MVC Owin Identity 2 CheckPasswordAsync() 将不会执行

2024-05-09

我有两个问题似乎彼此相关，并且 stackoverflow 中的其他重复项都不能回答我的问题。

First当。。。的时候PasswordSignInAsync方法执行它永远不会停止或抛出任何异常它只是继续执行：

var result = await SignInManager.PasswordSignInAsync(model.UserName, model.Password, model.RememberMe, shouldLockout: false);

Second我想通过调用一个 Web 服务来验证用户身份，该服务接收用户名和密码并返回用户信息，因此我覆盖checkPasswordAsync方法，但它永远不会被执行：

 public class ApplicationUserManager : UserManager<ApplicationUser>
    {
       //...

        public override async Task<bool> CheckPasswordAsync(ApplicationUser user, string password)
        {
            return await Task.Run(() =>
            {
                return (checkUsernameAndPassword(user.username,password));
            });
        }
    //...
    }

我遇到了这个问题。

那是因为CheckPasswordAsync不在您的商店（身份数据库）中的用户永远不会调用该方法。

与表中的用户一起尝试，您应该能够使用该方法。

对于想要查看完整设置的人来说，它是这样的：

Step 1:

Add CustomUserManager:

using Microsoft.AspNetCore.Identity;
using Microsoft.Extensions.Options;

public class CustomUserManager<TUser> : UserManager<TUser> where TUser : IdentityUser
{
    public CustomUserManager(IUserStore<TUser> store, IOptions<IdentityOptions> optionsAccessor,
        IPasswordHasher<TUser> passwordHasher, IEnumerable<IUserValidator<TUser>> userValidators,
        IEnumerable<IPasswordValidator<TUser>> passwordValidators, ILookupNormalizer keyNormalizer,
        IdentityErrorDescriber errors, IServiceProvider services, ILogger<UserManager<TUser>> logger)
        : base(store, optionsAccessor, passwordHasher, userValidators, passwordValidators, keyNormalizer,
              errors, services, logger)
    {
    }

    // THIS IS ONLY CALLED FOR USERS STORED IN YOUR IDENTITY DATABASE
    public override Task<bool> CheckPasswordAsync(TUser user, string password)
    {
        // Add custom check using user.UserName and password
        return Task.FromResult(true); // Replace this with your custom check
    }
}

Step 2:

将其注册到您的Program.cs

builder.Services
.AddDefaultIdentity<ApplicationUser>(options =>
{
    options.SignIn.RequireConfirmedAccount = false;
})
.AddUserManager<CustomUserManager<ApplicationUser>>()  <----- THIS GUY
.AddEntityFrameworkStores<ApplicationDbContext>();

ApplicationUser and ApplicationDbContext看起来像这样：

public class ApplicationUser : IdentityUser
{
}

public class ApplicationDbContext : IdentityDbContext<ApplicationUser>
{
    public ApplicationDbContext(DbContextOptions<ApplicationDbContext> options)
        : base(options)
    {
    }

    protected override void OnModelCreating(ModelBuilder builder)
    {
        base.OnModelCreating(builder);
        // Customize the ASP.NET Identity model and override the defaults if needed.
        // For example, you can rename the ASP.NET Identity table names and more.
        // Add your customizations after calling base.OnModelCreating(builder);
    }
}

Step 3:

尝试使用以下方式登录：

var result = await _signInManager.PasswordSignInAsync("SomeUserNameInYourIdentityDatabase", "SomePassword", isPersistent: true, lockoutOnFailure: false);

你可以确定你会击中CheckPasswordAsync method.

本文内容由网友自发贡献，版权归原作者所有，本站不承担相应法律责任。如您发现有涉嫌抄袭侵权的内容，请联系:hwhale#tublm.com(使用前将#替换为@)

authentication

aspnetmvc5

aspnetidentity

owin