dhont · May 17, 2013
diff --git a/‎.gitattributes
+63 b/‎.gitattributes
+63
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/Product.cs
+2-2 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/Product.cs
+2-2
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductBacklogItem.cs
+2-2 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductBacklogItem.cs
+2-2
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductBacklogItemPlanned.cs
+1-1 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductBacklogItemPlanned.cs
+1-1
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductCreated.cs
+1-1 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductCreated.cs
+1-1
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductDiscussion.cs
+2-9 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductDiscussion.cs
+2-9
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductDiscussionInitiated.cs
+1-1 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductDiscussionInitiated.cs
+1-1
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductDiscussionRequested.cs
+1-1 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductDiscussionRequested.cs
+1-1
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductReleaseScheduled.cs
+1-1 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductReleaseScheduled.cs
+1-1
diff --git a/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductSprintScheduled.cs
+1-1 b/‎iddd_agilepm/SaaSOvation.AgilePM.Domain.Model.Products/ProductSprintScheduled.cs
+1-1
diff --git a/‎iddd_common/SaaSOvation.Common.Domain.Model/DomainEventPublisher.cs
+19-20 b/‎iddd_common/SaaSOvation.Common.Domain.Model/DomainEventPublisher.cs
+19-20
diff --git a/‎iddd_common/SaaSOvation.Common.Domain.Model/DomainEvent.cs ‎iddd_common/SaaSOvation.Common.Domain.Model/IDomainEvent.cs
+1-2 b/‎iddd_common/SaaSOvation.Common.Domain.Model/DomainEvent.cs ‎iddd_common/SaaSOvation.Common.Domain.Model/IDomainEvent.cs
+1-2
diff --git a/‎iddd_common/SaaSOvation.Common.Domain.Model/DomainEventSubscriber.cs ‎iddd_common/SaaSOvation.Common.Domain.Model/IDomainEventSubscriber.cs
+1-2 b/‎iddd_common/SaaSOvation.Common.Domain.Model/DomainEventSubscriber.cs ‎iddd_common/SaaSOvation.Common.Domain.Model/IDomainEventSubscriber.cs
+1-2
diff --git a/‎iddd_common/SaaSOvation.Common.Domain.Model/Identity.cs
+10-15 b/‎iddd_common/SaaSOvation.Common.Domain.Model/Identity.cs
+10-15
diff --git a/‎iddd_common/SaaSOvation.Common.Domain.Model/LongRunningProcess/ProcessTimedOut.cs
+1-1 b/‎iddd_common/SaaSOvation.Common.Domain.Model/LongRunningProcess/ProcessTimedOut.cs
+1-1
diff --git a/‎iddd_common/iddd_common.csproj
+3-3 b/‎iddd_common/iddd_common.csproj
+3-3
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/AuthorizationService.cs
+63-63 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/AuthorizationService.cs
+63-63
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/RoleRepository.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/IRoleRepository.cs
+1-2 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/RoleRepository.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/IRoleRepository.cs
+1-2
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/Role.cs
+146-152 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/Role.cs
+146-152
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/RoleEvents.cs
+5-5 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Access/RoleEvents.cs
+5-5
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/AuthenticationService.cs
+59-59 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/AuthenticationService.cs
+59-59
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/ContactInformation.cs
+3-4 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/ContactInformation.cs
+3-4
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/GroupEvents.cs
+4-4 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/GroupEvents.cs
+4-4
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/GroupMemberService.cs
+81-81 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/GroupMemberService.cs
+81-81
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/EncryptionService.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/IEncryptionService.cs
+1-1 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/EncryptionService.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/IEncryptionService.cs
+1-1
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/GroupRepository.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/IGroupRepository.cs
+1-1 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/GroupRepository.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/IGroupRepository.cs
+1-1
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/TenantRepository.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/ITenantRepository.cs
+1-2 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/TenantRepository.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/ITenantRepository.cs
+1-2
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/UserRepository.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/IUserRepository.cs
+1-1 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/UserRepository.cs ‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/IUserRepository.cs
+1-1
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/PasswordService.cs
+16-16 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/PasswordService.cs
+16-16
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/Tenant.cs
+199-197 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/Tenant.cs
+199-197
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/TenantEvents.cs
+5-5 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/TenantEvents.cs
+5-5
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/TenantProvisioningService.cs
+102-102 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/TenantProvisioningService.cs
+102-102
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/UserEvents.cs
+5-5 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model.Identity/UserEvents.cs
+5-5
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model/DomainRegistry.cs
+1-1 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Domain.Model/DomainRegistry.cs
+1-1
diff --git a/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Port.Adapter.Security/MD5EncryptionService.cs
+43-43 b/‎iddd_identityaccess/SaaSOvation.IdentityAccess.Port.Adapter.Security/MD5EncryptionService.cs
+43-43
diff --git a/‎iddd_identityaccess/iddd_identityaccess.csproj
+5-5 b/‎iddd_identityaccess/iddd_identityaccess.csproj
+5-5
@@ -0,0 +1,63 @@
+###############################################################################
+# Set default behavior to automatically normalize line endings.
+###############################################################################
+* text=auto
+
+###############################################################################
+# Set default behavior for command prompt diff.
+#
+# This is need for earlier builds of msysgit that does not have it on by
+# default for csharp files.
+# Note: This is only used by command line
+###############################################################################
+#*.cs     diff=csharp
+
+###############################################################################
+# Set the merge driver for project and solution files
+#
+# Merging from the command prompt will add diff markers to the files if there
+# are conflicts (Merging from VS is not affected by the settings below, in VS
+# the diff markers are never inserted). Diff markers may cause the following 
+# file extensions to fail to load in VS. An alternative would be to treat
+# these files as binary and thus will always conflict and require user
+# intervention with every merge. To do so, just uncomment the entries below
+###############################################################################
+#*.sln       merge=binary
+#*.csproj    merge=binary
+#*.vbproj    merge=binary
+#*.vcxproj   merge=binary
+#*.vcproj    merge=binary
+#*.dbproj    merge=binary
+#*.fsproj    merge=binary
+#*.lsproj    merge=binary
+#*.wixproj   merge=binary
+#*.modelproj merge=binary
+#*.sqlproj   merge=binary
+#*.wwaproj   merge=binary
+
+###############################################################################
+# behavior for image files
+#
+# image files are treated as binary by default.
+###############################################################################
+#*.jpg   binary
+#*.png   binary
+#*.gif   binary
+
+###############################################################################
+# diff behavior for common document formats
+# 
+# Convert binary document formats to text before diffing them. This feature
+# is only available from the command line. Turn it on by uncommenting the 
+# entries below.
+###############################################################################
+#*.doc   diff=astextplain
+#*.DOC   diff=astextplain
+#*.docx  diff=astextplain
+#*.DOCX  diff=astextplain
+#*.dot   diff=astextplain
+#*.DOT   diff=astextplain
+#*.pdf   diff=astextplain
+#*.PDF   diff=astextplain
+#*.rtf   diff=astextplain
+#*.RTF   diff=astextplain
@@ -68,7 +68,7 @@ public Product(
 
         public TenantId TenantId { get; private set; }
 
-        private ISet<ProductBacklogItem> BacklogItems { get; set; }
+        ISet<ProductBacklogItem> BacklogItems { get; set; }
 
         public ICollection<ProductBacklogItem> AllBacklogItems()
         {
@@ -122,7 +122,7 @@ public BacklogItems.BacklogItem PlanBacklogItem(
                 BacklogItemType type,
                 StoryPoints storyPoints)
         {
-            BacklogItems.BacklogItem backlogItem =
+            var backlogItem =
                 new BacklogItems.BacklogItem(
                         this.TenantId,
                         this.ProductId,
 
@@ -42,11 +42,11 @@ public ProductBacklogItem(
 
         public override bool Equals(object anotherObject)
         {
-            bool equalObjects = false;
+            var equalObjects = false;
 
             if (anotherObject != null && this.GetType() == anotherObject.GetType())
             {
-                ProductBacklogItem typedObject = (ProductBacklogItem)anotherObject;
+                var typedObject = (ProductBacklogItem)anotherObject;
                 equalObjects =
                     this.TenantId.Equals(typedObject.TenantId) &&
                     this.ProductId.Equals(typedObject.ProductId) &&
 
@@ -19,7 +19,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products
     using SaaSOvation.AgilePM.Domain.Model.Products.BacklogItems;
     using SaaSOvation.AgilePM.Domain.Model.Tenants;
 
-    public class ProductBacklogItemPlanned : DomainEvent
+    public class ProductBacklogItemPlanned : IDomainEvent
     {
         public ProductBacklogItemPlanned(
             TenantId tenantId,
 
@@ -20,7 +20,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products
     using SaaSOvation.AgilePM.Domain.Model.Tenants;
     using SaaSOvation.Common.Domain.Model;
 
-    public class ProductCreated : DomainEvent
+    public class ProductCreated : IDomainEvent
     {
         public ProductCreated(
             TenantId tenantId,
 
@@ -23,12 +23,9 @@ public static ProductDiscussion FromAvailability(
                 DiscussionAvailability availability)
         {
             if (availability == DiscussionAvailability.Ready)
-            {
                 throw new InvalidOperationException("Cannot be created ready.");
-            }
 
-            DiscussionDescriptor descriptor =
-                    new DiscussionDescriptor(DiscussionDescriptor.UNDEFINED_ID);
+            var descriptor = new DiscussionDescriptor(DiscussionDescriptor.UNDEFINED_ID);
 
             return new ProductDiscussion(descriptor, availability);
         }
@@ -53,13 +50,9 @@ public ProductDiscussion(ProductDiscussion productDiscussion)
         public ProductDiscussion NowReady(DiscussionDescriptor descriptor)
         {
             if (descriptor == null || descriptor.IsUndefined())
-            {
-                throw new InvalidOperationException("The discussion descriptor must be defined.");
-            }
+                throw new ArgumentException("The discussion descriptor must be defined.");
             if (this.Availability != DiscussionAvailability.Requested)
-            {
                 throw new InvalidOperationException("The discussion must be requested first.");
-            }
 
             return new ProductDiscussion(descriptor, DiscussionAvailability.Ready);
         }
 
