dc/db9/_create_web_form_8cs_source.html

using System;

using System.Collections.Generic;

using System.Threading.Tasks;

using Waher.Content;

using Waher.Content.Json;

using Waher.IoTGateway;

using Waher.Networking.HTTP;

using Waher.Persistence;

using Waher.Persistence.Filters;

using Waher.Security.JWT;

using Waher.Security.LoginMonitor;

using Waher.Service.IoTBroker.DataStorage;

using Waher.Service.IoTBroker.Legal;


namespace Waher.Service.IoTBroker.WebServices.Agent.Account

{

    public class CreateWebForm : AgentResource, IHttpPostMethod

    {

        public CreateWebForm()

            : base("Account/CreateWebForm")

        {

        }


        public override HttpAuthenticationScheme[] GetAuthenticationSchemes(HttpRequest Request)

        {

            base.GetAuthenticationSchemes(Request);     // Initialize factory property.

            return null;

        }


        public override bool UserSessions => true;


        public virtual bool AllowsPOST => true;


        public async Task POST(HttpRequest Request, HttpResponse Response)

        {

            await this.CheckBlocks(Request);


            if (this.Api is null)

                throw new ServiceUnavailableException("API not available.");


            if (!Request.HasData)

                throw new BadRequestException("No content is request.");


            object Decoded = await Request.DecodeDataAsync();


            if (!(Decoded is Dictionary<string, string> Form))

                throw new UnsupportedMediaTypeException("Content does not match specification.");


            if (!Form.TryGetValue("UserName", out string UserName) || string.IsNullOrEmpty(UserName))

                throw new BadRequestException("Missing user name.");


            if (!Form.TryGetValue("EMail", out string EMail) || string.IsNullOrEmpty(EMail))

                throw new BadRequestException("Missing e-mail address.");


            if (!Form.TryGetValue("PhoneNr", out string PhoneNr))

                PhoneNr = string.Empty;


            if (!Form.TryGetValue("Password", out string Password) || string.IsNullOrEmpty(Password))

                throw new BadRequestException("Missing password.");


            if (!Form.TryGetValue("g-recaptcha-response", out string RecaptchaResponse) || string.IsNullOrEmpty(RecaptchaResponse))

                throw new BadRequestException("Missing reCaptcha-response.");


            if (!Form.TryGetValue("RedirectionUrl", out string RedirectionUrl) || string.IsNullOrEmpty(RedirectionUrl))

                throw new BadRequestException("Missing redirection URL.");


            if (!Form.TryGetValue("Seconds", out string s) || !int.TryParse(s, out int Seconds) || Seconds <= 0 || Seconds > 3600)

                throw new BadRequestException("Invalid number of seconds.");


            if (!string.IsNullOrEmpty(Gateway.Domain) &&

                !await Feedback.SiteVerify(RecaptchaResponse, Request.RemoteEndPoint))

            {

                throw new ForbiddenException("Bot?");

            }


            if (!string.IsNullOrEmpty(PhoneNr) && !Create.InternationalNumberFormat.IsMatch(PhoneNr))

                throw new BadRequestException("Phone numbers must be provided using the international number format, starting with +, then the country code, then the number.");


            Create.AssertUserNameValid(UserName);


            ApiKey Key = await this.Api.GetAgentApiApiKey();

            if (Key is null)

            {

                string Msg = "Resource disabled. No Agent API Key configured.";

                throw new ServiceUnavailableException(Msg);

            }


            DataStorage.Account Account = await Database.FindFirstIgnoreRest<DataStorage.Account>(

                new FilterFieldEqualTo("UserName", UserName));


            if (Account is null)

            {

                if (Key.NrCreated - Key.NrDeleted >= Key.MaxAccounts)

                    throw new ServiceUnavailableException("API Key account limit reached.");


                Account = new DataStorage.Account()

                {

                    ApiKey = Key.Key,

                    UserName = UserName,

                    Password = Password,

                    EMail = EMail,

                    EMailVerified = null,

                    PhoneNr = PhoneNr,

                    PhoneNrVerified = null,

                    Enabled = false,

                    CanRelayMessages = false,

                    Created = DateTime.Now

                };


                await Database.Insert(Account);


