asp.net-identity-2

I have the following ApplicationUser Model: public class ApplicationUser : IdentityUser { public string FirstName { get; set; } public string LastName { get; set; } public virtual ICollection<ApplicationRole> Roles { get; set; } public bool HasRole(string _role) { return Roles.Any(r => r.Name == _role); } public bool HasPermission(string _permission) { return Roles.Any(r => r.Permissions .Any(p => p.Name == _permission)); } } But when I run a build I get the following warning message: ApplicationUser.Roles hides inherited member 'IdentityUser<string, IdentityUserLogin,IdentityUserRole,

In Windows Identity Framework (WIF) you could implement a ClaimsAuthenticationManager in order to modify the claims on the principal or add new claims to it. The claims authentication manager provides an extensibility point in the application’s claims processing pipeline that you can use to validate, filter, modify, incoming claims or inject new claims into the set of claims presented by a ClaimsPrincipal before the RP application code is executed. Does ASP.net Identity 2 have any sort of pipeline hook like this? If I want to add some claims without having them persisted in the

I'm using the Identity 2.0 framework for user management. Unfortunately, in my use case an account activation/password reset cannot be done using a direct link, so the user would have to copy the code from his e-mail and paste it into the website. The code that is generated by the UserManager 's default GenerateEmailConfirmationTokenAsync method is very long, it spans about 3 lines of text. I tried to override this method, generating a shorter code that is more user friendly. This doesn't work, as the ConfirmEmailAsync method always returns "invalid token" (this method doesn't call the

I have an ASP.NET Core site that uses cookie authentication for most pages. For those pages, the default server response of providing a 302 redirect for an unauthorized client is desirable. However, the site also accepts API requests; they use API keys and have no use for cookies. Ideally, I'd like to turn off cookie processing for the API URLs altogether, but minimally, I need to ensure that if an API client is unauthorized, the server doesn't respond with a 302 redirect. Replace the redirect event handler with one that uses the default behavior only if the path is not an API. In Startup

This is MVC 5/ EF6. So I have the following classes: public class User : IdentityUser { public User() { Levels = new List<Level>(); } [Required, MaxLength(200)] public string FirstName { get; set; } [Required, MaxLength(200)] public string LastName { get; set; } public virtual ICollection<Level> Levels { get; set; } } and public class Level { public int Id { get; set; } [Required] public string Name { get; set; } public virtual ICollection<User> Users { get; set; } } In addition to regular MVC5 membership tables it creates 2 more: Levels and UserLevels (with User_Id and Level_Id columns).

How To Change Password Validation in ASP.Net MVC5 Identity 2 ? Thanks In the MVC project template in VS2013 Update 2, there should be a file called App_Start/IdentityConfig.cs . In it you should find the class ApplicationUserManager and a static factory method called Create() . That's where the user manager class is configured, including the server-side validation rules for passwords are defined. For example: manager.PasswordValidator = new PasswordValidator { RequiredLength = 6, RequireNonLetterOrDigit = true, RequireDigit = true, RequireLowercase = true, RequireUppercase = true, }; In