MachDatum
diff --git a/‎.claude/settings.local.json‎
Lines changed: 4 additions & 1 deletion b/‎.claude/settings.local.json‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎ThingConnect.Pulse.Server/Controllers/AuthController.cs‎
Lines changed: 13 additions & 13 deletions b/‎ThingConnect.Pulse.Server/Controllers/AuthController.cs‎
Lines changed: 13 additions & 13 deletions
diff --git a/‎ThingConnect.Pulse.Server/Controllers/ConfigurationController.cs‎
Lines changed: 1 addition & 1 deletion b/‎ThingConnect.Pulse.Server/Controllers/ConfigurationController.cs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎ThingConnect.Pulse.Server/Controllers/UserManagementController.cs‎
Lines changed: 38 additions & 38 deletions b/‎ThingConnect.Pulse.Server/Controllers/UserManagementController.cs‎
Lines changed: 38 additions & 38 deletions
diff --git a/‎ThingConnect.Pulse.Server/Data/ApplicationUser.cs‎
Lines changed: 1 addition & 1 deletion b/‎ThingConnect.Pulse.Server/Data/ApplicationUser.cs‎
Lines changed: 1 addition & 1 deletion
@@ -7,7 +7,10 @@
       "Bash(curl:*)",
       "Bash(taskkill:*)",
       "mcp__chakra-ui",
-      "mcp__serena"
+      "mcp__serena",
+      "Bash(sqlite3:*)",
+      "Bash(dir:*)",
+      "Bash(timeout:*)"
     ],
     "deny": [],
     "ask": []
 
@@ -32,7 +32,7 @@ public async Task<ActionResult<UserInfoDto>> LoginAsync([FromBody] LoginRequestD
     {
         try
         {
-            var user = await _userManager.FindByNameAsync(request.Username);
+            ApplicationUser? user = await _userManager.FindByNameAsync(request.Username);
             if (user == null)
             {
                 _logger.LogWarning("Login attempt for non-existent user: {Username}", request.Username);
@@ -45,16 +45,16 @@ public async Task<ActionResult<UserInfoDto>> LoginAsync([FromBody] LoginRequestD
                 return Unauthorized(new { message = "Account is inactive" });
             }
 
-            var result = await _signInManager.PasswordSignInAsync(user, request.Password, isPersistent: true, lockoutOnFailure: true);
-            
+            Microsoft.AspNetCore.Identity.SignInResult result = await _signInManager.PasswordSignInAsync(user, request.Password, isPersistent: true, lockoutOnFailure: true);
+
             if (!result.Succeeded)
             {
                 if (result.IsLockedOut)
                 {
                     _logger.LogWarning("Account locked out for user: {Username}", request.Username);
                     return Unauthorized(new { message = "Account is locked due to multiple failed login attempts" });
                 }
-                
+
                 _logger.LogWarning("Invalid login attempt for user: {Username}", request.Username);
                 return Unauthorized(new { message = "Invalid username or password" });
             }
@@ -92,7 +92,7 @@ public async Task<ActionResult<UserInfoDto>> RegisterAsync([FromBody] RegisterRe
         try
         {
             // Only allow registration if no users exist (initial admin setup)
-            var userCount = _userManager.Users.Count();
+            int userCount = _userManager.Users.Count();
             if (userCount > 0)
             {
                 _logger.LogWarning("Registration attempt when users already exist");
@@ -109,7 +109,7 @@ public async Task<ActionResult<UserInfoDto>> RegisterAsync([FromBody] RegisterRe
                 IsActive = true
             };
 
-            var result = await _userManager.CreateAsync(user, request.Password);
+            IdentityResult result = await _userManager.CreateAsync(user, request.Password);
 
             if (!result.Succeeded)
             {
@@ -146,7 +146,7 @@ public ActionResult<bool> IsSetupRequired()
     {
         try
         {
-            var userCount = _userManager.Users.Count();
+            int userCount = _userManager.Users.Count();
             return Ok(userCount == 0);
         }
         catch (Exception ex)
@@ -165,7 +165,7 @@ public async Task<ActionResult<UserInfoDto>> GetSessionAsync()
     {
         try
         {
-            var user = await _userManager.GetUserAsync(User);
+            ApplicationUser? user = await _userManager.GetUserAsync(User);
             if (user == null || !user.IsActive)
             {
                 return Unauthorized(new { message = "Session invalid or user inactive" });
@@ -198,13 +198,13 @@ public async Task<IActionResult> ChangePasswordAsync([FromBody] ChangePasswordDt
     {
         try
         {
-            var user = await _userManager.GetUserAsync(User);
+            ApplicationUser? user = await _userManager.GetUserAsync(User);
             if (user == null || !user.IsActive)
             {
                 return Unauthorized(new { message = "Session invalid or user inactive" });
             }
 
-            var result = await _userManager.ChangePasswordAsync(user, request.CurrentPassword, request.NewPassword);
+            IdentityResult result = await _userManager.ChangePasswordAsync(user, request.CurrentPassword, request.NewPassword);
             if (!result.Succeeded)
             {
                 var errors = result.Errors.Select(e => e.Description).ToList();
@@ -234,14 +234,14 @@ public async Task<IActionResult> LogoutAsync()
     {
         try
         {
-            var user = await _userManager.GetUserAsync(User);
+            ApplicationUser? user = await _userManager.GetUserAsync(User);
             await _signInManager.SignOutAsync();
-            
+
             if (user != null)
             {
                 _logger.LogInformation("User {Username} (ID: {UserId}) logged out", user.UserName, user.Id);
             }
-            
+
             return Ok(new { message = "Logged out successfully" });
         }
         catch (Exception ex)
 
