user identity improvements
This commit is contained in:
		| @ -1,4 +1,5 @@ | ||||
| @namespace Oqtane.Modules.Admin.Register | ||||
| @using System.Net | ||||
| @inherits ModuleBase | ||||
| @inject NavigationManager NavigationManager | ||||
| @inject IUserService UserService | ||||
| @ -88,9 +89,9 @@ else | ||||
|     } | ||||
|  | ||||
|     protected override void OnParametersSet() | ||||
| 	{ | ||||
| 		_togglepassword = SharedLocalizer["ShowPassword"];      | ||||
| 	} | ||||
|     { | ||||
|         _togglepassword = SharedLocalizer["ShowPassword"];      | ||||
|     } | ||||
|  | ||||
|     private async Task Register() | ||||
|     { | ||||
| @ -120,7 +121,14 @@ else | ||||
|                         if (user != null) | ||||
|                         { | ||||
|                             await logger.LogInformation("User Created {Username} {Email}", _username, _email); | ||||
|                             AddModuleMessage(Localizer["Info.User.AccountCreate"], MessageType.Info); | ||||
|                             if (PageState.QueryString.ContainsKey("returnurl")) | ||||
|                             { | ||||
|                                 NavigationManager.NavigateTo(WebUtility.UrlDecode(PageState.QueryString["returnurl"])); | ||||
|                             } | ||||
|                             else // legacy behavior | ||||
|                             { | ||||
|                                 AddModuleMessage(Localizer["Info.User.AccountCreate"], MessageType.Info); | ||||
|                             } | ||||
|                         } | ||||
|                         else | ||||
|                         { | ||||
|  | ||||
| @ -1,4 +1,5 @@ | ||||
| @namespace Oqtane.Modules.Admin.UserProfile | ||||
| @using System.Net | ||||
| @using System.Text.RegularExpressions; | ||||
| @inherits ModuleBase | ||||
| @inject NavigationManager NavigationManager | ||||
| @ -337,6 +338,11 @@ | ||||
|                 email = PageState.User.Email; | ||||
|                 displayname = PageState.User.DisplayName; | ||||
|  | ||||
|                 if (string.IsNullOrEmpty(email)) | ||||
|                 { | ||||
|                     AddModuleMessage(Localizer["Message.User.NoEmail"], MessageType.Warning); | ||||
|                 } | ||||
|  | ||||
|                 // get user folder | ||||
|                 var folder = await FolderService.GetFolderAsync(ModuleState.SiteId, PageState.User.FolderPath); | ||||
|                 if (folder != null) | ||||
| @ -427,8 +433,15 @@ | ||||
|                             await SettingService.UpdateUserSettingsAsync(settings, PageState.User.UserId); | ||||
|                             await logger.LogInformation("User Profile Saved"); | ||||
|  | ||||
|                             AddModuleMessage(Localizer["Success.Profile.Update"], MessageType.Success); | ||||
|                             StateHasChanged(); | ||||
|                             if (PageState.QueryString.ContainsKey("returnurl")) | ||||
|                             { | ||||
|                                 NavigationManager.NavigateTo(WebUtility.UrlDecode(PageState.QueryString["returnurl"])); | ||||
|                             } | ||||
|                             else // legacy behavior | ||||
|                             { | ||||
|                                 AddModuleMessage(Localizer["Success.Profile.Update"], MessageType.Success); | ||||
|                                 StateHasChanged(); | ||||
|                             } | ||||
|                         } | ||||
|                         else | ||||
|                         { | ||||
|  | ||||
| @ -195,7 +195,7 @@ else | ||||
| 						@if (_providertype != "") | ||||
| 						{ | ||||
| 							<div class="row mb-1 align-items-center"> | ||||
