Diplomarbeit-Absolventenverein/oqtane.framework
10
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity

Merge pull request #4616 from sbwalker/dev

Browse Source 
include SecurityStamp in User object
This commit is contained in:
Shaun Walker
2024-09-16 13:03:32 -04:00
committed by GitHub
parent e2d336d90b f2c854b53a
commit 76f3d345f9
3 changed files with 11 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
Oqtane.Server/Controllers/UserController.cs
View File

@ -123,8 +123,11 @@ namespace Oqtane.Controllers
filtered.UserId = user.UserId; filtered.UserId = user.UserId;
filtered.Username = user.Username; filtered.Username = user.Username;
filtered.DisplayName = user.DisplayName; filtered.DisplayName = user.DisplayName;
// restricted properties
filtered.Password = ""; filtered.Password = "";
filtered.TwoFactorCode = ""; filtered.TwoFactorCode = "";
filtered.SecurityStamp = "";
// include private properties if authenticated user is accessing their own user account os is an administrator // include private properties if authenticated user is accessing their own user account os is an administrator
if (_userPermissions.IsAuthorized(User, user.SiteId, EntityNames.User, -1, PermissionNames.Write, RoleNames.Admin) || _userPermissions.GetUser(User).UserId == user.UserId) if (_userPermissions.IsAuthorized(User, user.SiteId, EntityNames.User, -1, PermissionNames.Write, RoleNames.Admin) || _userPermissions.GetUser(User).UserId == user.UserId)

1
Oqtane.Server/Managers/UserManager.cs
View File

@ -64,6 +64,7 @@ namespace Oqtane.Managers
{ {
user.SiteId = siteid; user.SiteId = siteid;
user.Roles = GetUserRoles(user.UserId, user.SiteId); user.Roles = GetUserRoles(user.UserId, user.SiteId);
user.SecurityStamp = _identityUserManager.FindByNameAsync(user.Username).GetAwaiter().GetResult()?.SecurityStamp;
user.Settings = _settings.GetSettings(EntityNames.User, user.UserId) user.Settings = _settings.GetSettings(EntityNames.User, user.UserId)
.ToDictionary(setting => setting.SettingName, setting => setting.SettingValue); .ToDictionary(setting => setting.SettingName, setting => setting.SettingValue);
} }

9
Oqtane.Shared/Models/User.cs
View File

@ -59,6 +59,12 @@ namespace Oqtane.Models
/// </summary> /// </summary>
public DateTime? TwoFactorExpiry { get; set; } public DateTime? TwoFactorExpiry { get; set; }
/// <summary>
/// A token indicating if a user's security properties have been modified
/// </summary>
[NotMapped]
public string SecurityStamp { get; set; }
/// <summary> /// <summary>
/// Reference to the <see cref="Site"/> this user belongs to. /// Reference to the <see cref="Site"/> this user belongs to.
/// </summary> /// </summary>
@ -66,8 +72,7 @@ namespace Oqtane.Models
public int SiteId { get; set; } public int SiteId { get; set; }
/// <summary> /// <summary>
/// Role names this user has. /// Semi-colon delimited list of role names for the user
/// TODO: todoc - is this comma separated?
/// </summary> /// </summary>
[NotMapped] [NotMapped]
public string Roles { get; set; } public string Roles { get; set; }