added administration functions

Andrea-Perelli · Andrea-Perelli · commit 30d31e1050bf · 2025-10-24T14:58:49.000+02:00
diff --git a/jjodel-persistence/jjodel-persistence/Controllers/API/ProjectController.cs b/jjodel-persistence/jjodel-persistence/Controllers/API/ProjectController.cs
@@ -125,8 +125,8 @@ public async Task<IActionResult> GetByJJodelId(string Id) {
                 Project result = await this._projectService.GetByJJodelId(Id);
 
                 //todo: remove
-                result.Collaborators.Add(await this._userManager.FindByNameAsync(this.User.Identity.Name));
-                await this._projectService.Save();
+                //result.Collaborators.Add(await this._userManager.FindByNameAsync(this.User.Identity.Name));
+                //await this._projectService.Save();
 
 
                 if(result == null) {
diff --git a/jjodel-persistence/jjodel-persistence/Controllers/Web/AccountController.cs b/jjodel-persistence/jjodel-persistence/Controllers/Web/AccountController.cs
@@ -1,19 +1,19 @@
-﻿using System.Diagnostics;
-using System.IdentityModel.Tokens.Jwt;
-using System.Security.Claims;
-using System.Text;
-using jjodel_persistence.Models.Dto;
+﻿using jjodel_persistence.Models.Dto;
 using jjodel_persistence.Models.Entity;
+using jjodel_persistence.Models.Mail;
 using jjodel_persistence.Models.Settings;
 using jjodel_persistence.Services;
-using Microsoft.AspNetCore.Authentication.Cookies;
 using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Authentication.Cookies;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Identity;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.Extensions.Options;
-using jjodel_persistence.Models.Mail;
+using System.Diagnostics;
+using System.IdentityModel.Tokens.Jwt;
+using System.Security.Claims;
+using System.Text;
 
 
 namespace jjodel_persistence.Controllers.Web {
@@ -128,6 +128,36 @@ public async Task<ActionResult> Edit(string Id) {
             return PartialView("~/Views/Shared/UC_UserForm.cshtml", user);
         }
 
+        [HttpGet]
+        [Route("EnableUser/{Id}")]
+        [Authorize(AuthenticationSchemes = CookieAuthenticationDefaults.AuthenticationScheme, Roles = "Admin")]
+        public async Task<ActionResult> EnableUser(string Id) {
+            try {
+                ApplicationUser admin = await _userManager.FindByNameAsync(User.Identity.Name);
+
+                this._logger.LogWarning("Confirming Account by admin " + admin.Id + ":" + Id);
+
+                ApplicationUser user = await this._userManager.FindByIdAsync(Id);
+                if(user != null) {
+
+                    user.EmailConfirmed = true;
+                    var result = await this._userManager.UpdateAsync(user);
+
+                    if(result.Succeeded) {
+                        this._logger.LogInformation("Confirmed Account by admin " + admin.Id + ": " + Id);
+
+                        return Json(new { success = true, Message = "Operation completed successfully." });
+                    }
+                }
+                this._logger.LogInformation("Confirming Account failed for user: " + Id);
+            }
+            catch(Exception ex) {
+                this._logger.LogError(ex.Message);
+            }
+            return Json(new { success = false, message = "Error updating user" });
+
+        }
+
         [HttpGet]
         [Route("List")]
         [Authorize(AuthenticationSchemes = CookieAuthenticationDefaults.AuthenticationScheme, Roles = "Admin")]
@@ -414,7 +444,42 @@ public async Task<ActionResult> ResetPassword(ResetPasswordRequest resetPassword
             return View();
         }
 
+        [HttpGet]
+        [Route("ResetPasswordByAdmin/{Id}")]
+        [Authorize(AuthenticationSchemes = CookieAuthenticationDefaults.AuthenticationScheme, Roles = "Admin")]
+        public async Task<ActionResult> ResetPasswordByAdmin(string Id) {
+            try {
+
+                ApplicationUser admin = await _userManager.FindByNameAsync(User.Identity.Name);
+
+                this._logger.LogWarning("Reset Password by admin " + admin.Id + ":" + Id);
+
+                ApplicationUser user = await this._userManager.FindByIdAsync(Id);
+
+                if(user != null) {
+                    // generate password.
+                    string password = _authService.GenerateRandomPassword();
+                    var token = await _userManager.GeneratePasswordResetTokenAsync(user);
+                    var result = await _userManager.ResetPasswordAsync(user, token, password);
+
+                    if(!result.Succeeded) {
+                        this._logger.LogWarning("Reset Password by admin " + admin.Id + " failed:" + Id);
+                        return BadRequest();
+                    }
+                    await _mailService.SendEmail(new List<string> { user.Email }, "Reset Password", "ResetPassword", new ResetPassword() { NewPassoword = password, Username = user.UserName });
+                    this._logger.LogInformation("The password has been reset");
+                    return Json(new { success = true, Message = "Operation completed successfully." });
+
+                }
+
+
+            }
+            catch(Exception ex) {
+                this._logger.LogError(ex.Message);
+            }
+            return Json(new { success = false, message = "Error resetting password" });
+
+        }
 