@@ -28,7 +28,7 @@ public async Task<ActionResult<ApplyResultDto>> ApplyAsync([FromQuery] bool dryR
     {
         try
         {
-            using StreamReader reader = new StreamReader(Request.Body);
+            using var reader = new StreamReader(Request.Body);
             string yamlContent = await reader.ReadToEndAsync();
 
             if (string.IsNullOrWhiteSpace(yamlContent))
 
@@ -39,14 +39,14 @@ public async Task<ActionResult<PagedResult<UserInfoDto>>> GetUsersAsync(
             if (page < 1) page = 1;
             if (pageSize < 1 || pageSize > 100) pageSize = 20;
 
-            var query = _userManager.Users.AsQueryable();
+            IQueryable<ApplicationUser> query = _userManager.Users.AsQueryable();
 
             // Apply filters
             if (!string.IsNullOrWhiteSpace(search))
             {
-                var searchLower = search.ToLower();
-                query = query.Where(u => 
-                    u.UserName!.ToLower().Contains(searchLower) || 
+                string searchLower = search.ToLower();
+                query = query.Where(u =>
+                    u.UserName!.ToLower().Contains(searchLower) ||
                     u.Email!.ToLower().Contains(searchLower));
             }
 
@@ -60,9 +60,9 @@ public async Task<ActionResult<PagedResult<UserInfoDto>>> GetUsersAsync(
                 query = query.Where(u => u.IsActive == isActive.Value);
             }
 
-            var totalCount = await query.CountAsync();
-            
-            var users = await query
+            int totalCount = await query.CountAsync();
+
+            List<UserInfoDto> users = await query
                 .OrderBy(u => u.UserName)
                 .Skip((page - 1) * pageSize)
                 .Take(pageSize)
@@ -104,7 +104,7 @@ public async Task<ActionResult<UserInfoDto>> GetUserByIdAsync(string id)
     {
         try
         {
-            var user = await _userManager.FindByIdAsync(id);
+            ApplicationUser? user = await _userManager.FindByIdAsync(id);
             if (user == null)
             {
                 return NotFound(new { message = "User not found" });
@@ -143,7 +143,7 @@ public async Task<ActionResult<UserInfoDto>> CreateUserAsync([FromBody] CreateUs
             }
 
             // Check if username or email already exists
-            var existingUser = await _userManager.FindByNameAsync(request.Username);
+            ApplicationUser? existingUser = await _userManager.FindByNameAsync(request.Username);
             if (existingUser != null)
             {
                 return BadRequest(new { message = "Username already exists" });
@@ -165,16 +165,16 @@ public async Task<ActionResult<UserInfoDto>> CreateUserAsync([FromBody] CreateUs
                 IsActive = true
             };
 
-            var result = await _userManager.CreateAsync(user, request.Password);
+            IdentityResult result = await _userManager.CreateAsync(user, request.Password);
             if (!result.Succeeded)
             {
                 var errors = result.Errors.Select(e => e.Description).ToList();
                 _logger.LogWarning("User creation failed for {Username}: {Errors}", request.Username, string.Join(", ", errors));
                 return BadRequest(new { message = "User creation failed", errors });
             }
 
-            var currentUser = await _userManager.GetUserAsync(User);
-            _logger.LogInformation("User created: {Username} (ID: {UserId}) by admin {AdminId}", 
+            ApplicationUser? currentUser = await _userManager.GetUserAsync(User);
+            _logger.LogInformation("User created: {Username} (ID: {UserId}) by admin {AdminId}",
                 user.UserName, user.Id, currentUser?.Id);
 
             return CreatedAtAction(nameof(GetUserByIdAsync), new { id = user.Id }, new UserInfoDto
@@ -203,14 +203,14 @@ public async Task<ActionResult<UserInfoDto>> UpdateUserAsync(string id, [FromBod
     {
         try
         {
-            var user = await _userManager.FindByIdAsync(id);
+            ApplicationUser? user = await _userManager.FindByIdAsync(id);
             if (user == null)
             {
                 return NotFound(new { message = "User not found" });
             }
 
             // Prevent admin from deactivating themselves
-            var currentUser = await _userManager.GetUserAsync(User);
+            ApplicationUser? currentUser = await _userManager.GetUserAsync(User);
             if (currentUser != null && id == currentUser.Id && request.IsActive == false)
             {
                 return BadRequest(new { message = "Cannot deactivate your own account" });
@@ -221,25 +221,25 @@ public async Task<ActionResult<UserInfoDto>> UpdateUserAsync(string id, [FromBod
             if (!string.IsNullOrWhiteSpace(request.Username) && request.Username != user.UserName)
             {
                 // Check if new username already exists
-                var existingUser = await _userManager.FindByNameAsync(request.Username);
+                ApplicationUser? existingUser = await _userManager.FindByNameAsync(request.Username);
                 if (existingUser != null && existingUser.Id != id)
                 {
                     return BadRequest(new { message = "Username already exists" });
                 }
-                
+
                 changes.Add($"Username: {user.UserName} -> {request.Username}");
                 user.UserName = request.Username;
             }
 