| 								<Label Class="col-sm-3" For="providername" HelpText="The external login provider name which will be displayed on the login page" ResourceKey="ProviderName">Provider Name:</Label> | ||||
| 								<Label Class="col-sm-3" For="providername" HelpText="Specify a friendly name for the external login provider which will be displayed on the Login page" ResourceKey="ProviderName">Provider Name:</Label> | ||||
| 								<div class="col-sm-9"> | ||||
| 									<input id="providername" class="form-control" @bind="@_providername" /> | ||||
| 								</div> | ||||
| @ -300,41 +300,50 @@ else | ||||
| 								</div> | ||||
| 							</div> | ||||
|                             <div class="row mb-1 align-items-center"> | ||||
|                                 <Label Class="col-sm-3" For="reviewclaims" HelpText="This option should only be used for testing. It allows the full list of Claims returned by the Provider to be recorded in the Event Log. Please note that external login is restricted when this option is enabled." ResourceKey="ReviewClaims">Review Claims?</Label> | ||||
|                                 <Label Class="col-sm-3" For="reviewclaims" HelpText="This option will record the full list of Claims returned by the Provider in the Event Log. It should only be used for testing purposes. External Login will be restricted when this option is enabled." ResourceKey="ReviewClaims">Review Claims?</Label> | ||||
|                                 <div class="col-sm-9"> | ||||
|                                     <select id="reviewclaims" class="form-select" @bind="@_reviewclaims" required> | ||||
|                                         <option value="true">@SharedLocalizer["Yes"]</option> | ||||
|                                         <option value="false">@SharedLocalizer["No"]</option> | ||||
|                                     </select> | ||||
|                                     <div class="input-group"> | ||||
|                                         <select id="reviewclaims" class="form-select" @bind="@_reviewclaims" required> | ||||
|                                             <option value="true">@SharedLocalizer["Yes"]</option> | ||||
|                                             <option value="false">@SharedLocalizer["No"]</option> | ||||
|                                         </select> | ||||
|                                         @if (_reviewclaims == "true") | ||||
|                                         { | ||||
|                                             <a href="@_externalloginurl" target="_blank" class="btn btn-secondary">@SharedLocalizer["Test"]</a> | ||||
|                                         } | ||||
|                                     </div> | ||||
|                                 </div> | ||||
|                             </div> | ||||
|                             <div class="row mb-1 align-items-center"> | ||||
| 								<Label Class="col-sm-3" For="identifierclaimtype" HelpText="The name of the unique user identifier claim provided by the provider" ResourceKey="IdentifierClaimType">Identifier Claim:</Label> | ||||
|                                 <Label Class="col-sm-3" For="identifierclaimtype" HelpText="Specify the type name of the unique user identifier claim provided by the provider. The default value is 'sub'." ResourceKey="IdentifierClaimType">Identifier Claim:</Label> | ||||
| 								<div class="col-sm-9"> | ||||
| 									<input id="identifierclaimtype" class="form-control" @bind="@_identifierclaimtype" /> | ||||
| 								</div> | ||||
| 							</div> | ||||
| 							<div class="row mb-1 align-items-center"> | ||||
| 								<Label Class="col-sm-3" For="emailclaimtype" HelpText="The name of the email address claim provided by the provider" ResourceKey="EmailClaimType">Email Claim:</Label> | ||||
|                             <div class="row mb-1 align-items-center"> | ||||