@@ -18,7 +18,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products
     using SaaSOvation.Common.Domain.Model;
     using System;
 
-    public class ProductDiscussionInitiated : DomainEvent
+    public class ProductDiscussionInitiated : IDomainEvent
     {
         public ProductDiscussionInitiated(TenantId tenantId, ProductId productId, ProductDiscussion productDiscussion)
         {
 
@@ -19,7 +19,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products
     using SaaSOvation.AgilePM.Domain.Model.Tenants;
     using SaaSOvation.Common.Domain.Model;
 
-    public class ProductDiscussionRequested : DomainEvent
+    public class ProductDiscussionRequested : IDomainEvent
     {
         public ProductDiscussionRequested(
             TenantId tenantId,
 
@@ -19,7 +19,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products
     using SaaSOvation.AgilePM.Domain.Model.Products.Releases;
     using SaaSOvation.Common.Domain.Model;
 
-    public class ProductReleaseScheduled : DomainEvent
+    public class ProductReleaseScheduled : IDomainEvent
     {
         public ProductReleaseScheduled(
             TenantId tenantId,
 
@@ -20,7 +20,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products
     using SaaSOvation.Common.Domain.Model;
     using SaaSOvation.AgilePM.Domain.Model.Products.Sprints;
 
-    public class ProductSprintScheduled : DomainEvent
+    public class ProductSprintScheduled : IDomainEvent
     {
         public ProductSprintScheduled(
             TenantId tenantId,
 
@@ -36,19 +36,19 @@ public static DomainEventPublisher Instance
 
         private DomainEventPublisher()
         {
-            this.Publishing = false;
+            this.publishing = false;
         }
 
-        private bool Publishing { get; set; }
+        bool publishing;
 
-        private List<DomainEventSubscriber<DomainEvent>> _subscribers;
-        private List<DomainEventSubscriber<DomainEvent>> Subscribers
+        List<IDomainEventSubscriber<IDomainEvent>> _subscribers;
+        List<IDomainEventSubscriber<IDomainEvent>> Subscribers
         {
             get
             {
                 if (this._subscribers == null)
                 {
-                    this._subscribers = new List<DomainEventSubscriber<DomainEvent>>();
+                    this._subscribers = new List<IDomainEventSubscriber<IDomainEvent>>();
                 }
 
                 return this._subscribers;
@@ -59,58 +59,57 @@ private List<DomainEventSubscriber<DomainEvent>> Subscribers
             }
         }
 
-        public void Publish<T>(T domainEvent) where T : DomainEvent
+        public void Publish<T>(T domainEvent) where T : IDomainEvent
         {
-            if (!this.Publishing && this.HasSubscribers())
+            if (!this.publishing && this.HasSubscribers())
             {
                 try
                 {
-                    this.Publishing = true;
+                    this.publishing = true;
 
-                    Type eventType = domainEvent.GetType();
+                    var eventType = domainEvent.GetType();
 
-                    foreach (DomainEventSubscriber<T> subscriber in this.Subscribers)
+                    foreach (var subscriber in this.Subscribers)
                     {
-                        Type subscribedToType = subscriber.SubscribedToEventType();
-
-                        if (eventType == subscribedToType || subscribedToType == typeof(DomainEvent))
+                        var subscribedToType = subscriber.SubscribedToEventType();
+                        if (eventType == subscribedToType || subscribedToType == typeof(IDomainEvent))
                         {
                             subscriber.HandleEvent(domainEvent);
                         }
                     }
                 }
                 finally
                 {
-                    this.Publishing = false;
+                    this.publishing = false;
                 }
             }
         }
 
-        public void PublishAll(ICollection<DomainEvent> domainEvents)
+        public void PublishAll(ICollection<IDomainEvent> domainEvents)
         {
-            foreach (DomainEvent domainEvent in domainEvents)
+            foreach (var domainEvent in domainEvents)
             {
                 this.Publish(domainEvent);
             }
         }
 
         public void Reset()
         {
-            if (!this.Publishing)
+            if (!this.publishing)
             {
                 this.Subscribers = null;
             }
         }
 
-        public void Subscribe(DomainEventSubscriber<DomainEvent> subscriber)
+        public void Subscribe(IDomainEventSubscriber<IDomainEvent> subscriber)
         {
-            if (!this.Publishing)
+            if (!this.publishing)
             {
                 this.Subscribers.Add(subscriber);
             }
         }
 
-        private bool HasSubscribers()
+        bool HasSubscribers()
         {
             return this._subscribers != null && this.Subscribers.Count != 0;
         }
 
@@ -16,10 +16,9 @@ namespace SaaSOvation.Common.Domain.Model
 {
     using System;
 
-    public interface DomainEvent
+    public interface IDomainEvent
     {
         int EventVersion { get; set;  }
-
         DateTime OccurredOn { get; set; }
     }
 }
@@ -16,10 +16,9 @@ namespace SaaSOvation.Common.Domain.Model
 {
     using System;
 
-    public interface DomainEventSubscriber<T> where T : DomainEvent
+    public interface IDomainEventSubscriber<T> where T : IDomainEvent
     {
         void HandleEvent(T domainEvent);
-
         Type SubscribedToEventType();
     }
 }
@@ -16,7 +16,7 @@ namespace SaaSOvation.Common.Domain.Model
 {
     using System;
 
-    public abstract class Identity
+    public abstract class Identity : IEquatable<Identity>
     {
         public Identity()
         {
@@ -30,26 +30,21 @@ public Identity(string id)
 
         public string Id { get; private set; }
 
-        public override bool Equals(object anotherObject)
+        public bool Equals(Identity id)
         {
-            bool equalObjects = false;
-
-            if (anotherObject != null && this.GetType() == anotherObject.GetType())
-            {
-                Identity typedObject = (Identity)anotherObject;
-                equalObjects = this.Id.Equals(typedObject.Id);
-            }
+            if (object.ReferenceEquals(this, id)) return true;
+            if (object.ReferenceEquals(null, id)) return false;
+            return this.Id.Equals(id.Id);
+        }
 
-            return equalObjects;
+        public override bool Equals(object anotherObject)
+        {
+            return Equals(anotherObject as Identity);
         }
 
         public override int GetHashCode()
         {
-            int hashCodeValue =
-                + (this.GetType().GetHashCode() * 907)
-                + this.Id.GetHashCode();
-
-            return hashCodeValue;
+            return (this.GetType().GetHashCode() * 907) + this.Id.GetHashCode();
         }
 
         public override string ToString()
 
@@ -16,7 +16,7 @@ namespace SaaSOvation.Common.Domain.Model.LongRunningProcess
 {
     using System;
 
-    public class ProcessTimedOut : DomainEvent
+    public class ProcessTimedOut : IDomainEvent
     {
         public ProcessTimedOut(
                 string tenantId,
 
@@ -8,7 +8,7 @@
     <ProjectGuid>{23B36FF3-B4FE-4765-815E-4943A737BC6D}</ProjectGuid>
     <OutputType>Library</OutputType>
     <AppDesignerFolder>Properties</AppDesignerFolder>
-    <RootNamespace>iddd_common</RootNamespace>
+    <RootNamespace>SaaSOvation.Common</RootNamespace>
     <AssemblyName>iddd_common</AssemblyName>
     <TargetFrameworkVersion>v4.0</TargetFrameworkVersion>
     <FileAlignment>512</FileAlignment>
@@ -42,9 +42,9 @@
   <ItemGroup>
     <Compile Include="SaaSOvation.Common.Domain.Model\AssertionConcern.cs" />
     <Compile Include="SaaSOvation.Common.Domain.Model\Entity.cs" />
-    <Compile Include="SaaSOvation.Common.Domain.Model\DomainEvent.cs" />
+    <Compile Include="SaaSOvation.Common.Domain.Model\IDomainEvent.cs" />
     <Compile Include="SaaSOvation.Common.Domain.Model\DomainEventPublisher.cs" />
-    <Compile Include="SaaSOvation.Common.Domain.Model\DomainEventSubscriber.cs" />
+    <Compile Include="SaaSOvation.Common.Domain.Model\IDomainEventSubscriber.cs" />
     <Compile Include="SaaSOvation.Common.Domain.Model\Identity.cs" />
     <Compile Include="SaaSOvation.Common.Domain.Model\LongRunningProcess\Process.cs" />
     <Compile Include="SaaSOvation.Common.Domain.Model\LongRunningProcess\ProcessId.cs" />
 
@@ -1,63 +1,63 @@
-// Copyright 2012,2013 Vaughn Vernon
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-namespace SaaSOvation.IdentityAccess.Domain.Model.Access
-{
-    using SaaSOvation.Common.Domain.Model;
-    using SaaSOvation.IdentityAccess.Domain.Model.Identity;
-
-    public class AuthorizationService
-    {
-        public AuthorizationService(
-                UserRepository userRepository,
-                GroupRepository groupRepository,
-                RoleRepository roleRepository)
-        {
-            this.groupRepository = groupRepository;
-            this.roleRepository = roleRepository;
-            this.userRepository = userRepository;
-        }
-
-        readonly GroupRepository groupRepository;
-        readonly RoleRepository roleRepository;
-        readonly UserRepository userRepository;
-
-        public bool IsUserInRole(TenantId tenantId, string username, string roleName)
-        {
-            AssertionConcern.AssertArgumentNotNull(tenantId, "TenantId must not be null.");
-            AssertionConcern.AssertArgumentNotEmpty(username, "Username must not be provided.");
-            AssertionConcern.AssertArgumentNotEmpty(roleName, "Role name must not be null.");
-
-            var user = this.userRepository.UserWithUsername(tenantId, username);
-            return user == null ? false : this.IsUserInRole(user, roleName);
-        }
-
-        public bool IsUserInRole(User user, string roleName)
-        {
-            AssertionConcern.AssertArgumentNotNull(user, "User must not be null.");
-            AssertionConcern.AssertArgumentNotEmpty(roleName, "Role name must not be null.");
-
-            var authorized = false;
-            if (user.Enabled)
-            {
-                var role = this.roleRepository.RoleNamed(user.TenantId, roleName);
-                if (role != null)
-                {
-                    authorized = role.IsInRole(user, new GroupMemberService(this.userRepository, this.groupRepository));
-                }
-            }
-            return authorized;
-        }
-    }
-}
+// Copyright 2012,2013 Vaughn Vernon
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+namespace SaaSOvation.IdentityAccess.Domain.Model.Access
+{
+    using SaaSOvation.Common.Domain.Model;
+    using SaaSOvation.IdentityAccess.Domain.Model.Identity;
+
+    public class AuthorizationService
+    {
+        public AuthorizationService(
+                IUserRepository userRepository,
+                IGroupRepository groupRepository,
+                IRoleRepository roleRepository)
+        {
+            this.groupRepository = groupRepository;
+            this.roleRepository = roleRepository;
+            this.userRepository = userRepository;
+        }
+
+        readonly IGroupRepository groupRepository;
+        readonly IRoleRepository roleRepository;
+        readonly IUserRepository userRepository;
+
+        public bool IsUserInRole(TenantId tenantId, string username, string roleName)
+        {
+            AssertionConcern.AssertArgumentNotNull(tenantId, "TenantId must not be null.");
+            AssertionConcern.AssertArgumentNotEmpty(username, "Username must not be provided.");
+            AssertionConcern.AssertArgumentNotEmpty(roleName, "Role name must not be null.");
+
+            var user = this.userRepository.UserWithUsername(tenantId, username);
+            return user == null ? false : this.IsUserInRole(user, roleName);
+        }
+
+        public bool IsUserInRole(User user, string roleName)
+        {
+            AssertionConcern.AssertArgumentNotNull(user, "User must not be null.");
+            AssertionConcern.AssertArgumentNotEmpty(roleName, "Role name must not be null.");
+
+            var authorized = false;
+            if (user.Enabled)
+            {
+                var role = this.roleRepository.RoleNamed(user.TenantId, roleName);
+                if (role != null)
+                {
+                    authorized = role.IsInRole(user, new GroupMemberService(this.userRepository, this.groupRepository));
+                }
+            }
+            return authorized;
+        }
+    }
+}
@@ -18,10 +18,9 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Access
     using SaaSOvation.Common.Domain.Model;
     using SaaSOvation.IdentityAccess.Domain.Model.Identity;
 
-    public interface RoleRepository
+    public interface IRoleRepository
     {
         void Add(Role role);
-
         Role RoleNamed(TenantId identity, string roleName);
     }
 }
@@ -1,152 +1,146 @@
-// Copyright 2012,2013 Vaughn Vernon
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-namespace SaaSOvation.IdentityAccess.Domain.Model.Access
-{
-    using System;
-    using SaaSOvation.Common.Domain.Model;
-    using SaaSOvation.IdentityAccess.Domain.Model.Identity;
-
-    public class Role
-    {
-        public Role(TenantId tenantId, string name, string description, bool supportsNesting)
-        {
-            this.Description = description;
-            this.Name = name;
-            this.SupportsNesting = supportsNesting;
-            this.TenantId = tenantId;
-            this.group = CreateInternalGroup();
-        }
-
-        readonly Group group;
-
-        Group CreateInternalGroup()
-        {
-            var groupName = Group.ROLE_GROUP_PREFIX + Guid.NewGuid().ToString();
-            return new Group(this.TenantId, groupName, "Role backing group for: " + this.Name);
-        }
-
-        public string Description { get; private set; }
-
-        public string Name { get; private set; }
-
-        public bool SupportsNesting { get; private set; }
-
-        public TenantId TenantId { get; private set; }
-
-        
-        public void AssignGroup(Group group, GroupMemberService groupMemberService)
-        {
-            AssertionConcern.AssertStateTrue(this.SupportsNesting, "This role does not support group nesting.");
-            AssertionConcern.AssertArgumentNotNull(group, "Group must not be null.");
-            AssertionConcern.AssertArgumentEquals(this.TenantId, group.TenantId, "Wrong tenant for this group.");
-
-            this.group.AddGroup(group, groupMemberService);
-
-            DomainEventPublisher
-                .Instance
-                .Publish(new GroupAssignedToRole(
-                        this.TenantId,
-                        this.Name,
-                        group.Name));
-        }
-
-        public void AssignUser(User user)
-        {
-            AssertionConcern.AssertArgumentNotNull(user, "User must not be null.");
-            AssertionConcern.AssertArgumentEquals(this.TenantId, user.TenantId, "Wrong tenant for this user.");
-
-            this.group.AddUser(user);
-
-            DomainEventPublisher
-                .Instance
-                .Publish(new UserAssignedToRole(
-                        this.TenantId,
-                        this.Name,
-                        user.Username,
-                        user.Person.Name.FirstName,
-                        user.Person.Name.LastName,
-                        user.Person.EmailAddress.Address));
-        }
-
-        public bool IsInRole(User user, GroupMemberService groupMemberService)
-        {
-            return this.group.IsMember(user, groupMemberService);
-        }
-
-        public void UnassignGroup(Group group)
-        {
-            AssertionConcern.AssertStateTrue(this.SupportsNesting, "This role does not support group nesting.");
-            AssertionConcern.AssertArgumentNotNull(group, "Group must not be null.");
-            AssertionConcern.AssertArgumentEquals(this.TenantId, group.TenantId, "Wrong tenant for this group.");
-
-            this.group.RemoveGroup(group);
-
-            DomainEventPublisher
-                .Instance
-                .Publish(new GroupUnassignedFromRole(
-                        this.TenantId,
-                        this.Name,
-                        group.Name));
-        }
-
-        public void UnassignUser(User user)
-        {
-            AssertionConcern.AssertArgumentNotNull(user, "User must not be null.");
-            AssertionConcern.AssertArgumentEquals(this.TenantId, user.TenantId, "Wrong tenant for this user.");
-
-            this.group.RemoveUser(user);
-
-            DomainEventPublisher
-                .Instance
-                .Publish(new UserUnassignedFromRole(
-                        this.TenantId,
-                        this.Name,
-                        user.Username));
-        }
-
-        public override bool Equals(Object anotherObject)
-        {
-            var equalObjects = false;
-
-            if (anotherObject != null && this.GetType() == anotherObject.GetType())
-            {
-                var typedObject = (Role)anotherObject;
-                equalObjects =
-                    this.TenantId.Equals(typedObject.TenantId) &&
-                    this.Name.Equals(typedObject.Name);
-            }
-
-            return equalObjects;
-        }
-
-        public override int GetHashCode()
-        {
-            int hashCodeValue =
-                + (18723 * 233)
-                + this.TenantId.GetHashCode()
-                + this.Name.GetHashCode();
-
-            return hashCodeValue;
-        }
-
-        public override string ToString()
-        {
-            return "Role [tenantId=" + TenantId + ", name=" + Name
-                    + ", description=" + Description
-                    + ", supportsNesting=" + SupportsNesting
-                    + ", group=" + group + "]";
-        }        
-    }
-}
+// Copyright 2012,2013 Vaughn Vernon
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+namespace SaaSOvation.IdentityAccess.Domain.Model.Access
+{
+    using System;
+    using SaaSOvation.Common.Domain.Model;
+    using SaaSOvation.IdentityAccess.Domain.Model.Identity;
+
+    public class Role : IEquatable<Role>
+    {
+        public Role(TenantId tenantId, string name, string description, bool supportsNesting)
+        {
+            this.Description = description;
+            this.Name = name;
+            this.SupportsNesting = supportsNesting;
+            this.TenantId = tenantId;
+            this.group = CreateInternalGroup();
+        }
+
+        readonly Group group;
+
+        Group CreateInternalGroup()
+        {
+            var groupName = Group.ROLE_GROUP_PREFIX + Guid.NewGuid().ToString();
+            return new Group(this.TenantId, groupName, "Role backing group for: " + this.Name);
+        }
+
+        public string Description { get; private set; }
+
+        public string Name { get; private set; }
+
+        public bool SupportsNesting { get; private set; }
+
+        public TenantId TenantId { get; private set; }
+        
+        public void AssignGroup(Group group, GroupMemberService groupMemberService)
+        {
+            AssertionConcern.AssertStateTrue(this.SupportsNesting, "This role does not support group nesting.");
+            AssertionConcern.AssertArgumentNotNull(group, "Group must not be null.");
+            AssertionConcern.AssertArgumentEquals(this.TenantId, group.TenantId, "Wrong tenant for this group.");
+
+            this.group.AddGroup(group, groupMemberService);
+
+            DomainEventPublisher
+                .Instance
+                .Publish(new GroupAssignedToRole(
+                        this.TenantId,
+                        this.Name,
+                        group.Name));
+        }
+
+        public void AssignUser(User user)
+        {
+            AssertionConcern.AssertArgumentNotNull(user, "User must not be null.");
+            AssertionConcern.AssertArgumentEquals(this.TenantId, user.TenantId, "Wrong tenant for this user.");
+
+            this.group.AddUser(user);
+
+            DomainEventPublisher
+                .Instance
+                .Publish(new UserAssignedToRole(
+                        this.TenantId,
+                        this.Name,
+                        user.Username,
+                        user.Person.Name.FirstName,
+                        user.Person.Name.LastName,
+                        user.Person.EmailAddress.Address));
+        }
+
+        public bool IsInRole(User user, GroupMemberService groupMemberService)
+        {
+            return this.group.IsMember(user, groupMemberService);
+        }
+
+        public void UnassignGroup(Group group)
+        {
+            AssertionConcern.AssertStateTrue(this.SupportsNesting, "This role does not support group nesting.");
+            AssertionConcern.AssertArgumentNotNull(group, "Group must not be null.");
+            AssertionConcern.AssertArgumentEquals(this.TenantId, group.TenantId, "Wrong tenant for this group.");
+
+            this.group.RemoveGroup(group);
+
+            DomainEventPublisher
+                .Instance
+                .Publish(new GroupUnassignedFromRole(
+                        this.TenantId,
+                        this.Name,
+                        group.Name));
+        }
+
+        public void UnassignUser(User user)
+        {
+            AssertionConcern.AssertArgumentNotNull(user, "User must not be null.");
+            AssertionConcern.AssertArgumentEquals(this.TenantId, user.TenantId, "Wrong tenant for this user.");
+
+            this.group.RemoveUser(user);
+
+            DomainEventPublisher
+                .Instance
+                .Publish(new UserUnassignedFromRole(
+                        this.TenantId,
+                        this.Name,
+                        user.Username));
+        }
+
+        public bool Equals(Role role)
+        {
+            if (object.ReferenceEquals(this, role)) return true;
+            if (object.ReferenceEquals(null, role)) return false;
+            return this.TenantId.Equals(role.TenantId) && this.Name.Equals(role.Name);
+        }
+
+        public override bool Equals(object anotherObject)
+        {
+            return Equals(anotherObject as Role);
+        }
+
+        public override int GetHashCode()
+        {
+            return
+                + (18723 * 233)
+                + this.TenantId.GetHashCode()
+                + this.Name.GetHashCode();
+        }
+
+        public override string ToString()
+        {
+            return "Role [tenantId=" + TenantId + ", name=" + Name
+                    + ", description=" + Description
+                    + ", supportsNesting=" + SupportsNesting
+                    + ", group=" + group + "]";
+        }        
+    }
+}
@@ -18,7 +18,7 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Access
     using SaaSOvation.Common.Domain.Model;
     using SaaSOvation.IdentityAccess.Domain.Model.Identity;
 