             if (!string.IsNullOrWhiteSpace(request.Email) && request.Email != user.Email)
             {
                 // Check if new email already exists
-                var existingUser = await _userManager.FindByEmailAsync(request.Email);
+                ApplicationUser? existingUser = await _userManager.FindByEmailAsync(request.Email);
                 if (existingUser != null && existingUser.Id != id)
                 {
                     return BadRequest(new { message = "Email already exists" });
                 }
-                
+
                 changes.Add($"Email: {user.Email} -> {request.Email}");
                 user.Email = request.Email;
             }
@@ -253,16 +253,16 @@ public async Task<ActionResult<UserInfoDto>> UpdateUserAsync(string id, [FromBod
             if (changes.Any())
             {
                 user.UpdatedAt = DateTimeOffset.UtcNow;
-                var result = await _userManager.UpdateAsync(user);
-                
+                IdentityResult result = await _userManager.UpdateAsync(user);
+
                 if (!result.Succeeded)
                 {
                     var errors = result.Errors.Select(e => e.Description).ToList();
                     _logger.LogWarning("User update failed for {UserId}: {Errors}", id, string.Join(", ", errors));
                     return BadRequest(new { message = "User update failed", errors });
                 }
 
-                _logger.LogInformation("User {UserId} updated by admin {AdminId}. Changes: {Changes}", 
+                _logger.LogInformation("User {UserId} updated by admin {AdminId}. Changes: {Changes}",
                     id, currentUser?.Id, string.Join("; ", changes));
             }
 
@@ -297,36 +297,36 @@ public async Task<ActionResult<UserInfoDto>> ChangeUserRoleAsync(string id, [Fro
                 return BadRequest(new { message = $"Invalid role. Allowed roles: {string.Join(", ", UserRoles.AllRoles)}" });
             }
 
-            var user = await _userManager.FindByIdAsync(id);
+            ApplicationUser? user = await _userManager.FindByIdAsync(id);
             if (user == null)
             {
                 return NotFound(new { message = "User not found" });
             }
 
             // Prevent admin from changing their own role if they're the only admin
-            var currentUser = await _userManager.GetUserAsync(User);
+            ApplicationUser? currentUser = await _userManager.GetUserAsync(User);
             if (currentUser != null && id == currentUser.Id && user.Role == UserRoles.Administrator && request.Role != UserRoles.Administrator)
             {
-                var adminCount = await _userManager.Users.CountAsync(u => u.Role == UserRoles.Administrator && u.IsActive);
+                int adminCount = await _userManager.Users.CountAsync(u => u.Role == UserRoles.Administrator && u.IsActive);
                 if (adminCount <= 1)
                 {
                     return BadRequest(new { message = "Cannot change role - you are the only active administrator" });
                 }
             }
 
-            var oldRole = user.Role;
+            string oldRole = user.Role;
             user.Role = request.Role;
             user.UpdatedAt = DateTimeOffset.UtcNow;
 
-            var result = await _userManager.UpdateAsync(user);
+            IdentityResult result = await _userManager.UpdateAsync(user);
             if (!result.Succeeded)
             {
                 var errors = result.Errors.Select(e => e.Description).ToList();
                 _logger.LogWarning("Role change failed for user {UserId}: {Errors}", id, string.Join(", ", errors));
                 return BadRequest(new { message = "Role change failed", errors });
             }
 
-            _logger.LogInformation("User {UserId} role changed from {OldRole} to {NewRole} by admin {AdminId}", 
+            _logger.LogInformation("User {UserId} role changed from {OldRole} to {NewRole} by admin {AdminId}",
                 id, oldRole, request.Role, currentUser?.Id);
 
             return Ok(new UserInfoDto
@@ -355,16 +355,16 @@ public async Task<IActionResult> ResetPasswordAsync(string id, [FromBody] ResetP
     {
         try
         {
-            var user = await _userManager.FindByIdAsync(id);
+            ApplicationUser? user = await _userManager.FindByIdAsync(id);
             if (user == null)
             {
                 return NotFound(new { message = "User not found" });
             }
 
             // Remove current password and set new one
-            var token = await _userManager.GeneratePasswordResetTokenAsync(user);
-            var result = await _userManager.ResetPasswordAsync(user, token, request.NewPassword);
-            
+            string token = await _userManager.GeneratePasswordResetTokenAsync(user);
+            IdentityResult result = await _userManager.ResetPasswordAsync(user, token, request.NewPassword);
+
             if (!result.Succeeded)
             {
                 var errors = result.Errors.Select(e => e.Description).ToList();
@@ -375,8 +375,8 @@ public async Task<IActionResult> ResetPasswordAsync(string id, [FromBody] ResetP
             user.UpdatedAt = DateTimeOffset.UtcNow;
             await _userManager.UpdateAsync(user);
 
