![](/img/trans.png)
[英]ASP.NET Core - Unable to signIn with signInManager when app is published
[英]Asp.Net Core - Identity SignInManager - How to signIn with an additional conditions in order for users to login (ex: ClientId, UserName and Password))
如何在 Asp.Net Core 中使用额外条件登录 - Identity SignInManager
示例我想检查并验证ClientId 、 UserName 和 Password 以进行登录。
像这样的东西
var result = await SignInManager.PasswordSignInAsync(model.ClientId, model.Email, model.Password, model.RememberMe, shouldLockout: false);
请看下面的完整代码
public async Task<IActionResult> OnPostAsync(string returnUrl = null)
{
returnUrl = returnUrl ?? Url.Content("~/");
if (ModelState.IsValid)
{
// This doesn't count login failures towards account lockout
// To enable password failures to trigger account lockout, set lockoutOnFailure: true
var result = await _signInManager.PasswordSignInAsync(Input.Email, Input.Password, Input.RememberMe, lockoutOnFailure: false);
if (result.Succeeded)
{
_logger.LogInformation("User logged in.");
return LocalRedirect(returnUrl);
}
if (result.RequiresTwoFactor)
{
return RedirectToPage("./LoginWith2fa", new { ReturnUrl = returnUrl, RememberMe = Input.RememberMe });
}
if (result.IsLockedOut)
{
_logger.LogWarning("User account locked out.");
return RedirectToPage("./Lockout");
}
else
{
ModelState.AddModelError(string.Empty, "Invalid login attempt.");
return Page();
}
}
// If we got this far, something failed, redisplay form
return Page();
}```
我将推荐使用适配器模式方法,通过编写接口和包装器 class 来实现原始 SignInManager.PasswordSignInAsync 上的接口。
此包装器 class 将具有一个方法,该方法接收客户端 ID 以及参数的 rest,执行验证,然后在完成后调用 SignInManager.PasswordSignInAsync。
您的登录方法将通过使用接口调用包装器 class。 通过 startup.cs 进行netCore 依赖注入。
public interface ISignInManagerAdapter
{
Task<Microsoft.AspNetCore.Identity.SignInResult> PasswordWithClientIdSignInAsync(string clientId, string userName, string password, bool isPersistent, bool lockoutOnFailure);
}
public class SignInManagerAdapter
{
private readonly IClientValidatorService _clientValidatorService;
public SignInManagerAdapter(IClientValidatorService clientValidatorService)
{
//you can add dependency injection interfaces to constructor parameter like below example.
this._clientValidatorService = clientValidatorService;
}
public async Task<Microsoft.AspNetCore.Identity.SignInResult> PasswordWithClientIdSignInAsync(string clientId, string userName, string password, bool isPersistent, bool lockoutOnFailure)
{
var validationStatus = _clientValidatorService.ValidateClientId(clientId);
if (validationStatus == "Active")
{
var result = await SignInManager.PasswordSignInAsync(model.ClientId, model.Email, model.Password, model.RememberMe, shouldLockout: false);
//do something
}
else
{
//do something
}
}
}
他们发现的解决方案不止一种,我选择扩展signInManager。
@Markuzy 的上述回答也是正确的, https://stackoverflow.com/a/61211905/13305109
这是我的代码
public class MySignInManager<TUser> : SignInManager<MyUser> where TUser : class
{
private readonly UserManager<MyUser> _userManager;
private readonly MyContext _dbContext;
private readonly IHttpContextAccessor _contextAccessor;
public MySignInManager(UserManager<MyUser> userManager, IHttpContextAccessor contextAccessor, IUserClaimsPrincipalFactory<MyUser> claimsFactory, IOptions<IdentityOptions> optionsAccessor, ILogger<SignInManager<MyUser>> logger, MyContext dbContext, IAuthenticationSchemeProvider schemeProvider, IUserConfirmation<MyUser> confirmation) : base(userManager, contextAccessor, claimsFactory, optionsAccessor, logger, schemeProvider, confirmation)
{
_userManager = userManager ?? throw new ArgumentNullException(nameof(userManager));
_contextAccessor = contextAccessor ?? throw new ArgumentNullException(nameof(contextAccessor));
_dbContext = dbContext ?? throw new ArgumentNullException(nameof(dbContext));
}
public override async Task<SignInResult> PasswordSignInAsync(string userName, string password, bool isPersistent, bool lockoutOnFailure)
{
SignInResult signInResult = new SignInResult();
//Login not allowed - ClientId required to login
return await Task.FromResult(signInResult);
}
public async Task<SignInResult> PasswordSignInAsync(string clientId, string userName, string password, bool isPersistent, bool lockoutOnFailure)
{
if(CheckIsClientIdValid(username, password))
{
var result = await base.PasswordSignInAsync(userName, password, isPersistent, lockoutOnFailure);
return result;
}
else
{
SignInResult result = await Task.FromResult(new SignInResult());
//Login not allowed - ClientId mismatch
return result;
}
}
}
并按顺序在 Startup.cs 中添加波纹管代码
services.AddSignInManager<MySignInManager<MyUser>>();
并用作
var result = await _signInManager.PasswordSignInAsync(Input.ClientId, Input.Email, Input.Password, Input.RememberMe, lockoutOnFailure: false);
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.