-    public class GroupAssignedToRole : DomainEvent
+    public class GroupAssignedToRole : IDomainEvent
     {
         public GroupAssignedToRole(TenantId tenantId, string roleName, string groupName)
         {
@@ -40,7 +40,7 @@ public GroupAssignedToRole(TenantId tenantId, string roleName, string groupName)
         public TenantId TenantId;
     }
 
-    public class GroupUnassignedFromRole : DomainEvent
+    public class GroupUnassignedFromRole : IDomainEvent
     {
         public GroupUnassignedFromRole(TenantId tenantId, string roleName, string groupName)
         {
@@ -62,7 +62,7 @@ public GroupUnassignedFromRole(TenantId tenantId, string roleName, string groupN
         public TenantId TenantId;
     }
 
-    public class RoleProvisioned : DomainEvent
+    public class RoleProvisioned : IDomainEvent
     {
         public RoleProvisioned(TenantId tenantId, string name)
         {
@@ -81,7 +81,7 @@ public RoleProvisioned(TenantId tenantId, string name)
         public string TenantId { get; private set; }
     }
 
-    public class UserAssignedToRole : DomainEvent
+    public class UserAssignedToRole : IDomainEvent
     {
         public UserAssignedToRole(
             TenantId tenantId,
@@ -118,7 +118,7 @@ public UserAssignedToRole(
         public string Username { get; private set; }
     }
 
-    public class UserUnassignedFromRole : DomainEvent
+    public class UserUnassignedFromRole : IDomainEvent
     {
         public UserUnassignedFromRole(TenantId tenantId, string roleName, string username)
         {
 
@@ -1,59 +1,59 @@
-// Copyright 2012,2013 Vaughn Vernon
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
-{
-    using System;
-    using SaaSOvation.Common.Domain.Model;
-
-    public class AuthenticationService
-    {
-        public AuthenticationService(
-                TenantRepository tenantRepository,
-                UserRepository userRepository,
-                EncryptionService encryptionService)
-        {
-            this.encryptionService = encryptionService;
-            this.tenantRepository = tenantRepository;
-            this.userRepository = userRepository;
-        }
-
-        EncryptionService encryptionService;
-        TenantRepository tenantRepository;
-        UserRepository userRepository;
-
-        public UserDescriptor Authenticate(TenantId tenantId, string username, string password)
-        {
-            AssertionConcern.AssertArgumentNotNull(tenantId, "TenantId must not be null.");
-            AssertionConcern.AssertArgumentNotEmpty(username, "Username must be provided.");
-            AssertionConcern.AssertArgumentNotEmpty(password, "Password must be provided.");
-
-            var userDescriptor = UserDescriptor.NullDescriptorInstance();
-
-            var tenant = this.tenantRepository.TenantOfId(tenantId);
-
-            if (tenant != null && tenant.Active)
-            {
-                var encryptedPassword = this.encryptionService.EncryptedValue(password);
-                var user = this.userRepository.UserFromAuthenticCredentials(tenantId, username, encryptedPassword);
-                if (user != null && user.Enabled)
-                {
-                    userDescriptor = user.UserDescriptor;
-                }
-            }
-
-            return userDescriptor;
-        }
-    }
-}
+// Copyright 2012,2013 Vaughn Vernon
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
+{
+    using System;
+    using SaaSOvation.Common.Domain.Model;
+
+    public class AuthenticationService
+    {
+        public AuthenticationService(
+                ITenantRepository tenantRepository,
+                IUserRepository userRepository,
+                IEncryptionService encryptionService)
+        {
+            this.encryptionService = encryptionService;
+            this.tenantRepository = tenantRepository;
+            this.userRepository = userRepository;
+        }
+
+        readonly IEncryptionService encryptionService;
+        readonly ITenantRepository tenantRepository;
+        readonly IUserRepository userRepository;
+
+        public UserDescriptor Authenticate(TenantId tenantId, string username, string password)
+        {
+            AssertionConcern.AssertArgumentNotNull(tenantId, "TenantId must not be null.");
+            AssertionConcern.AssertArgumentNotEmpty(username, "Username must be provided.");
+            AssertionConcern.AssertArgumentNotEmpty(password, "Password must be provided.");
+
+            var userDescriptor = UserDescriptor.NullDescriptorInstance();
+
+            var tenant = this.tenantRepository.TenantOfId(tenantId);
+
+            if (tenant != null && tenant.Active)
+            {
+                var encryptedPassword = this.encryptionService.EncryptedValue(password);
+                var user = this.userRepository.UserFromAuthenticCredentials(tenantId, username, encryptedPassword);
+                if (user != null && user.Enabled)
+                {
+                    userDescriptor = user.UserDescriptor;
+                }
+            }
+
+            return userDescriptor;
+        }
+    }
+}
@@ -106,14 +106,12 @@ public override bool Equals(Object anotherObject)
 
         public override int GetHashCode()
         {
-            int hashCodeValue =
+            return
                 + (73213 * 173)
                 + this.EmailAddress.GetHashCode()
                 + this.PostalAddress.GetHashCode()
                 + this.PrimaryTelephone.GetHashCode()
                 + (this.SecondaryTelephone == null ? 0:this.SecondaryTelephone.GetHashCode());
-
-            return hashCodeValue;
         }
 
         public override string ToString()
@@ -141,7 +139,8 @@ internal EmailAddress()
         {
         }
 
-        private string _address;
+        string _address;
+        
         public string Address
         {
             get
 
@@ -17,7 +17,7 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
     using System;
     using SaaSOvation.Common.Domain.Model;
 
-    public class GroupGroupAdded : DomainEvent
+    public class GroupGroupAdded : IDomainEvent
     {
         public GroupGroupAdded(TenantId tenantId, string groupName, string nestedGroupName)
         {
@@ -39,7 +39,7 @@ public GroupGroupAdded(TenantId tenantId, string groupName, string nestedGroupNa
         public string TenantId { get; private set; }
     }
 
-    public class GroupGroupRemoved : DomainEvent
+    public class GroupGroupRemoved : IDomainEvent
     {
         public GroupGroupRemoved(TenantId tenantId, string groupName, string nestedGroupName)
         {
@@ -61,7 +61,7 @@ public GroupGroupRemoved(TenantId tenantId, string groupName, string nestedGroup
         public string TenantId { get; private set; }
     }
 
-    public class GroupUserAdded : DomainEvent
+    public class GroupUserAdded : IDomainEvent
     {
         public GroupUserAdded(TenantId tenantId, string groupName, string username)
         {
@@ -83,7 +83,7 @@ public GroupUserAdded(TenantId tenantId, string groupName, string username)
         public string Username { get; private set; }
     }
 
-    public class GroupUserRemoved : DomainEvent
+    public class GroupUserRemoved : IDomainEvent
     {
         public GroupUserRemoved(TenantId tenantId, string groupName, string username)
         {
 
@@ -1,81 +1,81 @@
-// Copyright 2012,2013 Vaughn Vernon
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
-{
-    using System;
-    using System.Linq;
-
-    public class GroupMemberService
-    {
-        public GroupMemberService(UserRepository userRepository, GroupRepository groupRepository)
-        {
-            this.groupRepository = groupRepository;
-            this.userRepository = userRepository;
-        }
-
-        readonly GroupRepository groupRepository;
-        readonly UserRepository userRepository;
-
-        public bool ConfirmUser(Group group, User user)
-        {
-            var confirmedUser = this.userRepository.UserWithUsername(group.TenantId, user.Username);
-            var userConfirmed = confirmedUser == null || !confirmedUser.Enabled;
-            return userConfirmed;
-        }
-
-        public bool IsMemberGroup(Group group, GroupMember memberGroup)
-        {
-            var isMember = false;
-
-            foreach (var member in group.GroupMembers.Where(x => x.IsGroup()))
-            {
-                if (memberGroup.Equals(member))
-                {
-                    isMember = true;
-                }
-                else
-                {
-                    var nestedGroup = this.groupRepository.GroupNamed(member.TenantId, member.Name);
-                    if (nestedGroup != null)
-                    {
-                        isMember = IsMemberGroup(nestedGroup, memberGroup);
-                    }
-                }
-
-                if (isMember)
-                {
-                    break;
-                }
-            }
-
-            return isMember;
-        }
-
-        public bool IsUserInNestedGroup(Group group, User user)
-        {
-            foreach (var member in group.GroupMembers.Where(x => x.IsGroup()))
-            {
-                var nestedGroup = this.groupRepository.GroupNamed(member.TenantId, member.Name);
-                if (nestedGroup != null)
-                {
-                    var isInNestedGroup = nestedGroup.IsMember(user, this);
-                    if (isInNestedGroup)
-                        return true;
-                }
-            }
-            return false;
-        }
-    }
-}
+// Copyright 2012,2013 Vaughn Vernon
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
+{
+    using System;
+    using System.Linq;
+
+    public class GroupMemberService
+    {
+        public GroupMemberService(IUserRepository userRepository, IGroupRepository groupRepository)
+        {
+            this.groupRepository = groupRepository;
+            this.userRepository = userRepository;
+        }
+
+        readonly IGroupRepository groupRepository;
+        readonly IUserRepository userRepository;
+
+        public bool ConfirmUser(Group group, User user)
+        {
+            var confirmedUser = this.userRepository.UserWithUsername(group.TenantId, user.Username);
+            var userConfirmed = confirmedUser == null || !confirmedUser.Enabled;
+            return userConfirmed;
+        }
+
+        public bool IsMemberGroup(Group group, GroupMember memberGroup)
+        {
+            var isMember = false;
+
+            foreach (var member in group.GroupMembers.Where(x => x.IsGroup()))
+            {
+                if (memberGroup.Equals(member))
+                {
+                    isMember = true;
+                }
+                else
+                {
+                    var nestedGroup = this.groupRepository.GroupNamed(member.TenantId, member.Name);
+                    if (nestedGroup != null)
+                    {
+                        isMember = IsMemberGroup(nestedGroup, memberGroup);
+                    }
+                }
+
+                if (isMember)
+                {
+                    break;
+                }
+            }
+
+            return isMember;
+        }
+
+        public bool IsUserInNestedGroup(Group group, User user)
+        {
+            foreach (var member in group.GroupMembers.Where(x => x.IsGroup()))
+            {
+                var nestedGroup = this.groupRepository.GroupNamed(member.TenantId, member.Name);
+                if (nestedGroup != null)
+                {
+                    var isInNestedGroup = nestedGroup.IsMember(user, this);
+                    if (isInNestedGroup)
+                        return true;
+                }
+            }
+            return false;
+        }
+    }
+}
@@ -16,7 +16,7 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
 {
     using System;
 
