From 2dba0374eacace5a5b00413bc684a22fd451378a Mon Sep 17 00:00:00 2001
From: SimonFlapse <signup@simonflarup.dk>
Date: Mon, 1 Jun 2020 15:15:53 +0200
Subject: [PATCH 1/5] Added create account page

Added new WebAccountManager service to handle all account actions across the upcoming account pages
---
 .../Pages/Admin/CreateAccount.cshtml          |  64 +++++++++++
 .../Pages/Admin/CreateAccount.cshtml.cs       | 106 ++++++++++++++++++
 .../Services/WebAccountManager.cs             |  97 ++++++++++++++++
 FactorioWebInterface/Startup.cs               |   1 +
 4 files changed, 268 insertions(+)
 create mode 100644 FactorioWebInterface/Pages/Admin/CreateAccount.cshtml
 create mode 100644 FactorioWebInterface/Pages/Admin/CreateAccount.cshtml.cs
 create mode 100644 FactorioWebInterface/Services/WebAccountManager.cs

diff --git a/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml b/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml
new file mode 100644
index 00000000..61ef7ced
--- /dev/null
+++ b/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml
@@ -0,0 +1,64 @@
+@page
+@model FactorioWebInterface.Pages.Admin.CreateAccountModel
+@{
+    ViewData["Title"] = "Create New Account";
+}
+
+@section Scripts {
+    @await Html.PartialAsync("_ValidationScriptsPartial")
+}
+
+<div class="container">
+
+    <h2 class="title is-2">Create New Account</h2>
+
+    <div class="columns">
+        <div class="column is-4">
+                <form method="post">
+                    <h4 class="title is-4">Create User</h4>
+                    <hr />
+                    <div asp-validation-summary="All" class="has-text-danger"></div>
+                    <div class="field">
+                        <label asp-for="Input.UserName" class="label"></label>
+                        <div class="control">
+                            <input asp-for="Input.UserName" class="input" />
+                        </div>
+                        <span asp-validation-for="Input.UserName" class="help is-danger"></span>
+                    </div>
+                    <div class="field">
+                        <label asp-for="Input.Password" class="label"></label>
+                        <div class="control">
+                            <input asp-for="Input.Password" class="input" />
+                        </div>
+                        <span asp-validation-for="Input.Password" class="help is-danger"></span>
+                    </div>
+                    <div class="field">
+                        <label asp-for="Input.ConfirmPassword" class="label"></label>
+                        <div class="control">
+                            <input asp-for="Input.ConfirmPassword" class="input" />
+                        </div>
+                        <span asp-validation-for="Input.ConfirmPassword" class="help is-danger"></span>
+                    </div>
+                    <div class="field">
+                        <label asp-for="Input.Role" class="label"></label>
+                        <div class="control">
+                            @foreach (var item in Model.Roles)
+                            {
+                                <input asp-for="Input.Role" type="radio" value="@item" /> @item
+                            }
+                        </div>
+                        <span asp-validation-for="Input.Role" class="help is-danger"></span>
+                    </div>
+                    <button type="submit" asp-page-handler="CreateAccount" class="button is-link">Create new account</button>
+                </form>
+
+            @if (Model.AccountCreated)
+            {
+                <hr />
+                <p>Account created</p>
+            }
+        </div>
+    </div>
+</div>
+
+
diff --git a/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml.cs b/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml.cs
new file mode 100644
index 00000000..59d055a1
--- /dev/null
+++ b/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml.cs
@@ -0,0 +1,106 @@
+using FactorioWebInterface.Data;
+using FactorioWebInterface.Services;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.RazorPages;
+using Microsoft.Extensions.Logging;
+using System.ComponentModel.DataAnnotations;
+using System.Linq;
+using System.Threading.Tasks;
+
+namespace FactorioWebInterface.Pages.Admin
+{
+    [Authorize(Roles = Constants.RootRole)]
+    public class CreateAccountModel : PageModel
+    {
+        private readonly SignInManager<ApplicationUser> _signInManager;
+        private readonly IWebAccountManager _accountManager;
+        private readonly ILogger<CreateAccountModel> _logger;
+
+        public CreateAccountModel(
+            IWebAccountManager accountManager,
+            SignInManager<ApplicationUser> signInManager,
+            ILogger<CreateAccountModel> logger
+            )
+        {
+            _accountManager = accountManager;
+            _signInManager = signInManager;
+            _logger = logger;
+        }
+
+        public bool AccountCreated { get; set; }
+
+        [BindProperty]
+        public InputModel Input { get; set; } = default!;
+
+        public string[] Roles { get; set; } = { Constants.AdminRole, Constants.RootRole };
+
+        public class InputModel
+        {
+            [Required]
+            [DataType(DataType.Text)]
+            [Display(Name = "Username")]
+            public string UserName { get; set; } = default!;
+
+            [Required]
+            [StringLength(100, ErrorMessage = "The {0} must be at least {2} and at max {1} characters long.", MinimumLength = 6)]
+            [DataType(DataType.Password)]
+            [Display(Name = "Password")]
+            public string Password { get; set; } = default!;
+
+            [DataType(DataType.Password)]
+            [Display(Name = "Confirm password")]
+            [Compare("Password", ErrorMessage = "The password and confirmation password do not match.")]
+            public string ConfirmPassword { get; set; } = default!;
+
+            [Display(Name = "Select role")]
+            public string Role { get; set; } = Constants.AdminRole;
+        }
+
