Disclaimer:
The created user will have it's password in clear text in the database so after creating this user, be sure to create a real admin user and delete this one.
/**
Will create an application user (epiadmin/epiadmin) and group (webeditors) for an asp.net identity database
**/
DECLARE @aid uniqueidentifier
DECLARE @applicationName nvarchar(235)
DECLARE @uid uniqueidentifier
DECLARE @rolename nvarchar(256)
set @applicationName=N'/'
DECLARE @username nvarchar(50)
DECLARE @password nvarchar(50)
SET @username=N'tempadmin'
SET @password=N'tempadmin'
--create application
IF( NOT EXISTS (SELECT * FROM applications where ApplicationName=@applicationName))
BEGIN
SET @aid=NEWID()
insert into applications values(@aid,@applicationName,null)
END
SELECT @aid=ApplicationId FROM applications where ApplicationName=@applicationName
select * from applications
--create user
IF(NOT EXISTS (SELECT * FROM users where ApplicationId=@aid and UserName = @username))
BEGIN
set @uid=NEWID()
INSERT INTO Users VALUES(@uid,@aid,@username,0,GETDATE())
END
SELECT @uid=UserId FROM Users where ApplicationId=@aid and UserName=@username
select * from users
--create membership data
IF(NOT EXISTS (SELECT * FROM memberships where ApplicationId=@aid and UserId= @uid))
BEGIN
INSERT INTO Memberships(UserId,ApplicationId,Password,PasswordFormat,PasswordSalt,Email,PasswordQuestion,PasswordAnswer,IsApproved,IsLockedOut,CreateDate,LastLoginDate,LastPasswordChangedDate,LastLockoutDate,FailedPasswordAttemptCount,FailedPasswordAttemptWindowStart,FailedPasswordAnswerAttemptCount,FailedPasswordAnswerAttemptWindowsStart,Comment)
VALUES(@uid,@aid,@password,0,'Tc7EIFB+4dw33bRNOVJTGQ==','tempadmin@example.com',NULL,NULL,1,0,GETDATE(),GETDATE(),GETDATE(),'1754-01-01 00:00:00.000',0,'1754-01-01 00:00:00.000',0,'1754-01-01 00:00:00.000',NULL)
END
select * from memberships
SET @rolename='WebEditors'
DECLARE @roleid uniqueidentifier
IF(NOT EXISTS (SELECT * from roles where applicationId=@aid and RoleName=@rolename))
BEGIN
SET @roleid=NEWID()
INSERT INTO Roles(roleid,applicationid,rolename)
values(@roleid,@aid,@rolename)
END
SELECT @roleid=RoleId FROM Roles where ApplicationId=@aid and RoleName=@rolename
select * from roles
IF(NOT EXISTS(SELECT * FROM usersinroles where roleid=@roleid AND userid=@uid))
BEGIN
INSERT INTO usersinroles(userid,roleid) values(@uid,@roleid)
END
select * from usersinroles
SET @rolename='WebAdmins'
IF(NOT EXISTS (SELECT * from roles where applicationId=@aid and RoleName=@rolename))
BEGIN
SET @roleid=NEWID()
INSERT INTO Roles(roleid,applicationid,rolename)
values(@roleid,@aid,@rolename)
END
SELECT @roleid=RoleId FROM Roles where ApplicationId=@aid and RoleName=@rolename
select * from roles
IF(NOT EXISTS(SELECT * FROM usersinroles where roleid=@roleid AND userid=@uid))
BEGIN
INSERT INTO usersinroles(userid,roleid) values(@uid,@roleid)
END
select * from usersinroles
Unless I'm being stupid you're inserting this login in unhashed or encrypted. Maybe in an emergency allowing you to create another user in the backend that's protected but I think your blob should caveat to make sure that user is not left in there for any deployments to actual servers.
ReplyDeleteYes, this is only a quick and dirty way to get started with an user account.
ReplyDeleteNext step would be to create a new user and delete this one.
I have updated the post with a disclaimer. Thank you for your input :)
I believe it's possible somehow to invoke user creation page when empty alloy starts up. or setup initialization module / startup code that does user creation via .net api.
ReplyDeletethink you should put disclaimer in bold and red. people on internet just copy and execute scripts. sometimes even from the section where author is describing problem and showing some invalid code... :)
Yes, one way is to allow all users (even anonymous) () in the episerver/admin location and access the create user pages that way. The SQL alternative is a faster way and perhaps a viable solution if you accept the downsides.
ReplyDeleteRegarding the disclaimer, I have done what I can ;)
Thx for your input.