customer
This commit is contained in:
Tizian.Breuch
@@ -1,21 +1,20 @@
|
|||||||
// src/Webshop.Api/Controllers/Customer/ProfileController.cs
|
// src/Webshop.Api/Controllers/Customer/CustomerController.cs
|
||||||
using Microsoft.AspNetCore.Authorization;
|
using Microsoft.AspNetCore.Authorization;
|
||||||
|
using Microsoft.AspNetCore.Http;
|
||||||
using Microsoft.AspNetCore.Mvc;
|
using Microsoft.AspNetCore.Mvc;
|
||||||
using System.Security.Claims;
|
using System.Security.Claims;
|
||||||
using Webshop.Application.DTOs; // CustomerDto
|
|
||||||
using Webshop.Application.DTOs.Auth; // ChangePasswordRequestDto
|
|
||||||
using Webshop.Application.DTOs.Customers; // UpdateCustomerProfileDto
|
|
||||||
using Webshop.Application.DTOs.Email;
|
|
||||||
using Webshop.Application.Services;
|
|
||||||
using System.Threading.Tasks;
|
using System.Threading.Tasks;
|
||||||
|
using Webshop.Application;
|
||||||
|
using Webshop.Application.DTOs;
|
||||||
|
using Webshop.Application.DTOs.Auth;
|
||||||
|
using Webshop.Application.DTOs.Customers;
|
||||||
|
using Webshop.Application.DTOs.Email;
|
||||||
using Webshop.Application.Services.Customers;
|
using Webshop.Application.Services.Customers;
|
||||||
using System.ComponentModel.DataAnnotations;
|
|
||||||
|
|
||||||
namespace Webshop.Api.Controllers.Customer
|
namespace Webshop.Api.Controllers.Customer
|
||||||
{
|
{
|
||||||
|
|
||||||
[ApiController]
|
[ApiController]
|
||||||
[Route("api/v1/customer/[controller]")] // z.B. /api/v1/customer/profile
|
[Route("api/v1/customer")] // Route vereinfacht, da der Controllername "Customer" ist
|
||||||
[Authorize(Roles = "Customer")]
|
[Authorize(Roles = "Customer")]
|
||||||
public class CustomerController : ControllerBase
|
public class CustomerController : ControllerBase
|
||||||
{
|
{
|
||||||
@@ -26,62 +25,89 @@ namespace Webshop.Api.Controllers.Customer
|
|||||||
_customerService = customerService;
|
_customerService = customerService;
|
||||||
}
|
}
|
||||||
|
|
||||||
[HttpGet("me")] // /api/v1/customer/profile/me
|
[HttpGet("profile")] // GET /api/v1/customer/profile
|
||||||
public async Task<ActionResult<CustomerDto>> GetMyProfile()
|
[ProducesResponseType(typeof(CustomerDto), StatusCodes.Status200OK)]
|
||||||
|
[ProducesResponseType(StatusCodes.Status401Unauthorized)]
|
||||||
|
[ProducesResponseType(typeof(ProblemDetails), StatusCodes.Status404NotFound)]
|
||||||
|
public async Task<IActionResult> GetMyProfile()
|
||||||
{
|
{
|
||||||
var userId = User.FindFirstValue(ClaimTypes.NameIdentifier);
|
var userId = User.FindFirstValue(ClaimTypes.NameIdentifier);
|
||||||
if (string.IsNullOrEmpty(userId)) return Unauthorized(new { Message = "Benutzer-ID nicht im Token gefunden." });
|
if (string.IsNullOrEmpty(userId)) return Unauthorized();
|
||||||
|
|
||||||
var customerProfile = await _customerService.GetMyProfileAsync(userId);
|
var result = await _customerService.GetMyProfileAsync(userId);
|
||||||
if (customerProfile == null) return NotFound(new { Message = "Kundenprofil nicht gefunden. Bitte erstellen Sie es." });
|
|
||||||
|
|
||||||
return Ok(customerProfile);
|
return result.Type switch
|
||||||
|
{
|
||||||
|
ServiceResultType.Success => Ok(result.Value),
|
||||||
|
ServiceResultType.NotFound => NotFound(new { Message = result.ErrorMessage }),
|
||||||
|
_ => StatusCode(StatusCodes.Status500InternalServerError, "Ein unerwarteter Fehler ist aufgetreten.")