+        public async Task<IActionResult> OnGetAsync(bool accountCreated)
+        {
+            var user = await _accountManager.GetUserAsync(User);
+
+            if (user == null || user.Suspended)
+            {
+                HttpContext.Session.SetString("returnUrl", "account");
+                return RedirectToPage("signIn");
+            }
+
+            AccountCreated = accountCreated;
+
+            return Page();
+        }
+
+        public async Task<IActionResult> OnPostCreateAccountAsync()
+        {
+            var user = await _accountManager.GetUserAsync(User);
+
+            if (user == null || user.Suspended)
+            {
+                HttpContext.Session.SetString("returnUrl", "account");
+                return RedirectToPage("signIn");
+            }
+
+            await _accountManager.CreateAccountAsync(Input.UserName, Input.Password, new string[]{Input.Role});
+
+            /*if (!result.Succeeded)
+            {
+                foreach (var error in result.Errors)
+                {
+                    ModelState.AddModelError(string.Empty, error.Description);
+                }
+
+                return Page();
+            }*/
+
+            //await _signInManager.SignInAsync(user, isPersistent: false);
+
+            //_logger.LogInformation($"User {user.UserName} created password");
+
+            return RedirectToPage(new { AccountCreated = true });
+        }
+    }
+}
\ No newline at end of file
diff --git a/FactorioWebInterface/Services/WebAccountManager.cs b/FactorioWebInterface/Services/WebAccountManager.cs
new file mode 100644
index 00000000..ca2e7fd0
--- /dev/null
+++ b/FactorioWebInterface/Services/WebAccountManager.cs
@@ -0,0 +1,97 @@
+using FactorioWebInterface.Data;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.Extensions.Logging;
+using System;
+using System.Security.Claims;
+using System.Threading.Tasks;
+
+namespace FactorioWebInterface.Services
+{
+    public interface IWebAccountManager
+    {
+        Task<ApplicationUser> FindByNameAsync(string username);
+        Task<ApplicationUser> FindByIdAsync(string id);
+        Task<ApplicationUser> GetUserAsync(ClaimsPrincipal user);
+        Task CreateAccountAsync(string username, string password, string[] roles);
+        Task ChangePasswordAsync(ApplicationUser user, string oldPassword, string newPassword);
+        Task AddRoleAsync(ApplicationUser user, string role);
+        Task RemoveRoleAsync(ApplicationUser user, string role);
+        Task SuspendAccountAsync(ApplicationUser user, bool suspended = true);
+    }
+
+    public class WebAccountManager : IWebAccountManager
+    {
+        private readonly SignInManager<ApplicationUser> _signInManager;
+        private readonly UserManager<ApplicationUser> _userManager;
+        private readonly ILogger<WebAccountManager> _logger;
+
+        public WebAccountManager(UserManager<ApplicationUser> userManager,
+            SignInManager<ApplicationUser> signInManager,
+            ILogger<WebAccountManager> logger)
+        {
+            _signInManager = signInManager;
+            _userManager = userManager;
+            _logger = logger;
+        }
+
+        public async Task AddRoleAsync(ApplicationUser user, string role)
+        {
+            await _userManager.AddToRoleAsync(user, role);
+            _logger.LogInformation("The user: " + user.UserName + " has been added to the role: " + role);
+        }
+
+        public async Task ChangePasswordAsync(ApplicationUser user, string oldPassword, string newPassword)
+        {
+            await _userManager.ChangePasswordAsync(user, oldPassword, newPassword);
+            _logger.LogInformation("The user: " + user.UserName + " has changed their password");
+        }
+
+        public async Task CreateAccountAsync(string username, string password, string[] roles)
+        {
+            var id = Guid.NewGuid().ToString();
+            var user = new ApplicationUser()
+            {
+                Id = id,
+                UserName = username
+            };
+
+            var result = await _userManager.CreateAsync(user, password);
+            if (!result.Succeeded)
+            {
+                _logger.LogError("User account couldn't be created");
+            }
+            foreach (string role in roles) {
+                await AddRoleAsync(user, role);
+            }
+            _logger.LogInformation("User account created with username: " + username + " and id: " + id);
+        }
+
+        public async Task<ApplicationUser> FindByIdAsync(string id)
+        {
+            return await _userManager.FindByIdAsync(id);
+        }
+
+        public async Task<ApplicationUser> FindByNameAsync(string username)
+        {
+            return await _userManager.FindByIdAsync(username);
+        }
+
+        public async Task<ApplicationUser> GetUserAsync(ClaimsPrincipal user)
+        {
+            return await _userManager.GetUserAsync(user);
+        }
+
+        public async Task RemoveRoleAsync(ApplicationUser user, string role)
+        {
+            await _userManager.RemoveFromRoleAsync(user, role);
+            _logger.LogInformation("The user: " + user.UserName + " has been removed from the role: " + role);
+        }
+
+        public async Task SuspendAccountAsync(ApplicationUser user, bool suspended = true)
+        {
+            user.Suspended = suspended;
+            await _userManager.UpdateAsync(user);
+            _logger.LogInformation("The user: " + user.UserName + " has been suspended");
+        }
+    }
+}
diff --git a/FactorioWebInterface/Startup.cs b/FactorioWebInterface/Startup.cs
index 8bfc1932..3badd152 100644
--- a/FactorioWebInterface/Startup.cs
+++ b/FactorioWebInterface/Startup.cs
@@ -110,6 +110,7 @@ public void ConfigureServices(IServiceCollection services)
             services.AddSingleton<BanHubEventHandlerService, BanHubEventHandlerService>();
             services.AddSingleton<FactorioAdminServiceEventHandlerService, FactorioAdminServiceEventHandlerService>();
             services.AddSingleton<IFactorioModPortalService, FactorioModPortalService>();
+            services.AddScoped<IWebAccountManager, WebAccountManager>();
 