|                                 <Label Class="col-sm-3" For="nameclaimtype" HelpText="Optionally specify the type name of the user's name claim provided by the provider. The typical value is 'name'." ResourceKey="NameClaimType">Name Claim:</Label> | ||||
|                                 <div class="col-sm-9"> | ||||
|                                     <input id="nameclaimtype" class="form-control" @bind="@_nameclaimtype" /> | ||||
|                                 </div> | ||||
|                             </div> | ||||
|                             <div class="row mb-1 align-items-center"> | ||||
|                                 <Label Class="col-sm-3" For="emailclaimtype" HelpText="Optionally specify the type name of the email address claim provided by the provider. The typical value is 'email'," ResourceKey="EmailClaimType">Email Claim:</Label> | ||||
| 								<div class="col-sm-9"> | ||||
| 									<input id="emailclaimtype" class="form-control" @bind="@_emailclaimtype" /> | ||||
| 								</div> | ||||
| 							</div> | ||||
| 							@if (_providertype == AuthenticationProviderTypes.OpenIDConnect) | ||||
| 							{ | ||||
| 								<div class="row mb-1 align-items-center"> | ||||
| 									<Label Class="col-sm-3" For="roleclaimtype" HelpText="The name of the role claim provided by the provider" ResourceKey="RoleClaimType">Role Claim:</Label> | ||||
| 									<div class="col-sm-9"> | ||||
| 										<input id="roleclaimtype" class="form-control" @bind="@_roleclaimtype" /> | ||||
| 									</div> | ||||
| 							<div class="row mb-1 align-items-center"> | ||||
| 								<Label Class="col-sm-3" For="roleclaimtype" HelpText="The name of the role claim provided by the provider" ResourceKey="RoleClaimType">Role Claim:</Label> | ||||
| 								<div class="col-sm-9"> | ||||
| 									<input id="roleclaimtype" class="form-control" @bind="@_roleclaimtype" /> | ||||
| 								</div> | ||||
| 								<div class="row mb-1 align-items-center"> | ||||
| 									<Label Class="col-sm-3" For="profileclaimtypes" HelpText="A comma delimited list of user profile claims provided by the provider, as well as mappings to your user profile definition. For example if the provider includes a 'given_name' claim and you have a 'FirstName' user profile definition you should specify 'given_name:FirstName'." ResourceKey="ProfileClaimTypes">User Profile Claims:</Label> | ||||
| 									<div class="col-sm-9"> | ||||
| 										<input id="profileclaimtypes" class="form-control" @bind="@_profileclaimtypes" /> | ||||
| 									</div> | ||||
| 							</div> | ||||
| 							<div class="row mb-1 align-items-center"> | ||||
| 								<Label Class="col-sm-3" For="profileclaimtypes" HelpText="A comma delimited list of user profile claims provided by the provider, as well as mappings to your user profile definition. For example if the provider includes a 'given_name' claim and you have a 'FirstName' user profile definition you should specify 'given_name:FirstName'." ResourceKey="ProfileClaimTypes">User Profile Claims:</Label> | ||||
| 								<div class="col-sm-9"> | ||||
| 									<input id="profileclaimtypes" class="form-control" @bind="@_profileclaimtypes" /> | ||||
| 								</div> | ||||
| 							} | ||||
| 							</div> | ||||
| 							<div class="row mb-1 align-items-center"> | ||||
| 								<Label Class="col-sm-3" For="domainfilter" HelpText="Provide any email domain filter criteria (separated by commas). Domains to exclude should be prefixed with an exclamation point (!). For example 'microsoft.com,!hotmail.com' would include microsoft.com email addresses but not hotmail.com email addresses." ResourceKey="DomainFilter">Domain Filter:</Label> | ||||
| 								<div class="col-sm-9"> | ||||
| @ -443,7 +452,9 @@ else | ||||
|     private string _pkce; | ||||
|     private string _redirecturl; | ||||
|     private string _reviewclaims; | ||||
|     private string _externalloginurl; | ||||