-            var currentUser = await _userManager.GetUserAsync(User);
-            _logger.LogInformation("Password reset for user {UserId} by admin {AdminId}", 
+            ApplicationUser? currentUser = await _userManager.GetUserAsync(User);
+            _logger.LogInformation("Password reset for user {UserId} by admin {AdminId}",
                 id, currentUser?.Id);
 
             return Ok(new { message = "Password reset successfully" });
@@ -396,14 +396,14 @@ public async Task<IActionResult> DeleteUserAsync(string id)
     {
         try
         {
-            var user = await _userManager.FindByIdAsync(id);
+            ApplicationUser? user = await _userManager.FindByIdAsync(id);
             if (user == null)
             {
                 return NotFound(new { message = "User not found" });
             }
 
             // Prevent admin from deleting themselves
-            var currentUser = await _userManager.GetUserAsync(User);
+            ApplicationUser? currentUser = await _userManager.GetUserAsync(User);
             if (currentUser != null && id == currentUser.Id)
             {
                 return BadRequest(new { message = "Cannot delete your own account" });
@@ -412,7 +412,7 @@ public async Task<IActionResult> DeleteUserAsync(string id)
             // Check if this is the only active admin
             if (user.Role == UserRoles.Administrator && user.IsActive)
             {
-                var adminCount = await _userManager.Users.CountAsync(u => u.Role == UserRoles.Administrator && u.IsActive);
+                int adminCount = await _userManager.Users.CountAsync(u => u.Role == UserRoles.Administrator && u.IsActive);
                 if (adminCount <= 1)
                 {
                     return BadRequest(new { message = "Cannot delete the only active administrator" });
@@ -423,15 +423,15 @@ public async Task<IActionResult> DeleteUserAsync(string id)
             user.IsActive = false;
             user.UpdatedAt = DateTimeOffset.UtcNow;
 
-            var result = await _userManager.UpdateAsync(user);
+            IdentityResult result = await _userManager.UpdateAsync(user);
             if (!result.Succeeded)
             {
                 var errors = result.Errors.Select(e => e.Description).ToList();
                 _logger.LogWarning("User deletion failed for {UserId}: {Errors}", id, string.Join(", ", errors));
                 return BadRequest(new { message = "User deletion failed", errors });
             }
 
-            _logger.LogInformation("User {UserId} ({Username}) deactivated by admin {AdminId}", 
+            _logger.LogInformation("User {UserId} ({Username}) deactivated by admin {AdminId}",
                 id, user.UserName, currentUser?.Id);
 
             return Ok(new { message = "User deactivated successfully" });
 