-    public interface EncryptionService
+    public interface IEncryptionService
     {
         string EncryptedValue(string plainTextValue);
     }
 
@@ -17,7 +17,7 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
     using System;
     using SaaSOvation.Common.Domain.Model;
 
-    public interface GroupRepository
+    public interface IGroupRepository
     {
         Group GroupNamed(TenantId identity, string p);
     }
 
@@ -17,10 +17,9 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
     using System;
     using SaaSOvation.Common.Domain.Model;
 
-    public interface TenantRepository
+    public interface ITenantRepository
     {
         void Add(Tenant tenant);
-
         Tenant TenantOfId(TenantId tenantId);
     }
 }
@@ -17,7 +17,7 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
     using System;
     using SaaSOvation.Common.Domain.Model;
 
-    public interface UserRepository
+    public interface IUserRepository
     {
         void Add(User user);
 
 
@@ -33,17 +33,17 @@ public string GenerateStrongPassword()
         {
             String generatedPassword = null;
 
-            string password = "";
+            var password = "";
 
-            Random random = new Random();
+            var random = new Random();
 
-            bool isStrong = false;
+            var isStrong = false;
 
-            int index = 0;
+            var index = 0;
 
             while (!isStrong)
             {
-                int opt = random.Next(4);
+                var opt = random.Next(4);
 
                 switch (opt)
                 {
@@ -91,7 +91,7 @@ public bool IsWeak(string plainTextPassword)
             return this.CalculatePasswordStrength(plainTextPassword) < STRONG_THRESHOLD;
         }
 
-        private int CalculatePasswordStrength(String plainTextPassword)
+        int CalculatePasswordStrength(String plainTextPassword)
         {
             AssertionConcern.AssertArgumentNotNull(plainTextPassword, "Password strength cannot be tested on null.");
 
@@ -106,21 +106,21 @@ private int CalculatePasswordStrength(String plainTextPassword)
                 strength += (length - 7);
             }
 
-            int digitCount = 0;
-            int letterCount = 0;
-            int lowerCount = 0;
-            int upperCount = 0;
-            int symbolCount = 0;
+            var digitCount = 0;
+            var letterCount = 0;
+            var lowerCount = 0;
+            var upperCount = 0;
+            var symbolCount = 0;
 
-            for (int idx = 0; idx < length; ++idx)
+            for (var idx = 0; idx < length; ++idx)
             {
-                char ch = plainTextPassword[idx];
+                var ch = plainTextPassword[idx];
 
-                if (Char.IsLetter(ch))
+                if (char.IsLetter(ch))
                 {
                     ++letterCount;
 
-                    if (Char.IsUpper(ch))
+                    if (char.IsUpper(ch))
                     {
                         ++upperCount;
                     }
@@ -129,7 +129,7 @@ private int CalculatePasswordStrength(String plainTextPassword)
                         ++lowerCount;
                     }
                 }
-                else if (Char.IsDigit(ch))
+                else if (char.IsDigit(ch))
                 {
                     ++digitCount;
                 }
 
