C# ASP.NET MVC 5上的ASP.NET标识设置的Controller.User不一致
我试图将身份验证与控制器分离,因此我制作了一个C# ASP.NET MVC 5上的ASP.NET标识设置的Controller.User不一致,c#,asp.net-mvc,asp.net-mvc-5,asp.net-identity,owin,C#,Asp.net Mvc,Asp.net Mvc 5,Asp.net Identity,Owin,我试图将身份验证与控制器分离,因此我制作了一个AuthenticationService,并使用Ninject将其注入身份验证控制器(DefaultController)。下面是AuthenticationService的实现: public sealed class AuthenticationService { private IAuthenticationManager AuthenticationManager { get; set; } private UserMana
AuthenticationServiceDefaultControllerAuthenticationServicepublic sealed class AuthenticationService {
private IAuthenticationManager AuthenticationManager { get; set; }
private UserManager<Employee, int> EmployeeManager { get; set; }
public AuthenticationService(
IAuthenticationManager authenticationManager,
UserManager<Employee, int> employeeManager) {
this.AuthenticationManager = authenticationManager;
this.EmployeeManager = employeeManager;
}
public bool SignIn(
CredentialsInput credentials) {
Employee employee = this.EmployeeManager.Find(credentials.Email, credentials.Password);
if (employee != null) {
ClaimsIdentity identityClaim = this.EmployeeManager.CreateIdentity(employee, DefaultAuthenticationTypes.ApplicationCookie);
if (identityClaim != null) {
this.AuthenticationManager.SignIn(new AuthenticationProperties(), identityClaim);
return true;
}
}
return false;
}
public void SignOut() {
this.AuthenticationManager.SignOut(DefaultAuthenticationTypes.ApplicationCookie);
}
}
DefaultControllerpublic sealed class DefaultController : Controller {
private AuthenticationService AuthenticationService { get; set; }
public DefaultController(
AuthenticationService authenticationService) {
this.AuthenticationService = authenticationService;
}
[HttpPost, AllowAnonymous, ValidateAntiForgeryToken]
public RedirectToRouteResult Default(
[Bind(Prefix = "Credentials", Include = "Email,Password")] CredentialsInput credentials) {
if (base.ModelState.IsValid
&& this.AuthenticationService.SignIn(credentials)) {
// Place of error. The IsInRole() method doesn't return
// the correct answer because the
// IUserStore<>.FindByIdAsync() method is not setting
// the correct data.
if (this.User.IsInRole("Technician")) {
return this.RedirectToAction<TechniciansController>(
c =>
c.Default());
}
return this.RedirectToAction(
c =>
c.Dashboard());
}
return this.RedirectToAction(
c =>
c.Default());
}
[HttpGet]
public RedirectToRouteResult SignOut() {
this.AuthenticationService.SignOut();
return this.RedirectToAction(
c =>
c.Default());
}
}
用户DefaultRedirect用户 [HttpPost, AllowAnonymous, ValidateAntiForgeryToken]
public RedirectToRouteResult Default(
[Bind(Prefix = "Credentials", Include = "Email,Password")] CredentialsInput credentials) {
if (base.ModelState.IsValid
&& this.AuthenticationService.SignIn(credentials)) {
return this.RedirectToAction(
c =>
c.DefaultRedirect());
}
return this.RedirectToAction(
c =>
c.Default());
}
[HttpGet]
public RedirectToRouteResult DefaultRedirect() {
if (this.User.IsInRole("Technician")) {
return this.RedirectToAction<TechniciansController>(
c =>
c.Default());
}
return this.RedirectToAction(
c =>
c.Dashboard());
}
[HttpPost,AllowAnonymous,ValidateAntiForgeryToken]
公共重定向路由结果默认值(
[Bind(Prefix=“Credentials”,Include=“Email,Password”)]Credentials输入凭据){
如果(base.ModelState.IsValid
&&此.AuthenticationService.SignIn(凭据)){
返回此.RedirectToAction(
c=>
c、 DefaultRedirect());
}
返回此.RedirectToAction(
c=>
c、 默认值());
}
[HttpGet]
公共重定向器路由结果DefaultRedirect(){
if(this.User.IsInRole(“技术人员”)){
返回此.RedirectToAction(
c=>
c、 默认值());
}
返回此.RedirectToAction(
c=>
c、 仪表板());
}
如果有人知道,我仍在寻找真正的解决方案为了清楚起见--ASP.NET标识与在MVC中设置用户属性无关。这就是Katana身份验证中间件的工作。ASP.NET标识在数据库中管理用户的凭据和标识数据。我建议不要使用任务中的异步方法。任务中的异步方法使用IIS线程池中的线程,这意味着服务HTTP请求的线程更少。此外,由于方法
IsInRoleAsync()public sealed class DefaultController : Controller {
private AuthenticationService AuthenticationService { get; set; }
public DefaultController(
AuthenticationService authenticationService) {
this.AuthenticationService = authenticationService;
}
[HttpPost, AllowAnonymous, ValidateAntiForgeryToken]
public RedirectToRouteResult Default(
[Bind(Prefix = "Credentials", Include = "Email,Password")] CredentialsInput credentials) {
if (base.ModelState.IsValid
&& this.AuthenticationService.SignIn(credentials)) {
// Place of error. The IsInRole() method doesn't return
// the correct answer because the
// IUserStore<>.FindByIdAsync() method is not setting
// the correct data.
if (this.User.IsInRole("Technician")) {
return this.RedirectToAction<TechniciansController>(
c =>
c.Default());
}
return this.RedirectToAction(
c =>
c.Dashboard());
}
return this.RedirectToAction(
c =>
c.Default());
}
[HttpGet]
public RedirectToRouteResult SignOut() {
this.AuthenticationService.SignOut();
return this.RedirectToAction(
c =>
c.Default());
}
}
public Task<Employee> FindByIdAsync(
int employeeId) {
this.ThrowIfDisposed();
return this.Repository.FindSingleOrDefaultAsync<Employee, int>(employeeId);
}
public Task<bool> IsInRoleAsync(
Employee employee,
string roleName) {
this.ThrowIfDisposed();
if (employee == null) {
throw new ArgumentNullException("employee");
}
if (String.IsNullOrEmpty(roleName)) {
throw new ArgumentNullException("roleName");
}
return Task.FromResult<bool>(employee.Roles.Any(
r =>
(r.Name == roleName)));
}
[HttpPost, AllowAnonymous, ValidateAntiForgeryToken]
public RedirectToRouteResult Default(
[Bind(Prefix = "Credentials", Include = "Email,Password")] CredentialsInput credentials) {
if (base.ModelState.IsValid
&& this.AuthenticationService.SignIn(credentials)) {
return this.RedirectToAction(
c =>
c.DefaultRedirect());
}
return this.RedirectToAction(
c =>
c.Default());
}
[HttpGet]
public RedirectToRouteResult DefaultRedirect() {
if (this.User.IsInRole("Technician")) {
return this.RedirectToAction<TechniciansController>(
c =>
c.Default());
}
return this.RedirectToAction(
c =>
c.Dashboard());
}