|
||||||
|
};
|
||||||
}
|
}
|
||||||
|
|
||||||
[HttpPost("change-password")] // /api/v1/customer/profile/change-password
|
[HttpPut("profile")] // PUT /api/v1/customer/profile
|
||||||
public async Task<IActionResult> ChangePassword([FromBody] ChangePasswordRequestDto request)
|
[ProducesResponseType(StatusCodes.Status204NoContent)]
|
||||||
{
|
[ProducesResponseType(typeof(ProblemDetails), StatusCodes.Status400BadRequest)]
|
||||||
if (!ModelState.IsValid) return BadRequest(ModelState);
|
[ProducesResponseType(StatusCodes.Status401Unauthorized)]
|
||||||
|
[ProducesResponseType(typeof(ProblemDetails), StatusCodes.Status404NotFound)]
|
||||||
var userId = User.FindFirstValue(ClaimTypes.NameIdentifier);
|
|
||||||
if (string.IsNullOrEmpty(userId)) return Unauthorized(new { Message = "Benutzer-ID nicht im Token gefunden." });
|
|
||||||
|
|
||||||
var (success, errorMessage) = await _customerService.ChangePasswordAsync(userId, request);
|
|
||||||
|
|
||||||
if (!success) return BadRequest(new { Message = errorMessage });
|
|
||||||
|
|
||||||
return Ok(new { Message = "Passwort erfolgreich ge<67>ndert. Bitte melden Sie sich mit dem neuen Passwort an." });
|
|
||||||
}
|
|
||||||
|
|
||||||
// << NEUER/AKTUALISIERTER ENDPUNKT F<>R PROFIL-AKTUALISIERUNG >>
|
|
||||||
[HttpPost("update-profile")] // /api/v1/customer/profile/update-profile
|
|
||||||
public async Task<IActionResult> UpdateProfile([FromBody] UpdateCustomerDto request)
|
public async Task<IActionResult> UpdateProfile([FromBody] UpdateCustomerDto request)
|
||||||
{
|
{
|
||||||
if (!ModelState.IsValid) return BadRequest(ModelState);
|
if (!ModelState.IsValid) return BadRequest(ModelState);
|
||||||
|
|
||||||
var userId = User.FindFirstValue(ClaimTypes.NameIdentifier);
|
var userId = User.FindFirstValue(ClaimTypes.NameIdentifier);
|
||||||
if (string.IsNullOrEmpty(userId)) return Unauthorized(new { Message = "Benutzer-ID nicht im Token gefunden." });
|
if (string.IsNullOrEmpty(userId)) return Unauthorized();
|
||||||
|
|
||||||
var (success, errorMessage) = await _customerService.UpdateMyProfileAsync(userId, request);
|
var result = await _customerService.UpdateMyProfileAsync(userId, request);
|
||||||
|
|
||||||
if (!success) return BadRequest(new { Message = errorMessage });
|
return result.Type switch
|
||||||
|
{
|
||||||
return Ok(new { Message = "Profil erfolgreich aktualisiert." });
|
ServiceResultType.Success => NoContent(),
|
||||||
|
ServiceResultType.NotFound => NotFound(new { Message = result.ErrorMessage }),
|
||||||
|
ServiceResultType.InvalidInput => BadRequest(new { Message = result.ErrorMessage }),
|
||||||
|
_ => StatusCode(StatusCodes.Status500InternalServerError, "Ein unerwarteter Fehler ist aufgetreten.")