@@ -1,197 +1,199 @@
-// Copyright 2012,2013 Vaughn Vernon
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
-{
-    using System;
-    using System.Collections.Generic;
-    using System.Linq;
-    using SaaSOvation.Common.Domain.Model;
-    using SaaSOvation.IdentityAccess.Domain.Model.Access;
-
-    public class Tenant
-    {
-        public Tenant(string name, string description, bool active)
-        {
-            this.Active = active;
-            this.Description = description;
-            this.Name = name;
-            this.registrationInvitations = new HashSet<RegistrationInvitation>();
-            this.TenantId = new TenantId();
-        }
-
-        public bool Active { get; private set; }
-
-        public string Description { get; private set; }
-
-        public string Name { get; private set; }
-
-        public TenantId TenantId { get; private set; }
-
-        ISet<RegistrationInvitation> registrationInvitations;
-
-        public void Activate()
-        {
-            if (!this.Active)
-            {
-                this.Active = true;
-                DomainEventPublisher.Instance.Publish(new TenantActivated(this.TenantId));
-            }
-        }
-
-        public ICollection<InvitationDescriptor> AllAvailableRegistrationInvitations()
-        {
-            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
-            return AllRegistrationInvitationsFor(true);
-        }
-
-        public ICollection<InvitationDescriptor> AllUnavailableRegistrationInvitations()
-        {
-            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
-            return AllRegistrationInvitationsFor(false);
-        }
-
-        public void Deactivate()
-        {
-            if (this.Active)
-            {
-                this.Active = false;
-                DomainEventPublisher.Instance.Publish(new TenantDeactivated(this.TenantId));
-            }
-        }
-
-        public bool IsRegistrationAvailableThrough(string invitationIdentifier)
-        {
-            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
-            var invitation = InvitationOf(invitationIdentifier);
-            return invitation == null ? false : invitation.IsAvailable();
-        }
-
-        public RegistrationInvitation OfferRegistrationInvitation(string description)
-        {
-            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
-            AssertionConcern.AssertArgumentTrue(this.IsRegistrationAvailableThrough(description), "Invitation already exists.");
-
-            var invitation = new RegistrationInvitation(this.TenantId, new Guid().ToString(), description);
-
-            AssertionConcern.AssertStateTrue(this.registrationInvitations.Add(invitation), "The invitation should have been added.");
-
-            return invitation;
-        }
-
-        public Group ProvisionGroup(string name, string description)
-        {
-            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
-
-            var group = new Group(this.TenantId, name, description);
-
-            DomainEventPublisher.Instance.Publish(new GroupProvisioned(this.TenantId, name));
-
-            return group;
-        }
-
-        public Role ProvisionRole(string name, string description)
-        {
-            return ProvisionRole(name, description, false);
-        }
-
-        Role ProvisionRole(string name, string description, bool supportsNesting)
-        {
-            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
-
-            var role = new Role(this.TenantId, name, description, supportsNesting);
-
-            DomainEventPublisher.Instance.Publish(new RoleProvisioned(this.TenantId, name));
-
-            return role;
-        }
-
-        public RegistrationInvitation RedefineRegistrationInvitationAs(string invitationIdentifier)
-        {
-            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
-            var invitation = InvitationOf(invitationIdentifier);
-            if (invitation != null)
-            {
-                invitation.RedefineAs().OpenEnded();
-            }
-            return invitation;
-        }
-
-        public User RegisterUser(string invitationIdentifier, string username, string password, Enablement enablement, Person person)
-        {
-            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
-            User user = null;
-            if (IsRegistrationAvailableThrough(invitationIdentifier))
-            {
-                // ensure same tenant
-                person.TenantId = this.TenantId;
-                user = new User(this.TenantId, username, password, enablement, person);
-            }
-            return user;
-        }
-
-        public void WithdrawInvitation(string invitationIdentifier)
-        {
-            var invitation = InvitationOf(invitationIdentifier);
-            if (invitation != null)
-            {
-                this.registrationInvitations.Remove(invitation);
-            }
-        }
-
-        List<InvitationDescriptor> AllRegistrationInvitationsFor(bool isAvailable)
-        {
-            return this.registrationInvitations
-                .Where(x => x.IsAvailable() == isAvailable)
-                .Select(x => x.ToDescriptor())
-                .ToList();
-        }
-
-        RegistrationInvitation InvitationOf(string invitationIdentifier)
-        {
-            return this.registrationInvitations.FirstOrDefault(x => x.IsIdentifiedBy(invitationIdentifier));
-        }
-
-        public override bool Equals(object anotherObject)
-        {
-            var equalObjects = false;
-            if (anotherObject != null && this.GetType() == anotherObject.GetType())
-            {
-                var typedObject = (Tenant)anotherObject;
-                equalObjects =
-                    this.TenantId.Equals(typedObject.TenantId) &&
-                    this.Name.Equals(typedObject.Name);
-            }
-            return equalObjects;
-        }
-
-        public override int GetHashCode()
-        {
-            return
-                +(48123 * 257)
-                + this.TenantId.GetHashCode()
-                + this.Name.GetHashCode();
-        }
-
-        public override string ToString()
-        {
-            return "Tenant ["
-                    + ", tenantId=" + TenantId
-                    + ", name=" + Name
-                    + ", description=" + Description
-                    + ", active=" + Active
-                    + "]";
-        }
-    }
-}
+// Copyright 2012,2013 Vaughn Vernon
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
+{
+    using System;
+    using System.Collections.Generic;
+    using System.Linq;
+    using SaaSOvation.Common.Domain.Model;
+    using SaaSOvation.IdentityAccess.Domain.Model.Access;
+
+    public class Tenant
+    {
+        public Tenant(string name, string description, bool active)
+        {
+            this.Active = active;
+            this.Description = description;
+            this.Name = name;
+            this.registrationInvitations = new HashSet<RegistrationInvitation>();
+            this.TenantId = new TenantId();
+        }
+
+        public bool Active { get; private set; }
+
+        public string Description { get; private set; }
+
+        public string Name { get; private set; }
+
+        public TenantId TenantId { get; private set; }
+
+        ISet<RegistrationInvitation> registrationInvitations;
+
+        public void Activate()
+        {
+            if (!this.Active)
+            {
+                this.Active = true;
+                DomainEventPublisher.Instance.Publish(new TenantActivated(this.TenantId));
+            }
+        }
+
+        public ICollection<InvitationDescriptor> AllAvailableRegistrationInvitations()
+        {
+            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
+            return AllRegistrationInvitationsFor(true);
+        }
+
+        public ICollection<InvitationDescriptor> AllUnavailableRegistrationInvitations()
+        {
+            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
+            return AllRegistrationInvitationsFor(false);
+        }
+
+        public void Deactivate()
+        {
+            if (this.Active)
+            {
+                this.Active = false;
+                DomainEventPublisher.Instance.Publish(new TenantDeactivated(this.TenantId));
+            }
+        }
+
+        public bool IsRegistrationAvailableThrough(string invitationIdentifier)
+        {
+            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
+            var invitation = InvitationOf(invitationIdentifier);
+            return invitation == null ? false : invitation.IsAvailable();
+        }
+
+        public RegistrationInvitation OfferRegistrationInvitation(string description)
+        {
+            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
+            AssertionConcern.AssertArgumentTrue(IsRegistrationAvailableThrough(description), "Invitation already exists.");
+
+            var invitation = new RegistrationInvitation(this.TenantId, new Guid().ToString(), description);
+
+            AssertionConcern.AssertStateTrue(this.registrationInvitations.Add(invitation), "The invitation should have been added.");
+
+            return invitation;
+        }
+
+        public Group ProvisionGroup(string name, string description)
+        {
+            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
+
+            var group = new Group(this.TenantId, name, description);
+
+            DomainEventPublisher.Instance.Publish(new GroupProvisioned(this.TenantId, name));
+
+            return group;
+        }
+
+        public Role ProvisionRole(string name, string description)
+        {
+            return ProvisionRole(name, description, false);
+        }
+
+        Role ProvisionRole(string name, string description, bool supportsNesting)
+        {
+            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
+
+            var role = new Role(this.TenantId, name, description, supportsNesting);
+
+            DomainEventPublisher.Instance.Publish(new RoleProvisioned(this.TenantId, name));
+
+            return role;
+        }
+
+        public RegistrationInvitation RedefineRegistrationInvitationAs(string invitationIdentifier)
+        {
+            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
+            var invitation = InvitationOf(invitationIdentifier);
+            if (invitation != null)
+            {
+                invitation.RedefineAs().OpenEnded();
+            }
+            return invitation;
+        }
+
+        public User RegisterUser(string invitationIdentifier, string username, string password, Enablement enablement, Person person)
+        {
+            AssertionConcern.AssertStateTrue(this.Active, "Tenant is not active.");
+            User user = null;
+            if (IsRegistrationAvailableThrough(invitationIdentifier))
+            {
+                // ensure same tenant
+                person.TenantId = this.TenantId;
+                user = new User(this.TenantId, username, password, enablement, person);
+            }
+            return user;
+        }
+
+        public void WithdrawInvitation(string invitationIdentifier)
+        {
+            var invitation = InvitationOf(invitationIdentifier);
+            if (invitation != null)
+            {
+                this.registrationInvitations.Remove(invitation);
+            }
+        }
+
+        List<InvitationDescriptor> AllRegistrationInvitationsFor(bool isAvailable)
+        {
+            return this.registrationInvitations
+                .Where(x => x.IsAvailable() == isAvailable)
+                .Select(x => x.ToDescriptor())
+                .ToList();
+        }
+
+        RegistrationInvitation InvitationOf(string invitationIdentifier)
+        {
+            return this.registrationInvitations.FirstOrDefault(x => x.IsIdentifiedBy(invitationIdentifier));
+        }
+
+
+
+        public override bool Equals(object anotherObject)
+        {
+            var equalObjects = false;
+            if (anotherObject != null && this.GetType() == anotherObject.GetType())
+            {
+                var typedObject = (Tenant)anotherObject;
+                equalObjects =
+                    this.TenantId.Equals(typedObject.TenantId) &&
+                    this.Name.Equals(typedObject.Name);
+            }
+            return equalObjects;
+        }
+
+        public override int GetHashCode()
+        {
+            return
+                +(48123 * 257)
+                + this.TenantId.GetHashCode()
+                + this.Name.GetHashCode();
+        }
+
+        public override string ToString()
+        {
+            return "Tenant ["
+                    + ", tenantId=" + TenantId
+                    + ", name=" + Name
+                    + ", description=" + Description
+                    + ", active=" + Active
+                    + "]";
+        }
+    }
+}
@@ -17,7 +17,7 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
     using System;
     using SaaSOvation.Common.Domain.Model;
 
-    public class TenantAdministratorRegistered : DomainEvent
+    public class TenantAdministratorRegistered : IDomainEvent
     {
         public TenantAdministratorRegistered(
             TenantId tenantId,
@@ -48,7 +48,7 @@ public TenantAdministratorRegistered(
         public string TenantId { get; private set; }
     }
 
-    public class GroupProvisioned : DomainEvent
+    public class GroupProvisioned : IDomainEvent
     {
         public GroupProvisioned(TenantId tenantId, string name)
         {
@@ -67,7 +67,7 @@ public GroupProvisioned(TenantId tenantId, string name)
         public string TenantId { get; private set; }
     }
 
-    public class TenantActivated : DomainEvent
+    public class TenantActivated : IDomainEvent
     {
         public TenantActivated(TenantId tenantId)
         {
@@ -83,7 +83,7 @@ public TenantActivated(TenantId tenantId)
         public string TenantId { get; private set; }
     }
 
-    public class TenantDeactivated : DomainEvent
+    public class TenantDeactivated : IDomainEvent
     {
         public TenantDeactivated(TenantId tenantId)
         {
@@ -99,7 +99,7 @@ public TenantDeactivated(TenantId tenantId)
         public string TenantId { get; private set; }
     }
 
-    public class TenantProvisioned : DomainEvent
+    public class TenantProvisioned : IDomainEvent
     {
         public TenantProvisioned(TenantId tenantId)
         {
 
@@ -1,102 +1,102 @@
-// Copyright 2012,2013 Vaughn Vernon
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
-{
-    using System;
-    using SaaSOvation.Common.Domain.Model;
-    using SaaSOvation.IdentityAccess.Domain.Model.Access;
-
-    public class TenantProvisioningService
-    {
-        public TenantProvisioningService(
-                TenantRepository tenantRepository,
-                UserRepository userRepository,
-                RoleRepository roleRepository)
-        {
-            this.roleRepository = roleRepository;
-            this.tenantRepository = tenantRepository;
-            this.userRepository = userRepository;
-        }
-
-        readonly RoleRepository roleRepository;
-        readonly TenantRepository tenantRepository;
-        readonly UserRepository userRepository;
-
-        public Tenant ProvisionTenant(
-                String tenantName,
-                String tenantDescription,
-                FullName administorName,
-                EmailAddress emailAddress,
-                PostalAddress postalAddress,
-                Telephone primaryTelephone,
-                Telephone secondaryTelephone)
-        {
-            try
-            {
-                // must be active to register admin
-                var tenant = new Tenant(tenantName, tenantDescription, true);
-
-                this.tenantRepository.Add(tenant);
-
-                RegisterAdministratorFor(tenant, administorName, emailAddress, postalAddress, primaryTelephone, secondaryTelephone);
-
-                DomainEventPublisher.Instance.Publish(new TenantProvisioned(tenant.TenantId));
-
-                return tenant;
-
-            }
-            catch (Exception e)
-            {
-                throw new InvalidOperationException(
-                        "Cannot provision tenant because: "
-                        + e.Message);
-            }
-        }
-
-        void RegisterAdministratorFor(Tenant tenant, FullName administorName, EmailAddress emailAddress, PostalAddress postalAddress, Telephone primaryTelephone, Telephone secondaryTelephone)
-        {
-            var invitation = tenant.OfferRegistrationInvitation("init").OpenEnded();
-
-            var strongPassword = new PasswordService().GenerateStrongPassword();
-
-            var admin =
-                tenant.RegisterUser(
-                        invitation.InvitationId,
-                        "admin",
-                        strongPassword,
-                        Enablement.IndefiniteEnablement(),
-                        new Person(
-                                tenant.TenantId,
-                                administorName,
-                                new ContactInformation(
-                                        emailAddress,
-                                        postalAddress,
-                                        primaryTelephone,
-                                        secondaryTelephone)));
-
-            tenant.WithdrawInvitation(invitation.InvitationId);
-
-            this.userRepository.Add(admin);
-
-            var adminRole = tenant.ProvisionRole("Administrator", "Default " + tenant.Name + " administrator.");
-
-            adminRole.AssignUser(admin);
-
-            this.roleRepository.Add(adminRole);
-
-            DomainEventPublisher.Instance.Publish(new TenantAdministratorRegistered(tenant.TenantId, tenant.Name, administorName, emailAddress, admin.Username, strongPassword));
-        }
-    }
-}
+// Copyright 2012,2013 Vaughn Vernon
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
+{
+    using System;
+    using SaaSOvation.Common.Domain.Model;
+    using SaaSOvation.IdentityAccess.Domain.Model.Access;
+
+    public class TenantProvisioningService
+    {
+        public TenantProvisioningService(
+                ITenantRepository tenantRepository,
+                IUserRepository userRepository,
+                IRoleRepository roleRepository)
+        {
+            this.roleRepository = roleRepository;
+            this.tenantRepository = tenantRepository;
+            this.userRepository = userRepository;
+        }
+
+        readonly IRoleRepository roleRepository;
+        readonly ITenantRepository tenantRepository;
+        readonly IUserRepository userRepository;
+
+        public Tenant ProvisionTenant(
+                String tenantName,
+                String tenantDescription,
+                FullName administorName,
+                EmailAddress emailAddress,
+                PostalAddress postalAddress,
+                Telephone primaryTelephone,
+                Telephone secondaryTelephone)
+        {
+            try
+            {
+                // must be active to register admin
+                var tenant = new Tenant(tenantName, tenantDescription, true);
+
+                this.tenantRepository.Add(tenant);
+
+                RegisterAdministratorFor(tenant, administorName, emailAddress, postalAddress, primaryTelephone, secondaryTelephone);
+
+                DomainEventPublisher.Instance.Publish(new TenantProvisioned(tenant.TenantId));
+
+                return tenant;
+
+            }
+            catch (Exception e)
+            {
+                throw new InvalidOperationException(
+                        "Cannot provision tenant because: "
+                        + e.Message);
+            }
+        }
+
+        void RegisterAdministratorFor(Tenant tenant, FullName administorName, EmailAddress emailAddress, PostalAddress postalAddress, Telephone primaryTelephone, Telephone secondaryTelephone)
+        {
+            var invitation = tenant.OfferRegistrationInvitation("init").OpenEnded();
+
+            var strongPassword = new PasswordService().GenerateStrongPassword();
+
+            var admin =
+                tenant.RegisterUser(
+                        invitation.InvitationId,
+                        "admin",
+                        strongPassword,
+                        Enablement.IndefiniteEnablement(),
+                        new Person(
+                                tenant.TenantId,
+                                administorName,
+                                new ContactInformation(
+                                        emailAddress,
+                                        postalAddress,
+                                        primaryTelephone,
+                                        secondaryTelephone)));
+
+            tenant.WithdrawInvitation(invitation.InvitationId);
+
+            this.userRepository.Add(admin);
+
+            var adminRole = tenant.ProvisionRole("Administrator", "Default " + tenant.Name + " administrator.");
+
+            adminRole.AssignUser(admin);
+
+            this.roleRepository.Add(adminRole);
+
+            DomainEventPublisher.Instance.Publish(new TenantAdministratorRegistered(tenant.TenantId, tenant.Name, administorName, emailAddress, admin.Username, strongPassword));
+        }
+    }
+}
@@ -17,7 +17,7 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Identity
     using System;
     using SaaSOvation.Common.Domain.Model;
 