                Key.NrCreated++;

                await Database.Update(Key);


                await PersistenceLayer.AccountCreated(Account, Key, Gateway.Domain, Request.RemoteEndPoint);

            }

            else

            {

                if (Account.Password != Password)

                    throw new ForbiddenException("Account already exists.", await Create.GetAlterntiveNameSuggestions(UserName));


                bool Updated = false;


                if (Account.EMail != EMail)

                {

                    if (Account.Enabled && !CaseInsensitiveString.IsNullOrEmpty(Account.EMail))

                        throw new ForbiddenException("Not permitted to change e-mail address.");


                    Account.EMail = EMail;

                    Account.EMailVerified = null;


                    Updated = true;

                }


                if (Account.PhoneNr != PhoneNr)

                {

                    if (Account.Enabled && !CaseInsensitiveString.IsNullOrEmpty(Account.PhoneNr))

                        throw new ForbiddenException("Not permitted to change phone number.");


                    Account.PhoneNr = PhoneNr;

                    Account.PhoneNrVerified = null;


                    Updated = true;

                }


                if (Updated)

                    await Database.Update(Account);


                await Account.LoggedIn(Request.RemoteEndPoint);

            }


            LoginAuditor.Success("Successful Agent API account created.", UserName, Request.RemoteEndPoint, "HTTPS");


            if (!Account.Enabled)

            {

                string OnboardingDomainName = await LegalComponent.GetOnboardingNeuronDomainName();


                if (!(await InternetContent.PostAsync(

                    new Uri("https://" + OnboardingDomainName + "/ID/SendVerificationMessage.ws"),

                    new Dictionary<string, object>()

                    {

                        { "EMail", Account.EMail.Value }

                    },

                    new KeyValuePair<string, string>("Accept", JsonCodec.DefaultContentType))

                    is Dictionary<string, object> EMailResult))

                {

                    throw new ServiceUnavailableException("Unable to send verification mail. Unexpected result");

                }


                if (!EMailResult.TryGetValue("Status", out object Obj) || !(Obj is bool Status) || !Status)

                {

                    if (EMailResult.TryGetValue("Message", out Obj) && Obj is string Message)

                        throw new ServiceUnavailableException("Unable to send verification mail. Error reported: " + Message);

                    else

                        throw new ServiceUnavailableException("Unable to send verification mail. Check e-mail address provided.");

                }


                if (!CaseInsensitiveString.IsNullOrEmpty(Account.PhoneNr))

                {

                    if (!(await InternetContent.PostAsync(

                    new Uri("https://" + OnboardingDomainName + "/ID/SendVerificationMessage.ws"),

                    new Dictionary<string, object>()

                    {

                        { "Nr", Account.PhoneNr.Value }

                    },

                    new KeyValuePair<string, string>("Accept", JsonCodec.DefaultContentType))

                    is Dictionary<string, object> SmsResult))

                    {

                        throw new ServiceUnavailableException("Unable to send verification mail. Unexpected result");

                    }


                    if (!SmsResult.TryGetValue("Status", out Obj) || !(Obj is bool Status2) || !Status2)

                    {

                        if (SmsResult.TryGetValue("Message", out Obj) && Obj is string Message)

                            throw new ServiceUnavailableException("Unable to send verification SMS. Error reported: " + Message);

                        else

                            throw new ServiceUnavailableException("Unable to send verification SMS. Check phone number provided.");

                    }

                }

            }


            int IssuedAt = (int)Math.Round(DateTime.UtcNow.Subtract(JSON.UnixEpoch).TotalSeconds);

            int Expires = IssuedAt + (int)Seconds;


            string Token = Factory.Create(

                new KeyValuePair<string, object>(JwtClaims.JwtId, Convert.ToBase64String(Gateway.NextBytes(32))),

                new KeyValuePair<string, object>(JwtClaims.Issuer, Gateway.Domain?.Value ?? string.Empty),

                new KeyValuePair<string, object>(JwtClaims.Subject, Account.UserName.Value + "@" + (Gateway.Domain?.Value ?? string.Empty)),

                new KeyValuePair<string, object>(JwtClaims.IssueTime, IssuedAt),

                new KeyValuePair<string, object>(JwtClaims.ExpirationTime, Expires));