@@ -15,6 +15,6 @@ public static class UserRoles
 {
     public const string Administrator = "Administrator";
     public const string User = "User";
-    
+
     public static readonly string[] AllRoles = { Administrator, User };
 }
Original file line number	Diff line number	Diff line change
`@@ -32,7 +32,7 @@ public async Task<ActionResult<UserInfoDto>> LoginAsync([FromBody] LoginRequestD`
`32`	`32`	`{`
`33`	`33`	`try`
`34`	`34`	`{`
`35`		`- var user = await _userManager.FindByNameAsync(request.Username);`
	`35`	`+ ApplicationUser? user = await _userManager.FindByNameAsync(request.Username);`
`36`	`36`	`if (user == null)`
`37`	`37`	`{`
`38`	`38`	`_logger.LogWarning("Login attempt for non-existent user: {Username}", request.Username);`
`@@ -45,16 +45,16 @@ public async Task<ActionResult<UserInfoDto>> LoginAsync([FromBody] LoginRequestD`
`45`	`45`	`return Unauthorized(new { message = "Account is inactive" });`
`46`	`46`	`}`
`47`	`47`
`48`		`- var result = await _signInManager.PasswordSignInAsync(user, request.Password, isPersistent: true, lockoutOnFailure: true);`
`49`		`-`
	`48`	`+ Microsoft.AspNetCore.Identity.SignInResult result = await _signInManager.PasswordSignInAsync(user, request.Password, isPersistent: true, lockoutOnFailure: true);`
	`49`	`+`
`50`	`50`	`if (!result.Succeeded)`
`51`	`51`	`{`
`52`	`52`	`if (result.IsLockedOut)`
`53`	`53`	`{`
`54`	`54`	`_logger.LogWarning("Account locked out for user: {Username}", request.Username);`
`55`	`55`	`return Unauthorized(new { message = "Account is locked due to multiple failed login attempts" });`
`56`	`56`	`}`
`57`		`-`
	`57`	`+`
`58`	`58`	`_logger.LogWarning("Invalid login attempt for user: {Username}", request.Username);`
`59`	`59`	`return Unauthorized(new { message = "Invalid username or password" });`
`60`	`60`	`}`
`@@ -92,7 +92,7 @@ public async Task<ActionResult<UserInfoDto>> RegisterAsync([FromBody] RegisterRe`
`92`	`92`	`try`
`93`	`93`	`{`
`94`	`94`	`// Only allow registration if no users exist (initial admin setup)`
`95`		`- var userCount = _userManager.Users.Count();`
	`95`	`+ int userCount = _userManager.Users.Count();`
`96`	`96`	`if (userCount > 0)`
`97`	`97`	`{`
`98`	`98`	`_logger.LogWarning("Registration attempt when users already exist");`
`@@ -109,7 +109,7 @@ public async Task<ActionResult<UserInfoDto>> RegisterAsync([FromBody] RegisterRe`
`109`	`109`	`IsActive = true`
`110`	`110`	`};`
`111`	`111`
`112`		`- var result = await _userManager.CreateAsync(user, request.Password);`
	`112`	`+ IdentityResult result = await _userManager.CreateAsync(user, request.Password);`
`113`	`113`
`114`	`114`	`if (!result.Succeeded)`
`115`	`115`	`{`
`@@ -146,7 +146,7 @@ public ActionResult<bool> IsSetupRequired()`
`146`	`146`	`{`
`147`	`147`	`try`
`148`	`148`	`{`
`149`		`- var userCount = _userManager.Users.Count();`
	`149`	`+ int userCount = _userManager.Users.Count();`
`150`	`150`	`return Ok(userCount == 0);`
`151`	`151`	`}`
`152`	`152`	`catch (Exception ex)`
`@@ -165,7 +165,7 @@ public async Task<ActionResult<UserInfoDto>> GetSessionAsync()`
`165`	`165`	`{`
`166`	`166`	`try`
`167`	`167`	`{`
`168`		`- var user = await _userManager.GetUserAsync(User);`
	`168`	`+ ApplicationUser? user = await _userManager.GetUserAsync(User);`
`169`	`169`	`if (user == null \|\| !user.IsActive)`
`170`	`170`	`{`
`171`	`171`	`return Unauthorized(new { message = "Session invalid or user inactive" });`
`@@ -198,13 +198,13 @@ public async Task<IActionResult> ChangePasswordAsync([FromBody] ChangePasswordDt`
`198`	`198`	`{`
`199`	`199`	`try`
`200`	`200`	`{`
`201`		`- var user = await _userManager.GetUserAsync(User);`
	`201`	`+ ApplicationUser? user = await _userManager.GetUserAsync(User);`
`202`	`202`	`if (user == null \|\| !user.IsActive)`
`203`	`203`	`{`
`204`	`204`	`return Unauthorized(new { message = "Session invalid or user inactive" });`
`205`	`205`	`}`
`206`	`206`
`207`		`- var result = await _userManager.ChangePasswordAsync(user, request.CurrentPassword, request.NewPassword);`
	`207`	`+ IdentityResult result = await _userManager.ChangePasswordAsync(user, request.CurrentPassword, request.NewPassword);`
`208`	`208`	`if (!result.Succeeded)`
`209`	`209`	`{`
`210`	`210`	`var errors = result.Errors.Select(e => e.Description).ToList();`
`@@ -234,14 +234,14 @@ public async Task<IActionResult> LogoutAsync()`
`234`	`234`	`{`
`235`	`235`	`try`
`236`	`236`	`{`
`237`		`- var user = await _userManager.GetUserAsync(User);`
	`237`	`+ ApplicationUser? user = await _userManager.GetUserAsync(User);`
`238`	`238`	`await _signInManager.SignOutAsync();`
`239`		`-`
	`239`	`+`
`240`	`240`	`if (user != null)`
`241`	`241`	`{`
`242`	`242`	`_logger.LogInformation("User {Username} (ID: {UserId}) logged out", user.UserName, user.Id);`
`243`	`243`	`}`
