b24beb3154
This commit integrates ASP.NET Core Identity into the application to enable user registration, login, and management. This lays the groundwork for securing data per user.
**Key Changes:**
* **DbContext Configuration:**
* Modified `ApplicationDbContext.cs` to inherit from `IdentityDbContext<IdentityUser>`.
* Removed an unnecessary `using` statement from `ApplicationDbContext.cs`.
* **Program.cs Setup:**
* Configured `AddDefaultIdentity<IdentityUser>` with `AddEntityFrameworkStores<ApplicationDbContext>()` to register Identity services.
* Ensured correct ordering of `UseAuthentication()` and `UseAuthorization()` middleware.
* Added `app.MapRazorPages()` to enable the Identity UI pages.
* Verified core package versions in `turf_tasker.csproj` for consistency across EF Core and Identity components (`8.0.6`).
* **Identity UI:**
* Scaffolded ASP.NET Core Identity pages (Login, Register, Manage, etc.) to provide the user interface for authentication.
* Added a `_LoginPartial.cshtml` partial view to the `Views/Shared` folder.
* Rendered `_LoginPartial` in `Views/Shared/_Layout.cshtml` to display login/register/logout links in the navigation bar.
* **Migrations:**
* Created and applied a new migration (`AddIdentitySchema`) to create the necessary ASP.NET Core Identity database tables (e.g., `AspNetUsers`, `AspNetRoles`).
140 lines
5.8 KiB
C#
140 lines
5.8 KiB
C#
// Licensed to the .NET Foundation under one or more agreements.
|
|
// The .NET Foundation licenses this file to you under the MIT license.
|
|
#nullable disable
|
|
|
|
using System;
|
|
using System.Collections.Generic;
|
|
using System.ComponentModel.DataAnnotations;
|
|
using System.Linq;
|
|
using System.Threading.Tasks;
|
|
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Authentication;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Identity.UI.Services;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.AspNetCore.Mvc.RazorPages;
|
|
using Microsoft.Extensions.Logging;
|
|
|
|
namespace turf_tasker.Areas.Identity.Pages.Account
|
|
{
|
|
public class LoginModel : PageModel
|
|
{
|
|
private readonly SignInManager<IdentityUser> _signInManager;
|
|
private readonly ILogger<LoginModel> _logger;
|
|
|
|
public LoginModel(SignInManager<IdentityUser> signInManager, ILogger<LoginModel> logger)
|
|
{
|
|
_signInManager = signInManager;
|
|
_logger = logger;
|
|
}
|
|
|
|
/// <summary>
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
/// </summary>
|
|
[BindProperty]
|
|
public InputModel Input { get; set; }
|
|
|
|
/// <summary>
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
/// </summary>
|
|
public IList<AuthenticationScheme> ExternalLogins { get; set; }
|
|
|
|
/// <summary>
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
/// </summary>
|
|
public string ReturnUrl { get; set; }
|
|
|
|
/// <summary>
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
/// </summary>
|
|
[TempData]
|
|
public string ErrorMessage { get; set; }
|
|
|
|
/// <summary>
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
/// </summary>
|
|
public class InputModel
|
|
{
|
|
/// <summary>
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
/// </summary>
|
|
[Required]
|
|
[EmailAddress]
|
|
public string Email { get; set; }
|
|
|
|
/// <summary>
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
/// </summary>
|
|
[Required]
|
|
[DataType(DataType.Password)]
|
|
public string Password { get; set; }
|
|
|
|
/// <summary>
|
|
/// This API supports the ASP.NET Core Identity default UI infrastructure and is not intended to be used
|
|
/// directly from your code. This API may change or be removed in future releases.
|
|
/// </summary>
|
|
[Display(Name = "Remember me?")]
|
|
public bool RememberMe { get; set; }
|
|
}
|
|
|
|
public async Task OnGetAsync(string returnUrl = null)
|
|
{
|
|
if (!string.IsNullOrEmpty(ErrorMessage))
|
|
{
|
|
ModelState.AddModelError(string.Empty, ErrorMessage);
|
|
}
|
|
|
|
returnUrl ??= Url.Content("~/");
|
|
|
|
// Clear the existing external cookie to ensure a clean login process
|
|
await HttpContext.SignOutAsync(IdentityConstants.ExternalScheme);
|
|
|
|
ExternalLogins = (await _signInManager.GetExternalAuthenticationSchemesAsync()).ToList();
|
|
|
|
ReturnUrl = returnUrl;
|
|
}
|
|
|
|
public async Task<IActionResult> OnPostAsync(string returnUrl = null)
|
|
{
|
|
returnUrl ??= Url.Content("~/");
|
|
|
|
ExternalLogins = (await _signInManager.GetExternalAuthenticationSchemesAsync()).ToList();
|
|
|
|
if (ModelState.IsValid)
|
|
{
|
|
// This doesn't count login failures towards account lockout
|
|
// To enable password failures to trigger account lockout, set lockoutOnFailure: true
|
|
var result = await _signInManager.PasswordSignInAsync(Input.Email, Input.Password, Input.RememberMe, lockoutOnFailure: false);
|
|
if (result.Succeeded)
|
|
{
|
|
_logger.LogInformation("User logged in.");
|
|
return LocalRedirect(returnUrl);
|
|
}
|
|
if (result.RequiresTwoFactor)
|
|
{
|
|
return RedirectToPage("./LoginWith2fa", new { ReturnUrl = returnUrl, RememberMe = Input.RememberMe });
|
|
}
|
|
if (result.IsLockedOut)
|
|
{
|
|
_logger.LogWarning("User account locked out.");
|
|
return RedirectToPage("./Lockout");
|
|
}
|
|
else
|
|
{
|
|
ModelState.AddModelError(string.Empty, "Invalid login attempt.");
|
|
return Page();
|
|
}
|
|
}
|
|
|
|
// If we got this far, something failed, redisplay form
|
|
return Page();
|
|
}
|
|
}
|
|
}
|