c# - ASP Identity 2.0: Regenerate Identity -



c# - ASP Identity 2.0: Regenerate Identity -

i having problem getting asp identity refresh identity stored in cookie on demand.

in startup.auth.cs file cookie set regenerate follows:

app.usecookieauthentication(new cookieauthenticationoptions { authenticationtype = defaultauthenticationtypes.applicationcookie, loginpath = new pathstring("/account/login"), provider = new cookieauthenticationprovider { onvalidateidentity = securitystampvalidator.onvalidateidentity<quizsparkusermanager, quizsparkuser, int>( validateinterval: timespan.fromminutes(30), regenerateidentitycallback: ((manager, user) => manager.createidentityasync(user, defaultauthenticationtypes.applicationcookie)), getuseridcallback: ((claimsidentity) => int.parse(claimsidentity.getuserid()))) } });

however cannot work out how refresh contents on user.identity in code, i.e. forcefulness refresh of identity cookie when need refresh.

i want able utilize regenerate identity callback programmatically, possible?

my problem similar 1 : how invalidate .aspnet.applicationcookie after adding user role using asp.net identity 2?

however want refresh rather invalidate cookie.

edit

after looking @ linked question attempted next (without total error handling):

iowincontext context = request.getowincontext(); quizsparksigninmanager manager = context.get<quizsparksigninmanager>(); claimsidentity newidentity = manager.createuseridentity(manager.usermanager.findbyid(user.identity.getuserid<int>())); authenticateresult authenticationcontext = await context.authentication.authenticateasync(defaultauthenticationtypes.applicationcookie); if (authenticationcontext != null) { context.authentication.authenticationresponsegrant = new authenticationresponsegrant( newidentity, authenticationcontext.properties); } bool first2 = user.isinrole("turtle");

edit2: user still not appear refresh. on page reload seem refresh, right in thinking because user.identity cookie part of request , cannot changed in code?

if trying add together new role logged-in user, need sign user out. create new identity new role , sign user in new identity. that's way update cookie.

best place check if user properties have changed in callback use: cookieauthenticationprovider.onvalidateidentity. this.

app.usecookieauthentication(new cookieauthenticationoptions { // other stuff provider = new cookieauthenticationprovider { // function executed every http request , executed in pipeline // , here have access cookie properties , other low-level stuff. // makes sense have invalidation here onvalidateidentity = async context => { // invalidate user cookie if user's security stamp have changed var invalidatebyseciritystamp = securitystampvalidator.onvalidateidentity<applicationusermanager, applicationuser>( validateinterval: timespan.fromminutes(30), regenerateidentity: (manager, user) => user.generateuseridentityasync(manager)); await invalidatebyseciritystamp.invoke(context); if (context.identity == null || !context.identity.isauthenticated) { return; } if(/*need update cookie*/) { // user manager. must registered owin var usermanager = context.owincontext.getusermanager<usermanager>(); var username = context.identity.name; // new user identity updated properties var updateduser = await usermanager.findbynameasync(username); // updated identity new info in user object var newidentity = updateduser.generateuseridentityasync(manager); // kill old cookie context.owincontext.authentication.signout(context.options.authenticationtype); // sign in 1 time again var authenticationproperties = new authenticationproperties() { ispersistent = context.properties.ispersistent }; context.owincontext.authentication.signin(authenticationproperties, newidentity); } } } });

disclaimer - never tested it, not tried compile it.

also can see other answer reference - pretty much same piece of code, different goal.

upd: regarding part of question - how observe role change: can think of way - have guid on user record. similar securitystamp, not used framework. phone call mysecuritystamp. on sign-in add together value of mysecuritystamp cookie claim. on every request compare value of mysecuritystamp in cookie value in database. if values different - time regenerate identity. , on every new role added/removed modify mysecuritystamp user in database. cover sessions in browsers.

c# asp.net cookies asp.net-identity-2

Comments

Post a Comment

Popular posts from this blog

Delphi change the assembly code of a running process -

Delphi change the assembly code of a running process - i'm trying alter address 00741fa5 has push test.009e721c . alter push test.009e71c8 . procedure callback; asm force $9e71c8 end; procedure tform2.btn1click(sender: tobject); var ppid :dword; pprocess : cardinal; begin getwindowthreadprocessid(findwindow(nil,pchar('test')), @ppid); pprocess := openprocess(process_all_access, false, ppid); injectasm(pprocess, $741fa5, 10, integer(@callback), 0); end; here injectasm function (with error checking) function injectasm(process: longword; injectaddress, injectsize, codeaddress, codesize : integer): pointer; var csize, rsize : integer; replaced : array of byte; jmp : array [0..4] of byte; jmpaddress : integer; nopv : byte; : integer; nbr: ulong_ptr; begin //injectsize must equal or greater 5, because need space our //(far) jmp wwxxyyzz instruction //if there's no space, inject in place of few instructions if injectsize ...
Read more

json - Hibernate and Jackson (java.lang.IllegalStateException: Cannot call sendError() after the response has been committed) -

json - Hibernate and Jackson (java.lang.IllegalStateException: Cannot call sendError() after the response has been committed) - hello have problem hibernate , jackson. have 2 pojos @entity @table(name = "users") public class user implements serializable { static final long serialversionuid = 4235637833262722256l; @id @generatedvalue private int id; @column(name = "creation_date") private date creationdate; @column(name = "first_name") private string firstname; @column(name = "last_name") private string lastname; @version @column(name = "version") private int version; @column(name = "e_mail") private string email; @column(name = "enabled") private boolean enabled; @column(name = "login") private string login; @column(name = "password") private string password; @jsonmanagedreference("role") @onetomany(mappedby = "user", cascade = cascadetype.all,fetch = fetchtyp...
Read more

C++ 11 "class" keyword -

C++ 11 "class" keyword - i've started using c++ 11 little bit more , have few questions on special uses of class keyword. know it's used declare class, there's 2 instances have seen don't understand: method<class t>(); and class class_name *var; why precede typename keyword class in first example, , keyword pointer in sec example? that known elaborated type specifier , necessary when class name "shadowed" or "hidden" , need explicit. class t { }; // love of god don't t t; t t2; if compiler smart, give these warnings: main.cpp:15:5: error: must utilize 'class' tag refer type 't' in scope t t2; ^ class main.cpp:14:7: note: class 't' hidden non-type declaration of 't' here t t; ^ if class not defined, deed forwards declaration. for example: template <typename t> void method() { using type = typename t::value_type; } method...
Read more