`244`		`-`
	`244`	`+`
`245`	`245`	`return Ok(new { message = "Logged out successfully" });`
`246`	`246`	`}`
`247`	`247`	`catch (Exception ex)`
Original file line number	Diff line number	Diff line change
`@@ -28,7 +28,7 @@ public async Task<ActionResult<ApplyResultDto>> ApplyAsync([FromQuery] bool dryR`
`28`	`28`	`{`
`29`	`29`	`try`
`30`	`30`	`{`
`31`		`- using StreamReader reader = new StreamReader(Request.Body);`
	`31`	`+ using var reader = new StreamReader(Request.Body);`
`32`	`32`	`string yamlContent = await reader.ReadToEndAsync();`
`33`	`33`
`34`	`34`	`if (string.IsNullOrWhiteSpace(yamlContent))`
Original file line number	Diff line number	Diff line change
`@@ -39,14 +39,14 @@ public async Task<ActionResult<PagedResult<UserInfoDto>>> GetUsersAsync(`
`39`	`39`	`if (page < 1) page = 1;`
`40`	`40`	`if (pageSize < 1 \|\| pageSize > 100) pageSize = 20;`
`41`	`41`
`42`		`- var query = _userManager.Users.AsQueryable();`
	`42`	`+ IQueryable<ApplicationUser> query = _userManager.Users.AsQueryable();`
`43`	`43`
`44`	`44`	`// Apply filters`
`45`	`45`	`if (!string.IsNullOrWhiteSpace(search))`
`46`	`46`	`{`
`47`		`- var searchLower = search.ToLower();`
`48`		`- query = query.Where(u =>`
`49`		`- u.UserName!.ToLower().Contains(searchLower) \|\|`
	`47`	`+ string searchLower = search.ToLower();`
	`48`	`+ query = query.Where(u =>`
	`49`	`+ u.UserName!.ToLower().Contains(searchLower) \|\|`
`50`	`50`	`u.Email!.ToLower().Contains(searchLower));`
`51`	`51`	`}`
`52`	`52`
`@@ -60,9 +60,9 @@ public async Task<ActionResult<PagedResult<UserInfoDto>>> GetUsersAsync(`
`60`	`60`	`query = query.Where(u => u.IsActive == isActive.Value);`
`61`	`61`	`}`
`62`	`62`
`63`		`- var totalCount = await query.CountAsync();`
`64`		`-`
`65`		`- var users = await query`
	`63`	`+ int totalCount = await query.CountAsync();`
	`64`	`+`
	`65`	`+ List<UserInfoDto> users = await query`
`66`	`66`	`.OrderBy(u => u.UserName)`
`67`	`67`	`.Skip((page - 1) * pageSize)`
`68`	`68`	`.Take(pageSize)`
`@@ -104,7 +104,7 @@ public async Task<ActionResult<UserInfoDto>> GetUserByIdAsync(string id)`
`104`	`104`	`{`
`105`	`105`	`try`
`106`	`106`	`{`
`107`		`- var user = await _userManager.FindByIdAsync(id);`
	`107`	`+ ApplicationUser? user = await _userManager.FindByIdAsync(id);`
`108`	`108`	`if (user == null)`
`109`	`109`	`{`
`110`	`110`	`return NotFound(new { message = "User not found" });`
`@@ -143,7 +143,7 @@ public async Task<ActionResult<UserInfoDto>> CreateUserAsync([FromBody] CreateUs`
`143`	`143`	`}`
`144`	`144`
`145`	`145`	`// Check if username or email already exists`
`146`		`- var existingUser = await _userManager.FindByNameAsync(request.Username);`
	`146`	`+ ApplicationUser? existingUser = await _userManager.FindByNameAsync(request.Username);`
`147`	`147`	`if (existingUser != null)`
`148`	`148`	`{`
`149`	`149`	`return BadRequest(new { message = "Username already exists" });`
`@@ -165,16 +165,16 @@ public async Task<ActionResult<UserInfoDto>> CreateUserAsync([FromBody] CreateUs`
`165`	`165`	`IsActive = true`
`166`	`166`	`};`
`167`	`167`
`168`		`- var result = await _userManager.CreateAsync(user, request.Password);`
	`168`	`+ IdentityResult result = await _userManager.CreateAsync(user, request.Password);`
`169`	`169`	`if (!result.Succeeded)`
`170`	`170`	`{`
`171`	`171`	`var errors = result.Errors.Select(e => e.Description).ToList();`
`172`	`172`	`_logger.LogWarning("User creation failed for {Username}: {Errors}", request.Username, string.Join(", ", errors));`
`173`	`173`	`return BadRequest(new { message = "User creation failed", errors });`
`174`	`174`	`}`
`175`	`175`
`176`		`- var currentUser = await _userManager.GetUserAsync(User);`
`177`		`- _logger.LogInformation("User created: {Username} (ID: {UserId}) by admin {AdminId}",`
	`176`	`+ ApplicationUser? currentUser = await _userManager.GetUserAsync(User);`
	`177`	`+ _logger.LogInformation("User created: {Username} (ID: {UserId}) by admin {AdminId}",`
`178`	`178`	`user.UserName, user.Id, currentUser?.Id);`
`179`	`179`
`180`	`180`	`return CreatedAtAction(nameof(GetUserByIdAsync), new { id = user.Id }, new UserInfoDto`
`@@ -203,14 +203,14 @@ public async Task<ActionResult<UserInfoDto>> UpdateUserAsync(string id, [FromBod`
`203`	`203`	`{`
`204`	`204`	`try`
`205`	`205`	`{`
`206`		`- var user = await _userManager.FindByIdAsync(id);`
	`206`	`+ ApplicationUser? user = await _userManager.FindByIdAsync(id);`
`207`	`207`	`if (user == null)`
`208`	`208`	`{`
`209`	`209`	`return NotFound(new { message = "User not found" });`
`210`	`210`	`}`
`211`	`211`
`212`	`212`	`// Prevent admin from deactivating themselves`
`213`		`- var currentUser = await _userManager.GetUserAsync(User);`
	`213`	`+ ApplicationUser? currentUser = await _userManager.GetUserAsync(User);`