|
||||||
|
};
|
||||||
}
|
}
|
||||||
|
|
||||||
[HttpPost("change-email-request")] // /api/v1/customer/profile/change-email-request
|
[HttpPost("change-password")] // POST /api/v1/customer/change-password
|
||||||
public async Task<IActionResult> ChangeEmailRequest([FromBody] ChangeEmailRequestDto request) // DTO erstellen
|
[ProducesResponseType(StatusCodes.Status200OK)]
|
||||||
|
[ProducesResponseType(typeof(ProblemDetails), StatusCodes.Status400BadRequest)]
|
||||||
|
[ProducesResponseType(StatusCodes.Status401Unauthorized)]
|
||||||
|
public async Task<IActionResult> ChangePassword([FromBody] ChangePasswordRequestDto request)
|
||||||
{
|
{
|
||||||
if (!ModelState.IsValid) return BadRequest(ModelState);
|
if (!ModelState.IsValid) return BadRequest(ModelState);
|
||||||
|
|
||||||
var userId = User.FindFirstValue(ClaimTypes.NameIdentifier);
|
var userId = User.FindFirstValue(ClaimTypes.NameIdentifier);
|
||||||
if (string.IsNullOrEmpty(userId)) return Unauthorized(new { Message = "Benutzer-ID nicht im Token gefunden." });
|
if (string.IsNullOrEmpty(userId)) return Unauthorized();
|
||||||
|
|
||||||
var (success, errorMessage) = await _customerService.ChangeEmailAsync(userId, request.NewEmail, request.CurrentPassword);
|
var result = await _customerService.ChangePasswordAsync(userId, request);
|
||||||
|
|
||||||
if (!success) return BadRequest(new { Message = errorMessage });
|
return result.Type switch
|
||||||
|
{
|
||||||
|
ServiceResultType.Success => Ok(new { Message = "Passwort erfolgreich ge<67>ndert." }),
|
||||||
|
ServiceResultType.InvalidInput => BadRequest(new { Message = result.ErrorMessage }),
|
||||||
|
_ => StatusCode(StatusCodes.Status500InternalServerError, "Ein unerwarteter Fehler ist aufgetreten.")
|
||||||
|
};
|
||||||
|
}
|
||||||
|
|
||||||
return Ok(new { Message = errorMessage }); // Sendet Info, dass Mail gesendet wurde
|
[HttpPost("change-email-request")] // POST /api/v1/customer/change-email-request
|
||||||
|
[ProducesResponseType(StatusCodes.Status200OK)]
|
||||||
|
[ProducesResponseType(typeof(ProblemDetails), StatusCodes.Status400BadRequest)]
|
||||||
|
[ProducesResponseType(typeof(ProblemDetails), StatusCodes.Status409Conflict)]
|
||||||
|
public async Task<IActionResult> ChangeEmailRequest([FromBody] ChangeEmailRequestDto request)
|
||||||
|
{
|
||||||
|
if (!ModelState.IsValid) return BadRequest(ModelState);
|
||||||
|
|
||||||
|
var userId = User.FindFirstValue(ClaimTypes.NameIdentifier);
|
||||||
|
if (string.IsNullOrEmpty(userId)) return Unauthorized();
|
||||||
|
|
||||||
|
var result = await _customerService.ChangeEmailAsync(userId, request.NewEmail, request.CurrentPassword);
|
||||||
|
|
||||||
|
return result.Type switch
|
||||||
|
{
|
||||||
|
ServiceResultType.Success => Ok(new { Message = result.ErrorMessage }), // Enth<74>lt die Erfolgsmeldung
|
||||||
|
ServiceResultType.InvalidInput => BadRequest(new { Message = result.ErrorMessage }),
|
||||||
|
ServiceResultType.Conflict => Conflict(new { Message = result.ErrorMessage }),
|
||||||
|
_ => StatusCode(StatusCodes.Status500InternalServerError, "Ein unerwarteter Fehler ist aufgetreten.")
