2

I have done custom authentication system by following this example and it works. my code is like below. I am wondering how I should control if the user is authenticated in other Actions, lets say if users goes to /Profile/Index?

I have tried HttpContext.User and User.Identity but didnt work. 

[HttpPost]
public ActionResult Login(string username, string password)
{
    if (new UserManager().IsValid(username, password))
    {
        var ident = new ClaimsIdentity(
          new[] {
      new Claim(ClaimTypes.NameIdentifier, username),
      new Claim("http://schemas.microsoft.com/accesscontrolservice/2010/07/claims/identityprovider", "ASP.NET Identity", "http://www.w3.org/2001/XMLSchema#string"),
      new Claim(ClaimTypes.Name,username)
          },
          DefaultAuthenticationTypes.ApplicationCookie);

        HttpContext.GetOwinContext().Authentication.SignIn(
           new AuthenticationProperties { IsPersistent = false }, ident);
        return RedirectToAction("MyAction"); // auth succeed 
    }
    ModelState.AddModelError("", "invalid username or password");
    return View();
}

this is my Global.asax

protected void Application_Start()
{
    AreaRegistration.RegisterAllAreas();
    FilterConfig.RegisterGlobalFilters(GlobalFilters.Filters);
    RouteConfig.RegisterRoutes(RouteTable.Routes);
    BundleConfig.RegisterBundles(BundleTable.Bundles);
}
Improve this question
14
  • What does User.Identity.IsAuthenticated returns after logging in and moving to /Profile/Index? Commented Jan 28, 2017 at 1:09
  • Have you tried HttpContext.GetOwinContext().Authentication.User.Identity.IsAuthenticted? Commented Jan 28, 2017 at 1:11
  • @DavidG, it returns false Commented Jan 28, 2017 at 1:12
  • @AliBaig, User.Identity.IsAuthenticated also returns false Commented Jan 28, 2017 at 1:13
  • And on Profile controller, it passes through the [Authorize] attribute but returns false on IsAuthenticated? Commented Jan 28, 2017 at 1:15

1 Answer 1

Reset to default
2

You are not setting up authentication in your Owin pipeline. The easiest way is to add a file like the one below. Call it IdentityConfig.cs and put it in the App_Start folder:

using Microsoft.AspNet.Identity;
using Microsoft.Owin;
using Microsoft.Owin.Security.Cookies;
using Owin;

//This line tells Owin which method to call
[assembly: OwinStartup(typeof(TokenBasedAuthenticationSample.IdentityConfig))]
namespace TokenBasedAuthenticationSample
{
    public class IdentityConfig
    {
        public void Configuration(IAppBuilder app)
        {
            //Here we add cookie authentication middleware to the pipeline 
            app.UseCookieAuthentication(new CookieAuthenticationOptions
            {
                AuthenticationType = DefaultAuthenticationTypes.ApplicationCookie,
                LoginPath = new PathString("/Account/login"),
            });
        }
    }
}
Improve this answer
Sign up to request clarification or add additional context in comments.

7 Comments

it cannot find UseCookieAuthentication
Did you add the using statements as above? Do you have the Microsoft.Owin.Security.Cookies package installed?
I added it, but when it goes to MyAction, claim seems empty
Does the action have the Authorize attribute?
no I dont, but I just added it. now, it goes to default login page.
|

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.