ASP.Net 核心身份 ResetPasswordAsync 失败:InvalidToken
ASP.Net Core Identity ResetPasswordAsync Failed : InvalidToken
我正在尝试创建一个函数,该函数将在 asp .net core 3.1 using Identity
中请求时重置用户密码到目前为止,只要函数 GeneratePasswordResetTokenAsync 被调用它returns 符合预期的令牌
// Generate Reset Token.
var token = await userManager.GeneratePasswordResetTokenAsync(appIdentityUser);
CfDJ8OHfQcgoimpKvwzwyqjhuwNuJOOwPXPw2F9wg5t7HNMc+YZbnJn1n8cVwBmq/yYV4edV8wl+p6QHSOv/gtW6yat7iuD9v9dBqTmw+Lie2UY9MDLsMEu+GQWaRlUWEH70FoyGqUUcU1/Tzk6tmBvz8cRPlx2KTnJfVc73e1XMZg69pUk58XRuKzRTgwyw/70aSSy6oh1LgDj4g1OqPRSqsgKaPh1vUnMThYb0GwqovqGZoU37N5COem4RmYFn4uVIEQ==
出于测试目的,我现在在同一方法中调用 ResetPasswordAsync 以查看密码是否会重置
注意 user 已找到。
// Find User.
AppIdentityUser user = await userManager.FindByEmailAsync(appIdentityUser.Email);
// Attempt To Reset The Password To someRealL0ngP@ssW0rd
IdentityResult resetPassword = await userManager.ResetPasswordAsync(user, token, "someRealL0ngP@ssW0rd");
不幸的是我收到这个错误Failed : InvalidToken
这是启动文件中的 AddIdentity 以及 DbContext。
...
// Create The DbContext.
services.AddDbContext<AppIdentityDbContext>(options =>
{
options.UseSqlServer(Configuration.GetConnectionString("AussieFoods2ULocal"));
});
// Identity User. Plus Password Complexity For Easy Testing.
services.AddIdentity<AppIdentityUser, IdentityRole>(options =>
{
options.Password.RequireDigit = false;
options.Password.RequiredLength = 5;
options.Password.RequireNonAlphanumeric = false;
options.Password.RequiredUniqueChars = 0;
options.Password.RequireUppercase = false;
options.User.RequireUniqueEmail = true;
})
.AddEntityFrameworkStores<AppIdentityDbContext>()
.AddDefaultTokenProviders();
// Paths For The Identity
services.ConfigureApplicationCookie(options =>
{
options.LoginPath = "/Security/SignIn";
options.AccessDeniedPath = "/Security/AccessDenided";
});
services.Configure<DataProtectionTokenProviderOptions>(options =>
{
options.TokenLifespan = TimeSpan.FromHours(2);
});
services.AddAuthentication();
...
我不确定这是否与此有关,但我确实创建了一个继承自 IdentityUser
的自定义 class
public class AppIdentityUser : IdentityUser
{
[Required]
public string FirstName { get; set; }
[Required]
public string LastName { get; set; }
[EmailAddress]
[Required]
public override string Email { get => base.Email; set => base.Email = value; }
public string Address1 { get; set; }
public string Address2 { get; set; }
public string Suburb { get; set; }
public string City { get; set; }
public string PostCode { get; set; }
}
您可以创建自定义令牌提供程序来生成 PasswordResetToken 像这样
public class ResetPasswordTokenProvider<TUser> : DataProtectorTokenProvider<TUser> where TUser : class
{
public ResetPasswordTokenProvider(IDataProtectionProvider dataProtectionProvider,
IOptions<ResetPasswordTokenProviderOptions> options)
: base(dataProtectionProvider, options)
{
}
}
public class ResetPasswordTokenProviderOptions : DataProtectionTokenProviderOptions
{
public ResetPasswordTokenProviderOptions()
{
Name = "ResetPasswordDataProtectorTokenProvider";
TokenLifespan = TimeSpan.FromDays(1);
}
}
然后在 AddIdentity 和 services
中注册自定义令牌提供程序
services.AddIdentity<AppIdentityUser, IdentityRole>(options =>
{
options.Password.RequireDigit = false;
options.Password.RequiredLength = 5;
options.Password.RequireNonAlphanumeric = false;
options.Password.RequiredUniqueChars = 0;
options.Password.RequireUppercase = false;
options.User.RequireUniqueEmail = true;
//NOTE THIS
options.Tokens.ProviderMap.Add("ResetPassword", new TokenProviderDescriptor(typeof(ResetPasswordTokenProvider<AppIdentityUser>)));
options.Tokens.PasswordResetTokenProvider = "ResetPassword";
})
.AddTokenProvider<ResetPasswordTokenProvider<AppUserIdentity>>("ResetPassword")//<--NOTE THIS
.AddEntityFrameworkStores<AppIdentityDbContext>();
为了测试您的 Startup.cs 配置,我很快创建了一个新项目。 ConfigureServices 和你的一样,最后有 services.AddControllersWithViews(); 并且 Configure 在下面看起来很像。
public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
{
if (env.IsDevelopment())
app.UseDeveloperExceptionPage();
else
{
app.UseExceptionHandler("/Home/Error");
app.UseHsts();
}
app.UseHttpsRedirection();
app.UseStaticFiles();
app.UseRouting();
app.UseAuthorization();
app.UseEndpoints(endpoints =>
{
endpoints.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
});
}
然后我创建了一个操作来创建用户并重置密码。下面是重置密码的操作。
public async Task ResetPassword()
{
var user = await UserManager.FindByEmailAsync("your-email-address@domain.com");
var token = await UserManager.GeneratePasswordResetTokenAsync(user);
var result = await UserManager.ResetPasswordAsync(user, token, Guid.NewGuid().ToString());
}
这returns一个成功的结果。
我正在尝试创建一个函数,该函数将在 asp .net core 3.1 using Identity
中请求时重置用户密码到目前为止,只要函数 GeneratePasswordResetTokenAsync 被调用它returns 符合预期的令牌
// Generate Reset Token.
