using Amazon.AspNetCore.Identity.Cognito; using Amazon.Extensions.CognitoAuthentication; using Microsoft.AspNetCore.Authorization; using Microsoft.AspNetCore.Identity; using Microsoft.AspNetCore.Mvc; using Microsoft.AspNetCore.Mvc.RazorPages; using Microsoft.Extensions.Logging; using System; using System.ComponentModel.DataAnnotations; using System.Threading.Tasks; namespace CloudMosaic.Frontend.Areas.Identity.Pages.Account { [AllowAnonymous] public class ResetPasswordModel : PageModel { private readonly CognitoUserManager _userManager; private readonly ILogger _logger; public ResetPasswordModel(UserManager userManger, ILogger logger) { _userManager = userManger as CognitoUserManager; _logger = logger; } [BindProperty] public InputModel Input { get; set; } public string ReturnUrl { get; set; } public class InputModel { [Required] [EmailAddress] [Display(Name = "Email")] public string Email { get; set; } [Required] [DataType(DataType.Text)] [Display(Name = "Reset Token")] public string ResetToken { get; set; } [Required] [StringLength(100, ErrorMessage = "The {0} must be at least {2} and at max {1} characters long.", MinimumLength = 6)] [DataType(DataType.Password)] [Display(Name = "New password")] public string NewPassword { get; set; } [DataType(DataType.Password)] [Display(Name = "Confirm password")] [Compare("NewPassword", ErrorMessage = "The password and confirmation password do not match.")] public string ConfirmPassword { get; set; } } public void OnGet(string returnUrl = null) { ReturnUrl = returnUrl; } public async Task OnPostAsync(string returnUrl = null) { if (!ModelState.IsValid) { return Page(); } returnUrl = returnUrl ?? Url.Content("~/"); var user = await _userManager.FindByEmailAsync(Input.Email); if (user == null) { throw new InvalidOperationException($"Unable to retrieve user."); } var result = await _userManager.ResetPasswordAsync(user, Input.ResetToken, Input.NewPassword); if (result.Succeeded) { _logger.LogInformation("Password reset for user with ID '{UserId}'.", user.UserID); return LocalRedirect(returnUrl); } else { _logger.LogInformation("Unable to rest password for user with ID '{UserId}'.", user.UserID); foreach (var item in result.Errors) { ModelState.AddModelError(item.Code, item.Description); } return Page(); } } } }