Merge branch 'master' of http://192.168.6.188:3000/Provision/UnivatePropertiesAPI

UnivateProperties_API/Controllers/Users/RegisterController.cs

         {
             var user = _Repo.Authenticate(userDto.Username, userDto.Password);
 
-            //HttpResponseMessage response = Request.CreateResponse(HttpStatusCode.Unauthorized, "value");
 
             if (user == null)
                 return BadRequest(new { message = "Username or password is incorrect" });
                 Subject = new ClaimsIdentity(new Claim[]
                 {
                     new Claim(ClaimTypes.Name, user.Id.ToString()),
-                    //new Claim(ClaimTypes.Role, user.Role)
+                    new Claim(ClaimTypes.Role, user.Role)
                 }),
                 Expires = DateTime.UtcNow.AddMinutes(15),
                 SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature)

UnivateProperties_API/Controllers/Users/UserController.cs

 using System.Transactions;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
+using UnivateProperties_API.Containers.Users;
 using UnivateProperties_API.Model.Users;
 using UnivateProperties_API.Repository;
 using UnivateProperties_API.Repository.Users;
 
 namespace User_API.Controllers
 {
-    //[Authorize]
+    [Authorize]
     [Route("api/[controller]")]
     [ApiController]
     public class UserController : ControllerBase
             _Repo = repo;
         }
 
+        [Authorize(Roles = Role.SuperAdmin)]
         [HttpGet]
         public IActionResult Get()
         {
         [HttpGet("{id}")]
         public IActionResult Get(int id)
         {
+            var currentUserId = int.Parse(User.Identity.Name);
+            if (id != currentUserId && !User.IsInRole(Role.SuperAdmin))
+            {
+                return Forbid();
+            }
             return new OkObjectResult(_Repo.Get(x => x.Id == id));
         }
 

UnivateProperties_API/Repository/Users/AgentRepository.cs

 
         public List<Agent> GetAll()
         {
-            return _dbContext.Agents.ToList();
+            return _dbContext.Agents.Include("User").ToList();
         }
 
         public Agent GetDetailed(Func<Agent, bool> first)

UnivateProperties_API/Repository/Users/IndividualRepository.cs

 
         public List<Individual> Get(Func<Individual, bool> where)
         {
-            return _dbContext.Individuals.Where(where).ToList();
+            return _dbContext.Individuals.Include("User").Where(where).ToList();
         }
 
         public List<Individual> GetAll()
         {
-            return _dbContext.Individuals.ToList();
+            return _dbContext.Individuals.Include("User").ToList();
         }
 
         public Individual GetDetailed(Func<Individual, bool> first)

UnivateProperties_API/Repository/Users/RegisterRepository.cs

 
             User createUser = new User(individual.Username, individual.Password);
 
-            Create(createUser, individual.Password, save);
+            Create(createUser, individual.Password, false);
 
             if (personType == PersonType.Agent)
             {
             }
         }
 
+        //public void InsertPerson(UserDto item)
+        //{
+        //    Individual i = new Individual()
+        //    {
+        //        Name = item.Name,
+        //        Surname = item.Surname,
+        //        User = new User(item.Username, item.Password),
+        //        Email = item.Email,
+        //        CellNumber = item.CellNumber,
+        //        Telephone = item.Telephone
+        //    };
+
+        //    _dbContext.Add(i);
+        //    Save();
+        //}
+
         public void Update(User userParam, string password = null)
         {
             var user = _dbContext.Users.Find(userParam.Id);