Using Identity Serve 4 with .Net Core 3.1, razor pages. Also using Cookie Authentication <pre class="prettyprint"><code>services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme) </code></pre> Problem - In a web application John logged-in 2 times <ul> <li>1st Login on Chrome</li> <li>2nd Login on edge</li> </ul> So, if John again trying to logged-in on 3rd time on Firefox without logout from previous browsers, then I want to logout John from 1st Login on Chrome forcefully. I can keep the track of logins in a Session table including Session Id, User Id etc. But I don’t know how logout user from a particular session using Session Id. Please help. Thanks

ASP.NET Core provides an ITicketStore interface which allows you to get control of storing user sessions. Once you provide a class implementing this interface and register it, it will call your class when sessions are being created or verified which you can then store in a database however you like, including attaching arbitrary metadata like browser ID etc. Now that you have user sessions in your database, you can separately query them and revoke as needed in other logic, including during logins. Since you now provide the session data, simply deleting the record effectively logs the user out from that session. Note that if you use any caching layer to reduce the store requests, you'd need to remove any cached copies as well. Note that this is separate from IdentityServer and happens with ASP.NET Core itself. This is a good tutorial that helped me implementing this in my app. A sample of how it looks to register in Startup, where <code>PersistentTicketStore</code> is my implementation: <pre class="prettyprint"><code>// Persistent ticket/cookie store to provide durable user sessions services.AddSingleton<IUserSessionRepository, UserSessionRepository>(); services.AddSingleton<ITicketStore, PersistentTicketStore>(); services.AddOptions<CookieAuthenticationOptions>(CookieAuthenticationDefaults.AuthenticationScheme) .Configure<ITicketStore>((options, store) => options.SessionStore = store); </code></pre>

How to Logout user from a particular session Identity Server 4, .Net Core?

Tags:

c#

.net

asp.net-core

asp.net-identity

identityserver4

Using Identity Serve 4 with .Net Core 3.1, razor pages. Also using Cookie Authentication

services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme)

Problem -

In a web application John logged-in 2 times

1st Login on Chrome
2nd Login on edge

So, if John again trying to logged-in on 3rd time on Firefox without logout from previous browsers, then I want to logout John from 1st Login on Chrome forcefully.

I can keep the track of logins in a Session table including Session Id, User Id etc. But I don’t know how logout user from a particular session using Session Id.

Please help.

Thanks

667

asked Jul 27 '20 07:07

Ravi

1 Answers

ASP.NET Core provides an ITicketStore interface which allows you to get control of storing user sessions. Once you provide a class implementing this interface and register it, it will call your class when sessions are being created or verified which you can then store in a database however you like, including attaching arbitrary metadata like browser ID etc.

Now that you have user sessions in your database, you can separately query them and revoke as needed in other logic, including during logins. Since you now provide the session data, simply deleting the record effectively logs the user out from that session. Note that if you use any caching layer to reduce the store requests, you'd need to remove any cached copies as well.

Note that this is separate from IdentityServer and happens with ASP.NET Core itself.

This is a good tutorial that helped me implementing this in my app.

A sample of how it looks to register in Startup, where PersistentTicketStore is my implementation:

// Persistent ticket/cookie store to provide durable user sessions
services.AddSingleton<IUserSessionRepository, UserSessionRepository>();
services.AddSingleton<ITicketStore, PersistentTicketStore>();
services.AddOptions<CookieAuthenticationOptions>(CookieAuthenticationDefaults.AuthenticationScheme)
    .Configure<ITicketStore>((options, store) => options.SessionStore = store);

answered Sep 29 '22 18:09

Noah Stahl

Related questions
                            
                                Getting Received and Sent Bytes generated by Process for Network Activity
                            
                                Install .NET Core 3.0 Worker Service with WiX as Windows Service
                            
                                Generics and Nullable (class vs struct)
                            
                                32 bit implicit conversions fail generic overload resolution
                            
                                C# WPF Live Charts - Creating a chart generically
                            
                                How to bind a ModelExpression to a ViewComponent in ASP.NET Core?
                            
                                How to store a generic function in a variable in c#? [duplicate]
                            
                                Json.Net, how to serialize DateTimeOffset with 'Z' instead of +00:00, but keep other timezone offsets?
                            
                                Memory leak in .NET Core 3.0 app when using NLog or Serilog
                            
                                Switching a .NET Core console app into a full-screen mode on Windows 10
                            
                                How can I manually cancel a .NET core IHostedService background task?
                            
                                Identify method to C#8 as a nullable checker? [duplicate]
                            
                                Could creating an event be a valid way to make a XF OnAppearing into an async method?
                            
                                How to explain this "call is ambiguous" error?
                            
                                Blazor input mask
                            
                                Remove nulls from IActionResult responses
                            
                                How to prevent ScintillaNET control from auto scrolling?
                            
                                SQLite EF Core - 'FOREIGN KEY constraint failed'
                            
                                Windows Forms Application menuStrip in Visual Studio 2017 is more covenient than 2019?
                            
                                Detect shutdown signal from docker when using Generic Host IHostBuilder

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With