Verify newly entered password of logged in user

Solution 1

How can I confirm that this password is for the account holder?

how to do it via ASP.NET Identity

To reverify the password of currently logged in user, provide the user VerifyView to enter password and use the following method to check if the user exists.

var user = await UserManager.FindAsync(User.Identity.Name,VerifyViewModel.Password)

If the user is found, the current request is the same from the account holder.

Membership.ValidateUser is from earlier version of Membership framework, not from ASP.NET Identity.

Solution 2

You can also use UserManager.CheckPassword() extension function:

UserManagerExtensions.CheckPassword Method

string id = User.Identity.GetUserId();
var user = UserManager.FindById(id);
if(!UserManager.CheckPassword(user, model.Password))
{
    ModelState.AddModelError("Password", "Incorrect password.");
}

Solution 3

With Identity framework you never want to hit the database directly. Always use the API provided. The database structure has changed several times in the past few years, so introducing dependencies (e.g. on a data context) is adding work for no reason.

For async usage, see the answer already provided by jd4u.

For synchronously identifying that the password matches the current user, you need to first include:

using Microsoft.AspNet.Identity;

as this brings in a number of synchronous extension methods for identity framework.

You can then check with Find on the UserManager like this:

var user = UserManager.Find(User.Identity.Name, password);
if (user != null)
{
    // It is them!
}

If the user is not null, then you have a match of password and current username.

if(UserManager.PasswordHasher.VerifyHashedPassword("hashedPassword", "password") 
    != PasswordVerificationResult.Failed)
{
    // password is correct 
}

Related videos on Youtube

04 : 28

How To Fix Windows 10 Login Problems

ProgrammingKnowledge2

875

02 : 43

Fix Other User Login Screen

R3DLIN3S

393

13 : 31

Build Node.js User Authentication - Password Login

Web Dev Simplified

325

07 : 41

Username and password Java Tutorial

Den of the Nerds

171

05 : 05

How to View Saved Passwords on Windows 10

Quick Guides

143

14 : 06

How To Make Login Form With Password Toggle In HTML CSS JS

Easy Tutorials

143

06 : 26

Username or Password Error! Fixed on PLDT HOME Fibr HG6245D RP2613

JC-Tech tips

137

05 : 51

How to Enable Sql server Authentication in Sql server 2017 || Create a new User in Sql server 2017

THE CONCEPT ACADEMY BY IDEAS SOLUTION

104

05 : 52 : 52

MERN Authentication, Login, Register, Verification email, Facebook, Google, Forget Password

Dev A.T Viet Nam

63

13 : 10

Simple Verifying user login Java

Max O'Didily

58

06 : 29

how to validate login form with javascript

Coding Tutorials

30

05 : 00

Username and Password Validate from Database in PHP

Niklix

28

03 : 44

How to Disable Windows 10 Login Password and Lock Screen

MDTechVideos

3

Author by

Reid

Updated on June 17, 2022