using Microsoft.Extensions.Localization; namespace IOL.GreatOffice.Api.Endpoints.Internal.Account; public class CreateAccountRoute : RouteBaseAsync.WithRequest.WithActionResult { private readonly MainAppDatabase _database; private readonly UserService _userService; private readonly IStringLocalizer _localizer; public CreateAccountRoute(UserService userService, MainAppDatabase database, IStringLocalizer localizer) { _userService = userService; _database = database; _localizer = localizer; } public class Payload { public string Username { get; set; } public string Password { get; set; } } [AllowAnonymous] [HttpPost("~/_/account/create")] public override async Task HandleAsync(Payload request, CancellationToken cancellationToken = default) { var problem = new KnownProblemModel(); if (request.Username.IsValidEmailAddress() == false) { problem.AddError("username", _localizer["{0} does not look like a valid email", request.Username]); } if (request.Password.Length < 6) { problem.AddError("password", _localizer["The password requires 6 or more characters."]); } var username = request.Username.Trim(); if (problem.Errors.All(p => p.Key != "username") && _database.Users.Any(c => c.Username == username)) { problem.AddError("username", _localizer["There is already a user registered with username: {0}", username]); } if (problem.Errors.Any()) { problem.Title = _localizer["Invalid form"]; problem.Subtitle = _localizer["One or more fields is invalid"]; return KnownProblem(problem); } var user = new User(username); user.HashAndSetPassword(request.Password); _database.Users.Add(user); await _database.SaveChangesAsync(cancellationToken); await _userService.LogInUser(HttpContext, user); return Ok(); } }