PasswordResetToken

PasswordResetToken

关注
发信
关注(28)粉丝(399)

c# - 为ResetPassword验证PasswordResetToken

我正在尝试在ForgetPassword令牌单击上创建手动的“重置密码”。但是,当我与用户验证此令牌时,它始终返回false。
请帮我
这是我的代码

[AllowAnonymous]
public async Task<ActionResult> ResetPassword()
{
    var provider = new DpapiDataProtectionProvider("AppName");
    var userManager = new UserManager<ApplicationUser>(new UserStore<ApplicationUser>());
    userManager.UserTokenProvider = new DataProtectorTokenProvider<ApplicationUser>(provider.Create("EmailConfirmation"));
    string userId = Request.QueryString["UserId"];
    string code = Request.QueryString["code"];
    var user = await UserManager.FindByIdAsync(userId);
    //if (!(await UserManager.ConfirmEmailAsync(userId, code)).Succeeded)
    ApplicationDbContext context = new ApplicationDbContext();
    UserStore<ApplicationUser> store = new UserStore<ApplicationUser>(context);
    if (!await userManager.UserTokenProvider.ValidateAsync("EmailConfirmation", code, new UserManager<ApplicationUser>(store) , user))
    {
        return RedirectToAction("Message", "Home", new { status = false, message = "Invalid token, please retry." });
    }
    return View("ResetPassword", new ResetPasswordModel { UserId = userId, Token = code });
}


这也是我如何生成PasswordResetToken的代码

var provider = new Microsoft.Owin.Security.DataProtection.DpapiDataProtectionProvider("AppName");
UserManager.UserTokenProvider = new Microsoft.AspNet.Identity.Owin.DataProtectorTokenProvider<ApplicationUser>(provider.Create("EmailConfirmation"));
var user = await UserManager.FindByNameAsync(model.Email);
if (user == null)//|| !(await UserManager.IsEmailConfirmedAsync(user.Id)))
{
    // Don't reveal that the user does not exist or is not confirmed
    return Json(new { status = false, message = "User does not exist" });
}
var code = await UserManager.GeneratePasswordResetTokenAsync(user.Id);


请帮我

最佳答案

也许有点晚,但是我最近遇到了类似的要求。

我唯一看到的问题是

if (!await userManager.UserTokenProvider.ValidateAsync("EmailConfirmation", code, new UserManager<ApplicationUser>(store) , user))
{
    return RedirectToAction("Message", "Home", new { status = false, message = "Invalid token, please retry." });
}


更改为

if (!await userManager.UserTokenProvider.ValidateAsync("ResetPassword", code, new UserManager<ApplicationUser>(store) , user))
{
    return RedirectToAction("Message", "Home", new { status = false, message = "Invalid token, please retry." });
}


“ EmailConfirmation”将与注册电子邮件一起使用,而“ PasswordReset”用于ForgotPassword好东西。

关于c# - 为ResetPassword验证PasswordResetToken,我们在Stack Overflow上找到一个类似的问题:https://stackoverflow.com/questions/37038135/

10-12 01:56
Powered by LMLPHP ©2025 PasswordResetToken 0.029971