Merge pull request #610 from TransactionProcessing/task/#567_record_user_registration_date

Record the registration date/time of a new user

Author: StuartFerguson

SecurityService.BusinessLogic/ApplicationUser.cs

@@ -1,8 +1,10 @@
 namespace SecurityService.BusinessLogic
 {
     using Microsoft.AspNetCore.Identity;
+    using System;
 
-    //public class ApplicationUser : IdentityUser
-    //{
-    //}
+    public class ApplicationUser : IdentityUser
+    {
+        public DateTime RegistrationDateTime { get; set; }
+    }
 }

SecurityService.BusinessLogic/RequestHandlers/UserRequestHandler.cs

@@ -46,20 +46,20 @@ public class UserRequestHandler : IRequestHandler<SecurityServiceCommands.Create
 
         private readonly IMessagingServiceClient MessagingServiceClient;
 
-        private readonly IPasswordHasher<IdentityUser> PasswordHasher;
+        private readonly IPasswordHasher<ApplicationUser> PasswordHasher;
 
         private readonly ServiceOptions ServiceOptions;
 
         private TokenResponse TokenResponse;
 
-        private readonly UserManager<IdentityUser> UserManager;
+        private readonly UserManager<ApplicationUser> UserManager;
 
         #endregion
 
         #region Constructors
 
-        public UserRequestHandler(IPasswordHasher<IdentityUser> passwordHasher,
-                                  UserManager<IdentityUser> userManager,
+        public UserRequestHandler(IPasswordHasher<ApplicationUser> passwordHasher,
+                                  UserManager<ApplicationUser> userManager,
                                   ServiceOptions serviceOptions,
                                   IMessagingServiceClient messagingServiceClient,
                                   IdentityServerTools identityServerTools,
@@ -79,14 +79,15 @@ public UserRequestHandler(IPasswordHasher<IdentityUser> passwordHasher,
         public async Task<Result> Handle(SecurityServiceCommands.CreateUserCommand command,
                                          CancellationToken cancellationToken) {
             // request is valid now add the user
-            IdentityUser newIdentityUser = new IdentityUser {
+            ApplicationUser newIdentityUser = new() {
                 Id = command.UserId.ToString(),
                 Email = command.EmailAddress,
                 UserName = command.UserName,
                 NormalizedEmail = command.EmailAddress.ToUpper(),
                 NormalizedUserName = command.UserName.ToUpper(),
                 SecurityStamp = Guid.NewGuid().ToString("D"),
                 PhoneNumber = command.PhoneNumber,
+                RegistrationDateTime = DateTime.Now
             };
 
             String passwordValue = String.IsNullOrEmpty(command.Password) ? UserRequestHandler.GenerateRandomPassword(this.UserManager.Options.Password) : command.Password;
@@ -130,7 +131,7 @@ public async Task<Result> Handle(SecurityServiceCommands.CreateUserCommand comma
             return Result.Success();
         }
 
-        private async Task<Result> CreateUser(IdentityUser newIdentityUser) {
+        private async Task<Result> CreateUser(ApplicationUser newIdentityUser) {
             var createResult = await this.UserManager.CreateAsync(newIdentityUser);
 
             if (!createResult.Succeeded)
@@ -140,7 +141,7 @@ private async Task<Result> CreateUser(IdentityUser newIdentityUser) {
             return Result.Success();
         }
 
-        private async Task<Result> AddRolesToUser(IdentityUser newIdentityUser, List<String> roles) {
+        private async Task<Result> AddRolesToUser(ApplicationUser newIdentityUser, List<String> roles) {
             // Add the requested roles to the user
             if (roles != null && roles.Any())
             {
@@ -155,7 +156,7 @@ private async Task<Result> AddRolesToUser(IdentityUser newIdentityUser, List<Str
             return Result.Success();
         }
 
-        private async Task<Result> AddClaimsToUser(IdentityUser newIdentityUser, SecurityServiceCommands.CreateUserCommand command) {
+        private async Task<Result> AddClaimsToUser(ApplicationUser newIdentityUser, SecurityServiceCommands.CreateUserCommand command) {
             // Add the requested claims
             List<Claim> claimsToAdd = new List<Claim>();
             if (command.Claims != null)
@@ -198,7 +199,7 @@ private async Task<Result> AddClaimsToUser(IdentityUser newIdentityUser, Securit
 
         public async Task<Result<UserDetails>> Handle(SecurityServiceQueries.GetUserQuery query, CancellationToken cancellationToken){
 
