英文:
The Authorize attribute in ASP.NET Core WebAPI controller with the Roles is not work
问题
I tried using [Authorize(Roles="role")] on my controller, but it doesn't work. Later, I checked using IsInRole to confirm if the role was successfully added, but it always shows false.
However, I found an article that had previously addressed this problem, so I tried the suggested solution, but it still didn't work.
我尝试在我的控制器上使用 [Authorize(Roles="role")],但它不起作用。后来,我使用 IsInRole 来确认角色是否成功添加,但它总是显示为false。
然而,我找到了一篇先前解决这个问题的文章,所以我尝试了建议的解决方案,但它仍然不起作用。
Link to the Stack Overflow article
我希望你帮我查找代码中的任何问题。
user.IsInRole("Developer") 返回 false,但 _userManager.IsInRoleAsync(user1, "Developer") 返回 true。
var user = HttpContext.User;
var ss = user.IsInRole("Developer"); // 返回 false
var user1 = await _userManager.Users.FirstOrDefaultAsync(x => x.UserName == User.FindFirstValue(ClaimTypes.Name));
var sss = await _userManager.IsInRoleAsync(user1, "Developer"); // 返回 true
这是我的用户注册过程。
if (await _userManager.Users.AnyAsync(x => x.UserName == registerDto.Username))
{
ModelState.AddModelError("username", "Username taken");
return ValidationProblem();
}
var user = new AppUser
{
DisplayName = registerDto.DisplayName,
UserName = registerDto.Username
};
var role = registerDto.Role;
if (await _roleManager.RoleExistsAsync(role))
{
var result = await _userManager.CreateAsync(user, registerDto.Password);
if (result.Succeeded == false)
{
return BadRequest(result.Errors);
}
await _userManager.AddToRoleAsync(user, role);
return await CreateUserObject(user);
}
return BadRequest($"Role {role} not found");
更新:
这是 AspNetRoles 表。
更新2:
我的其他设置。
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddJwtBearer(opt =>
{
opt.TokenValidationParameters = new TokenValidationParameters
{
ValidateIssuerSigningKey = true,
IssuerSigningKey = key,
ValidateIssuer = false,
ValidateAudience = false
};
opt.Events = new JwtBearerEvents
{
OnMessageReceived = context =>
{
var accessToken = context.Request.Query["access_token"];
var path = context.HttpContext.Request.Path;
if (!string.IsNullOrEmpty(accessToken) &&
HubPath.CheckStartsWithSegments(path))
{
context.Token = accessToken;
}
return Task.CompletedTask;
}
};
});
builder.Services.AddControllers(opt =>
{
var policy = new AuthorizationPolicyBuilder().RequireAuthenticatedUser().Build();
opt.Filters.Add(new AuthorizeFilter(policy));
});
英文:
I tried using [Authorize(Roles="role")] on my controller, but it doesn't work. Later, I checked using IsInRole to confirm if the role was successfully added, but it always shows false.
However, I found an article that had previously addressed this problem, so I tried the suggested solution, but it still didn't work.
I would like you to help me identify any issues in my code.
user.IsInRole("Developer") is return false, but _userManager.IsInRoleAsync(user1, "Developer") is return ture.
var user = HttpContext.User;
var ss = user.IsInRole("Developer"); // return false
var user1 = await _userManager.Users
.FirstOrDefaultAsync(x => x.UserName == User.FindFirstValue(ClaimTypes.Name));
var sss = await _userManager.IsInRoleAsync(user1, "Developer"); // return true
services.AddIdentityCore<AppUser>(opt =>
{
opt.Password.RequireDigit = false;
opt.Password.RequiredLength = 0;
opt.Password.RequireLowercase = false;
opt.Password.RequireUppercase = false;
opt.Password.RequireNonAlphanumeric = false;
opt.User.RequireUniqueEmail = false;
})
.AddRoles<IdentityRole>()
.AddEntityFrameworkStores<DataContext>();
services.AddScoped<IUserClaimsPrincipalFactory<AppUser>,UserClaimsPrincipalFactory<AppUser, IdentityRole>>();
Here is my user registration process.
if (await _userManager.Users.AnyAsync(x => x.UserName == registerDto.Username))
{
ModelState.AddModelError("username", "Username taken");
return ValidationProblem();
}
var user = new AppUser
{
DisplayName = registerDto.DisplayName,
UserName = registerDto.Username
};
var role = registerDto.Role;
if (await _roleManager.RoleExistsAsync(role))
{
var result = await _userManager.CreateAsync(user, registerDto.Password);
if (result.Succeeded == false)
{
return BadRequest(result.Errors);
}
await _userManager.AddToRoleAsync(user, role);
return await CreateUserObject(user);
}
return BadRequest($"Role {role} not found");
Updete:
It's AspNetRoles table.
Update 2:
My others setting.