|
||||||
|
};
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@@ -1,19 +1,15 @@
|
|||||||
// src/Webshop.Application/Services/Customers/CustomerService.cs
|
// src/Webshop.Application/Services/Customers/CustomerService.cs
|
||||||
using Microsoft.AspNetCore.Identity;
|
using Microsoft.AspNetCore.Identity;
|
||||||
using Microsoft.EntityFrameworkCore;
|
|
||||||
using System.Threading.Tasks;
|
|
||||||
using Webshop.Application.DTOs; // CustomerDto
|
|
||||||
using Webshop.Application.DTOs.Auth; // ChangePasswordRequestDto
|
|
||||||
using Webshop.Application.DTOs.Customers; // UpdateCustomerProfileDto
|
|
||||||
using Webshop.Domain.Entities; // Customer Entity
|
|
||||||
using Webshop.Domain.Interfaces; // ICustomerRepository
|
|
||||||
using Webshop.Domain.Identity; // Für ApplicationUser
|
|
||||||
using System.Linq; // Für Select
|
|
||||||
using System.Collections.Generic; // Für IEnumerable
|
|
||||||
using System.Web;
|
|
||||||
using Resend;
|
|
||||||
using Microsoft.Extensions.Configuration;
|
using Microsoft.Extensions.Configuration;
|
||||||
using System.Net.Mail;
|
using Resend;
|
||||||
|
using System.Linq;
|
||||||
|
using System.Threading.Tasks;
|
||||||
|
using System.Web;
|
||||||
|
using Webshop.Application.DTOs;
|
||||||
|
using Webshop.Application.DTOs.Auth;
|
||||||
|
using Webshop.Application.DTOs.Customers;
|
||||||
|
using Webshop.Domain.Identity;
|
||||||
|
using Webshop.Domain.Interfaces;
|
||||||
|
|
||||||
namespace Webshop.Application.Services.Customers
|
namespace Webshop.Application.Services.Customers
|
||||||
{
|
{
|
||||||
@@ -21,159 +17,115 @@ namespace Webshop.Application.Services.Customers
|
|||||||
{
|
{
|
||||||
private readonly ICustomerRepository _customerRepository;
|
private readonly ICustomerRepository _customerRepository;
|
||||||
private readonly UserManager<ApplicationUser> _userManager;
|
private readonly UserManager<ApplicationUser> _userManager;
|
||||||
private readonly IConfiguration _configuration; // << NEU: Für BaseUrl >>
|
private readonly IConfiguration _configuration;
|
||||||
private readonly IResend _resend; // << NEU >>
|
private readonly IResend _resend;
|
||||||
|
|
||||||
public CustomerService(
|
public CustomerService(ICustomerRepository customerRepository, UserManager<ApplicationUser> userManager, IConfiguration configuration, IResend resend)
|
||||||
ICustomerRepository customerRepository,
|
|
||||||
UserManager<ApplicationUser> userManager,
|
|
||||||
IConfiguration configuration, // Im Konstruktor injizieren
|
|
||||||
IResend resend) // Im Konstruktor injizieren
|
|
||||||
{
|
{
|
||||||
_customerRepository = customerRepository;
|
_customerRepository = customerRepository;
|
||||||
_userManager = userManager;
|
_userManager = userManager;
|
||||||
_configuration = configuration; // Im Konstruktor initialisieren
|
_configuration = configuration;
|
||||||
_resend = resend; // Im Konstruktor initialisieren
|
_resend = resend;
|
||||||
}
|
}
|
||||||
|
|
||||||
public async Task<CustomerDto?> GetMyProfileAsync(string userId)
|
public async Task<ServiceResult<CustomerDto>> GetMyProfileAsync(string userId)
|
||||||
{
|
{
|
||||||
var customer = await _customerRepository.GetByUserIdAsync(userId);
|
var customer = await _customerRepository.GetByUserIdAsync(userId);
|
||||||