             services.AddRouting(o => o.LowercaseUrls = true);
 

From 97cd132d1343116b8ca4c81b3ce3eba10aff3667 Mon Sep 17 00:00:00 2001
From: SimonFlapse <signup@simonflarup.dk>
Date: Mon, 1 Jun 2020 15:25:00 +0200
Subject: [PATCH 2/5] Added navbar link to create account for root users

---
 .../Pages/Admin/_AdminNavBarPartial.cshtml               | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/FactorioWebInterface/Pages/Admin/_AdminNavBarPartial.cshtml b/FactorioWebInterface/Pages/Admin/_AdminNavBarPartial.cshtml
index 73fce7c1..658c9ff7 100644
--- a/FactorioWebInterface/Pages/Admin/_AdminNavBarPartial.cshtml
+++ b/FactorioWebInterface/Pages/Admin/_AdminNavBarPartial.cshtml
@@ -1,9 +1,9 @@
 @using Microsoft.AspNetCore.Identity;
 @using FactorioWebInterface.Data;
-@inject UserManager<ApplicationUser> userManger;
+@inject UserManager<ApplicationUser> userManager;
 
 @{
-    var user = await userManger.GetUserAsync(User);
+    var user = await userManager.GetUserAsync(User);
 }
 
 <nav class="navbar is-fixed-top has-shadow" role="navigation" aria-label="main navigation">
@@ -45,6 +45,11 @@
                             else
                             {
                                 <a class="navbar-item @(page == "/admin/account" ? "has-text-info" : "")" asp-page="/Admin/Account" title="Account">@user.UserName</a>
+                                if (await userManager.IsInRoleAsync(user, Constants.RootRole))
+                                {
+                                    <a class="navbar-item @(page == "/admin/account" ? "has-text-info" : "")" asp-page="/Admin/CreateAccount" title="Create New Account">New Account</a>
+                                }
+
                                 <a class="navbar-item @(page == "/admin/signout" ? "has-text-info" : "")" asp-page="/Admin/SignOut" title="Sign out">Sign out</a>
                             }
                         }

From 86805a63337d0f6e606721da7bdcee9885fa42b9 Mon Sep 17 00:00:00 2001
From: SimonFlapse <signup@simonflarup.dk>
Date: Tue, 2 Jun 2020 11:33:30 +0200
Subject: [PATCH 3/5] Added IdentityResult as return from WebAccountManager

---
 .../Pages/Admin/CreateAccount.cshtml.cs       |  38 +++---
 .../Services/WebAccountManager.cs             | 111 ++++++++++++++----
 2 files changed, 111 insertions(+), 38 deletions(-)

diff --git a/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml.cs b/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml.cs
index 59d055a1..51efc71b 100644
--- a/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml.cs
+++ b/FactorioWebInterface/Pages/Admin/CreateAccount.cshtml.cs
@@ -12,21 +12,18 @@
 
 namespace FactorioWebInterface.Pages.Admin
 {
-    [Authorize(Roles = Constants.RootRole)]
     public class CreateAccountModel : PageModel
     {
-        private readonly SignInManager<ApplicationUser> _signInManager;
         private readonly IWebAccountManager _accountManager;
         private readonly ILogger<CreateAccountModel> _logger;
+        private const string sessionUrl = "createaccount";
 
         public CreateAccountModel(
             IWebAccountManager accountManager,
-            SignInManager<ApplicationUser> signInManager,
             ILogger<CreateAccountModel> logger
             )
         {
             _accountManager = accountManager;
-            _signInManager = signInManager;
             _logger = logger;
         }
 
@@ -63,10 +60,9 @@ public async Task<IActionResult> OnGetAsync(bool accountCreated)
         {
             var user = await _accountManager.GetUserAsync(User);
 
-            if (user == null || user.Suspended)
+            if (!await IsAuthorized(user))
             {
-                HttpContext.Session.SetString("returnUrl", "account");
-                return RedirectToPage("signIn");
+                return UnauthorizedRedirect();
             }
 
             AccountCreated = accountCreated;
@@ -78,15 +74,14 @@ public async Task<IActionResult> OnPostCreateAccountAsync()
         {
             var user = await _accountManager.GetUserAsync(User);
 
-            if (user == null || user.Suspended)
+            if (!await IsAuthorized(user))
             {
-                HttpContext.Session.SetString("returnUrl", "account");
-                return RedirectToPage("signIn");
+                return UnauthorizedRedirect();
             }
 
-            await _accountManager.CreateAccountAsync(Input.UserName, Input.Password, new string[]{Input.Role});
+            var result = await _accountManager.CreateAccountAsync(Input.UserName, Input.Password, new string[]{Input.Role});
 
-            /*if (!result.Succeeded)
+            if (!result.Succeeded)
             {
                 foreach (var error in result.Errors)
                 {
@@ -94,13 +89,24 @@ public async Task<IActionResult> OnPostCreateAccountAsync()
                 }
 
                 return Page();
-            }*/
+            }
 
-            //await _signInManager.SignInAsync(user, isPersistent: false);
+            return RedirectToPage(new { AccountCreated = true });
+        }
 
-            //_logger.LogInformation($"User {user.UserName} created password");
+        private async Task<bool> IsAuthorized(ApplicationUser user)
+        {
+            if (user == null || user.Suspended || !await _accountManager.IsInRoleAsync(user, Constants.RootRole))
+            {
+                return false;
+            }
+            return true;
+        }
 
-            return RedirectToPage(new { AccountCreated = true });
+        private IActionResult UnauthorizedRedirect()
+        {
+            HttpContext.Session.SetString("returnUrl", sessionUrl);
+            return RedirectToPage("signIn");
         }
     }
 }
\ No newline at end of file
diff --git a/FactorioWebInterface/Services/WebAccountManager.cs b/FactorioWebInterface/Services/WebAccountManager.cs
index ca2e7fd0..219117fb 100644
--- a/FactorioWebInterface/Services/WebAccountManager.cs
+++ b/FactorioWebInterface/Services/WebAccountManager.cs
@@ -12,11 +12,15 @@ public interface IWebAccountManager
         Task<ApplicationUser> FindByNameAsync(string username);
         Task<ApplicationUser> FindByIdAsync(string id);
         Task<ApplicationUser> GetUserAsync(ClaimsPrincipal user);
-        Task CreateAccountAsync(string username, string password, string[] roles);
-        Task ChangePasswordAsync(ApplicationUser user, string oldPassword, string newPassword);
-        Task AddRoleAsync(ApplicationUser user, string role);
-        Task RemoveRoleAsync(ApplicationUser user, string role);
-        Task SuspendAccountAsync(ApplicationUser user, bool suspended = true);
+        Task<bool> IsInRoleAsync(ApplicationUser user, string role);
+        Task<IdentityResult> CreateAccountAsync(string username, string password, string[] roles);
+        Task<IdentityResult> ChangePasswordAsync(ApplicationUser user, string oldPassword, string newPassword);
+        Task<IdentityResult> AddRoleAsync(ApplicationUser user, string role);
+        Task<IdentityResult> AddRolesAsync(ApplicationUser user, string[] roles);
+        Task<IdentityResult> RemoveRoleAsync(ApplicationUser user, string role);
+        Task<IdentityResult> SuspendAccountAsync(ApplicationUser user, bool suspended = true);
+        Task<IdentityResult> DeleteAccountAsync(ApplicationUser user);
+        Task<IdentityResult> ChangeUsernameAsync(ApplicationUser user, string username);
     }
 
     public class WebAccountManager : IWebAccountManager
@@ -34,19 +38,37 @@ public WebAccountManager(UserManager<ApplicationUser> userManager,
             _logger = logger;
         }
 