            Request.Session[SessionTokenInfoVariableName] = new SessionTokenInfo()

            {

                Account = Account,

                Token = Token,

                Expires = Expires,

                Seconds = Seconds

            };


            throw new TemporaryRedirectException(RedirectionUrl);

        }


        public const string SessionTokenInfoVariableName = " AgentAPI.SessionTokenInfo ";

    }

}

Waher.Content.InternetContent
Static class managing encoding and decoding of internet content.
Definition: InternetContent.cs:17

Waher.Content.InternetContent.PostAsync
static Task< object > PostAsync(Uri Uri, object Data, params KeyValuePair< string, string >[] Headers)
Posts to a resource, using a Uniform Resource Identifier (or Locator).
Definition: InternetContent.cs:1427

Waher.Content.JSON
Helps with common JSON-related tasks.
Definition: JSON.cs:14

Waher.Content.JSON.UnixEpoch
static readonly DateTime UnixEpoch
Unix Date and Time epoch, starting at 1970-01-01T00:00:00Z
Definition: JSON.cs:18

Waher.Content.Json.JsonCodec
JSON codec.
Definition: JsonCodec.cs:15

Waher.Content.Json.JsonCodec.DefaultContentType
const string DefaultContentType
application/json
Definition: JsonCodec.cs:19

Waher.IoTGateway.Gateway
Static class managing the runtime environment of the IoT Gateway.
Definition: Gateway.cs:126

Waher.IoTGateway.Gateway.Domain
static CaseInsensitiveString Domain
Domain name.
Definition: Gateway.cs:2354

Waher.IoTGateway.Gateway.NextBytes
static byte[] NextBytes(int NrBytes)
Generates an array of random bytes.
Definition: Gateway.cs:3534

Waher.Networking.HTTP.BadRequestException
The request could not be understood by the server due to malformed syntax. The client SHOULD NOT repe...
Definition: BadRequestException.cs:9

Waher.Networking.HTTP.ForbiddenException
The server understood the request, but is refusing to fulfill it. Authorization will not help and the...
Definition: ForbiddenException.cs:13

Waher.Networking.HTTP.HttpAuthenticationScheme
Base class for all HTTP authentication schemes, as defined in RFC-7235: https://datatracker....
Definition: HttpAuthenticationScheme.cs:11

Waher.Networking.HTTP.HttpRequest
Represents an HTTP request.
Definition: HttpRequest.cs:18

Waher.Networking.HTTP.HttpRequest.RemoteEndPoint
string RemoteEndPoint
Remote end-point.
Definition: HttpRequest.cs:195

Waher.Networking.HTTP.HttpRequest.HasData
bool HasData
If the request has data.
Definition: HttpRequest.cs:74

Waher.Networking.HTTP.HttpRequest.Session
Variables Session
Contains session states, if the resource requires sessions, or null otherwise.
Definition: HttpRequest.cs:164

Waher.Networking.HTTP.HttpRequest.DecodeDataAsync
async Task< object > DecodeDataAsync()
Decodes data sent in request.
Definition: HttpRequest.cs:95

Waher.Networking.HTTP.HttpResponse
Represets a response of an HTTP client request.
Definition: HttpResponse.cs:21

Waher.Networking.HTTP.ServiceUnavailableException
The server is currently unable to handle the request due to a temporary overloading or maintenance of...
Definition: ServiceUnavailableException.cs:11

Waher.Networking.HTTP.TemporaryRedirectException
The requested resource resides temporarily under a different URI. Since the redirection MAY be altere...
Definition: TemporaryRedirectException.cs:10

Waher.Networking.HTTP.UnsupportedMediaTypeException
The server is refusing to service the request because the entity of the request is in a format not su...
Definition: UnsupportedMediaTypeException.cs:10

