ASP.NET Core: how long is new ApplicationUser logged in?
I'm currently creating a Blazor WASM web app and I stumbled across the following:
I'm able to authenticate anonymous users as "Alice" using the following lines within a Web API endpoint (apparently without storing anything in the database):
var user = new ApplicationUser();
user.Email = "test@awesomemail.makeitwork";
user.UserName = "Alice";
await _signInManager.SignInAsync(user, false);
My questions are:
- How does the
SignInManagerkeep track of Alice while not storing anything into the database? - How long is the user authenticated this way? As long as the client keeps the cookie? Until the server restarts?
- Will the
SignInManagerremove the "cached" user after a while? - If so (3.), am I able to offer an endpoint that automatically reassigns the "anonymous" identity "Alice" to the user if he still has said cookie?
How does the SignInManager keep track of Alice while not storing anything into the database?
It generate a value inside the cookie, if you don't write any logic to store something based on this cookie, it will not store into the database.
How long is the user authenticated this way? As long as the client keeps the cookie? Until the server restarts?
Check the generated cookies:
This is a session cookie, normally, session cookies are removed when the client shuts down. But, different browser may handle session cookie different.
Will the SignInManager remove the "cached" user after a while?
When the cookie expires, the user is missed.
LIf so (3.), am I able to offer an endpoint that automatically reassigns the "anonymous" identity "Alice" to the user if he still has said cookie?
Normally, no need do this thing. You could directly generate a name inside the cookie to identitiy which user is accessing your application without calling the _signInManager.
- Replacing service layer with MediatR - is it worth to do it?
- ASP.NET Core MVC filter analogue for gRPC service
- Why is using custom routes returning a 404 in my Razor Pages application?
- Why Http Post in Orchard Core asp net core Web App returns bad request
- Property Injection in ASP.NET Core
- How to force ASP.NET Core source code to not be optimized
- Is there any way to load a single page at a time using Blazor WebAssembly
- This localhost page can’t be found - No webpage was found for the web address.- ASP.NET Core
- log4net:ERROR ConfigureFromXml called with null 'element' parameter for Postgres SQL
- ASP.Net Core Background Service with Task Queue, does it need a Task.Delay?
- Input number does not respect step
- How to customize localization provider (.resx to database) in Razor Pages
- How to get user information in DbContext using Net Core
- Application Insights does not capture information level logging
- How to best add the Last-Modified header in asp .net middleware
- What is the correct way to get data for an EditForm using EF Core, with or without tracking?
- Why my properties in my blazor wasm always become null when i submit the form
- Blazor two way binding and on value changed event in the parent
- How to search for users in Active Directory from ASP.NET Core
- The framework 'Microsoft.NETCore.App', version '5' was not found while Microsoft.NETCore.App 5.0.0 is found
- ILoggingBuilder AddEventLog Linux compatibility
- Getting duplicates when saving an item with two fields in a many-to-many relationship
- Filter Serilog logs to different sinks depending on context source?
- ASP.NET Core log-in not redirecting me to home page
- ASP.NET Core 6 : The best way to list a group of numbers in a string?
- Error when using implementations with different constraints in C# dependency injection
- Azure Storage Account StorageSharedKeyCredential
- ASP.NET Core 6 Web API : custom authentication handler and Angular HttpInterceptor [receive Status code =0 for 401 Unauthorized Response]
- Blazor Web App NavigationManager in Client -> Exception_WasThrown
- How to return JSON result in ASP.NET Core 8 project