-        public async Task AddRoleAsync(ApplicationUser user, string role)
+        public async Task<IdentityResult> AddRoleAsync(ApplicationUser user, string role)
         {
-            await _userManager.AddToRoleAsync(user, role);
-            _logger.LogInformation("The user: " + user.UserName + " has been added to the role: " + role);
+            var result = await _userManager.AddToRoleAsync(user, role);
+            if (result.Succeeded)
+            {
+                _logger.LogInformation("{username} has been added to the role: {role}", user.UserName, role);
+            }
+            return result;
+        }
+
+        public async Task<IdentityResult> AddRolesAsync(ApplicationUser user, string[] roles)
+        {
+            var result = await _userManager.AddToRolesAsync(user, roles);
+            if (result.Succeeded)
+            {
+                _logger.LogInformation("{username} has been added to {roles}", user.UserName, roles);
+            }
+            return result;
         }
 
-        public async Task ChangePasswordAsync(ApplicationUser user, string oldPassword, string newPassword)
+        public async Task<IdentityResult> ChangePasswordAsync(ApplicationUser user, string oldPassword, string newPassword)
         {
-            await _userManager.ChangePasswordAsync(user, oldPassword, newPassword);
-            _logger.LogInformation("The user: " + user.UserName + " has changed their password");
+            var result = await _userManager.ChangePasswordAsync(user, oldPassword, newPassword);
+            if (result.Succeeded)
+            {
+                _logger.LogInformation("{username} has changed their password", user.UserName);
+            }
+            return result;
         }
 
-        public async Task CreateAccountAsync(string username, string password, string[] roles)
+        public async Task<IdentityResult> CreateAccountAsync(string username, string password, string[] roles)
         {
             var id = Guid.NewGuid().ToString();
             var user = new ApplicationUser()
@@ -58,12 +80,24 @@ public async Task CreateAccountAsync(string username, string password, string[]
             var result = await _userManager.CreateAsync(user, password);
             if (!result.Succeeded)
             {
-                _logger.LogError("User account couldn't be created");
+                await CancelAccountCreationAsync(user);
+                return result;
             }
-            foreach (string role in roles) {
-                await AddRoleAsync(user, role);
+
+            result = await AddRolesAsync(user, roles);
+            if (!result.Succeeded)
+            {
+                await CancelAccountCreationAsync(user);
+                return result;
             }
-            _logger.LogInformation("User account created with username: " + username + " and id: " + id);
+            _logger.LogInformation("User account created with username: {username} and id: {id}", username, id);
+            return result;
+        }
+
+        private async Task<IdentityResult> CancelAccountCreationAsync(ApplicationUser user)
+        {
+            _logger.LogError("User account couldn't be created");
+            return await DeleteAccountAsync(user);
         }
 
         public async Task<ApplicationUser> FindByIdAsync(string id)
@@ -81,17 +115,50 @@ public async Task<ApplicationUser> GetUserAsync(ClaimsPrincipal user)
             return await _userManager.GetUserAsync(user);
         }
 
-        public async Task RemoveRoleAsync(ApplicationUser user, string role)
+        public async Task<bool> IsInRoleAsync(ApplicationUser user, string role)
+        {
+            return await _userManager.IsInRoleAsync(user, role);
+        }
+
+        public async Task<IdentityResult> RemoveRoleAsync(ApplicationUser user, string role)
         {
-            await _userManager.RemoveFromRoleAsync(user, role);
-            _logger.LogInformation("The user: " + user.UserName + " has been removed from the role: " + role);
+            var result = await _userManager.RemoveFromRoleAsync(user, role);
+            if (result.Succeeded)
+            {
+                _logger.LogInformation("{username} has been removed from {role}", user.UserName, role);
+            }
+            return result;
         }
 
-        public async Task SuspendAccountAsync(ApplicationUser user, bool suspended = true)
+        public async Task<IdentityResult> SuspendAccountAsync(ApplicationUser user, bool suspended = true)
         {
             user.Suspended = suspended;
-            await _userManager.UpdateAsync(user);
-            _logger.LogInformation("The user: " + user.UserName + " has been suspended");
+            var result = await _userManager.UpdateAsync(user);
+            if (result.Succeeded)
+            {
+                _logger.LogInformation("{username} has been suspended", user.UserName);
+            }
+            return result;
+        }
+
+        public async Task<IdentityResult> DeleteAccountAsync(ApplicationUser user)
+        {
+            var result = await _userManager.DeleteAsync(user);
+            if (result.Succeeded)
+            {
+                _logger.LogWarning("{username} has been deleted", user.UserName);
+            }
+            return result;
+        }
+
+        public async Task<IdentityResult> ChangeUsernameAsync(ApplicationUser user, string username)
+        {
+            var result = await _userManager.SetUserNameAsync(user, username);
+            if (result.Succeeded)
+            {
+                _logger.LogInformation("{username} is now known as {newusername}", user.UserName, username);
+            }
+            return result;
         }
     }
 }

From d5169e3d9b67a0c1fb934117f283b1b115aa416f Mon Sep 17 00:00:00 2001
From: SimonFlapse <signup@simonflarup.dk>
Date: Fri, 5 Jun 2020 00:39:31 +0200
Subject: [PATCH 4/5] WIP Initial account management page

---
 .../Pages/Admin/AccountOverview.cshtml        |  53 ++++++
 .../Pages/Admin/AccountOverview.cshtml.cs     | 174 ++++++++++++++++++
 .../Pages/Admin/ManageAccounts.cshtml         |  42 +++++
 .../Pages/Admin/ManageAccounts.cshtml.cs      |  30 +++
 .../Services/WebAccountManager.cs             |   8 +
 5 files changed, 307 insertions(+)
 create mode 100644 FactorioWebInterface/Pages/Admin/AccountOverview.cshtml
 create mode 100644 FactorioWebInterface/Pages/Admin/AccountOverview.cshtml.cs
 create mode 100644 FactorioWebInterface/Pages/Admin/ManageAccounts.cshtml
 create mode 100644 FactorioWebInterface/Pages/Admin/ManageAccounts.cshtml.cs