Waher.Persistence.CaseInsensitiveString
Represents a case-insensitive string.
Definition: CaseInsensitiveString.cs:10

Waher.Persistence.CaseInsensitiveString.Value
string Value
String-representation of the case-insensitive string. (Representation is case sensitive....
Definition: CaseInsensitiveString.cs:27

Waher.Persistence.CaseInsensitiveString.IsNullOrEmpty
static bool IsNullOrEmpty(CaseInsensitiveString value)
Indicates whether the specified string is null or an CaseInsensitiveString.Empty string.
Definition: CaseInsensitiveString.cs:1029

Waher.Persistence.Database
Static interface for database persistence. In order to work, a database provider has to be assigned t...
Definition: Database.cs:19

Waher.Persistence.Database.Update
static async Task Update(object Object)
Updates an object in the database.
Definition: Database.cs:626

Waher.Persistence.Database.Insert
static async Task Insert(object Object)
Inserts an object into the default collection of the database.
Definition: Database.cs:95

Waher.Persistence.Filters.FilterFieldEqualTo
This filter selects objects that have a named field equal to a given value.
Definition: FilterFieldEqualTo.cs:7

Waher.Security.JWT.JwtClaims
Static class containing predefined JWT claim names.
Definition: JwtClaims.cs:10

Waher.Security.JWT.JwtClaims.Issuer
const string Issuer
Issuer of the JWT
Definition: JwtClaims.cs:14

Waher.Security.JWT.JwtClaims.IssueTime
const string IssueTime
Time at which the JWT was issued; can be used to determine age of the JWT
Definition: JwtClaims.cs:39

Waher.Security.JWT.JwtClaims.JwtId
const string JwtId
Unique identifier; can be used to prevent the JWT from being replayed (allows a token to be used only...
Definition: JwtClaims.cs:44

Waher.Security.JWT.JwtClaims.Subject
const string Subject
Subject of the JWT (the user)
Definition: JwtClaims.cs:19

Waher.Security.JWT.JwtClaims.ExpirationTime
const string ExpirationTime
Time after which the JWT expires
Definition: JwtClaims.cs:29

Waher.Security.JWT.JwtFactory.Create
string Create(params KeyValuePair< string, object >[] Claims)
Creates a new JWT token.
Definition: JwtFactory.cs:248

Waher.Security.LoginMonitor.LoginAuditor
Class that monitors login events, and help applications determine malicious intent....
Definition: LoginAuditor.cs:26

Waher.Security.LoginMonitor.LoginAuditor.Success
static async void Success(string Message, string UserName, string RemoteEndpoint, string Protocol, params KeyValuePair< string, object >[] Tags)
Handles a successful login attempt.
Definition: LoginAuditor.cs:487

Waher.Service.IoTBroker.DataStorage.Account
Contains information about a broker account.
Definition: Account.cs:28

Waher.Service.IoTBroker.DataStorage.Account.EMail
CaseInsensitiveString EMail
E-mail address associated with account.
Definition: Account.cs:129

Waher.Service.IoTBroker.DataStorage.Account.UserName
CaseInsensitiveString UserName
User Name of account
Definition: Account.cs:99

Waher.Service.IoTBroker.DataStorage.Account.Enabled
bool Enabled
If account is enabled
Definition: Account.cs:287

Waher.Service.IoTBroker.DataStorage.Account.Password
string Password
Password of account
Definition: Account.cs:109

Waher.Service.IoTBroker.DataStorage.Account.PhoneNr
CaseInsensitiveString PhoneNr
Phone number associated with account.
Definition: Account.cs:138

Waher.Service.IoTBroker.DataStorage.Account.Account
Account()
Contains information about a broker account.
Definition: Account.cs:72

Waher.Service.IoTBroker.DataStorage.Account.LoggedIn
async Task LoggedIn(string RemoteEndpoint)
Registers a log-in event on the account.
Definition: Account.cs:356

Waher.Service.IoTBroker.DataStorage.ApiKey
Definition: ApiKey.cs:14

Waher.Service.IoTBroker.DataStorage.PersistenceLayer
Definition: PersistenceLayer.cs:30

