02-27 23:01:57 +00:00
			`[HttpPost]`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`[Route("files")]`
			`public async Task<IActionResult> ListUserFiles([FromRoute] string id,`
			`[FromBody] PagedRequest request)`
Add user file list 2022-02-27 23:01:57 +00:00			`{`
			`var loggedUser = HttpContext.GetUserId();`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`var isAdmin = HttpContext.IsRole(Roles.Admin);`

			`var user = await GetRequestedUser(id);`
			`if (user == default) return NotFound();`

			`// not logged in user files, check public flag`
			`var canViewUploads = loggedUser == user.Id \|\| isAdmin;`
			`if (!canViewUploads &&`
			`!user.Flags.HasFlag(VoidUserFlags.PublicUploads)) return Forbid();`

Add user file list 2022-02-27 23:01:57 +00:00			`var results = await _userUploads.ListFiles(id.FromBase58Guid(), request);`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`return Json(await results.GetResults());`
			`}`

			`[HttpGet]`
			`[Route("verify")]`
			`public async Task<IActionResult> SendVerificationCode([FromRoute] string id)`
			`{`
			`var user = await GetAuthorizedUser(id);`
			`if (user == default) return Unauthorized();`

			`var isEmailVerified = (user?.Flags.HasFlag(VoidUserFlags.EmailVerified) ?? false);`
			`if (isEmailVerified) return UnprocessableEntity();`

			`await _emailVerification.SendNewCode(user!);`
			`return Accepted();`
			`}`

			`[HttpPost]`
			`[Route("verify")]`
			`public async Task<IActionResult> VerifyCode([FromRoute] string id, [FromBody] string code)`
			`{`
			`var user = await GetAuthorizedUser(id);`
			`if (user == default) return Unauthorized();`

			`var token = code.FromBase58Guid();`
			`if (!await _emailVerification.VerifyCode(user, token)) return BadRequest();`

			`user.Flags \|= VoidUserFlags.EmailVerified;`
			`await _store.Set(user);`
			`return Accepted();`
			`}`

			`private async Task<InternalVoidUser?> GetAuthorizedUser(string id)`
			`{`
			`var loggedUser = HttpContext.GetUserId();`
			`var gid = id.FromBase58Guid();`
			`var user = await _store.Get<InternalVoidUser>(gid);`
			`return user?.Id != loggedUser ? default : user;`
			`}`

			`private async Task<InternalVoidUser?> GetRequestedUser(string id)`
			`{`
			`var gid = id.FromBase58Guid();`
			`return await _store.Get<InternalVoidUser>(gid);`
Add user file list 2022-02-27 23:01:57 +00:00			`}`
Add email verification Standardize button styles 2022-03-02 11:37:15 +00:00			`}`