if (customer == null) return null;
|
if (customer == null)
|
||||||
|
return ServiceResult.Fail<CustomerDto>(ServiceResultType.NotFound, "Kundenprofil nicht gefunden.");
|
||||||
|
|
||||||
var identityUser = await _userManager.FindByIdAsync(userId);
|
var identityUser = await _userManager.FindByIdAsync(userId);
|
||||||
if (identityUser == null) return null;
|
if (identityUser == null)
|
||||||
|
return ServiceResult.Fail<CustomerDto>(ServiceResultType.NotFound, "Benutzerkonto nicht gefunden.");
|
||||||
|
|
||||||
return new CustomerDto
|
var dto = new CustomerDto
|
||||||
{
|
{
|
||||||
Id = customer.Id,
|
Id = customer.Id,
|
||||||
UserId = customer.AspNetUserId,
|
UserId = customer.AspNetUserId,
|
||||||
FirstName = customer.FirstName,
|
FirstName = customer.FirstName,
|
||||||
LastName = customer.LastName,
|
LastName = customer.LastName,
|
||||||
Email = identityUser.Email ?? string.Empty, // E-Mail vom ApplicationUser
|
Email = identityUser.Email ?? string.Empty,
|
||||||
PhoneNumber = identityUser.PhoneNumber, // Telefonnummer vom ApplicationUser
|
PhoneNumber = identityUser.PhoneNumber,
|
||||||
DefaultShippingAddressId = customer.DefaultShippingAddressId,
|
DefaultShippingAddressId = customer.DefaultShippingAddressId,
|
||||||
DefaultBillingAddressId = customer.DefaultBillingAddressId
|
DefaultBillingAddressId = customer.DefaultBillingAddressId
|
||||||
};
|
};
|
||||||
|
return ServiceResult.Ok(dto);
|
||||||
}
|
}
|
||||||
|
|
||||||
public async Task<(bool Success, string ErrorMessage)> ChangePasswordAsync(string userId, ChangePasswordRequestDto request)
|
public async Task<ServiceResult> UpdateMyProfileAsync(string userId, UpdateCustomerDto profileDto)
|
||||||
{
|
|
||||||
var user = await _userManager.FindByIdAsync(userId);
|
|
||||||
if (user == null) return (false, "Benutzer nicht gefunden.");
|
|
||||||
|
|
||||||
var result = await _userManager.ChangePasswordAsync(user, request.OldPassword, request.NewPassword);
|
|
||||||
|
|
||||||
if (!result.Succeeded)
|
|
||||||
{
|
|
||||||
var errors = string.Join(" ", result.Errors.Select(e => e.Description));
|
|
||||||
return (false, errors);
|
|
||||||
}
|
|
||||||
|
|
||||||
return (true, "Passwort erfolgreich geändert.");
|
|
||||||
}
|
|
||||||
|
|
||||||
// << NEUE IMPLEMENTIERUNG: UpdateMyProfileAsync verarbeitet alle Felder >>
|
|
||||||
public async Task<(bool Success, string ErrorMessage)> UpdateMyProfileAsync(string userId, UpdateCustomerDto profileDto)
|
|
||||||
{
|
{
|
||||||
var customer = await _customerRepository.GetByUserIdAsync(userId);
|
var customer = await _customerRepository.GetByUserIdAsync(userId);
|
||||||
if (customer == null) return (false, "Kundenprofil nicht gefunden.");
|
if (customer == null) return ServiceResult.Fail(ServiceResultType.NotFound, "Kundenprofil nicht gefunden.");
|
||||||
|
|
||||||
var identityUser = await _userManager.FindByIdAsync(userId);
|
var identityUser = await _userManager.FindByIdAsync(userId);
|
||||||
if (identityUser == null) return (false, "Benutzerkonto nicht gefunden.");
|
if (identityUser == null) return ServiceResult.Fail(ServiceResultType.NotFound, "Benutzerkonto nicht gefunden.");
|
||||||
|
|
||||||
// 1. Aktuelles Passwort prüfen (Dies bleibt, da es eine gute Sicherheitspraxis für ALLE Profiländerungen ist)
|
|
||||||
