Asp.NET Identity Custom SignInManager

c# asp.net asp.net-mvc asp.net-identity
26,697

Why not just create another method instead of overriding? Your method will return whatever you need to know - return object that will know if account is actually logged in or disabled by admin (I think "disabled" is a better name for this - avoids confusion). And change your controllers to use your new method instead of the standard PasswordSignIn.

Regarding username uniqueness - yes, the usernames are unique - this is the only way users can sign-in. Otherwise if there are 2 accounts with the same username, how would the system know which account to try the password against?

Share:
26,697
phandinhlan
Author by

phandinhlan

Updated on July 27, 2022

Comments

  • phandinhlan
    phandinhlan almost 2 years

    In my application, I would like to add additional conditions in order for users to login. For example, the Admin is allowed to "lock" a user account, for some reason. When account is locked, the user cannot log in. Note that this is different for the "lock out" due to multiple failed login attempts. The lock condition could be removed by the Admin.

    I see that the default template creates a ApplicationSignInManager that derives from the default.

    public class ApplicationSignInManager : SignInManager<User, string>

    The "Login" action from the "Account" controller calls

    var result = await SignInManager.PasswordSignInAsync(model.Email, model.Password, model.RememberMe, shouldLockout: false);

    So my attempt is to override this function

    public override async Task<SignInStatus> PasswordSignInAsync(string userName, string password, bool isPersistent, bool shouldLockout)
{
    User user = this.UserManager.FindByName(userName);
    if (null != user)
    {
        if (true == user.AccountLocked)
        {
            return (SignInStatus.LockedOut);
        }
    }

    var result = await base.PasswordSignInAsync(userName, password, isPersistent, shouldLockout);

    return (result);
}

    There are 2 problems with this. First, this assumes that the "userName" is unique for each user. Although, this could be safely assumed.

    Second, the function returns practically a SignInStatus, which is defined by the Asp.net Identity. I cannot modify to return anything else, to convey proper reason why the login may fail.

    Could anyone provide good solutions to this?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Extending asp.net mvc 5 identity with custom tables
Dynamically add roles to authorize attribute for controller
Email Confirmation with MVC 5 and Asp.net Identity
Why is Asp.Net Identity IdentityDbContext a Black-Box?
InvalidOperationException: Cannot create a DbSet for 'Role' because this type is not included in the model for the context
ASP.NET Identity, require 'strong' passwords
Get UserID of logged-in user in Asp.Net MVC 5
ASP.NET Identity - Multiple object sets per type are not supported
How to get current user, and how to use User class in MVC5?
ASP.NET Identity - HttpContext has no extension method for GetOwinContext