diff --git a/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml b/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml
new file mode 100644
index 00000000..224150e6
--- /dev/null
+++ b/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml
@@ -0,0 +1,53 @@
+@page
+@model FactorioWebInterface.Pages.Admin.AccountOverviewModel
+@{
+    ViewData["Title"] = "Account Overview";
+}
+
+@section Scripts {
+    @await Html.PartialAsync("_ValidationScriptsPartial")
+}
+
+<div class="container">
+
+    <h2 class="title is-2">Account Overview</h2>
+
+    <div class="columns">
+        <div class="column is-4">
+            <form method="post">
+                <h4 class="title is-4">Create User</h4>
+                <hr />
+                <div asp-validation-summary="All" class="has-text-danger"></div>
+                <div class="field">
+                    <label asp-for="Input.UserName" class="label"></label>
+                    <div class="control">
+                        <input asp-for="Input.UserName" class="input" disabled />
+                    </div>
+                    <span asp-validation-for="Input.UserName" class="help is-danger"></span>
+                </div>
+                <div class="field">
+                    <label asp-for="Input.Roles" class="label"></label>
+                    <div class="control">
+                        @foreach (var item in Model.AccountRoles)
+                        {
+                            <input asp-for="Input.Roles" type="checkbox" value="@item" disabled /> @item
+                        }
+                    </div>
+                    <span asp-validation-for="Input.Roles" class="help is-danger"></span>
+                </div>
+                <button type="submit" asp-page-handler="UpdateAccount" class="button is-link">Update account</button>
+            </form>
+            <form method="post">
+                <button type ="submit" asp-page-handler="ResetPassword" class="button is-link">Reset password</button>
+            </form>
+
+            @if (Model.PasswordUpdated)
+            {
+                <hr />
+                <p>Password updated</p>
+            }
+        </div>
+    </div>
+</div>
+
+
diff --git a/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml.cs b/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml.cs
new file mode 100644
index 00000000..bd56cacd
--- /dev/null
+++ b/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml.cs
@@ -0,0 +1,174 @@
+using FactorioWebInterface.Data;
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.RazorPages;
+using Microsoft.Extensions.Logging;
+using System.Collections.Generic;
+using System.ComponentModel.DataAnnotations;
+using System.Linq;
+using System.Threading.Tasks;
+
+namespace FactorioWebInterface.Pages.Admin
+{
+    //[Authorize(Roles = Constants.AdminRole + Constants.RootRole) ]
+    public class AccountOverviewModel : PageModel
+    {
+        private readonly SignInManager<ApplicationUser> _signInManager;
+        private readonly UserManager<ApplicationUser> _userManager;
+        private readonly ILogger<AccountModel> _logger;
+
+        public AccountOverviewModel(
+            UserManager<ApplicationUser> userManager,
+            SignInManager<ApplicationUser> signInManager,
+            ILogger<AccountModel> logger
+            )
+        {
+            _userManager = userManager;
+            _signInManager = signInManager;
+            _logger = logger;
+        }
+
+        public string UserName { get; set; } = default!;
+        public bool HasPassword { get; set; }
+        public bool PasswordUpdated { get; set; }
+
+        public string[] AccountRoles { get; set; } = { Constants.AdminRole, Constants.RootRole };
+
+        [BindProperty]
+        public InputModel Input { get; set; } = default!;
+
+        public class InputModel
+        {
+            [DataType(DataType.Text)]
+            [Display(Name = "Username")]
+            public string UserName { get; set; } = default!;
+
+            [Display(Name = "Select role")]
+            public List<string> Roles { get; set; } = new List<string>{Constants.AdminRole};
+        }
+
+        public async Task<IActionResult> OnGetAsync(bool passwordUpdated)
+        {
+            var user = await _userManager.GetUserAsync(User);
+
+            if (user == null || user.Suspended)
+            {
+                HttpContext.Session.SetString("returnUrl", "account");
+                return RedirectToPage("signIn");
+            }
+
+            UserName = user.UserName;
+
+            HasPassword = await _userManager.HasPasswordAsync(user);
+            PasswordUpdated = passwordUpdated;
+
+            return Page();
+        }
+
+        public async Task<IActionResult> OnPostCreatePasswordAsync()
+        {
+            var user = await _userManager.GetUserAsync(User);
+
+            if (user == null || user.Suspended)
+            {
+                HttpContext.Session.SetString("returnUrl", "account");
+                return RedirectToPage("signIn");
+            }
+
+            HasPassword = await _userManager.HasPasswordAsync(user);
+
+            if (!ModelState.IsValid)
+            {
+                return Page();
+            }
+
+            if (HasPassword)
+            {
+                return Page();
+            }
+
+            /*var result = await _userManager.AddPasswordAsync(user, Input.Password);
+
+            if (!result.Succeeded)
+            {
+                foreach (var error in result.Errors)
+                {
+                    ModelState.AddModelError(string.Empty, error.Description);
+                }
+
+                return Page();
+            }*/
+
+            await _signInManager.SignInAsync(user, isPersistent: false);
+
+            _logger.LogInformation($"User {user.UserName} created password");
+
+            return RedirectToPage(new { PasswordUpdated = true });
+        }
+
+        public async Task<IActionResult> OnPostAsync(string userId)
+        {
+            var user = await _userManager.GetUserAsync(User);
+            if (user == null || user.Suspended)
+            {
+                HttpContext.Session.SetString("returnUrl", "accountoverview");
+                return RedirectToPage("signIn");
+            }
+
+            var managingUser = await _userManager.FindByIdAsync(userId);
+
+            UserName = managingUser.UserName;
+            await PopulateInputModel(managingUser);
+            return Page();
+        }
+
+        private async Task PopulateInputModel(ApplicationUser user)
+        {
+            Input.UserName = user.UserName;
+            var test = await _userManager.GetRolesAsync(user);
+            Input.Roles = test.ToList();
+        }
+
+        public async Task<IActionResult> OnPostUpdatePasswordAsync()
+        {
+            var user = await _userManager.GetUserAsync(User);
+
+            if (user == null || user.Suspended)
+            {
+                HttpContext.Session.SetString("returnUrl", "account");
+                return RedirectToPage("signIn");
+            }
+
+            HasPassword = await _userManager.HasPasswordAsync(user);
+
+            if (!ModelState.IsValid)
+            {
+                return Page();
+            }
+
+            if (!HasPassword)
+            {
+                return Page();
+            }
+
+            /*var result = await _userManager.ChangePasswordAsync(user, Input.CurrentPassword, Input.Password);
+
+            if (!result.Succeeded)
+            {
+                foreach (var error in result.Errors)
+                {
+                    ModelState.AddModelError(string.Empty, error.Description);
+                }
+
+                return Page();
+            }*/
+
+            await _signInManager.SignInAsync(user, isPersistent: false);
+
+            _logger.LogInformation($"User {user.UserName} changed password");
+
+            return RedirectToPage(new { PasswordUpdated = true });
+        }
+    }
+}
\ No newline at end of file
diff --git a/FactorioWebInterface/Pages/Admin/ManageAccounts.cshtml b/FactorioWebInterface/Pages/Admin/ManageAccounts.cshtml
new file mode 100644
index 00000000..da7db485
--- /dev/null
+++ b/FactorioWebInterface/Pages/Admin/ManageAccounts.cshtml
@@ -0,0 +1,42 @@
+@page
+@model FactorioWebInterface.Pages.Admin.ManageAccountsModel
+@using FactorioWebInterface.Data;
+@{
+    ViewData["Title"] = "Account managing";
+}
+
+<div class="container">
+
+    <section class="section">
+        <h2 class="title is-2">Account manager</h2>
+    </section>
+
+    <section class="section">
+        <h2 class="title is-3">Account list</h2>
+        <table id="adminsTable" class="table is-bordered is-striped is-hoverable">
+            <thead>
+                <tr>
+                    <th>Name</th>
+                    <th>Edit</th>
+                </tr>
+            </thead>
+            <tbody>
+                @{
+                    foreach (ApplicationUser user in Model.getUsers())
+                    {
+                        <tr>
+                            <td>@user.UserName</td>
+                            <td>
+                                <form method="post">
+                                    <input type="hidden" name="userId" id="userId" value="@user.Id"/>
+                                    <button type="submit" asp-page="AccountOverview" class="button is-link">Edit</button>
+                                </form>
+                            </td>
+                        </tr>
+                    }
+                }
+            </tbody>
+        </table>
+    </section>
+</div>
+
diff --git a/FactorioWebInterface/Pages/Admin/ManageAccounts.cshtml.cs b/FactorioWebInterface/Pages/Admin/ManageAccounts.cshtml.cs
new file mode 100644
index 00000000..5b656f88
--- /dev/null
+++ b/FactorioWebInterface/Pages/Admin/ManageAccounts.cshtml.cs
@@ -0,0 +1,30 @@
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Threading.Tasks;
+using FactorioWebInterface.Data;
+using FactorioWebInterface.Services;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.RazorPages;
+
+namespace FactorioWebInterface.Pages.Admin
+{
+    public class ManageAccountsModel : PageModel
+    {
+
+        private readonly IWebAccountManager _accountManager;
+        public ManageAccountsModel(IWebAccountManager accountManager)
+        {
+            _accountManager = accountManager;
+        }
+
+        public List<ApplicationUser> getUsers()
+        {
+            return _accountManager.GetUsers();
+        }
+
+        public void OnGet()
+        {
+        }
+    }
+}
diff --git a/FactorioWebInterface/Services/WebAccountManager.cs b/FactorioWebInterface/Services/WebAccountManager.cs
index 219117fb..df29bbd8 100644
--- a/FactorioWebInterface/Services/WebAccountManager.cs
+++ b/FactorioWebInterface/Services/WebAccountManager.cs
@@ -2,6 +2,8 @@
 using Microsoft.AspNetCore.Identity;
 using Microsoft.Extensions.Logging;
 using System;
+using System.Collections.Generic;
+using System.Linq;
 using System.Security.Claims;
 using System.Threading.Tasks;
 