if (!await _userManager.CheckPasswordAsync(identityUser, profileDto.CurrentPassword))
|
if (!await _userManager.CheckPasswordAsync(identityUser, profileDto.CurrentPassword))
|
||||||
{
|
{
|
||||||
return (false, "Falsches aktuelles Passwort zur Bestätigung.");
|
return ServiceResult.Fail(ServiceResultType.InvalidInput, "Das zur Bestätigung eingegebene Passwort ist falsch.");
|
||||||
}
|
}
|
||||||
|
|
||||||
// 2. Felder der Customer-Entität aktualisieren (FirstName, LastName, DEFAULT ADDRESS IDs)
|
|
||||||
customer.FirstName = profileDto.FirstName;
|
customer.FirstName = profileDto.FirstName;
|
||||||
customer.LastName = profileDto.LastName;
|
customer.LastName = profileDto.LastName;
|
||||||
customer.DefaultShippingAddressId = profileDto.DefaultShippingAddressId;
|
customer.DefaultShippingAddressId = profileDto.DefaultShippingAddressId;
|
||||||
customer.DefaultBillingAddressId = profileDto.DefaultBillingAddressId;
|
customer.DefaultBillingAddressId = profileDto.DefaultBillingAddressId;
|
||||||
await _customerRepository.UpdateAsync(customer); // Speichert Änderungen im Customer-Profil
|
await _customerRepository.UpdateAsync(customer);
|
||||||
|
|
||||||
// 3. Telefonnummer im ApplicationUser aktualisieren (wenn anders und nicht leer)
|
|
||||||
// E-Mail-Logik wird HIER KOMPLETT ENTFERNT.
|
|
||||||
bool identityUserChanged = false;
|
|
||||||
|
|
||||||
if (!string.IsNullOrEmpty(profileDto.PhoneNumber) && identityUser.PhoneNumber != profileDto.PhoneNumber)
|
if (!string.IsNullOrEmpty(profileDto.PhoneNumber) && identityUser.PhoneNumber != profileDto.PhoneNumber)
|
||||||
{
|
{
|
||||||
identityUser.PhoneNumber = profileDto.PhoneNumber;
|
identityUser.PhoneNumber = profileDto.PhoneNumber;
|
||||||
identityUserChanged = true;
|
|
||||||
}
|
|
||||||
|
|
||||||
if (identityUserChanged)
|
|
||||||
{
|
|
||||||
var updateResult = await _userManager.UpdateAsync(identityUser);
|
var updateResult = await _userManager.UpdateAsync(identityUser);
|
||||||
if (!updateResult.Succeeded)
|
if (!updateResult.Succeeded)
|
||||||
{
|
{
|
||||||
var errors = string.Join(" ", updateResult.Errors.Select(e => e.Description));
|
var errors = string.Join(" ", updateResult.Errors.Select(e => e.Description));
|
||||||
return (false, $"Fehler beim Aktualisieren der Telefonnummer: {errors}");
|
return ServiceResult.Fail(ServiceResultType.Failure, $"Fehler beim Aktualisieren der Telefonnummer: {errors}");
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
return ServiceResult.Ok();
|
||||||
return (true, "Profil und (optional) Telefonnummer erfolgreich aktualisiert.");
|
|
||||||
}
|
}
|
||||||
|
|
||||||
public async Task<(bool Success, string ErrorMessage)> ChangeEmailAsync(string userId, string newEmail, string currentPassword)
|
public async Task<ServiceResult> ChangePasswordAsync(string userId, ChangePasswordRequestDto request)
|
||||||
{
|
{
|
||||||
var user = await _userManager.FindByIdAsync(userId);
|
var user = await _userManager.FindByIdAsync(userId);
|
||||||
if (user == null) return (false, "Benutzer nicht gefunden.");
|
if (user == null) return ServiceResult.Fail(ServiceResultType.NotFound, "Benutzer nicht gefunden.");
|
||||||
|
|
||||||
if (!await _userManager.CheckPasswordAsync(user, currentPassword))
|
