@using WebMatrix.WebData
@* 若您在使用組合,請移除此區段 *@
@section Scripts {
}
@{
WebSecurity.RequireAuthenticatedUser();
Layout = "~/_SiteLayout.cshtml";
Page.Title = "管理帳戶";
var action = Request.Form["action"];
bool hasLocalAccount = OAuthWebSecurity.HasLocalAccount(WebSecurity.CurrentUserId);
string successMessage = "";
var message = Request.QueryString["message"];
if (message == "ChangedPassword") {
successMessage = "您的密碼已經更新。";
} else if (message == "SetPassword") {
successMessage = "您已設定密碼。";
} else if (message == "RemovedLogin") {
successMessage = "已移除外部登入。";
}
var externalLogins =
(from account in OAuthWebSecurity.GetAccountsFromUserName(WebSecurity.CurrentUserName)
let clientData = OAuthWebSecurity.GetOAuthClientData(account.Provider)
select new { Provider = account.Provider, ProviderDisplayName = clientData.DisplayName, UserId = account.ProviderUserId })
.ToList();
bool canRemoveLogin = externalLogins.Count > 1 || hasLocalAccount;
// 設定驗證
if (hasLocalAccount) {
Validation.RequireField("currentPassword", "目前密碼欄位為必填。");
Validation.Add("currentPassword",
Validator.StringLength(
maxLength: Int32.MaxValue,
minLength: 6,
errorMessage: "目前密碼必須至少有 6 個字元"));
}
Validation.RequireField("newPassword", "新密碼欄位為必填。");
Validation.Add("confirmPassword",
Validator.Required("確認新密碼欄位為必填。"),
Validator.EqualsTo("newPassword", "新密碼和確認密碼不相符。"));
Validation.Add("newPassword",
Validator.StringLength(
maxLength: Int32.MaxValue,
minLength: 6,
errorMessage: "新密碼必須至少有 6 個字元"));
if (IsPost) {
AntiForgery.Validate();
if (action == "password") {
// 處理本機帳戶密碼作業
var currentPassword = Request.Form["currentPassword"];
var newPassword = Request.Form["newPassword"];
var confirmPassword = Request.Form["confirmPassword"];
if (Validation.IsValid()) {
if (hasLocalAccount) {
if (WebSecurity.ChangePassword(WebSecurity.CurrentUserName, currentPassword, newPassword)) {
Response.Redirect("~/Account/Manage?message=ChangedPassword");
return;
} else {
ModelState.AddFormError("嘗試變更密碼時發生錯誤。請連絡網站的擁有者。");
}
} else {
bool requireEmailConfirmation = !WebMail.SmtpServer.IsEmpty();
try {
WebSecurity.CreateAccount(WebSecurity.CurrentUserName, newPassword, requireEmailConfirmation);
Response.Redirect("~/Account/Manage?message=SetPassword");
return;
} catch (System.Web.Security.MembershipCreateUserException e) {
ModelState.AddFormError(e.Message);
}
}
} else {
ModelState.AddFormError("密碼變更失敗。請更正錯誤並再試一次。");
}
} else if (action == "removeLogin") {
// 移除外部登入
var provider = Request.Form["provider"];
var userId = Request.Form["userId"];
message = null;
var ownerAccount = OAuthWebSecurity.GetUserName(provider, userId);
// 如果是目前登入的使用者擁有,且不是上次登入認證的使用者,僅移除外部登入
if (ownerAccount == WebSecurity.CurrentUserName && canRemoveLogin) {
OAuthWebSecurity.DeleteAccount(provider, userId);
message = "RemovedLogin";
}
Response.Redirect(Href("~/Account/Manage", new { message }));
return;
} else {
// 假設為外部登入要求
string provider = Request.Form["provider"];
if (!provider.IsEmpty()) {
OAuthWebSecurity.RequestAuthentication(provider, Href("~/Account/RegisterService", new { returnUrl = Href("~/Account/Manage") }));
return;
}
}
}
}
@Page.Title.
@if (!successMessage.IsEmpty()) {
@successMessage
}
您以下列身分登入 @WebSecurity.CurrentUserName.
@if (hasLocalAccount) {
變更密碼
} else {
您沒有此網站的本機密碼。新增本機密碼,以便不透過外部登入來登入。
}
@if (externalLogins.Count > 0) {
註冊的外部登入
@foreach (var externalLogin in externalLogins) {
| @externalLogin.ProviderDisplayName |
@if (canRemoveLogin) {
} else {
@:
}
|
}
}
新增外部登入
@RenderPage("~/Account/_ExternalLoginsList.cshtml")