@@ -12,6 +14,7 @@ public interface IWebAccountManager
         Task<ApplicationUser> FindByNameAsync(string username);
         Task<ApplicationUser> FindByIdAsync(string id);
         Task<ApplicationUser> GetUserAsync(ClaimsPrincipal user);
+        List<ApplicationUser> GetUsers();
         Task<bool> IsInRoleAsync(ApplicationUser user, string role);
         Task<IdentityResult> CreateAccountAsync(string username, string password, string[] roles);
         Task<IdentityResult> ChangePasswordAsync(ApplicationUser user, string oldPassword, string newPassword);
@@ -115,6 +118,11 @@ public async Task<ApplicationUser> GetUserAsync(ClaimsPrincipal user)
             return await _userManager.GetUserAsync(user);
         }
 
+        public List<ApplicationUser> GetUsers()
+        {
+            return _userManager.Users.ToList();
+        }
+
         public async Task<bool> IsInRoleAsync(ApplicationUser user, string role)
         {
             return await _userManager.IsInRoleAsync(user, role);

From c577ccf4760e45470559b05e2b7bd1998493ada4 Mon Sep 17 00:00:00 2001
From: SimonFlapse <signup@simonflarup.dk>
Date: Fri, 5 Jun 2020 12:11:47 +0200
Subject: [PATCH 5/5] WIP asp actions for UpdateAccount and ResetPassword

---
 .../Pages/Admin/AccountOverview.cshtml        |  17 +-
 .../Pages/Admin/AccountOverview.cshtml.cs     | 168 ++++++++++--------
 .../Services/WebAccountManager.cs             |  20 +++
 .../WebAccountManagerHelper.cs                |  32 ++++
 4 files changed, 159 insertions(+), 78 deletions(-)
 create mode 100644 FactorioWebInterfaceTests/Services/WebAccountManagerTests/WebAccountManagerHelper.cs

diff --git a/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml b/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml
index 224150e6..f6a277c1 100644
--- a/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml
+++ b/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml
@@ -21,30 +21,35 @@
                 <div class="field">
                     <label asp-for="Input.UserName" class="label"></label>
                     <div class="control">
-                        <input asp-for="Input.UserName" class="input" disabled />
+                        <input asp-for="Input.UserName" class="input" />
                     </div>
                     <span asp-validation-for="Input.UserName" class="help is-danger"></span>
                 </div>
                 <div class="field">
                     <label asp-for="Input.Roles" class="label"></label>
                     <div class="control">
-                        @foreach (var item in Model.AccountRoles)
+                        @for (var i = 0; i < Model.Input.Roles.Count(); i++)
                         {
-                            <input asp-for="Input.Roles" type="checkbox" value="@item" disabled /> @item
+                            <input asp-for="Input.Roles[i].IsSelected" type="checkbox" checked="@await Model.IsInRole(Model.Input.User, Model.Input.Roles[i].Role)" /> @Model.Input.Roles[i].Role<br />
                         }
                     </div>
                     <span asp-validation-for="Input.Roles" class="help is-danger"></span>
                 </div>
                 <button type="submit" asp-page-handler="UpdateAccount" class="button is-link">Update account</button>
             </form>
+            <hr />
             <form method="post">
-                <button type ="submit" asp-page-handler="ResetPassword" class="button is-link">Reset password</button>
+                <button type="submit" asp-page-handler="ResetPassword" class="button is-link">Reset password</button>
             </form>
 