var result = await _userManager.ChangePasswordAsync(user, request.OldPassword, request.NewPassword);
|
||||||
{
|
|
||||||
return (false, "Falsches aktuelles Passwort.");
|
|
||||||
}
|
|
||||||
|
|
||||||
// Prüfen, ob die neue E-Mail bereits vergeben ist (außer sie ist die aktuelle E-Mail)
|
|
||||||
if (user.Email != newEmail && await _userManager.FindByEmailAsync(newEmail) != null)
|
|
||||||
{
|
|
||||||
return (false, "Die neue E-Mail-Adresse ist bereits registriert.");
|
|
||||||
}
|
|
||||||
|
|
||||||
var token = await _userManager.GenerateChangeEmailTokenAsync(user, newEmail);
|
|
||||||
var encodedToken = HttpUtility.UrlEncode(token);
|
|
||||||
var baseUrl = _configuration["App:BaseUrl"];
|
|
||||||
|
|
||||||
// Link für E-Mail-Bestätigung der Änderung
|
|
||||||
var confirmationLink = $"{baseUrl}/api/v1/auth/change-email-confirm?userId={user.Id}&newEmail={HttpUtility.UrlEncode(newEmail)}&token={encodedToken}";
|
|
||||||
|
|
||||||
var message = new EmailMessage();
|
|
||||||
message.From = "Your Webshop <no-reply@resend.dev>"; // << ANPASSEN >>
|
|
||||||
message.To.Add(newEmail);
|
|
||||||
message.Subject = "Bestätigen Sie Ihre E-Mail-Änderung für Your Webshop";
|
|
||||||
message.HtmlBody = $@"
|
|
||||||
<h1>E-Mail-Änderung Bestätigung</h1>
|
|
||||||
<p>Sie haben eine Änderung Ihrer E-Mail-Adresse beantragt. Bitte klicken Sie auf den folgenden Link, um dies zu bestätigen:</p>
|
|
||||||
<p><a href=""{confirmationLink}"">{confirmationLink}</a></p>
|
|
||||||
<p>Wenn Sie diese Änderung nicht angefordert haben, können Sie diese E-Mail ignorieren.</p>
|
|
||||||
<p>Vielen Dank!</p>";
|
|
||||||
|
|
||||||
await _resend.EmailSendAsync(message);
|
|
||||||
|
|
||||||
return (true, "Bestätigungs-E-Mail für die E-Mail-Änderung wurde gesendet. Bitte prüfen Sie Ihr Postfach.");
|
|
||||||
}
|
|
||||||
|
|
||||||
public async Task<(bool Success, string ErrorMessage)> ConfirmEmailChangeAsync(string userId, string newEmail, string token)
|
|
||||||
{
|
|
||||||
var user = await _userManager.FindByIdAsync(userId);
|
|
||||||
if (user == null) return (false, "Benutzer nicht gefunden.");
|
|
||||||
|
|
||||||
var result = await _userManager.ChangeEmailAsync(user, newEmail, HttpUtility.UrlDecode(token));
|
|
||||||
if (!result.Succeeded)
|
if (!result.Succeeded)
|
||||||
{
|
{
|
||||||
var errors = string.Join(" ", result.Errors.Select(e => e.Description));
|
var errors = string.Join(" ", result.Errors.Select(e => e.Description));
|
||||||
return (false, $"E-Mail-Änderung konnte nicht bestätigt werden: {errors}");
|
return ServiceResult.Fail(ServiceResultType.InvalidInput, errors);
|
||||||
|
}
|
||||||
|
return ServiceResult.Ok();
|
||||||
|
}
|
||||||
|
|
||||||
|
public async Task<ServiceResult> ChangeEmailAsync(string userId, string newEmail, string currentPassword)
|
||||||
|
{
|
||||||
|
var user = await _userManager.FindByIdAsync(userId);
|
||||||
|
if (user == null) return ServiceResult.Fail(ServiceResultType.NotFound, "Benutzer nicht gefunden.");
|
||||||
|
|
||||||
|
if (!await _userManager.CheckPasswordAsync(user, currentPassword))
|
||||||
|
{
|
||||||
|
return ServiceResult.Fail(ServiceResultType.InvalidInput, "Das zur Bestätigung eingegebene Passwort ist falsch.");
|
||||||
}
|
}
|
||||||
|
|
||||||
// Optional: Bestätigung der Telefonnummer zurücksetzen, wenn E-Mail geändert wurde