Waher.Service.IoTBroker.Legal.LegalComponent
Provisioning and registry service component.
Definition: LegalComponent.cs:55

Waher.Service.IoTBroker.Legal.LegalComponent.GetOnboardingNeuronDomainName
static Task< string > GetOnboardingNeuronDomainName()
Gets the domain name of the Nnboarding Neuron.
Definition: LegalComponent.cs:483

Waher.Service.IoTBroker.WebServices.Agent.Account.Create
Creates an account on the server.
Definition: Create.cs:28

Waher.Service.IoTBroker.WebServices.Agent.Account.Create.InternationalNumberFormat
static readonly Regex InternationalNumberFormat
International phone number format.
Definition: Create.cs:45

Waher.Service.IoTBroker.WebServices.Agent.Account.CreateWebForm
Creates an account on the server manually.
Definition: CreateWebForm.cs:21

Waher.Service.IoTBroker.WebServices.Agent.Account.CreateWebForm.POST
async Task POST(HttpRequest Request, HttpResponse Response)
Executes the POST method on the resource.
Definition: CreateWebForm.cs:56

Waher.Service.IoTBroker.WebServices.Agent.Account.CreateWebForm.CreateWebForm
CreateWebForm()
Creates an account on the server manually.
Definition: CreateWebForm.cs:25

Waher.Service.IoTBroker.WebServices.Agent.Account.CreateWebForm.SessionTokenInfoVariableName
const string SessionTokenInfoVariableName
Name of session variable where token information is stored.
Definition: CreateWebForm.cs:248

Waher.Service.IoTBroker.WebServices.Agent.Account.CreateWebForm.UserSessions
override bool UserSessions
If the resource uses user sessions.
Definition: CreateWebForm.cs:43

Waher.Service.IoTBroker.WebServices.Agent.Account.CreateWebForm.GetAuthenticationSchemes
override HttpAuthenticationScheme[] GetAuthenticationSchemes(HttpRequest Request)
Any authentication schemes used to authenticate users before access is granted to the corresponding r...
Definition: CreateWebForm.cs:34

Waher.Service.IoTBroker.WebServices.Agent.Account.CreateWebForm.AllowsPOST
virtual bool AllowsPOST
If the POST method is allowed.
Definition: CreateWebForm.cs:48

Waher.Service.IoTBroker.WebServices.Agent.AgentApi.GetAgentApiApiKey
async Task< ApiKey > GetAgentApiApiKey()
Gets API Key for the Agent API.
Definition: AgentApi.cs:142

Waher.Service.IoTBroker.WebServices.Agent.AgentResource
Abstract base class for agent resources
Definition: AgentResource.cs:24

Waher.Service.IoTBroker.WebServices.Agent.AgentResource.Api
AgentApi Api
Reference to Agent API.
Definition: AgentResource.cs:141

Waher.Service.IoTBroker.WebServices.Agent.AgentResource.CheckBlocks
async Task CheckBlocks(HttpRequest Request)
Checks if the client is blocked.
Definition: AgentResource.cs:268

Waher.Service.IoTBroker.WebServices.Feedback
Definition: Feedback.cs:14

Waher.Networking.HTTP.IHttpPostMethod
POST Interface for HTTP resources.
Definition: IHttpPostMethod.cs:9

Waher.Content.Json
Definition: IJsonEncoder.cs:6

Waher.Content
Definition: Array.cs:6

Waher.IoTGateway
Definition: App.xaml.cs:23

Waher.Networking.HTTP
Definition: Page.cs:6

Waher.Persistence.Filters
Definition: Filter.cs:2

Waher.Persistence
Definition: Bookmark.cs:4

Waher.Security.JWT
Definition: ExternalUser.cs:5

Waher.Security.LoginMonitor
Definition: AnnotateEndpointEventArgs.cs:6

Waher.Service.IoTBroker.DataStorage
Definition: Account.cs:15

Waher.Service.IoTBroker.Legal
Definition: Attachment.cs:6

Waher.Service.IoTBroker.WebServices.Agent.Account
Definition: AuthenticateJwt.cs:13