-            @if (Model.PasswordUpdated)
+            @if (Model.GeneratedPassword != null && Model.GeneratedPassword.Length > 0)
             {
                 <hr />
-                <p>Password updated</p>
+                <p>New password generated:</p>
+                <br />
+                <p>@Model.GeneratedPassword</p>
+                <br />
+                <p>Please advice recipient to change password ASAP</p>
             }
         </div>
     </div>
diff --git a/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml.cs b/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml.cs
index bd56cacd..9bafae66 100644
--- a/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml.cs
+++ b/FactorioWebInterface/Pages/Admin/AccountOverview.cshtml.cs
@@ -1,4 +1,5 @@
 using FactorioWebInterface.Data;
+using FactorioWebInterface.Services;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Identity;
 using Microsoft.AspNetCore.Mvc;
@@ -15,60 +16,66 @@ namespace FactorioWebInterface.Pages.Admin
     public class AccountOverviewModel : PageModel
     {
         private readonly SignInManager<ApplicationUser> _signInManager;
-        private readonly UserManager<ApplicationUser> _userManager;
+        private readonly IWebAccountManager _accountManager;
         private readonly ILogger<AccountModel> _logger;
 
         public AccountOverviewModel(
-            UserManager<ApplicationUser> userManager,
+            IWebAccountManager accountManager,
             SignInManager<ApplicationUser> signInManager,
             ILogger<AccountModel> logger
             )
         {
-            _userManager = userManager;
+            _accountManager = accountManager;
             _signInManager = signInManager;
             _logger = logger;
         }
 
-        public string UserName { get; set; } = default!;
-        public bool HasPassword { get; set; }
-        public bool PasswordUpdated { get; set; }
+        public ApplicationUser ManagingUser { get; set; }
+        public string? GeneratedPassword { get; set; }
 
-        public string[] AccountRoles { get; set; } = { Constants.AdminRole, Constants.RootRole };
+        public class AccountRole
+        {
+            public string Role { get; set; }
+
+            public bool IsSelected { get; set; } = false;
+        }
 
         [BindProperty]
         public InputModel Input { get; set; } = default!;
 
         public class InputModel
         {
+            public ApplicationUser User { get; set; } = default!;
+
             [DataType(DataType.Text)]
             [Display(Name = "Username")]
             public string UserName { get; set; } = default!;
 
             [Display(Name = "Select role")]
-            public List<string> Roles { get; set; } = new List<string>{Constants.AdminRole};
-        }
-
-        public async Task<IActionResult> OnGetAsync(bool passwordUpdated)
-        {
-            var user = await _userManager.GetUserAsync(User);
+            public List<AccountRole> Roles { get; } = GenerateAccountRoleList();
 
-            if (user == null || user.Suspended)
+            private static List<AccountRole> GenerateAccountRoleList()
             {
-                HttpContext.Session.SetString("returnUrl", "account");
-                return RedirectToPage("signIn");
+                var adminRole = new AccountRole
+                {
+                    Role = Constants.AdminRole
+                };
+                var rootRole = new AccountRole
+                {
+                    Role = Constants.RootRole
+                };
+                return new List<AccountRole>() { adminRole, rootRole };
             }
+        }
 
-            UserName = user.UserName;
-
-            HasPassword = await _userManager.HasPasswordAsync(user);
-            PasswordUpdated = passwordUpdated;
-
-            return Page();
+        public async Task<bool> IsInRole(ApplicationUser user, string role)
+        {
+            return await _accountManager.IsInRoleAsync(user, role);
         }
 
-        public async Task<IActionResult> OnPostCreatePasswordAsync()
+        public async Task<IActionResult> OnGetAsync(string userId, string generatedPassword)
         {
-            var user = await _userManager.GetUserAsync(User);
+            var user = await _accountManager.GetUserAsync(User);
 
             if (user == null || user.Suspended)
             {
@@ -76,63 +83,37 @@ public async Task<IActionResult> OnPostCreatePasswordAsync()
                 return RedirectToPage("signIn");
             }
 
-            HasPassword = await _userManager.HasPasswordAsync(user);
-
-            if (!ModelState.IsValid)
-            {
-                return Page();
-            }
+            ManagingUser = await _accountManager.FindByIdAsync(userId);
 
-            if (HasPassword)
-            {
-                return Page();
-            }
-
-            /*var result = await _userManager.AddPasswordAsync(user, Input.Password);
-
-            if (!result.Succeeded)
-            {
-                foreach (var error in result.Errors)
-                {
-                    ModelState.AddModelError(string.Empty, error.Description);
-                }
+            GeneratedPassword = generatedPassword;
 
-                return Page();
-            }*/
-
-            await _signInManager.SignInAsync(user, isPersistent: false);
-
-            _logger.LogInformation($"User {user.UserName} created password");
-
-            return RedirectToPage(new { PasswordUpdated = true });
+            return Page();
         }
 
         public async Task<IActionResult> OnPostAsync(string userId)
         {
-            var user = await _userManager.GetUserAsync(User);
+            var user = await _accountManager.GetUserAsync(User);
             if (user == null || user.Suspended)
             {
                 HttpContext.Session.SetString("returnUrl", "accountoverview");
                 return RedirectToPage("signIn");
             }
 
-            var managingUser = await _userManager.FindByIdAsync(userId);
+            ManagingUser = await _accountManager.FindByIdAsync(userId);
 
-            UserName = managingUser.UserName;
-            await PopulateInputModel(managingUser);
             return Page();
         }
 
-        private async Task PopulateInputModel(ApplicationUser user)
+        private void PopulateInputModel(ApplicationUser user)
         {
+            Input.User = user;
             Input.UserName = user.UserName;
-            var test = await _userManager.GetRolesAsync(user);
-            Input.Roles = test.ToList();
         }
 
-        public async Task<IActionResult> OnPostUpdatePasswordAsync()
+        public async Task<IActionResult> OnPostUpdateAccountAsync()
         {
-            var user = await _userManager.GetUserAsync(User);
+
+            var user = await _accountManager.GetUserAsync(User);
 
             if (user == null || user.Suspended)
             {
@@ -140,35 +121,78 @@ public async Task<IActionResult> OnPostUpdatePasswordAsync()
                 return RedirectToPage("signIn");
             }
 