|     private string _identifierclaimtype; | ||||
|     private string _nameclaimtype; | ||||
|     private string _emailclaimtype; | ||||
|     private string _roleclaimtype; | ||||
|     private string _profileclaimtypes; | ||||
| @ -505,7 +516,9 @@ else | ||||
|             _pkce = SettingService.GetSetting(settings, "ExternalLogin:PKCE", "false"); | ||||
|             _redirecturl = PageState.Uri.Scheme + "://" + PageState.Alias.Name + "/signin-" + _providertype; | ||||
|             _reviewclaims = SettingService.GetSetting(settings, "ExternalLogin:ReviewClaims", "false"); | ||||
|             _externalloginurl = Utilities.TenantUrl(PageState.Alias, "/pages/external"); | ||||
|             _identifierclaimtype = SettingService.GetSetting(settings, "ExternalLogin:IdentifierClaimType", "sub"); | ||||
|             _nameclaimtype = SettingService.GetSetting(settings, "ExternalLogin:NameClaimType", "name"); | ||||
|             _emailclaimtype = SettingService.GetSetting(settings, "ExternalLogin:EmailClaimType", "email"); | ||||
|             _roleclaimtype = SettingService.GetSetting(settings, "ExternalLogin:RoleClaimType", ""); | ||||
|             _profileclaimtypes = SettingService.GetSetting(settings, "ExternalLogin:ProfileClaimTypes", ""); | ||||
| @ -598,7 +611,8 @@ else | ||||
| 				settings = SettingService.SetSetting(settings, "ExternalLogin:PKCE", _pkce, true); | ||||
|                 settings = SettingService.SetSetting(settings, "ExternalLogin:ReviewClaims", _reviewclaims, true); | ||||
|                 settings = SettingService.SetSetting(settings, "ExternalLogin:IdentifierClaimType", _identifierclaimtype, true); | ||||
| 				settings = SettingService.SetSetting(settings, "ExternalLogin:EmailClaimType", _emailclaimtype, true); | ||||
|                 settings = SettingService.SetSetting(settings, "ExternalLogin:NameClaimType", _nameclaimtype, true); | ||||
|                 settings = SettingService.SetSetting(settings, "ExternalLogin:EmailClaimType", _emailclaimtype, true); | ||||
| 				settings = SettingService.SetSetting(settings, "ExternalLogin:RoleClaimType", _roleclaimtype, true); | ||||
| 				settings = SettingService.SetSetting(settings, "ExternalLogin:ProfileClaimTypes", _profileclaimtypes, true); | ||||
| 				settings = SettingService.SetSetting(settings, "ExternalLogin:DomainFilter", _domainfilter, true); | ||||
|  | ||||
| @ -204,8 +204,8 @@ | ||||
|   <data name="ExternalLoginStatus.DuplicateEmail" xml:space="preserve"> | ||||
|     <value>Multiple User Accounts Already Exist With The Email Address Of Your External Login. Please Contact Your Administrator For Further Instructions.</value> | ||||
|   </data> | ||||
|   <data name="ExternalLoginStatus.InvalidEmail" xml:space="preserve"> | ||||
|     <value>The External Login Provider Did Not Provide A Valid Email Address For Your Account. Please Contact Your Administrator For Further Instructions.</value> | ||||
|   <data name="ExternalLoginStatus.MissingClaims" xml:space="preserve"> | ||||
|     <value>The External Login Provider Did Not Provide All Of The Required Information. Please Contact Your Administrator For Further Instructions.</value> | ||||
|   </data> | ||||
|   <data name="ExternalLoginStatus.ProviderKeyMismatch" xml:space="preserve"> | ||||
|     <value>An Error Occurred Verifying Your External Login. Please Contact Your Administrator For Further Instructions.</value> | ||||
|  | ||||
| @ -147,6 +147,9 @@ | ||||
|   <data name="Message.User.NoLogIn" xml:space="preserve"> | ||||
|     <value>Current User Is Not Logged In</value> | ||||
|   </data> | ||||
|   <data name="Message.User.NoEmail" xml:space="preserve"> | ||||
|     <value>You Must Provide An Email Address For Your User Account</value> | ||||
|   </data> | ||||
|   <data name="Error.Profile.Load" xml:space="preserve"> | ||||
