157 lines
5.0 KiB
C#
157 lines
5.0 KiB
C#
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Http;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using qtc_api.Dtos.User;
|
|
using System.Net.Mime;
|
|
using System.Security.Claims;
|
|
using System.Text.Json;
|
|
|
|
namespace qtc_api.Controllers
|
|
{
|
|
[Route("api/users")]
|
|
[ApiController]
|
|
public class UsersController : ControllerBase
|
|
{
|
|
private readonly IUserService _userService;
|
|
private readonly IConfiguration _configuration;
|
|
|
|
public UsersController(IUserService userService, IConfiguration configuration)
|
|
{
|
|
_userService = userService;
|
|
_configuration = configuration;
|
|
}
|
|
|
|
[HttpGet("all")]
|
|
[Authorize]
|
|
public async Task<ActionResult<ServiceResponse<List<UserInformationDto>>>> GetAllUsers()
|
|
{
|
|
var users = await _userService.GetAllUsers();
|
|
return Ok(users);
|
|
}
|
|
|
|
[HttpGet("user-info")]
|
|
[Authorize]
|
|
public async Task<ActionResult<ServiceResponse<UserInformationDto>>> GetUserInformation(string id)
|
|
{
|
|
var user = await _userService.GetUserInformationById(id);
|
|
return Ok(user);
|
|
}
|
|
|
|
[HttpGet("user-authorized")]
|
|
[Authorize]
|
|
public async Task<ActionResult<ServiceResponse<User>>> UserFromAuthorizeHead()
|
|
{
|
|
var identity = HttpContext.User.Identity as ClaimsIdentity;
|
|
|
|
if(identity != null)
|
|
{
|
|
IEnumerable<Claim> claims = identity.Claims;
|
|
var id = claims.First().Value;
|
|
|
|
if(id != null)
|
|
{
|
|
var user = await _userService.GetUserById(id);
|
|
return Ok(user);
|
|
} else
|
|
{
|
|
return BadRequest("Token did not contain an ID.");
|
|
}
|
|
} else
|
|
{
|
|
return BadRequest("Header not found.");
|
|
}
|
|
}
|
|
|
|
[HttpGet("users-online")]
|
|
[Authorize]
|
|
public async Task<ActionResult<ServiceResponse<List<UserInformationDto>>>> GetAllOnlineUsers()
|
|
{
|
|
var users = await _userService.GetAllOnlineUsers();
|
|
return Ok(users);
|
|
}
|
|
|
|
[HttpPut("update")]
|
|
[Authorize]
|
|
public async Task<ActionResult<ServiceResponse<UserInformationDto>>> UpdateUserInformation(UserUpdateInformationDto user)
|
|
{
|
|
var identity = HttpContext.User.Identity as ClaimsIdentity;
|
|
|
|
if(identity != null)
|
|
{
|
|
IEnumerable<Claim> claims = identity.Claims;
|
|
var id = claims.First().Value;
|
|
|
|
if(id != null && id == user.Id)
|
|
{
|
|
var updatedUser = await _userService.UpdateUserInfo(user);
|
|
return Ok(updatedUser);
|
|
} else
|
|
{
|
|
return Unauthorized("You are not authorized to edit that user.");
|
|
}
|
|
} else
|
|
{
|
|
return BadRequest("Session Expired.");
|
|
}
|
|
}
|
|
|
|
[HttpPost("upload-profile-pic")]
|
|
[Authorize]
|
|
public async Task<ActionResult<ServiceResponse<string>>> UploadOrUpdateProfilePic(string userId, IFormFile file)
|
|
{
|
|
var identity = HttpContext.User.Identity as ClaimsIdentity;
|
|
|
|
if(identity != null)
|
|
{
|
|
IEnumerable<Claim> claims = identity.Claims;
|
|
var id = claims.First().Value;
|
|
|
|
if(id != null && id == userId)
|
|
{
|
|
if (file.Length > 3000000)
|
|
{
|
|
return BadRequest("File Is Above Limit.");
|
|
}
|
|
|
|
var response = await _userService.UpdateUserPic(userId, file);
|
|
|
|
return Ok(response);
|
|
} else
|
|
{
|
|
return BadRequest("You are not permitted to edit that user.");
|
|
}
|
|
} else
|
|
{
|
|
return BadRequest("No Identity.");
|
|
}
|
|
}
|
|
|
|
[HttpGet("profile-pic/{userId}")]
|
|
[Authorize]
|
|
public async Task<ActionResult> GetUserProfilePicture(string userId)
|
|
{
|
|
var result = await _userService.GetUserPic(userId);
|
|
|
|
if (result != null && result.Success != false)
|
|
{
|
|
return result.Data!;
|
|
} else if (result!.Message == "User Does Not Have A Profile Picture." || result!.Message == "User Content Folder Does Not Exist Yet.")
|
|
{
|
|
return BadRequest("User has no profile picture.");
|
|
} else
|
|
{
|
|
return BadRequest("Failed To Get Profile Picture.");
|
|
}
|
|
}
|
|
|
|
[HttpDelete("delete-user")]
|
|
[Authorize(Roles = "Admin")]
|
|
public async Task<ActionResult<ServiceResponse<User>>> DeleteUserById(string id)
|
|
{
|
|
var result = await _userService.DeleteUser(id);
|
|
return Ok(result);
|
|
}
|
|
}
|
|
}
|