Identity reset password api

mini-software · Apr 21, 2024 · 0695fb5 · 0695fb5
1 parent 534d0cc
commit 0695fb5
Showing 1 changed file with 49 additions and 0 deletions.
diff --git a/src/MiniAuth.IdentityAuth/MiniAuthIdentityEndpoints.cs b/src/MiniAuth.IdentityAuth/MiniAuthIdentityEndpoints.cs
@@ -95,11 +95,60 @@ MiniAuthIdentityDbContext _dbContext
                     await SaveUser(context, _dbContext);
                 }).RequireAuthorization("miniauth-admin");
 
+                // /api/resetPassword
+                endpoints.MapPost("/miniauth/api/resetPassword", async (HttpContext context
+                    , ILogger<MiniAuthIdentityEndpoints> _logger
+                    , MiniAuthIdentityDbContext _dbContext
+                    , SignInManager<MiniAuthIdentityUser> signInManager
+                    , UserManager<MiniAuthIdentityUser> userManager
+                ) =>
+                {
+                    await ResetPassword(context, _dbContext, userManager);
+                }).RequireAuthorization("miniauth-admin");
+
             });
             InitEndpointsCache(builder);
 
         }
 
+        private static string GetNewPassword()
+        {
+            return $"MiniAuth@{Guid.NewGuid().ToString().Substring(0, 10)}";
+        }
+        private async Task ResetPassword(HttpContext context, MiniAuthIdentityDbContext _dbContext, UserManager<MiniAuthIdentityUser> userManager)
+        {
+            JsonDocument bodyJson = await GetBodyJson(context);
+            var root = bodyJson.RootElement;
+            var id = root.GetProperty<string>("Id");
+            var password = root.GetProperty<string>("Password");
+            var user = await _dbContext.Users.FindAsync(id);
+            if (user != null)
+            {
+                string newPassword = GetNewPassword();
+                var result = await userManager.RemovePasswordAsync(user);
+                if (result.Succeeded)
+                {
+                    result = await userManager.AddPasswordAsync(user, newPassword);
+                    if (result.Succeeded)
+                    {
+                        await OkResult(context, new { newPassword }.ToJson(code: 200, message: ""));
+                    }
+                    else
+                    {
+                        await OkResult(context, "".ToJson(code: 500, message: result.Errors.Select(s => s.Description).ToJson()));
+                    }
+                }
+                else
+                {
+                    await OkResult(context, "".ToJson(code: 500, message: result.Errors.Select(s => s.Description).ToJson()));
+                }
+            }
+            else
+            {
+                await OkResult(context, "".ToJson(code: 404, message: "User not found"));
+            }
+        }
+
         private async Task SaveUser(HttpContext context, MiniAuthIdentityDbContext _dbContext)
         {
             JsonDocument bodyJson = await GetBodyJson(context);