-            IdentityUser user = await this.UserManager.FindByIdAsync(query.UserId.ToString());
+            ApplicationUser user = await this.UserManager.FindByIdAsync(query.UserId.ToString());
 
             if (user == null){
                 return Result.NotFound($"No user found with user Id {query.UserId}");
@@ -210,6 +211,7 @@ public async Task<Result<UserDetails>> Handle(SecurityServiceQueries.GetUserQuer
             response.UserId = query.UserId;
             response.SubjectId = query.UserId.ToString();
             response.Username = user.UserName;
+            response.RegistrationDateTime = user.RegistrationDateTime;
 
             // Get the users roles
             response.Roles = await this.ConvertUsersRoles(user);
@@ -223,15 +225,15 @@ public async Task<Result<UserDetails>> Handle(SecurityServiceQueries.GetUserQuer
         public async Task<Result<List<UserDetails>>> Handle(SecurityServiceQueries.GetUsersQuery query, CancellationToken cancellationToken){
             List<UserDetails> response = new List<UserDetails>();
 
-            IQueryable<IdentityUser> userQuery = this.UserManager.Users;
+            IQueryable<ApplicationUser> userQuery = this.UserManager.Users;
 
             if (String.IsNullOrEmpty(query.UserName) == false){
                 userQuery = userQuery.Where(u => u.UserName.Contains(query.UserName));
             }
 
-            List<IdentityUser> users = await userQuery.ToListAsyncSafe(cancellationToken);
+            List<ApplicationUser> users = await userQuery.ToListAsyncSafe(cancellationToken);
 
-            foreach (IdentityUser identityUser in users){
+            foreach (ApplicationUser identityUser in users){
                 Dictionary<String, String> claims = await this.ConvertUsersClaims(identityUser);
                 List<String> roles = await this.ConvertUsersRoles(identityUser);
 
@@ -250,9 +252,9 @@ public async Task<Result<List<UserDetails>>> Handle(SecurityServiceQueries.GetUs
         }
 
         public async Task<Result<ChangeUserPasswordResult>> Handle(SecurityServiceCommands.ChangeUserPasswordCommand command, CancellationToken cancellationToken){
-            
+
             // Find the user based on the user name passed in
-            IdentityUser user = await this.UserManager.FindByNameAsync(command.UserName);
+            ApplicationUser user = await this.UserManager.FindByNameAsync(command.UserName);
 
             if (user == null){
                 // this prevents giving away info to a potential hacker...
@@ -286,7 +288,7 @@ public async Task<Result<ChangeUserPasswordResult>> Handle(SecurityServiceComman
         }
 
         public async Task<Result> Handle(SecurityServiceCommands.ConfirmUserEmailAddressCommand command, CancellationToken cancellationToken){
-            IdentityUser identityUser = await this.UserManager.FindByNameAsync(command.UserName);
+            ApplicationUser identityUser = await this.UserManager.FindByNameAsync(command.UserName);
 
             if (identityUser == null)
             {
@@ -311,7 +313,7 @@ public async Task<Result> Handle(SecurityServiceCommands.ConfirmUserEmailAddress
 
         public async Task<Result<String>> Handle(SecurityServiceCommands.ProcessPasswordResetConfirmationCommand command, CancellationToken cancellationToken){
             // Find the user based on the user name passed in
-            IdentityUser user = await this.UserManager.FindByNameAsync(command.Username);
+            ApplicationUser user = await this.UserManager.FindByNameAsync(command.Username);
 
             if (user == null)
             {
@@ -349,7 +351,7 @@ public async Task<Result<String>> Handle(SecurityServiceCommands.ProcessPassword
 
         public async Task<Result> Handle(SecurityServiceCommands.ProcessPasswordResetRequestCommand command, CancellationToken cancellationToken){
             // Find the user based on the user name passed in
-            IdentityUser user = await this.UserManager.FindByNameAsync(command.Username);
+            ApplicationUser user = await this.UserManager.FindByNameAsync(command.Username);
 
             if (user == null)
             {
@@ -373,7 +375,7 @@ public async Task<Result> Handle(SecurityServiceCommands.ProcessPasswordResetReq
         }
 
         public async Task<Result> Handle(SecurityServiceCommands.SendWelcomeEmailCommand command, CancellationToken cancellationToken){
-            IdentityUser i = await this.UserManager.FindByNameAsync(command.Username);
+            ApplicationUser i = await this.UserManager.FindByNameAsync(command.Username);
             await this.UserManager.RemovePasswordAsync(i);
             String generatedPassword = UserRequestHandler.GenerateRandomPassword(this.UserManager.Options.Password);
             await this.UserManager.AddPasswordAsync(i, generatedPassword);
@@ -388,7 +390,7 @@ public async Task<Result> Handle(SecurityServiceCommands.SendWelcomeEmailCommand
             return Result.Success();
         }
 