-            HasPassword = await _userManager.HasPasswordAsync(user);
-
             if (!ModelState.IsValid)
             {
                 return Page();
             }
 
-            if (!HasPassword)
+            if (Input.UserName != Input.User.UserName)
             {
-                return Page();
+                await _accountManager.ChangeUsernameAsync(Input.User, Input.UserName);
             }
+            foreach (var role in Input.Roles)
+            {
+                var inRole = await _accountManager.IsInRoleAsync(Input.User, role.Role);
+                if (role.IsSelected && inRole)
+                {
+                    break;
+                }
 
-            /*var result = await _userManager.ChangePasswordAsync(user, Input.CurrentPassword, Input.Password);
+                if (role.IsSelected && !inRole)
+                {
+                    var result =  await _accountManager.AddRoleAsync(Input.User, role.Role);
+                    if (!result.Succeeded)
+                    {
+                        foreach (var error in result.Errors)
+                        {
+                            ModelState.AddModelError(string.Empty, error.Description);
+                        }
+
+                        return Page();
+                    }
+                    break;
+                }
 
-            if (!result.Succeeded)
-            {
-                foreach (var error in result.Errors)
+                if (!role.IsSelected && inRole)
                 {
-                    ModelState.AddModelError(string.Empty, error.Description);
+                    var result = await _accountManager.RemoveRoleAsync(Input.User, role.Role);
+                    if (!result.Succeeded)
+                    {
+                        foreach (var error in result.Errors)
+                        {
+                            ModelState.AddModelError(string.Empty, error.Description);
+                        }
+
+                        return Page();
+                    }
                 }
+            }
 
+            _logger.LogInformation($"The account {UserName} has been updated");
+
+            return RedirectToPage(new {UserId = Input.User.Id, PasswordReset = false});
+        }
+
+        public async Task<IActionResult> OnPostResetPasswordAsync()
+        {
+            var user = await _accountManager.GetUserAsync(User);
+
+            if (user == null || user.Suspended)
+            {
+                HttpContext.Session.SetString("returnUrl", "account");
+                return RedirectToPage("signIn");
+            }
+
+            if (!ModelState.IsValid)
+            {
                 return Page();
-            }*/
+            }
 
-            await _signInManager.SignInAsync(user, isPersistent: false);
+            var password = await _accountManager.ResetPasswordAsync(user);
 
             _logger.LogInformation($"User {user.UserName} changed password");
 
-            return RedirectToPage(new { PasswordUpdated = true });
+            return RedirectToPage(new { Password = true });
         }
     }
 }
\ No newline at end of file
diff --git a/FactorioWebInterface/Services/WebAccountManager.cs b/FactorioWebInterface/Services/WebAccountManager.cs
index df29bbd8..0c6718e9 100644
--- a/FactorioWebInterface/Services/WebAccountManager.cs
+++ b/FactorioWebInterface/Services/WebAccountManager.cs
@@ -18,12 +18,14 @@ public interface IWebAccountManager
         Task<bool> IsInRoleAsync(ApplicationUser user, string role);
         Task<IdentityResult> CreateAccountAsync(string username, string password, string[] roles);
         Task<IdentityResult> ChangePasswordAsync(ApplicationUser user, string oldPassword, string newPassword);
+        Task<IList<string>> GetRolesAsync(ApplicationUser user);
         Task<IdentityResult> AddRoleAsync(ApplicationUser user, string role);
         Task<IdentityResult> AddRolesAsync(ApplicationUser user, string[] roles);
         Task<IdentityResult> RemoveRoleAsync(ApplicationUser user, string role);
         Task<IdentityResult> SuspendAccountAsync(ApplicationUser user, bool suspended = true);
         Task<IdentityResult> DeleteAccountAsync(ApplicationUser user);
         Task<IdentityResult> ChangeUsernameAsync(ApplicationUser user, string username);
+        Task<string> ResetPasswordAsync(ApplicationUser user);
     }
 
     public class WebAccountManager : IWebAccountManager
@@ -168,5 +170,23 @@ public async Task<IdentityResult> ChangeUsernameAsync(ApplicationUser user, stri
             }
             return result;
         }
+
+        public async Task<IList<string>> GetRolesAsync(ApplicationUser user)
+        {
+            return await _userManager.GetRolesAsync(user);
+        }
+
+        //Todo: Password reset page, and sending this token to the user. E.g via email or copy-pasted
+        public async Task<string> ResetPasswordAsync(ApplicationUser user)
+        {
+            var resetToken = await _userManager.GeneratePasswordResetTokenAsync(user);
+            var generatedPassword = Guid.NewGuid().ToString();
+            var result = await _userManager.ResetPasswordAsync(user, resetToken, generatedPassword);
+            if (result.Succeeded)
+            {
+                _logger.LogInformation("The password of {username} has been reset", user.UserName);
+            }
+            return generatedPassword;
+        }
     }
 }
diff --git a/FactorioWebInterfaceTests/Services/WebAccountManagerTests/WebAccountManagerHelper.cs b/FactorioWebInterfaceTests/Services/WebAccountManagerTests/WebAccountManagerHelper.cs
new file mode 100644
index 00000000..81382d1d
--- /dev/null
+++ b/FactorioWebInterfaceTests/Services/WebAccountManagerTests/WebAccountManagerHelper.cs
@@ -0,0 +1,32 @@
+using FactorioWebInterface;
+using FactorioWebInterface.Data;
+using FactorioWebInterface.Services;
+using FactorioWebInterfaceTests.Utils;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.Extensions.DependencyInjection;
+using Microsoft.Extensions.Logging;
+using System;
+using System.Collections.Generic;
+using System.Text;
+
+namespace FactorioWebInterfaceTests.Services.WebAccountManagerTests
+{
+    class WebAccountManagerHelper
+    {
+        public static ServiceProvider MakeDefaultAdminAccountServiceProvider()
+        {
+            var dbContextFactory = new TestDbContextFactory();
+
+            var serviceCollection = new ServiceCollection();
+
+            serviceCollection
+                .AddSingleton(typeof(ILogger<>), typeof(TestLogger<>))
+                .AddTransient<ApplicationDbContext>(_ => dbContextFactory.Create<ApplicationDbContext>())
+                .AddTransient<WebAccountManager>()
+                .AddTransient<UserManager<ApplicationUser>>();
+            //Startup.SetupIdentity(serviceCollection); //Waiting for #67
+
+            return serviceCollection.BuildServiceProvider();
+        }
+    }
+}