|     <value>Error Loading User Profile</value> | ||||
|   </data> | ||||
|  | ||||
| @ -247,7 +247,7 @@ | ||||
|     <value>Domain Filter:</value> | ||||
|   </data> | ||||
|   <data name="EmailClaimType.HelpText" xml:space="preserve"> | ||||
|     <value>The name of the email address claim provided by the identity provider</value> | ||||
|     <value>Optionally specify the type name of the email address claim provided by the identity provider. The typical value is 'email'.</value> | ||||
|   </data> | ||||
|   <data name="EmailClaimType.Text" xml:space="preserve"> | ||||
|     <value>Email Claim:</value> | ||||
| @ -274,7 +274,7 @@ | ||||
|     <value>Use PKCE?</value> | ||||
|   </data> | ||||
|   <data name="ProviderName.HelpText" xml:space="preserve"> | ||||
|     <value>The external login provider name which will be displayed on the login page</value> | ||||
|     <value>Specify a friendly name for the external login provider which will be displayed on the Login page</value> | ||||
|   </data> | ||||
|   <data name="ProviderName.Text" xml:space="preserve"> | ||||
|     <value>Provider Name:</value> | ||||
| @ -373,7 +373,7 @@ | ||||
|     <value>Last Login</value> | ||||
|   </data> | ||||
|   <data name="IdentifierClaimType.HelpText" xml:space="preserve"> | ||||
|     <value>The name of the unique user identifier claim provided by the identity provider</value> | ||||
|     <value>Specify the type name of the unique user identifier claim provided by the identity provider. The default value is 'sub'.</value> | ||||
|   </data> | ||||
|   <data name="IdentifierClaimType.Text" xml:space="preserve"> | ||||
|     <value>Identifier Claim:</value> | ||||
| @ -385,13 +385,13 @@ | ||||
|     <value>Parameters:</value> | ||||
|   </data> | ||||
|   <data name="RoleClaimType.HelpText" xml:space="preserve"> | ||||
|     <value>Optionally provide the name of the role claim provided by the identity provider. These roles will be used in addition to any internal user roles assigned within the site.</value> | ||||
|     <value>Optionally provide the type name of the role claim provided by the identity provider. These roles will be used in addition to any internal user roles assigned within the site.</value> | ||||
|   </data> | ||||
|   <data name="RoleClaimType.Text" xml:space="preserve"> | ||||
|     <value>Role Claim:</value> | ||||
|   </data> | ||||
|   <data name="ProfileClaimTypes.HelpText" xml:space="preserve"> | ||||
|     <value>Optionally provide a comma delimited list of user profile claims provided by the identity provider, as well as mappings to your user profile definition. For example if the identity provider includes a 'given_name' claim and you have a 'FirstName' user profile definition you should specify 'given_name:FirstName'.</value> | ||||
|     <value>Optionally provide a comma delimited list of user profile claim type names provided by the identity provider, as well as mappings to your user profile definition. For example if the identity provider includes a 'given_name' claim and you have a 'FirstName' user profile definition you should specify 'given_name:FirstName'.</value> | ||||
|   </data> | ||||
|   <data name="ProfileClaimTypes.Text" xml:space="preserve"> | ||||
|     <value>User Profile Claims:</value> | ||||
| @ -460,6 +460,12 @@ | ||||
|     <value>Review Claims?</value> | ||||
|   </data> | ||||
|     <data name="ReviewClaims.HelpText" xml:space="preserve"> | ||||
|     <value>This option should only be used for testing. It allows the full list of Claims returned by the Provider to be recorded in the Event Log. Please note that external login is restricted when this option is enabled.</value> | ||||
|     <value>This option will record the full list of Claims returned by the Provider in the Event Log. It should only be used for testing purposes. External Login will be restricted when this option is enabled.</value> | ||||