var token = await userManager.GeneratePasswordResetTokenAsync(appIdentityUser);
CfDJ8OHfQcgoimpKvwzwyqjhuwNuJOOwPXPw2F9wg5t7HNMc+YZbnJn1n8cVwBmq/yYV4edV8wl+p6QHSOv/gtW6yat7iuD9v9dBqTmw+Lie2UY9MDLsMEu+GQWaRlUWEH70FoyGqUUcU1/Tzk6tmBvz8cRPlx2KTnJfVc73e1XMZg69pUk58XRuKzRTgwyw/70aSSy6oh1LgDj4g1OqPRSqsgKaPh1vUnMThYb0GwqovqGZoU37N5COem4RmYFn4uVIEQ==
出于测试目的,我现在在同一方法中调用 ResetPasswordAsync 以查看密码是否会重置
注意 user 已找到。
// Find User.
AppIdentityUser user = await userManager.FindByEmailAsync(appIdentityUser.Email);
// Attempt To Reset The Password To someRealL0ngP@ssW0rd
IdentityResult resetPassword = await userManager.ResetPasswordAsync(user, token, "someRealL0ngP@ssW0rd");
不幸的是我收到这个错误Failed : InvalidToken
这是启动文件中的 AddIdentity 以及 DbContext。
...
// Create The DbContext.
services.AddDbContext<AppIdentityDbContext>(options =>
{
options.UseSqlServer(Configuration.GetConnectionString("AussieFoods2ULocal"));
});
// Identity User. Plus Password Complexity For Easy Testing.
services.AddIdentity<AppIdentityUser, IdentityRole>(options =>
{
options.Password.RequireDigit = false;
options.Password.RequiredLength = 5;
options.Password.RequireNonAlphanumeric = false;
options.Password.RequiredUniqueChars = 0;
options.Password.RequireUppercase = false;
options.User.RequireUniqueEmail = true;
})
.AddEntityFrameworkStores<AppIdentityDbContext>()
.AddDefaultTokenProviders();
// Paths For The Identity
services.ConfigureApplicationCookie(options =>
{
options.LoginPath = "/Security/SignIn";
options.AccessDeniedPath = "/Security/AccessDenided";
});
services.Configure<DataProtectionTokenProviderOptions>(options =>
{
options.TokenLifespan = TimeSpan.FromHours(2);
});
services.AddAuthentication();
...
我不确定这是否与此有关,但我确实创建了一个继承自 IdentityUser
的自定义 classpublic class AppIdentityUser : IdentityUser
{
[Required]
public string FirstName { get; set; }
[Required]
public string LastName { get; set; }
[EmailAddress]
[Required]
public override string Email { get => base.Email; set => base.Email = value; }
public string Address1 { get; set; }
public string Address2 { get; set; }
public string Suburb { get; set; }
public string City { get; set; }
public string PostCode { get; set; }
}
您可以创建自定义令牌提供程序来生成 PasswordResetToken 像这样
public class ResetPasswordTokenProvider<TUser> : DataProtectorTokenProvider<TUser> where TUser : class
{
public ResetPasswordTokenProvider(IDataProtectionProvider dataProtectionProvider,
IOptions<ResetPasswordTokenProviderOptions> options)
: base(dataProtectionProvider, options)
{
}
}
public class ResetPasswordTokenProviderOptions : DataProtectionTokenProviderOptions
{
public ResetPasswordTokenProviderOptions()
{
Name = "ResetPasswordDataProtectorTokenProvider";
TokenLifespan = TimeSpan.FromDays(1);
}
}
然后在 AddIdentity 和 services
services.AddIdentity<AppIdentityUser, IdentityRole>(options =>
{
options.Password.RequireDigit = false;
options.Password.RequiredLength = 5;
options.Password.RequireNonAlphanumeric = false;
options.Password.RequiredUniqueChars = 0;
options.Password.RequireUppercase = false;
options.User.RequireUniqueEmail = true;
//NOTE THIS
options.Tokens.ProviderMap.Add("ResetPassword", new TokenProviderDescriptor(typeof(ResetPasswordTokenProvider<AppIdentityUser>)));
options.Tokens.PasswordResetTokenProvider = "ResetPassword";
})
.AddTokenProvider<ResetPasswordTokenProvider<AppUserIdentity>>("ResetPassword")//<--NOTE THIS
.AddEntityFrameworkStores<AppIdentityDbContext>();
为了测试您的 Startup.cs 配置,我很快创建了一个新项目。 ConfigureServices 和你的一样,最后有 services.AddControllersWithViews(); 并且 Configure 在下面看起来很像。
public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
{
if (env.IsDevelopment())
app.UseDeveloperExceptionPage();
else
{
app.UseExceptionHandler("/Home/Error");
app.UseHsts();
}
app.UseHttpsRedirection();
app.UseStaticFiles();
app.UseRouting();
app.UseAuthorization();
app.UseEndpoints(endpoints =>
{
endpoints.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
});
}
然后我创建了一个操作来创建用户并重置密码。下面是重置密码的操作。
public async Task ResetPassword()
{
var user = await UserManager.FindByEmailAsync("your-email-address@domain.com");
var token = await UserManager.GeneratePasswordResetTokenAsync(user);
var result = await UserManager.ResetPasswordAsync(user, token, Guid.NewGuid().ToString());
}
这returns一个成功的结果。