-        private SendEmailRequest BuildEmailConfirmationRequest(IdentityUser user,
+        private SendEmailRequest BuildEmailConfirmationRequest(ApplicationUser user,
                                                                String emailConfirmationToken){
             StringBuilder mesasgeBuilder = new StringBuilder();
 
@@ -416,7 +418,7 @@ private SendEmailRequest BuildEmailConfirmationRequest(IdentityUser user,
             return request;
         }
 
-        private SendEmailRequest BuildPasswordResetEmailRequest(IdentityUser user,
+        private SendEmailRequest BuildPasswordResetEmailRequest(ApplicationUser user,
                                                                 String resetToken){
             StringBuilder mesasgeBuilder = new StringBuilder();
 
@@ -474,7 +476,7 @@ private SendEmailRequest BuildWelcomeEmail(String emailAddress,
             return request;
         }
 
-        private async Task<Dictionary<String, String>> ConvertUsersClaims(IdentityUser identityUser){
+        private async Task<Dictionary<String, String>> ConvertUsersClaims(ApplicationUser identityUser){
             Dictionary<String, String> response = new Dictionary<String, String>();
             IList<Claim> claims = await this.UserManager.GetClaimsAsync(identityUser);
             foreach (Claim claim in claims){
@@ -484,7 +486,7 @@ private async Task<Dictionary<String, String>> ConvertUsersClaims(IdentityUser i
             return response;
         }
 
-        private async Task<List<String>> ConvertUsersRoles(IdentityUser identityUser){
+        private async Task<List<String>> ConvertUsersRoles(ApplicationUser identityUser){
             IList<String> roles = await this.UserManager.GetRolesAsync(identityUser);
             return roles.ToList();
         }

SecurityService.DataTransferObjects/Responses/UserDetails.cs

@@ -64,6 +64,9 @@ public class UserDetails
         [JsonProperty("user_name")]
         public String UserName { get; set; }
 
+        [JsonProperty("registration_date_time")]
+        public DateTime RegistrationDateTime { get; set; }
+
         #endregion
     }
 }

SecurityService.Database/DbContexts/AuthenticationDbContext.cs

@@ -1,4 +1,6 @@
-namespace SecurityService.Database.DbContexts
+using SecurityService.BusinessLogic;
+
+namespace SecurityService.Database.DbContexts
 {
     using System;
     using Duende.IdentityServer.EntityFramework.DbContexts;
@@ -8,7 +10,7 @@
     using Microsoft.EntityFrameworkCore;
     using Shared.General;
 
-    public class AuthenticationDbContext : IdentityDbContext<IdentityUser>
+    public class AuthenticationDbContext : IdentityDbContext<ApplicationUser>
     {
         public AuthenticationDbContext(DbContextOptions options)
             : base(options)

SecurityService.Database/SecurityService.Database.csproj

@@ -11,7 +11,7 @@
 		<PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="8.0.14" />
 		<PackageReference Include="Microsoft.EntityFrameworkCore" Version="8.0.14" />
 		<PackageReference Include="Microsoft.EntityFrameworkCore.Relational" Version="8.0.14" />
-		<PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" Version="8.0.3" />
+		<PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" Version="8.0.14" />
 		<PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="8.0.14">
 			<PrivateAssets>all</PrivateAssets>
 			<IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
@@ -28,5 +28,8 @@
 	<ItemGroup>
     <Folder Include="DbContexts\" />
   </ItemGroup>
+	<ItemGroup>
+	  <ProjectReference Include="..\SecurityService.BusinessLogic\SecurityService.BusinessLogic.csproj" />
+	</ItemGroup>
 
 </Project>

SecurityService.IntegrationTesting.Helpers/ReqnrollExtensions.cs

@@ -305,10 +305,12 @@ public static List<UserDetails> ToUserDetails(this DataTableRows tableRows){
 
                 String roles = ReqnrollTableHelper.GetStringRowValue(tableRow, "Roles");
 
-
                 if (string.IsNullOrEmpty(roles) == false){
                     userDetails.Roles = roles.SplitString();
                 }
+
+                DateTime dateTime = ReqnrollTableHelper.GetDateForDateString(ReqnrollTableHelper.GetStringRowValue(tableRow, "RegistrationDate"), DateTime.Now);
+                userDetails.RegistrationDateTime = dateTime;
                 userDetailsList.Add(userDetails);
             }
             return userDetailsList;