-    public class PersonContactInformationChanged : DomainEvent
+    public class PersonContactInformationChanged : IDomainEvent
     {
         public PersonContactInformationChanged(
                 TenantId tenantId,
@@ -42,7 +42,7 @@ public PersonContactInformationChanged(
         public string Username { get; private set; }
     }
 
-    public class PersonNameChanged : DomainEvent
+    public class PersonNameChanged : IDomainEvent
     {
         public PersonNameChanged(
                 TenantId tenantId,
@@ -67,7 +67,7 @@ public PersonNameChanged(
         public string Username { get; private set; }
     }
 
-    public class UserEnablementChanged : DomainEvent
+    public class UserEnablementChanged : IDomainEvent
     {
         public UserEnablementChanged(
                 TenantId tenantId,
@@ -92,7 +92,7 @@ public UserEnablementChanged(
         public string Username { get; private set; }
     }
 
-    public class UserPasswordChanged : DomainEvent
+    public class UserPasswordChanged : IDomainEvent
     {
         public UserPasswordChanged(
                 TenantId tenantId,
@@ -113,7 +113,7 @@ public UserPasswordChanged(
         public string Username { get; private set; }
     }
 
-    public class UserRegistered : DomainEvent
+    public class UserRegistered : IDomainEvent
     {
         public UserRegistered(
                 TenantId tenantId,
 
@@ -20,7 +20,7 @@ namespace SaaSOvation.IdentityAccess.Domain.Model
 
     public class DomainRegistry
     {
-        public static EncryptionService EncryptionService
+        public static IEncryptionService EncryptionService
         {
             get
             {
 
