Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to add and access additional properties once logged in using Azure Active Directory in MVC?

Tags:

c#

asp.net-mvc

active-directory

asp.net-identity

azure

I have setup an Azure Active Directory (AD) to log in an MVC Web application. Once logged in, only Email ID is returned from Azure. I need to extend this to get some basic properties using Email ID as a key field; to map AD and my database which contains additional details.

My requirements are below

  1. Need to use AD for login.
  2. Once logged in Azure will return Email ID (which can be accessed from HttpContext.User.Identity.Name) I need to fetch some additional profile related properties from my Database during login time and store in extended identity.
  3. I don't want to fetch these additional details every time from Database on each action execution, instead, I need to get those additional properties from my DB after user logged in as like MVC normal authentication.
  4. AD Graph API is not useful because I don't want to store additional details in Azure instead it will be available in my Database.
like image 866
Bharat Avatar asked Nov 08 '22 02:11

Bharat

1 Answers

If you are using the OWIN middleware for OpenIdConnect, you can add your custom data as custom claims after the middleware has validated the token.

So something like:

app.UseOpenIdConnectAuthentication(new OpenIdConnectAuthenticationOptions
{
  // Rest of config left out for brevity
  Notifications = new OpenIdConnectAuthenticationNotifications
  {
    SecurityTokenValidated = async (notification) =>
    {
      ClaimsIdentity identity = notification.AuthenticationTicket.Identity;
      //Get the user data any way you want
      //Add claims
      identity.AddClaim(new Claim("homeTown", "Somewhere"));
    }
  }
});

The ClaimsIdentity will contain the usual user information about the signed-in user. You can add any claims you want here, and they will be stored the same as the usual ones. You can then access these claims e.g. in your controllers through the User property, or through ClaimsPrincipal.Current anywhere else.

The main advantage here is that you only fetch the data once when the user signs in, you don't need to get them on each request.

like image 111
juunas Avatar answered Nov 14 '22 20:11

juunas
Sign in to Comment

Related questions

The requested operation is not supported in CngKey.Create
MySQL not Listed in Updated model from Database for entity framework in VS Express 2012 edition
Diagnosing Google Fusion Table update using API to upload CSV issue
Mongo C# strongly typed index on nested array property
OWIN Login slow performance >30 Seconds
YamlDotNet can not find property
MVVM with complex Models
Azure AD API returns System.Security.Principal.GenericIdentity.IsAuthenticated as false always
Serealized mode in System.Data.SQLite for .NET
Unity Physics.Raycast does not seem to properly detect object it hit
Compiling .NET Core VS17
How do popular applications update and install?
How to post value from autocomplete instead of text?
How do I mock a base method from the Controller class using the NSubstitue framework
The 'DelegatingHandler' list is invalid because the property 'InnerHandler' of 'handler' is not null
Pinch-To-Zoom with Unity 5 UI
WPF - Drawing on canvas with mouse events
c# how do you return dataset from sqldatareader?
I've found a bug in the JIT/CLR - now how do I debug or reproduce it?
WPF ListView with buttons on each line

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!