Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Is there a way to add claims in an ASP.NET Core middleware after Authentication?

Tags:

c#

asp.net-core

I have this in my startup:

public void Configure(IApplicationBuilder app, IHostingEnvironment env) {     if (env.IsDevelopment())     {         app.UseDeveloperExceptionPage();     }     else     {         app.UseHsts();     }      app.UseHttpsRedirection();     app.UseStaticFiles();     app.UseSwaggerWithUi();      app.UseAuthentication();     app.UseMiddleware<SomeMiddleware>();      app.UseMvc(); }

I need to add some additional claims AFTER the user is authenticated, but the middleware Invoke function always fires before Auth (HttpContext.User.Identity.IsAuthenticated is false). But when it hits the controller the user is authenticated fine.

Any idea what to do here? I've tried to put "app.UseAuthentication()" after calling app.UseMiddleware but it has no affect.

I'm currently using multiple Authentication schemes. I'm not sure if that has an affect.

like image 214
Yodacheese Avatar asked Nov 14 '18 02:11

Yodacheese

People also ask

How can add additional claims in core identity in asp net?

Extend or add custom claims using IClaimsTransformation The IClaimsTransformation interface can be used to add extra claims to the ClaimsPrincipal class. The interface requires a single method TransformAsync. This method might get called multiple times.

How would you implement claims based authentication in .NET Core?

The claims-based authorization works by checking if the user has a claim to access an URL. In ASP.NET Core we create policies to implement the Claims-Based Authorization. The policy defines what claims that user must process to satisfy the policy. We apply the policy on the Controller, action method, razor page, etc.

1 Answers

Yes it's possible, but instead of adding to the list of existing claims you have to add a new identity of type ClaimsIdentity.

public class SomeMiddleware {     private readonly RequestDelegate _next;      public SomeMiddleware(RequestDelegate next)     {         _next = next;     }      public async Task InvokeAsync(HttpContext httpContext)     {         if (httpContext.User != null && httpContext.User.Identity.IsAuthenticated)         {             var claims = new List<Claim>             {                 new Claim("SomeClaim", "SomeValue")             };              var appIdentity = new ClaimsIdentity(claims);             httpContext.User.AddIdentity(appIdentity);                         }          await _next(httpContext);     } }
like image 50
Alexey Andrushkevich Avatar answered Sep 29 '22 11:09

Alexey Andrushkevich
Sign in to Comment

Related questions

Asynchronous locking based on a key
OCR with the Tesseract interface
Cast sender object in event handler using GetType().Name
Is There Any Difference Between SqlConnection.CreateCommand and new SqlCommand?
.NET URI: How can I change ONE part of a URI?
C# Winforms - change cursor icon of mouse
Random assembly references fail ("Are you missing a using directive or an assembly reference?")
How to execute a command via command-line and wait for it to be done
How to use DATEADD over column in LINQ - DateAdd is not recognized by LINQ
How to check internet connectivity type in Universal Windows Platform
appsettings with special characters in .NET Core
.NET: Get all Outlook calendar items
What is the most flexible serialization for .NET objects, yet simple to implement?
DataGridViewComboBoxCell Binding - "value is not valid"
Where do you put the function documentation so that it shows up on intellisense?
Passing parameters to XSLT Stylesheet via .NET
how to convert sql union to linq
Possible unintended reference comparison
.NET's Multi-threading vs Multi-processing: Awful Parallel.ForEach Performance
How can I get the last folder from a path string?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!