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddJwtBearer(opt =>
{
opt.TokenValidationParameters = new TokenValidationParameters
{
ValidateIssuerSigningKey = true,
IssuerSigningKey = key,
ValidateIssuer = false,
ValidateAudience = false
};
opt.Events = new JwtBearerEvents
{
OnMessageReceived = context =>
{
var accessToken = context.Request.Query["access_token"];
var path = context.HttpContext.Request.Path;
if (!string.IsNullOrEmpty(accessToken) &&
HubPath.CheckStartsWithSegments(path))
{
context.Token = accessToken;
}
return Task.CompletedTask;
}
};
});
builder.Services.AddControllers(opt =>
{
var policy = new AuthorizationPolicyBuilder().RequireAuthenticatedUser().Build();
opt.Filters.Add(new AuthorizeFilter(policy));
});
答案1
得分: 1
以下是代码的中文翻译部分:
AspNetIdentityDbContext.cs
public class AspNetIdentityDbContext : IdentityDbContext<IdentityUser>
{
protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder)
{
optionsBuilder.UseMySql("server=192.168.2.68;database=wa99UserAuth;user=mysql1;password=Q!q11111", new MySqlServerVersion(new Version()));
}
}
program.cs
builder.Services.AddDbContext<AspNetIdentityDbContext>();
builder.Services.AddIdentity<IdentityUser, IdentityRole>()
.AddEntityFrameworkStores<AspNetIdentityDbContext>();
controller
[ApiController]
public class ValuesController : ControllerBase
{
private readonly UserManager<IdentityUser> _userManager;
private readonly RoleManager<IdentityRole> _roleManager;
private readonly SignInManager<IdentityUser> _signInManager;
public ValuesController(UserManager<IdentityUser> userManager, RoleManager<IdentityRole> roleManager, SignInManager<IdentityUser> signInManager)
{
this._userManager = userManager;
this._roleManager = roleManager;
this._signInManager = signInManager;
}
[HttpPost("AddRole")]
public async Task<string> AddRole(string role)
{
var role2 = new IdentityRole { Name = role };
var result = await _roleManager.CreateAsync(role2);
if (result.Succeeded)
{
return "成功";
}
else
{
return "错误";
}
}
[HttpPost("register")]
public async Task<string> register(string username, string password, string role)
{
var user = new IdentityUser
{
UserName = username
};
if (await _roleManager.RoleExistsAsync(role))
{
var result = await _userManager.CreateAsync(user, password);
if (result.Succeeded)
{
await _userManager.AddToRoleAsync(user, role);
return "成功";
}
else
{
return "错误";
}
}
else
{
return "错误";
}
}
[HttpPost("login")]
public async Task<string> login(string username, string password)
{
var result = await _signInManager.PasswordSignInAsync(username, password, true, false);
if (result.Succeeded)
{
return "成功";
}
else
{
return "错误";
}
}
[Authorize(Roles = "Developer")]
[HttpGet("test")]
public async Task test()
{
var user = HttpContext.User;
var ss = user.IsInRole("Developer");
var user1 = await _userManager.Users.FirstOrDefaultAsync(x => x.UserName == "user1");
var sss = await _userManager.IsInRoleAsync(user1, "Developer");
}
}
测试:
- 添加一个名为"Developer"的角色
- 注册一个用户"testUser",密码为"Q@q11111",角色为"Developer"
- 登录该用户
- 运行测试,ss为true
英文:
You can try the following code for a test.(.net6 api project)<br>
AspNetIdentityDbContext.cs
public class AspNetIdentityDbContext : IdentityDbContext<IdentityUser>
{
protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder)
{
optionsBuilder.UseMySql("server=192.168.2.68;database=wa99UserAuth;user=mysql1;password=Q!q11111", new MySqlServerVersion(new Version()));
}
}
program.cs
builder.Services.AddDbContext<AspNetIdentityDbContext>();
builder.Services.AddIdentity<IdentityUser, IdentityRole>()
.AddEntityFrameworkStores<AspNetIdentityDbContext>();
controller
[ApiController]
public class ValuesController : ControllerBase
{
private readonly UserManager<IdentityUser> _userManager;
private readonly RoleManager<IdentityRole> _roleManager;
private readonly SignInManager<IdentityUser> _signInManager;
public ValuesController(UserManager<IdentityUser> userManager,RoleManager<IdentityRole> roleManager,SignInManager<IdentityUser> signInManager)
{
this._userManager = userManager;
this._roleManager = roleManager;
this._signInManager = signInManager;
}
[HttpPost("AddRole")]
public async Task<string> AddRole(string role)
{
var role2 = new IdentityRole { Name = role };
var result = await _roleManager.CreateAsync(role2);
if (result.Succeeded)
{
return "Succeed";
}
else
{
return "Error";
}
}
[HttpPost("register")]
public async Task<string> register(string username,string password,string role)
{
var user = new IdentityUser
{
UserName = username
};
if (await _roleManager.RoleExistsAsync(role))
{
var result = await _userManager.CreateAsync(user, password);
if (result.Succeeded)
{
await _userManager.AddToRoleAsync(user, role);
return "Succeed";
}
else
{
return "Error";
}
}
else
{
return "Error";
}
}
[HttpPost("login")]
public async Task<string> login(string username,string password)
{
var result = await _signInManager.PasswordSignInAsync(username, password, true, false);
if (result.Succeeded)
{
return "Succeed";
}
else
{
return "Error";
}
}
[Authorize(Roles = "Developer")]
[HttpGet("test")]
public async Task test()
{
var user = HttpContext.User;
var ss = user.IsInRole("Developer");
var user1 = await _userManager.Users.FirstOrDefaultAsync(x => x.UserName == "user1");
var sss = await _userManager.IsInRoleAsync(user1, "Developer");
}
}
Test:<br>
1.Add a role name "Developer"<br>
<br>
2.Register a user "testUser" password "Q@q11111" with role "Developer"<br>
<br>
3.Signin the user<br>
<br>
4.Run test ,ss is true
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论