|   </data> | ||||
|   <data name="NameClaimType.HelpText" xml:space="preserve"> | ||||
|     <value>Optionally specify the type name of the user's name claim provided by the identity provider. The typical value is 'name'.</value> | ||||
|   </data> | ||||
|     <data name="NameClaimType.Text" xml:space="preserve"> | ||||
|     <value>Name Claim:</value> | ||||
|   </data> | ||||
| </root> | ||||
| @ -435,4 +435,7 @@ | ||||
|   <data name="Uninstall" xml:space="preserve"> | ||||
|     <value>Uninstall</value> | ||||
|   </data> | ||||
|   <data name="Test" xml:space="preserve"> | ||||
|     <value>Test</value> | ||||
|   </data> | ||||
| </root> | ||||
| @ -26,8 +26,7 @@ namespace Oqtane.Themes.Controls | ||||
|             var allowexternallogin = (SettingService.GetSetting(PageState.Site.Settings, "ExternalLogin:ProviderType", "") != "") ? true : false; | ||||
|             var allowsitelogin = bool.Parse(SettingService.GetSetting(PageState.Site.Settings, "LoginOptions:AllowSiteLogin", "true")); | ||||
|  | ||||
|             Route route = new Route(PageState.Uri.AbsoluteUri, PageState.Alias.Path); | ||||
|             var returnurl = WebUtility.UrlEncode(route.PathAndQuery); | ||||
|             var returnurl = WebUtility.UrlEncode(PageState.Route.PathAndQuery); | ||||
|  | ||||
|             if (allowexternallogin && !allowsitelogin) | ||||
|             { | ||||
| @ -39,7 +38,6 @@ namespace Oqtane.Themes.Controls | ||||
|                 // local login | ||||
|                 NavigationManager.NavigateTo(NavigateUrl("login", "?returnurl=" + returnurl)); | ||||
|             } | ||||
|  | ||||
|         } | ||||
|  | ||||
|         protected async Task LogoutUser() | ||||
|  | ||||
| @ -1,4 +1,5 @@ | ||||
| @namespace Oqtane.Themes.Controls | ||||
| @using System.Net | ||||
| @inherits ThemeControlBase | ||||
| @inject IStringLocalizer<UserProfile> Localizer | ||||
|  | ||||
| @ -26,14 +27,21 @@ | ||||
|     [Parameter] | ||||
|     public bool ShowRegister { get; set; } | ||||
|  | ||||
|     private string _returnurl = ""; | ||||
|  | ||||
|     protected override void OnParametersSet() | ||||
|     { | ||||
|         _returnurl = WebUtility.UrlEncode(PageState.Route.PathAndQuery); | ||||
|     } | ||||
|  | ||||
|     private void RegisterUser() | ||||
|     { | ||||
|         NavigationManager.NavigateTo(NavigateUrl("register")); | ||||
|         NavigationManager.NavigateTo(NavigateUrl("register", "returnurl=" + _returnurl)); | ||||
|     } | ||||
|  | ||||
|     private void UpdateProfile() | ||||
|     { | ||||
|         NavigationManager.NavigateTo(NavigateUrl("profile")); | ||||
|         NavigationManager.NavigateTo(NavigateUrl("profile", "returnurl=" + _returnurl)); | ||||
|     } | ||||
| } | ||||
|  | ||||
|  | ||||
| @ -1,4 +1,5 @@ | ||||
| @namespace Oqtane.UI | ||||
| @using System.Net | ||||
| @inject IJSRuntime JSRuntime | ||||
| @inject NavigationManager NavigationManager | ||||
| @inject SiteState SiteState | ||||
| @ -87,6 +88,13 @@ | ||||
|  | ||||
|     protected override async Task OnAfterRenderAsync(bool firstRender) | ||||
|     { | ||||
|         // force user to provide email address (email may be missing if using external login) | ||||
|         if (PageState.User != null && string.IsNullOrEmpty(PageState.User.Email) && PageState.Route.PagePath != "profile") | ||||
|         { | ||||
|             NavigationManager.NavigateTo(Utilities.NavigateUrl(PageState.Alias.Path, "profile", "returnurl=" + WebUtility.UrlEncode(PageState.Route.PathAndQuery))); | ||||
|             return; | ||||
|         } | ||||
|  | ||||
|         if (!firstRender) | ||||
|         { | ||||
|             if (!string.IsNullOrEmpty(PageState.Page.HeadContent) && PageState.Page.HeadContent.Contains("<script")) | ||||
|  | ||||
		Reference in New Issue
	
	Block a user
	 sbwalker
					sbwalker