Microsoft Identity Framework with Custom User/Role Stores using Identity
This is geared toward using Identity Framework for Blazor Server applications where you are using Dapper for data access. The UserStore and RoleStore data access layer classes have been customized to use Dapper. They are in no-way complete. All of the underlying Identity Logic is unchanged, only they way Identity accesses the data in a database.
The UserStore and RoleStore classes use the Generic Repository here:
https://github.com/gismofx/DapperRepository and also on NuGet: https://www.nuget.org/packages/TheDapperRepository/.
More Examples coming soon.
In your API project Add the entries to secrets.json/AppSettings.json whatever app secrests store you use:
"JwtTokenSettings": {
"ValidIssuer": "ExampleIssuer",
"ValidAudience": "ValidAudience",
"SymmetricSecurityKey": "my_super_secret_key",
"JwtExpireSeconds": 900,
"RefreshTokenLifeDays": 4
}In program.cs Add the following:
builder.Services.AddIAppSettings(new MyAppSettings()); //Create a class that implements IAppSettings
builder.Services.AddDbConnectionInstantiatorForRepositories<MySqlConnection>(conStrBuilder.GetConnectionString(true)); //eg
builder.Services.AddJWTIdentity(builder.Configuration);
builder.Services.AddTransient<IEmailSender, EmailSender>();In your controller decorate your endpoints with [Authorize] per MS docs
[Authorize]
[HttpGet("{id:guid}")]
public async Task<ActionResult<Client>> Get(string id)
{
return Ok(await ClientRepository.FindByIDAsync(id));
}
[Authorize(Roles = "Admin,UsersEdit")]
[HttpGet("getuser\{userId}")]
public async Task<ActionResult<ApplicationUser>> Get(string userId)
{
var user = (await GetUsersWithRoles(userId:userId)).First();
return Ok(user);
}On the client-side(if you're using C#/Blazor):
@inject JWTWasmClient AuthClient
@code {
private async Task LoginClick()
{
var response = await AuthClient.Login(new() { Email = userName, Password = password }, ((AuthStateProvider)authStateProvider).NotifyUserAuthentication);
if (!string.IsNullOrWhiteSpace(response.Token))
{
navManager.NavigateTo(@"\");
await AppState.LoadCurrentUser(true);
}
else
{
Snackbar.Add(new MarkupString("There was an error logging in. Bad login info or internet may be disconnected. Try again later"), Severity.Error);
}
}
}In startup.cs add the following
using DapperIdentity.Services;
using DapperRepository;In ConfigureServices method, add the following:
var connString = Configuration.GetConnectionString("DefaultConnection");
services.AddDbConnectionInstantiatorForRepositories<MySqlConnection>(connString);
//To use DEFAULT MS Identity UI Razor Pages Add Vanilla
//services.AddDapperIdentityWithVanillaUIAndDefaults();
//or only Identity Middle and Back-End use this:
services.AddDapperIdentityWithCustomCookies(TimeSpan.FromMinutes(10));//Or however long you want login cookie to last
services.AddScoped<AuthenticationStateProvider, RevalidatingIdentityAuthenticationStateProvider<DapperIdentity.Models.CustomIdentityUser>>();Note: In order to scaffold, it requires a DBContext class; create one; it is not used and can be delete after scaffolding.
You Must Scaffold out the pages that you want to use and add the following to the top of each page's cshtml.cs file:
using IdentityUser = DapperIdentity.Models.CustomIdentityUserAlso to top of _Login_Partial.cshtml add:
@using IdentityUser = DapperIdentity.Models.CustomIdentityUserLogging in requires an HTTP POST so the cookies can created. Here's a simple HTML form section which you can use for logging in which you can put on any page in Blazor:
<form action="Identity/Login" method="post"><!--cookie-->
<input name="name" type="text" />
<input name="password" type="password" />
<input type="submit" />
</form> To Do:
- Make a better/generic login razor component.
- Handle invalid user/pass.
- Add remember me checkbox
- Handle Email Confirmation(Add Controller Action)
- NuGet Package