`214`	`214`	`if (currentUser != null && id == currentUser.Id && request.IsActive == false)`
`215`	`215`	`{`
`216`	`216`	`return BadRequest(new { message = "Cannot deactivate your own account" });`
`@@ -221,25 +221,25 @@ public async Task<ActionResult<UserInfoDto>> UpdateUserAsync(string id, [FromBod`
`221`	`221`	`if (!string.IsNullOrWhiteSpace(request.Username) && request.Username != user.UserName)`
`222`	`222`	`{`
`223`	`223`	`// Check if new username already exists`
`224`		`- var existingUser = await _userManager.FindByNameAsync(request.Username);`
	`224`	`+ ApplicationUser? existingUser = await _userManager.FindByNameAsync(request.Username);`
`225`	`225`	`if (existingUser != null && existingUser.Id != id)`
`226`	`226`	`{`
`227`	`227`	`return BadRequest(new { message = "Username already exists" });`
`228`	`228`	`}`
`229`		`-`
	`229`	`+`
`230`	`230`	`changes.Add($"Username: {user.UserName} -> {request.Username}");`
`231`	`231`	`user.UserName = request.Username;`
`232`	`232`	`}`
`233`	`233`
`234`	`234`	`if (!string.IsNullOrWhiteSpace(request.Email) && request.Email != user.Email)`
`235`	`235`	`{`
`236`	`236`	`// Check if new email already exists`
`237`		`- var existingUser = await _userManager.FindByEmailAsync(request.Email);`
	`237`	`+ ApplicationUser? existingUser = await _userManager.FindByEmailAsync(request.Email);`
`238`	`238`	`if (existingUser != null && existingUser.Id != id)`
`239`	`239`	`{`
`240`	`240`	`return BadRequest(new { message = "Email already exists" });`
`241`	`241`	`}`
`242`		`-`
	`242`	`+`
`243`	`243`	`changes.Add($"Email: {user.Email} -> {request.Email}");`
`244`	`244`	`user.Email = request.Email;`
`245`	`245`	`}`
`@@ -253,16 +253,16 @@ public async Task<ActionResult<UserInfoDto>> UpdateUserAsync(string id, [FromBod`
`253`	`253`	`if (changes.Any())`
`254`	`254`	`{`
`255`	`255`	`user.UpdatedAt = DateTimeOffset.UtcNow;`
`256`		`- var result = await _userManager.UpdateAsync(user);`
`257`		`-`
	`256`	`+ IdentityResult result = await _userManager.UpdateAsync(user);`
	`257`	`+`
`258`	`258`	`if (!result.Succeeded)`
`259`	`259`	`{`
`260`	`260`	`var errors = result.Errors.Select(e => e.Description).ToList();`
`261`	`261`	`_logger.LogWarning("User update failed for {UserId}: {Errors}", id, string.Join(", ", errors));`
`262`	`262`	`return BadRequest(new { message = "User update failed", errors });`
`263`	`263`	`}`
`264`	`264`
`265`		`- _logger.LogInformation("User {UserId} updated by admin {AdminId}. Changes: {Changes}",`
	`265`	`+ _logger.LogInformation("User {UserId} updated by admin {AdminId}. Changes: {Changes}",`
`266`	`266`	`id, currentUser?.Id, string.Join("; ", changes));`
`267`	`267`	`}`
`268`	`268`
`@@ -297,36 +297,36 @@ public async Task<ActionResult<UserInfoDto>> ChangeUserRoleAsync(string id, [Fro`
`297`	`297`	`return BadRequest(new { message = $"Invalid role. Allowed roles: {string.Join(", ", UserRoles.AllRoles)}" });`
`298`	`298`	`}`
`299`	`299`
`300`		`- var user = await _userManager.FindByIdAsync(id);`
	`300`	`+ ApplicationUser? user = await _userManager.FindByIdAsync(id);`
`301`	`301`	`if (user == null)`
`302`	`302`	`{`
`303`	`303`	`return NotFound(new { message = "User not found" });`
`304`	`304`	`}`
`305`	`305`
`306`	`306`	`// Prevent admin from changing their own role if they're the only admin`
`307`		`- var currentUser = await _userManager.GetUserAsync(User);`
	`307`	`+ ApplicationUser? currentUser = await _userManager.GetUserAsync(User);`
`308`	`308`	`if (currentUser != null && id == currentUser.Id && user.Role == UserRoles.Administrator && request.Role != UserRoles.Administrator)`
`309`	`309`	`{`
`310`		`- var adminCount = await _userManager.Users.CountAsync(u => u.Role == UserRoles.Administrator && u.IsActive);`
	`310`	`+ int adminCount = await _userManager.Users.CountAsync(u => u.Role == UserRoles.Administrator && u.IsActive);`
`311`	`311`	`if (adminCount <= 1)`
`312`	`312`	`{`
`313`	`313`	`return BadRequest(new { message = "Cannot change role - you are the only active administrator" });`
`314`	`314`	`}`
`315`	`315`	`}`
`316`	`316`
`317`		`- var oldRole = user.Role;`
	`317`	`+ string oldRole = user.Role;`
`318`	`318`	`user.Role = request.Role;`
`319`	`319`	`user.UpdatedAt = DateTimeOffset.UtcNow;`
`320`	`320`
`321`		`- var result = await _userManager.UpdateAsync(user);`
	`321`	`+ IdentityResult result = await _userManager.UpdateAsync(user);`
`322`	`322`	`if (!result.Succeeded)`
`323`	`323`	`{`
`324`	`324`	`var errors = result.Errors.Select(e => e.Description).ToList();`
`325`	`325`	`_logger.LogWarning("Role change failed for user {UserId}: {Errors}", id, string.Join(", ", errors));`
`326`	`326`	`return BadRequest(new { message = "Role change failed", errors });`
`327`	`327`	`}`
`328`	`328`