-        
     }
 }
diff --git a/jjodel-persistence/jjodel-persistence/Views/Account/Index.cshtml b/jjodel-persistence/jjodel-persistence/Views/Account/Index.cshtml
@@ -78,6 +78,27 @@
         OpenConfirmModal(id, "Are you sure you want to delete this user? This action cannot be undone.", "DeleteUser('"+id+"')");
     }
 
+    function EnableUser(id){
+        fetch(`/Account/EnableUser/${id}`)
+                .then(response => response.text())
+                .then(data => {
+                    var jsonData = JSON.parse(data)
+                    if(jsonData.success){
+                        OpenSuccessModal(jsonData.message, null);
+                        List();
+                    }
+                    else{
+                        OpenErrorModal(jsonData.message)
+                    }
+                })
+                .catch(error => OpenErrorModal(error) );
+    }
+
+    function EnableUserConfirm(id){
+        OpenConfirmModal(id, "Are you sure you want to enable this user? This action cannot be undone.", "EnableUser('"+id+"')");
+
+    }
+
     function List(){
        
         fetch('/Account/List')
@@ -122,7 +143,28 @@
                 .catch(error => OpenErrorModal(error) );
     }
 
-        function SaveUser() {
+    function ResetPasswordConfirm(id){
+        OpenConfirmModal(id, "Are you sure you want to reset the password for this user? This action cannot be undone.", "ResetPassword('"+id+"')");
+
+    }
+
+    function ResetPassword(id){
+        fetch(`/Account/ResetPasswordByAdmin/${id}`)
+                .then(response => response.text())
+                .then(data => {
+                    var jsonData = JSON.parse(data)
+                    if(jsonData.success){
+                        OpenSuccessModal(jsonData.message, null);
+                        List();
+                    }
+                    else{
+                        OpenErrorModal(jsonData.message)
+                    }
+                })
+                .catch(error => OpenErrorModal(error) );
+    }
+
+    function SaveUser() {
             let form = document.getElementById("editUserForm");
             let formData = new FormData(form);
            
diff --git a/jjodel-persistence/jjodel-persistence/Views/Shared/UC_UserList.cshtml b/jjodel-persistence/jjodel-persistence/Views/Shared/UC_UserList.cshtml
@@ -62,12 +62,26 @@
 
                 <td>
                     <div class="d-grid gap-2 d-flex justify-content-center">
-                        <button class="btn btn-primary editUserBtn" onclick="EditUser('@user.Id')" title="Edit User">
-                            <i class="bi bi-pencil-square"></i>
-                        </button>
-                        <button class="btn btn-danger deleteUserBtn" onclick="DeleteUserConfirm('@user.Id')" title="Delete User">
-                            <i class="bi bi-trash"></i>
-                        </button>
+                        
+                        @if (!user.EmailConfirmed){
+                            <button class="btn btn-warning " onclick="EnableUserConfirm('@user.Id')" title="Enable User">
+                                <i class="bi bi-check-lg"></i>
+                            </button>
+                        }
+                        else {
+                            <button class="btn btn-primary " onclick="EditUser('@user.Id')" title="Edit User">
+                                <i class="bi bi-pencil-square"></i>
+                            </button>
+                            <button class="btn btn-warning " onclick="ResetPasswordConfirm('@user.Id')" title="Reset Password">
+                                <i class="bi bi-unlock"></i>
+                            </button>
+                            
+                            <button class="btn btn-danger " onclick="DeleteUserConfirm('@user.Id')" title="Delete User">
+                                <i class="bi bi-trash"></i>
+                            </button>
+
+                        }
+                        
                     </div>
                 </td>
             </tr>
