naf*_*000 4 c# asp.net-identity asp.net-web-api2
我正在尝试确认电子邮件,但每次我收到无效令牌!我从angulaJS应用程序调用API http://www.codeproject.com/Articles/784106/AngularJS-Token-Authentication-using-ASP-NET-Web-A
// GET: /Account/ConfirmEmail
[System.Web.Http.HttpGet]
[System.Web.Http.AllowAnonymous]
[System.Web.Http.Route("ConfirmEmail")]
public async Task<IHttpActionResult> ConfirmEmail(string userId, string code)
{
var newcode = HttpContext.Current.Server.UrlDecode(code);
if (userId == null || code == null)
{
return BadRequest(ModelState);
}
var result = await UserManager.ConfirmEmailAsync(userId, newcode);
if (result.Succeeded) {
return Ok(result.Succeeded);
}
return GetErrorResult(result);
}
我在2个地方要求令牌
帐号/寄存器中的1 = var var = await UserManager.CreateAsync(user,model.Password);
if (result.Succeeded)
{
// await SignInManager.SignInAsync(user, isPersistent: false, rememberBrowser: false);
// For more information on how to enable account confirmation and password reset please visit http://go.microsoft.com/fwlink/?LinkID=320771
// Send an email with this link
string callbackUrl = await SendEmailConfirmationTokenAsync(user.Id, "Confirm your account");
return Ok(result.Succeeded);
}
return GetErrorResult(result);
}
和另一个在ResendEmail中.
[System.Web.Http.HttpGet]
[System.Web.Http.Route("ResendEmail")]
public async Task<IHttpActionResult> ResendEmail(string email)
{
if (ModelState.IsValid)
{
var user = await UserManager.FindByNameAsync(ActiveMember.Email);
if (user.Email == email)
{
var callbackUrl = await SendEmailConfirmationTokenAsync(user.Id, "Confirm your Email");
}
return Ok();
}
// If we got this far, something failed, redisplay form
return BadRequest(ModelState);
}
SendEmailConfirmationTokenAsync Helper
private async Task<string> SendEmailConfirmationTokenAsync(string userId, string subject)
{
string host = Request.RequestUri.Host.ToLower();
string code = await UserManager.GenerateEmailConfirmationTokenAsync(userId);
string callbackUrl = host + "/#/account/ConfirmEmail?userId=" + userId + "&code=" + HttpContext.Current.Server.UrlEncode(code);
await UserManager.SendEmailAsync(userId, subject, "Please confirm your account by clicking <a href=\"" + callbackUrl + "\">here</a><p>" + userId + "<p>" + code + "<p>" + callbackUrl);
return callbackUrl;
}
IdentityCinfig就是这样
var dataProtectionProvider = options.DataProtectionProvider;
if (dataProtectionProvider != null)
{
manager.UserTokenProvider =
new DataProtectorTokenProvider<Member>(dataProtectionProvider.Create("Identity"));
// manager.UserTokenProvider = new EmailTokenProvider<Member, string>();
}
这是我出错的事吗?
谢谢你的帮助.
我需要编码url和HttpUtilitu.UrlEncode无效,它用空格替换了字符+,导致令牌无效.
我有两个辅助方法
public static string Base64ForUrlEncode(string str)
{
var encbuff = Encoding.UTF8.GetBytes(str);
return HttpServerUtility.UrlTokenEncode(encbuff);
}
public static string Base64ForUrlDecode(string str)
{
var decbuff = HttpServerUtility.UrlTokenDecode(str);
return decbuff != null ? Encoding.UTF8.GetString(decbuff) : null;
}
注册行动
var code = await UserManager.GenerateEmailConfirmationTokenAsync(user.Id);
var callbackUrl = string.Format("{0}/#confirm-email?userId={1}&code={2}", "your-web-url", user.Id.ToString(), StringHelper.Base64ForUrlEncode(code));
和ConfirmEmail操作
var result = await UserManager.ConfirmEmailAsync(userId.ConvertToGuid(), StringHelper.Base64ForUrlDecode(code));