我在我的 User 类 (IsEnabled) 中设置了一个新属性,并希望登录管理器检查此属性,因此我按如下方式重写 PasswordSignInAsync:
public class AuthSignInManager<TUser> : SignInManager<User> where TUser : class
{
private readonly UserManager<User> _userManager;
private readonly AuthContext _db;
private readonly IHttpContextAccessor _contextAccessor;
public AuthSignInManager(
UserManager<User> userManager,
IHttpContextAccessor contextAccessor,
IUserClaimsPrincipalFactory<User> claimsFactory,
IOptions<IdentityOptions> optionsAccessor,
ILogger<SignInManager<User>> logger,
AuthContext dbContext,
IAuthenticationSchemeProvider schemeProvider
)
: base(userManager, contextAccessor, claimsFactory, optionsAccessor, logger, schemeProvider)
{
_userManager = userManager ?? throw new ArgumentNullException(nameof(userManager));
_contextAccessor = contextAccessor ?? throw new ArgumentNullException(nameof(contextAccessor));
_db = dbContext ?? throw new ArgumentNullException(nameof(dbContext));
}
public override Task<SignInResult> PasswordSignInAsync(string userName, string password, bool rememberMe, bool shouldLockout)
{
var user = UserManager.FindByEmailAsync(userName).Result;
if ((user.IsEnabled.HasValue && !user.IsEnabled.Value) || !user.IsEnabled.HasValue)
{
return Task.FromResult(SignInResult.LockedOut);
}
return base.PasswordSignInAsync(userName, password, rememberMe, shouldLockout);
}
}
我已将以下内容放入启动中:
services.AddIdentity<User, IdentityRole>(config =>
{
config.SignIn.RequireConfirmedEmail = true;
})
.AddEntityFrameworkStores<AuthContext>()
.AddDefaultTokenProviders()
.AddUserManager<AuthSignInManager<User>>();
services.AddScoped<SignInManager<User>, AuthSignInManager<User>>();
正如 Brad 指出的那样,初创公司不应该打电话给
AddUserManager
相反:
.AddSignInManager<AuthSignInManager<User>>();
此行后面的行也可以完全删除,因为它实现了等效功能:
services.AddScoped<SignInManager<User>, AuthSignInManager<User>>();
或许也可以改为:
public override async Task<SignInResult> PasswordSignInAsync(string userName, string password, bool rememberMe, bool shouldLockout)
{
var user = await UserManager.FindByEmailAsync(userName);
if ((user.IsEnabled.HasValue && !user.IsEnabled.Value) || !user.IsEnabled.HasValue)
{
return SignInResult.LockedOut;
}
return await base.PasswordSignInAsync(userName, password, rememberMe, shouldLockout);
}