stackoom
  简体   繁体   中英

Asp.net Identity 2.0 - redirect externally authenticated user based on role at login

 原文  2015-11-13 21:49:17       c#/ asp.net/ redirect/ asp.net-mvc-5/ asp.net-identity-2

Question

I'm trying to redirect users upon login to different pages, depending on their role.

Users with a local Identity account are redirected properly in the Login method, by using User.IsInRole("RoleName") .

However, when I try to conditionally redirect users who are using external validation, it fails to find the role, because the User is not set until after the redirect: 

        public async Task<ActionResult> ExternalLoginCallback(string returnUrl)
    {
        var loginInfo = await AuthenticationManager.GetExternalLoginInfoAsync();
        if (loginInfo == null)
        {
            return RedirectToAction("Login");
        }

        // Sign in the user with this external login provider if the user already has a login
        var result = await SignInManager.ExternalSignInAsync(loginInfo, isPersistent: false);

                if(User.IsInRole("Administrator")) 
//always evaluates to false because User is null
                {
                    returnUrl = "~/admin";
                } else
                {
                    returnUrl = "~/dashboard";
                }
        switch (result)
        {
            case SignInStatus.Success:
                return RedirectToLocal(returnUrl);
            case SignInStatus.LockedOut:
                return View("Lockout");
            case SignInStatus.RequiresVerification:
                return RedirectToAction("SendCode", new { ReturnUrl = returnUrl, RememberMe = false });
            case SignInStatus.Failure:
            default:
                // If the user does not have an account, then prompt the user to create an account
                ViewBag.ReturnUrl = returnUrl;
                ViewBag.LoginProvider = loginInfo.Login.LoginProvider;
                return View("ExternalLoginConfirmation", new ExternalLoginConfirmationViewModel { Email = loginInfo.Email });
        }
    }

It seems the User isn't completely logged in until after the RedirectToLocal() call triggers.

How can I check the external login user's roles before redirecting?

1 answers

solution1
 2 ACCPTED  2015-11-14 19:33:47

You are right, at least one new call is needed to apply user authentication. But if you don't want to redirect you could write something like this: 

public async Task<ActionResult> ExternalLoginCallback(string returnUrl)
{
    var loginInfo = await AuthenticationManager.GetExternalLoginInfoAsync();
    if (loginInfo == null)
    {
        return RedirectToAction("Login");
    }
    var result = await SignInManager.ExternalSignInAsync(loginInfo, isPersistent: false);

    if(result==SignInStatus.Success)
    {
        var user=UserManager.Find(loginInfo.Login);
        returnUrl =UserManager.IsInRole(user.Id, "Administrator")
            ? "~/admin"
            : "~/dashboard";

    }
    // rest of code
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Cant check if User is in a Role ASP.NET Identity 2.0 ASP.NET Identity 2.0 check if current user is in role IsInRole ASp.net Role management in Identity 2.0 Token based login logic change in ASP.NET Identity 2.0 redirect to different pages based on user role in ASP.NET MVC 4 Internet Application Login How to refresh current authenticated user's role changed membership in ASP.NET identity framework? ASP.Net Identity 2.0 Unattended Login Intercept/stop ASP.NET Identity unauthorized redirect for authenticated users ASP.NET Core 2.0 Identity, 2 controllers redirect each to different login page ASP.NET Identity 2.0 IsInCompanyRole(role,company)
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM