SH-0 Registration site

NICE.Identity.Authorisation.WebAPI/Controllers/UserProfileController.cs

@@ -0,0 +1,116 @@
+using Microsoft.AspNetCore.Authentication.JwtBearer;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.Extensions.Logging;
+using NICE.Identity.Authentication.Sdk.Extensions;
+using NICE.Identity.Authorisation.WebAPI.Services;
+using System;
+using System.Linq;
+using System.Threading.Tasks;
+using User = NICE.Identity.Authorisation.WebAPI.ApiModels.User;
+
+namespace NICE.Identity.Authorisation.WebAPI.Controllers
+{
+	[Route("api/[controller]")]
+	[Authorize(AuthenticationSchemes = JwtBearerDefaults.AuthenticationScheme)] 
+	[ApiController]
+    public class UserProfileController : ControllerBase
+    {
+        private readonly ILogger<UserProfileController> _logger;
+        private readonly IUsersService _usersService;
+		private readonly IHttpContextAccessor _httpContextAccessor;
+
+		private const string NameIdentifierClaimType = "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier";
+
+		public UserProfileController(IUsersService usersService, ILogger<UserProfileController> logger, IHttpContextAccessor httpContextAccessor)
+        {
+            _logger = logger ?? throw new ArgumentNullException(nameof(logger));
+            _usersService = usersService ?? throw new ArgumentNullException(nameof(usersService));
+			_httpContextAccessor = httpContextAccessor ?? throw new ArgumentNullException(nameof(httpContextAccessor));
+		}
+
+        private string GetNameIdentifierFromUser()
+        {
+			var claimsPrincipal = _httpContextAccessor.HttpContext.User; 
+
+	        return claimsPrincipal.Claims.FirstOrDefault(c => c.Type == NameIdentifierClaimType)?.Value;
+        }
+
+		/// <summary>
+		/// gets own profile details
+		/// </summary>
+		/// <returns></returns>
+		[HttpGet("")]
+		[ProducesResponseType(typeof(User), StatusCodes.Status200OK)]
+		[ProducesResponseType(StatusCodes.Status500InternalServerError)]
+		[Produces("application/json")]
+		public IActionResult GetOwnUserProfile()
+		{
+			try
+			{
+				var nameIdentifier = GetNameIdentifierFromUser();
+				if (nameIdentifier == null)
+				{
+					return StatusCode(500, new ProblemDetails { Status = 500, Title = $"Unable to get name identifier when retrieving own profile" });
+				}
+				return Ok(_usersService.GetUser(nameIdentifier));
+			}
+			catch (Exception e)
+			{
+				return StatusCode(500, new ProblemDetails { Status = 500, Title = $"{e.Message}" });
+			}
+		}
+
+		/// <summary>
+		/// updates user details
+		/// </summary>
+		/// <returns></returns>
+		[HttpPost("")]
+		[ProducesResponseType(typeof(User), StatusCodes.Status200OK)]
+		[ProducesResponseType(StatusCodes.Status500InternalServerError)]
+		[Produces("application/json")]
+		public async Task<IActionResult> GetOwnUserProfile(string nameIdentifier, string firstName, string lastName, string emailAddress)
+		{
+			try
+			{
+				if (string.IsNullOrEmpty(nameIdentifier))
+					return StatusCode(500, new ProblemDetails { Status = 500, Title = $"Invalid identifier" });
+
+				if (string.IsNullOrEmpty(firstName))
+					return StatusCode(500, new ProblemDetails { Status = 500, Title = $"Invalid firstName" });
+
+				if (string.IsNullOrEmpty(lastName))
+					return StatusCode(500, new ProblemDetails { Status = 500, Title = $"Invalid lastName" });
+
+				if (string.IsNullOrEmpty(emailAddress))
+					return StatusCode(500, new ProblemDetails { Status = 500, Title = $"Invalid emailAddress" });
+
+
+				var nameIdentifierFromToken = GetNameIdentifierFromUser();
+
+				if (string.IsNullOrEmpty(nameIdentifierFromToken) || !nameIdentifier.Equals(nameIdentifierFromToken, StringComparison.OrdinalIgnoreCase))
+				{
+					return StatusCode(500, new ProblemDetails { Status = 500, Title = $"Invalid user" });
+				}
+
+				var userToUpdate = _usersService.GetUser(nameIdentifier);
+				if (userToUpdate == null)
+				{
+					return StatusCode(500, new ProblemDetails { Status = 500, Title = $"Unable to get user when updating own profile" });
+				}
+
+				userToUpdate.FirstName = firstName;
+				userToUpdate.LastName = lastName;
+				userToUpdate.EmailAddress = emailAddress;
+
+				var updatedUser = await _usersService.UpdateUser(userToUpdate.UserId.Value, userToUpdate); 
+				return Ok(updatedUser);
+			}
+			catch (Exception e)
+			{
+				return StatusCode(500, new ProblemDetails { Status = 500, Title = $"{e.Message}" });
+			}
+		}
+    }
+}

NICE.Identity.Authorisation.WebAPI/Services/UsersService.cs

@@ -18,6 +18,7 @@ public interface IUsersService
 	{
 		User CreateUser(User user);
 		User GetUser(int userId);
+		User GetUser(string nameIdentifier);
 		IList<User> GetUsers(string filter);
 		IList<UserDetails> FindUsers(IEnumerable<string> nameIdentifiers);
 		Dictionary<string, IEnumerable<string>> FindRoles(IEnumerable<string> nameIdentifiers, string host);
@@ -86,7 +87,13 @@ public User GetUser(int userId)
 			return user != null ? new User(user) : null;
 		}
 
-		public IList<User> GetUsers(string filter = null)
+		public User GetUser(string nameIdentifier)
+		{
+			var user = _context.Users.Where((u => u.NameIdentifier.Equals(nameIdentifier))).FirstOrDefault();
+			return user != null ? new User(user) : null;
+		}
+
+        public IList<User> GetUsers(string filter = null)
 		{
 			return _context.FindUsers(filter)
 							.Select(user => new User(user))

NICE.Identity.Test/Infrastructure/MockUserService.cs

@@ -23,6 +23,11 @@ public User GetUser(int userId)
 			throw new NotImplementedException();
 		}
 
+		public User GetUser(string nameIdentifier)
+		{
+			throw new NotImplementedException();
+		}
+
 		public IList<User> GetUsers(string filter)
 		{
 			throw new NotImplementedException();