@@ -1,43 +1,43 @@
-// Copyright 2012,2013 Vaughn Vernon
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-namespace SaaSOvation.IdentityAccess.Port.Adapter.Security
-{
-    using System;
-    using System.Security.Cryptography;
-    using System.Text;
-    using SaaSOvation.IdentityAccess.Domain.Model.Identity;
-    using SaaSOvation.Common.Domain.Model;
-
-    public class MD5EncryptionService : EncryptionService
-    {
-        public string EncryptedValue(string plainTextValue)
-        {
-            AssertionConcern.AssertArgumentNotEmpty(plainTextValue, "Plain text value to encrypt must be provided.");
-
-            var encryptedValue = new StringBuilder();
-
-            var hasher = MD5.Create();
-
-            var data = hasher.ComputeHash(Encoding.Default.GetBytes(plainTextValue));
-
-            for (int dataIndex = 0; dataIndex < data.Length; dataIndex++)
-            {
-                encryptedValue.Append(data[dataIndex].ToString("x2"));
-            }
-
-            return encryptedValue.ToString();
-        }
-    }
-}
+// Copyright 2012,2013 Vaughn Vernon
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+namespace SaaSOvation.IdentityAccess.Port.Adapter.Security
+{
+    using System;
+    using System.Security.Cryptography;
+    using System.Text;
+    using SaaSOvation.IdentityAccess.Domain.Model.Identity;
+    using SaaSOvation.Common.Domain.Model;
+
+    public class MD5EncryptionService : IEncryptionService
+    {
+        public string EncryptedValue(string plainTextValue)
+        {
+            AssertionConcern.AssertArgumentNotEmpty(plainTextValue, "Plain text value to encrypt must be provided.");
+
+            var encryptedValue = new StringBuilder();
+
+            var hasher = MD5.Create();
+
+            var data = hasher.ComputeHash(Encoding.Default.GetBytes(plainTextValue));
+
+            for (int dataIndex = 0; dataIndex < data.Length; dataIndex++)
+            {
+                encryptedValue.Append(data[dataIndex].ToString("x2"));
+            }
+
+            return encryptedValue.ToString();
+        }
+    }
+}
@@ -43,17 +43,17 @@
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Access\AuthorizationService.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Access\Role.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Access\RoleEvents.cs" />
-    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Access\RoleRepository.cs" />
+    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Access\IRoleRepository.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\AuthenticationService.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\ContactInformation.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\Enablement.cs" />
-    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\EncryptionService.cs" />
+    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\IEncryptionService.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\FullName.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\Group.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\GroupEvents.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\GroupMember.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\GroupMemberService.cs" />
-    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\GroupRepository.cs" />
+    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\IGroupRepository.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\InvitationDescriptor.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\PasswordService.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\Person.cs" />
@@ -62,11 +62,11 @@
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\TenantEvents.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\TenantId.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\TenantProvisioningService.cs" />
-    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\TenantRepository.cs" />
+    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\ITenantRepository.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\User.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\UserDescriptor.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\UserEvents.cs" />
-    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\UserRepository.cs" />
+    <Compile Include="SaaSOvation.IdentityAccess.Domain.Model.Identity\IUserRepository.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Domain.Model\DomainRegistry.cs" />
     <Compile Include="SaaSOvation.IdentityAccess.Port.Adapter.Security\MD5EncryptionService.cs" />
Original file line number	Diff line number	Diff line change
`@@ -68,7 +68,7 @@ public Product(`
`68`	`68`
`69`	`69`	`public TenantId TenantId { get; private set; }`
`70`	`70`
`71`		`- private ISet<ProductBacklogItem> BacklogItems { get; set; }`
	`71`	`+ ISet<ProductBacklogItem> BacklogItems { get; set; }`
`72`	`72`
`73`	`73`	`public ICollection<ProductBacklogItem> AllBacklogItems()`
`74`	`74`	`{`
`@@ -122,7 +122,7 @@ public BacklogItems.BacklogItem PlanBacklogItem(`
`122`	`122`	`BacklogItemType type,`
`123`	`123`	`StoryPoints storyPoints)`
`124`	`124`	`{`
`125`		`- BacklogItems.BacklogItem backlogItem =`
	`125`	`+ var backlogItem =`
`126`	`126`	`new BacklogItems.BacklogItem(`
`127`	`127`	`this.TenantId,`
`128`	`128`	`this.ProductId,`
Original file line number	Diff line number	Diff line change
`@@ -42,11 +42,11 @@ public ProductBacklogItem(`
`42`	`42`
`43`	`43`	`public override bool Equals(object anotherObject)`
`44`	`44`	`{`
`45`		`- bool equalObjects = false;`
	`45`	`+ var equalObjects = false;`
`46`	`46`
`47`	`47`	`if (anotherObject != null && this.GetType() == anotherObject.GetType())`
`48`	`48`	`{`
`49`		`- ProductBacklogItem typedObject = (ProductBacklogItem)anotherObject;`
	`49`	`+ var typedObject = (ProductBacklogItem)anotherObject;`
`50`	`50`	`equalObjects =`
`51`	`51`	`this.TenantId.Equals(typedObject.TenantId) &&`
`52`	`52`	`this.ProductId.Equals(typedObject.ProductId) &&`
Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products`
`19`	`19`	`using SaaSOvation.AgilePM.Domain.Model.Products.BacklogItems;`
`20`	`20`	`using SaaSOvation.AgilePM.Domain.Model.Tenants;`
`21`	`21`
`22`		`- public class ProductBacklogItemPlanned : DomainEvent`
	`22`	`+ public class ProductBacklogItemPlanned : IDomainEvent`
`23`	`23`	`{`
`24`	`24`	`public ProductBacklogItemPlanned(`
`25`	`25`	`TenantId tenantId,`
Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products`
`20`	`20`	`using SaaSOvation.AgilePM.Domain.Model.Tenants;`
`21`	`21`	`using SaaSOvation.Common.Domain.Model;`
`22`	`22`
`23`		`- public class ProductCreated : DomainEvent`
	`23`	`+ public class ProductCreated : IDomainEvent`
`24`	`24`	`{`
`25`	`25`	`public ProductCreated(`
`26`	`26`	`TenantId tenantId,`
Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@ namespace SaaSOvation.AgilePM.Domain.Model.Products`
`18`	`18`	`using SaaSOvation.Common.Domain.Model;`
`19`	`19`	`using System;`
`20`	`20`
`21`		`- public class ProductDiscussionInitiated : DomainEvent`
	`21`	`+ public class ProductDiscussionInitiated : IDomainEvent`
`22`	`22`	`{`
`23`	`23`	`public ProductDiscussionInitiated(TenantId tenantId, ProductId productId, ProductDiscussion productDiscussion)`
`24`	`24`	`{`
Original file line number	Diff line number	Diff line change
`@@ -36,19 +36,19 @@ public static DomainEventPublisher Instance`
`36`	`36`
`37`	`37`	`private DomainEventPublisher()`
`38`	`38`	`{`
`39`		`- this.Publishing = false;`
	`39`	`+ this.publishing = false;`
`40`	`40`	`}`
`41`	`41`
`42`		`- private bool Publishing { get; set; }`
	`42`	`+ bool publishing;`
`43`	`43`
`44`		`- private List<DomainEventSubscriber<DomainEvent>> _subscribers;`
`45`		`- private List<DomainEventSubscriber<DomainEvent>> Subscribers`
	`44`	`+ List<IDomainEventSubscriber<IDomainEvent>> _subscribers;`
	`45`	`+ List<IDomainEventSubscriber<IDomainEvent>> Subscribers`
`46`	`46`	`{`
`47`	`47`	`get`
`48`	`48`	`{`
`49`	`49`	`if (this._subscribers == null)`
`50`	`50`	`{`
`51`		`- this._subscribers = new List<DomainEventSubscriber<DomainEvent>>();`
	`51`	`+ this._subscribers = new List<IDomainEventSubscriber<IDomainEvent>>();`
`52`	`52`	`}`
`53`	`53`
`54`	`54`	`return this._subscribers;`
`@@ -59,58 +59,57 @@ private List<DomainEventSubscriber<DomainEvent>> Subscribers`
`59`	`59`	`}`
`60`	`60`	`}`
`61`	`61`
`62`		`- public void Publish<T>(T domainEvent) where T : DomainEvent`
	`62`	`+ public void Publish<T>(T domainEvent) where T : IDomainEvent`
`63`	`63`	`{`
`64`		`- if (!this.Publishing && this.HasSubscribers())`
	`64`	`+ if (!this.publishing && this.HasSubscribers())`
`65`	`65`	`{`
`66`	`66`	`try`
`67`	`67`	`{`
`68`		`- this.Publishing = true;`
	`68`	`+ this.publishing = true;`
`69`	`69`
`70`		`- Type eventType = domainEvent.GetType();`
	`70`	`+ var eventType = domainEvent.GetType();`
`71`	`71`
`72`		`- foreach (DomainEventSubscriber<T> subscriber in this.Subscribers)`
	`72`	`+ foreach (var subscriber in this.Subscribers)`
`73`	`73`	`{`
`74`		`- Type subscribedToType = subscriber.SubscribedToEventType();`
`75`		`-`
`76`		`- if (eventType == subscribedToType \|\| subscribedToType == typeof(DomainEvent))`
	`74`	`+ var subscribedToType = subscriber.SubscribedToEventType();`
	`75`	`+ if (eventType == subscribedToType \|\| subscribedToType == typeof(IDomainEvent))`
`77`	`76`	`{`
`78`	`77`	`subscriber.HandleEvent(domainEvent);`
`79`	`78`	`}`
`80`	`79`	`}`
`81`	`80`	`}`
`82`	`81`	`finally`
`83`	`82`	`{`
`84`		`- this.Publishing = false;`
	`83`	`+ this.publishing = false;`
`85`	`84`	`}`
`86`	`85`	`}`
`87`	`86`	`}`
`88`	`87`
`89`		`- public void PublishAll(ICollection<DomainEvent> domainEvents)`
	`88`	`+ public void PublishAll(ICollection<IDomainEvent> domainEvents)`
`90`	`89`	`{`
`91`		`- foreach (DomainEvent domainEvent in domainEvents)`
	`90`	`+ foreach (var domainEvent in domainEvents)`
`92`	`91`	`{`
`93`	`92`	`this.Publish(domainEvent);`
`94`	`93`	`}`
`95`	`94`	`}`
`96`	`95`
`97`	`96`	`public void Reset()`
`98`	`97`	`{`
`99`		`- if (!this.Publishing)`
	`98`	`+ if (!this.publishing)`
`100`	`99`	`{`
`101`	`100`	`this.Subscribers = null;`
`102`	`101`	`}`
`103`	`102`	`}`
`104`	`103`
`105`		`- public void Subscribe(DomainEventSubscriber<DomainEvent> subscriber)`
	`104`	`+ public void Subscribe(IDomainEventSubscriber<IDomainEvent> subscriber)`
`106`	`105`	`{`
`107`		`- if (!this.Publishing)`
	`106`	`+ if (!this.publishing)`
`108`	`107`	`{`
`109`	`108`	`this.Subscribers.Add(subscriber);`
`110`	`109`	`}`
`111`	`110`	`}`
`112`	`111`
`113`		`- private bool HasSubscribers()`
	`112`	`+ bool HasSubscribers()`
`114`	`113`	`{`
`115`	`114`	`return this._subscribers != null && this.Subscribers.Count != 0;`
`116`	`115`	`}`
Original file line number	Diff line number	Diff line change
`@@ -16,10 +16,9 @@ namespace SaaSOvation.Common.Domain.Model`
`16`	`16`	`{`
`17`	`17`	`using System;`
`18`	`18`
`19`		`- public interface DomainEvent`
	`19`	`+ public interface IDomainEvent`
`20`	`20`	`{`
`21`	`21`	`int EventVersion { get; set; }`
`22`		`-`
`23`	`22`	`DateTime OccurredOn { get; set; }`
`24`	`23`	`}`
`25`	`24`	`}`
Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,7 @@ namespace SaaSOvation.Common.Domain.Model`
`16`	`16`	`{`
`17`	`17`	`using System;`
`18`	`18`
`19`		`- public abstract class Identity`
	`19`	`+ public abstract class Identity : IEquatable<Identity>`
`20`	`20`	`{`
`21`	`21`	`public Identity()`
`22`	`22`	`{`
`@@ -30,26 +30,21 @@ public Identity(string id)`
`30`	`30`
`31`	`31`	`public string Id { get; private set; }`
`32`	`32`
`33`		`- public override bool Equals(object anotherObject)`
	`33`	`+ public bool Equals(Identity id)`
`34`	`34`	`{`
`35`		`- bool equalObjects = false;`
`36`		`-`
`37`		`- if (anotherObject != null && this.GetType() == anotherObject.GetType())`
`38`		`- {`
`39`		`- Identity typedObject = (Identity)anotherObject;`
`40`		`- equalObjects = this.Id.Equals(typedObject.Id);`
`41`		`- }`
	`35`	`+ if (object.ReferenceEquals(this, id)) return true;`
	`36`	`+ if (object.ReferenceEquals(null, id)) return false;`
	`37`	`+ return this.Id.Equals(id.Id);`
	`38`	`+ }`
`42`	`39`
`43`		`- return equalObjects;`
	`40`	`+ public override bool Equals(object anotherObject)`
	`41`	`+ {`
	`42`	`+ return Equals(anotherObject as Identity);`
`44`	`43`	`}`
`45`	`44`
`46`	`45`	`public override int GetHashCode()`
`47`	`46`	`{`
`48`		`- int hashCodeValue =`
`49`		`- + (this.GetType().GetHashCode() * 907)`
`50`		`- + this.Id.GetHashCode();`
`51`		`-`
`52`		`- return hashCodeValue;`
	`47`	`+ return (this.GetType().GetHashCode() * 907) + this.Id.GetHashCode();`
`53`	`48`	`}`
`54`	`49`
`55`	`50`	`public override string ToString()`
Original file line number	Diff line number	Diff line change
`@@ -18,10 +18,9 @@ namespace SaaSOvation.IdentityAccess.Domain.Model.Access`
`18`	`18`	`using SaaSOvation.Common.Domain.Model;`
`19`	`19`	`using SaaSOvation.IdentityAccess.Domain.Model.Identity;`
`20`	`20`
`21`		`- public interface RoleRepository`
	`21`	`+ public interface IRoleRepository`
`22`	`22`	`{`
`23`	`23`	`void Add(Role role);`
`24`		`-`
`25`	`24`	`Role RoleNamed(TenantId identity, string roleName);`
`26`	`25`	`}`
`27`	`26`	`}`
Original file line number	Diff line number	Diff line change
`@@ -106,14 +106,12 @@ public override bool Equals(Object anotherObject)`
`106`	`106`
`107`	`107`	`public override int GetHashCode()`
`108`	`108`	`{`
`109`		`- int hashCodeValue =`
	`109`	`+ return`
`110`	`110`	`+ (73213 * 173)`
`111`	`111`	`+ this.EmailAddress.GetHashCode()`
`112`	`112`	`+ this.PostalAddress.GetHashCode()`
`113`	`113`	`+ this.PrimaryTelephone.GetHashCode()`
`114`	`114`	`+ (this.SecondaryTelephone == null ? 0:this.SecondaryTelephone.GetHashCode());`
`115`		`-`
`116`		`- return hashCodeValue;`
`117`	`115`	`}`
`118`	`116`
`119`	`117`	`public override string ToString()`
`@@ -141,7 +139,8 @@ internal EmailAddress()`
`141`	`139`	`{`
`142`	`140`	`}`
`143`	`141`
`144`		`- private string _address;`
	`142`	`+ string _address;`
	`143`	`+`
`145`	`144`	`public string Address`
`146`	`145`	`{`
`147`	`146`	`get`