SecurityService.IntegrationTesting.Helpers/SecurityServiceSteps.cs

@@ -313,6 +313,7 @@ public async Task WhenIGetTheUserWithUserNameTheUserDetailsAreReturnedAsFollows(
             String? claim = userDetails.Data.Claims[expectedRecordClaim.Key];
             claim.ShouldBe(expectedRecordClaim.Value);
         }
+        userDetails.Data.RegistrationDateTime.Date.ShouldBe(expectedRecord.RegistrationDateTime.Date);
     }
 
 }

SecurityService.IntegrationTests/SecurityService.IntegrationTests.csproj

@@ -10,6 +10,8 @@
 
     <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="8.0.14" />
 
+    <PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" Version="8.0.14" />
+    
     <PackageReference Include="Microsoft.Extensions.Hosting.Abstractions" Version="8.0.1" />
 
     <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.13.0" />

SecurityService.IntegrationTests/Users/Users.feature

@@ -16,16 +16,16 @@ Scenario: Get Users
 	| testuser2@testing.co.uk | 123456789    | Test       |             | User 2      |        | TestRole2 |
 	| testuser3@testing.co.uk | 123456789    | Test       |             | User 3      |        | TestRole3 |
 	When I get the user with user name 'testuser1@testing.co.uk' the user details are returned as follows
-	| Email Address           | Phone Number | Given Name | Middle Name | Family Name | Claims                                                             | Roles     |
-	| testuser1@testing.co.uk | 123456789    | Test       |             | User 1      | email:testuser1@testing.co.uk, given_name:Test, family_name:User 1 | TestRole1 |
+	| Email Address           | Phone Number | Given Name | Middle Name | Family Name | Claims                                                             | Roles     | RegistrationDate |
+	| testuser1@testing.co.uk | 123456789    | Test       |             | User 1      | email:testuser1@testing.co.uk, given_name:Test, family_name:User 1 | TestRole1 | Today            |
 	When I get the user with user name 'testuser2@testing.co.uk' the user details are returned as follows
-	| Email Address           | Phone Number | Given Name | Middle Name | Family Name | Claims                                                             | Roles     |
-	| testuser2@testing.co.uk | 123456789    | Test       |             | User 2      | email:testuser2@testing.co.uk, given_name:Test, family_name:User 2 | TestRole2 |
+	| Email Address           | Phone Number | Given Name | Middle Name | Family Name | Claims                                                             | Roles     |RegistrationDate |
+	| testuser2@testing.co.uk | 123456789    | Test       |             | User 2      | email:testuser2@testing.co.uk, given_name:Test, family_name:User 2 | TestRole2 |Today            |
 	When I get the user with user name 'testuser3@testing.co.uk' the user details are returned as follows
-	| Email Address           | Phone Number | Given Name | Middle Name | Family Name | Claims                                                            | Roles     |
-	| testuser3@testing.co.uk | 123456789    | Test       |             | User 3      | email:testuser3@testing.co.uk, given_name:Test, family_name:User 3 | TestRole3 |
+	| Email Address           | Phone Number | Given Name | Middle Name | Family Name | Claims                                                            | Roles      |RegistrationDate |
+	| testuser3@testing.co.uk | 123456789    | Test       |             | User 3      | email:testuser3@testing.co.uk, given_name:Test, family_name:User 3 | TestRole3 |Today            |
 	When I get the users 3 users details are returned as follows
-	| Email Address           | Phone Number | Given Name | Middle Name | Family Name | Claims                                                             | Roles     |
-	| testuser1@testing.co.uk | 123456789    | Test       |             | User 1      | email:testuser1@testing.co.uk, given_name:Test, family_name:User 1 | TestRole1 |
-	| testuser2@testing.co.uk | 123456789    | Test       |             | User 2      | email:testuser2@testing.co.uk, given_name:Test, family_name:User 2 | TestRole2 |
-	| testuser3@testing.co.uk | 123456789    | Test       |             | User 3      | email:testuser3@testing.co.uk, given_name:Test, family_name:User 3 | TestRole3 |
+	| Email Address           | Phone Number | Given Name | Middle Name | Family Name | Claims                                                             | Roles     |RegistrationDate |
+	| testuser1@testing.co.uk | 123456789    | Test       |             | User 1      | email:testuser1@testing.co.uk, given_name:Test, family_name:User 1 | TestRole1 |Today            |
+	| testuser2@testing.co.uk | 123456789    | Test       |             | User 2      | email:testuser2@testing.co.uk, given_name:Test, family_name:User 2 | TestRole2 |Today            |
+	| testuser3@testing.co.uk | 123456789    | Test       |             | User 3      | email:testuser3@testing.co.uk, given_name:Test, family_name:User 3 | TestRole3 |Today            |