|
if (user.Email != newEmail && await _userManager.FindByEmailAsync(newEmail) != null)
|
||||||
// user.PhoneNumberConfirmed = false;
|
{
|
||||||
// await _userManager.UpdateAsync(user);
|
return ServiceResult.Fail(ServiceResultType.Conflict, "Die neue E-Mail-Adresse ist bereits registriert.");
|
||||||
|
}
|
||||||
|
|
||||||
return (true, "E-Mail-Adresse erfolgreich geändert und bestätigt.");
|
var token = await _userManager.GenerateChangeEmailTokenAsync(user, newEmail);
|
||||||
|
var clientUrl = _configuration["App:ClientUrl"]!;
|
||||||
|
var confirmationLink = $"{clientUrl}/confirm-email-change?userId={user.Id}&newEmail={HttpUtility.UrlEncode(newEmail)}&token={HttpUtility.UrlEncode(token)}";
|
||||||
|
|
||||||
|
var message = new EmailMessage();
|
||||||
|
message.From = _configuration["Resend:FromEmail"]!;
|
||||||
|
message.To.Add(newEmail);
|
||||||
|
message.Subject = "Bestätigen Sie Ihre neue E-Mail-Adresse";
|
||||||
|
message.HtmlBody = $"<h1>E-Mail-Änderung Bestätigung</h1><p>Bitte klicken Sie auf den folgenden Link, um Ihre neue E-Mail-Adresse zu bestätigen:</p><p><a href='{confirmationLink}'>Neue E-Mail-Adresse bestätigen</a></p>";
|
||||||
|
await _resend.EmailSendAsync(message);
|
||||||
|
|
||||||
|
// Die Erfolgsmeldung wird hier als Teil des "Ok"-Results übermittelt
|
||||||
|
return ServiceResult.Ok("Bestätigungs-E-Mail wurde an die neue Adresse gesendet. Bitte prüfen Sie Ihr Postfach.");
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@@ -1,17 +1,17 @@
|
|||||||
// src/Webshop.Application/Services/Customers/ICustomerService.cs
|
// src/Webshop.Application/Services/Customers/ICustomerService.cs
|
||||||
using System.Threading.Tasks;
|
using System.Threading.Tasks;
|
||||||
using Webshop.Application.DTOs; // CustomerDto
|
using Webshop.Application;
|
||||||
using Webshop.Application.DTOs.Auth; // ChangePasswordRequestDto
|
using Webshop.Application.DTOs;
|
||||||
using Webshop.Application.DTOs.Customers; // UpdateCustomerProfileDto
|
using Webshop.Application.DTOs.Auth;
|
||||||
|
using Webshop.Application.DTOs.Customers;
|
||||||
|
|
||||||
namespace Webshop.Application.Services.Customers
|
namespace Webshop.Application.Services.Customers
|
||||||
{
|
{
|
||||||
public interface ICustomerService
|
public interface ICustomerService
|
||||||
{
|
{
|
||||||
Task<CustomerDto?> GetMyProfileAsync(string userId);
|
Task<ServiceResult<CustomerDto>> GetMyProfileAsync(string userId);
|
||||||
Task<(bool Success, string ErrorMessage)> ChangePasswordAsync(string userId, ChangePasswordRequestDto request);
|
Task<ServiceResult> UpdateMyProfileAsync(string userId, UpdateCustomerDto profileDto);
|
||||||
Task<(bool Success, string ErrorMessage)> UpdateMyProfileAsync(string userId, UpdateCustomerDto profileDto);
|
Task<ServiceResult> ChangePasswordAsync(string userId, ChangePasswordRequestDto request);
|
||||||
Task<(bool Success, string ErrorMessage)> ChangeEmailAsync(string userId, string newEmail, string currentPassword);
|
Task<ServiceResult> ChangeEmailAsync(string userId, string newEmail, string currentPassword);
|
||||||
Task<(bool Success, string ErrorMessage)> ConfirmEmailChangeAsync(string userId, string newEmail, string token);
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
Reference in New Issue
Block a user