I need to get the UserId Guid directly after a successful login. The following code doesn’t work:
if (Membership.ValidateUser(txtUsername.Value, txtPassword.Value))
{
FormsAuthentication.SignOut();
FormsAuthentication.SetAuthCookie(txtUsername.Value, true);
if (HttpContext.Current.User.Identity.IsAuthenticated)
{
// doesn't run
Guid puk = (Guid)Membership.GetUser().ProviderUserKey;
}
}
The following code does work:
if (Membership.ValidateUser(txtUsername.Value, txtPassword.Value))
{
FormsAuthentication.SignOut();
FormsAuthentication.SetAuthCookie(txtUsername.Value, true);
MembershipUser user = Membership.GetUser(txtUsername.Value);
if (user != null)
{
Guid puk = (Guid)user.ProviderUserKey;
}
}
Why does this happen? Is there something more to do besides SetAuthCookie?
Answers:
Thank you for visiting the Q&A section on Magenaut. Please note that all the answers may not help you solve the issue immediately. So please treat them as advisements. If you found the post helpful (or not), leave a comment & I’ll get back to you as soon as possible.
Method 1
I had the same problem too. I forgot to set the web.config configuration.
Maybe you missed too.
<system.web>
<authentication mode="Forms">
<forms loginUrl="~/user/login" timeout="1000" name="__Auth" />
</authentication>
</system.web>
Method 2
Because when you call FormsAuthentication.SetAuthCookie(txtUsername.Value, true); you store the key on the client’s cookies. For this you need to do a response to the user.
And for HttpContext.Current.User.Identity to be filled with cookie you need one more request.
In short your scheme looks like this:
- Client sends his UserName and Password.
-
Server gets and checks it. If they are valid the server sends
Set-Cookieheader to the client. - Client receives and stores it. For each request client sends cookies back to the server.
UPDATE for @Jake
Adding an example of setting User in HttpContext
var identity = new System.Security.Principal.GenericIdentity(user.UserName); var principal = new GenericPrincipal(identity, new string[0]); HttpContext.Current.User = principal; Thread.CurrentPrincipal = principal;
Note that you could create your custom principal class inheriting from GenericPrincipal or ClaimsPrincipal
Method 3
In my development environment case, requireSSL property was set to true, I fixed the problem by changing it to requireSSL = false.
Method 4
I tried all the above solutions ,but the thing that solves my problem was commenting this in web.config
<modules> <remove name="FormsAuthentication"/> </modules>
Method 5
I got this error in a Blazor .NET 6 WASM application. I followed the guide below to expose the authentication state as a cascading parameter:
This worked well but when used with OnInitializedAsync user.Identity.IsAuthenticated was set to false after successful login but worked when the page was refreshed.
Changing component lifecycle to OnParametersSetAsync instead fixed the problem.
Complete code in MainLayout.razor:
@code {
bool loadData = true;
[CascadingParameter]
private Task<AuthenticationState> authenticationStateTask { get; set; }
protected override async Task OnParametersSetAsync()
{
var authState = await authenticationStateTask;
var user = authState.User;
if (user.Identity.IsAuthenticated)
{
loadData = true;
await StateContainer.LoadDataAsync();
loadData = false;
}
else
{
loadData = false;
}
}
}
All methods was sourced from stackoverflow.com or stackexchange.com, is licensed under cc by-sa 2.5, cc by-sa 3.0 and cc by-sa 4.0