`329`		`- _logger.LogInformation("User {UserId} role changed from {OldRole} to {NewRole} by admin {AdminId}",`
	`329`	`+ _logger.LogInformation("User {UserId} role changed from {OldRole} to {NewRole} by admin {AdminId}",`
`330`	`330`	`id, oldRole, request.Role, currentUser?.Id);`
`331`	`331`
`332`	`332`	`return Ok(new UserInfoDto`
`@@ -355,16 +355,16 @@ public async Task<IActionResult> ResetPasswordAsync(string id, [FromBody] ResetP`
`355`	`355`	`{`
`356`	`356`	`try`
`357`	`357`	`{`
`358`		`- var user = await _userManager.FindByIdAsync(id);`
	`358`	`+ ApplicationUser? user = await _userManager.FindByIdAsync(id);`
`359`	`359`	`if (user == null)`
`360`	`360`	`{`
`361`	`361`	`return NotFound(new { message = "User not found" });`
`362`	`362`	`}`
`363`	`363`
`364`	`364`	`// Remove current password and set new one`
`365`		`- var token = await _userManager.GeneratePasswordResetTokenAsync(user);`
`366`		`- var result = await _userManager.ResetPasswordAsync(user, token, request.NewPassword);`
`367`		`-`
	`365`	`+ string token = await _userManager.GeneratePasswordResetTokenAsync(user);`
	`366`	`+ IdentityResult result = await _userManager.ResetPasswordAsync(user, token, request.NewPassword);`
	`367`	`+`
`368`	`368`	`if (!result.Succeeded)`
`369`	`369`	`{`
`370`	`370`	`var errors = result.Errors.Select(e => e.Description).ToList();`
`@@ -375,8 +375,8 @@ public async Task<IActionResult> ResetPasswordAsync(string id, [FromBody] ResetP`
`375`	`375`	`user.UpdatedAt = DateTimeOffset.UtcNow;`
`376`	`376`	`await _userManager.UpdateAsync(user);`
`377`	`377`
`378`		`- var currentUser = await _userManager.GetUserAsync(User);`
`379`		`- _logger.LogInformation("Password reset for user {UserId} by admin {AdminId}",`
	`378`	`+ ApplicationUser? currentUser = await _userManager.GetUserAsync(User);`
	`379`	`+ _logger.LogInformation("Password reset for user {UserId} by admin {AdminId}",`
`380`	`380`	`id, currentUser?.Id);`
`381`	`381`
`382`	`382`	`return Ok(new { message = "Password reset successfully" });`
`@@ -396,14 +396,14 @@ public async Task<IActionResult> DeleteUserAsync(string id)`
`396`	`396`	`{`
`397`	`397`	`try`
`398`	`398`	`{`
`399`		`- var user = await _userManager.FindByIdAsync(id);`
	`399`	`+ ApplicationUser? user = await _userManager.FindByIdAsync(id);`
`400`	`400`	`if (user == null)`
`401`	`401`	`{`
`402`	`402`	`return NotFound(new { message = "User not found" });`
`403`	`403`	`}`
`404`	`404`
`405`	`405`	`// Prevent admin from deleting themselves`
`406`		`- var currentUser = await _userManager.GetUserAsync(User);`
	`406`	`+ ApplicationUser? currentUser = await _userManager.GetUserAsync(User);`
`407`	`407`	`if (currentUser != null && id == currentUser.Id)`
`408`	`408`	`{`
`409`	`409`	`return BadRequest(new { message = "Cannot delete your own account" });`
`@@ -412,7 +412,7 @@ public async Task<IActionResult> DeleteUserAsync(string id)`
`412`	`412`	`// Check if this is the only active admin`
`413`	`413`	`if (user.Role == UserRoles.Administrator && user.IsActive)`
`414`	`414`	`{`
`415`		`- var adminCount = await _userManager.Users.CountAsync(u => u.Role == UserRoles.Administrator && u.IsActive);`
	`415`	`+ int adminCount = await _userManager.Users.CountAsync(u => u.Role == UserRoles.Administrator && u.IsActive);`
`416`	`416`	`if (adminCount <= 1)`
`417`	`417`	`{`
`418`	`418`	`return BadRequest(new { message = "Cannot delete the only active administrator" });`
`@@ -423,15 +423,15 @@ public async Task<IActionResult> DeleteUserAsync(string id)`
`423`	`423`	`user.IsActive = false;`
`424`	`424`	`user.UpdatedAt = DateTimeOffset.UtcNow;`
`425`	`425`
`426`		`- var result = await _userManager.UpdateAsync(user);`
	`426`	`+ IdentityResult result = await _userManager.UpdateAsync(user);`
`427`	`427`	`if (!result.Succeeded)`
`428`	`428`	`{`
`429`	`429`	`var errors = result.Errors.Select(e => e.Description).ToList();`
`430`	`430`	`_logger.LogWarning("User deletion failed for {UserId}: {Errors}", id, string.Join(", ", errors));`
`431`	`431`	`return BadRequest(new { message = "User deletion failed", errors });`
`432`	`432`	`}`
`433`	`433`
`434`		`- _logger.LogInformation("User {UserId} ({Username}) deactivated by admin {AdminId}",`
	`434`	`+ _logger.LogInformation("User {UserId} ({Username}) deactivated by admin {AdminId}",`
`435`	`435`	`id, user.UserName, currentUser?.Id);`
`436`	`436`
`437`	`437`	`return Ok(new { message = "User deactivated successfully" });`
Original file line number	Diff line number	Diff line change
`@@ -15,6 +15,6 @@ public static class UserRoles`
`15`	`15`	`{`
`16`	`16`	`public const string Administrator = "Administrator";`
`17`	`17`	`public const string User = "User";`
`18`		`-`
	`18`	`+`
`19`	`19`	`public static readonly string[] AllRoles = { Administrator, User };`
`20`	`20`	`}`