無法在窗體身份驗證票證檢索的UserData

Question

我試圖通過運行在我的控制器下面的代碼從我的身份驗證票證一些自定義字段值 -

[HttpPost] 
    public ActionResult Add(AddCustomerModel customer) 
    { 
     customer.DateCreated = DateTime.Now; 
     customer.CreatedBy = ((CustomPrincipal)(HttpContext.User)).Id; 
     customer.LastUpdated = DateTime.Now; 
     customer.LastUpdateBy = ((CustomPrincipal)(HttpContext.User)).Id; 

     if (ModelState.IsValid) 
     { 
      _customerService.AddCustomer(customer); 

      return RedirectToAction("Index"); 
     } 

     return View(customer); 
    } 

當我嘗試並設置CreatedBy字段中新客戶，我收到以下錯誤 -

無法將類型爲'System.Security.Principal.GenericPrincipal'的對象轉換爲鍵入'GMS.Core.Models.CustomPrincipal'。

我在FormsAuthenticationTicket中的userData字段設置了一個JSON字符串，其中包含兩個字段 - Id和FullName。

這裏是在控制器上我的登錄方法 -

[HttpPost] 
    [AllowAnonymous] 
    public ActionResult Login(LoginModel model, string returnUrl) 
    { 
     if (Membership.ValidateUser(model.EmailAddress, model.Password)) 
     { 
      LoginModel user = _userService.GetUserByEmail(model.EmailAddress); 

      CustomPrincipalSerializeModel serializeModel = new CustomPrincipalSerializeModel(); 
      serializeModel.Id = user.ID; 
      serializeModel.FullName = user.EmailAddress; 
      //serializeModel.MergedRights = user.MergedRights; 

      JavaScriptSerializer serializer = new JavaScriptSerializer(); 

      string userData = serializer.Serialize(serializeModel); 

      FormsAuthenticationTicket authTicket = new FormsAuthenticationTicket(
      1, 
      user.EmailAddress, 
      DateTime.Now, 
      DateTime.Now.AddHours(12), 
      false, 
      userData); 

      string encTicket = FormsAuthentication.Encrypt(authTicket); 
      HttpCookie faCookie = new HttpCookie(FormsAuthentication.FormsCookieName, encTicket); 
      Response.Cookies.Add(faCookie); 

      return RedirectToAction("Index", "Dashboard"); 
     } 

     return RedirectToAction("Index"); 
    } 

任何想法，我要去的地方錯了嗎？

Answer 1

從餅乾檢索用戶數據，你可以使用下面的代碼

FormsIdentity formsIdentity = HttpContext.Current.User.Identity as FormsIdentity; 
FormsAuthenticationTicket ticket = formsIdentity.Ticket; 
string userData = ticket.UserData; 

Answer 2

您需要創建和AuthenticationFilter您的GenericPrincipal更改爲您CustomPrincipal

public class FormAuthenticationFilter : ActionFilterAttribute, IAuthenticationFilter 
{ 
    private readonly IResolver<HttpContextWrapper> httpContextWrapper; 

    private readonly IResolver<ISecurityProvider> securityProviderResolver; 

    public FormAuthenticationFilter(IResolver<HttpContextWrapper> httpContextWrapper, IResolver<ISecurityProvider> securityProviderResolver) 
    { 
     this.httpContextWrapper = httpContextWrapper; 
     this.securityProviderResolver = securityProviderResolver; 
    } 

    public void OnAuthentication(AuthenticationContext filterContext) 
    { 
     if (filterContext.Principal != null && !filterContext.IsChildAction) 
     { 
      if (filterContext.Principal.Identity.IsAuthenticated && 
       filterContext.Principal.Identity.AuthenticationType.Equals("Forms", StringComparison.InvariantCultureIgnoreCase)) 
      { 
       // Replace form authenticate identity 
       var formIdentity = filterContext.Principal.Identity as FormsIdentity; 
       if (formIdentity != null) 
       { 
        var securityProvider = this.securityProviderResolver.Resolve(); 
        var principal = securityProvider.GetPrincipal(filterContext.Principal.Identity.Name, formIdentity.Ticket.UserData); 
        if (principal != null) 
        { 
         filterContext.Principal = principal; 
         this.httpContextWrapper.Resolve().User = principal; 
        } 
       } 
      } 
     } 
    } 

    public void OnAuthenticationChallenge(AuthenticationChallengeContext filterContext) 
    { 
    } 
} 

，然後註冊該過濾器GlobalFilter

GlobalFilters.Filters.Add(new FormAuthenticationFilter()); 

在m中的HttpContextWrapper y代碼只是HttpContext.Current的包裝。您可以將其更改爲任何您需要的。並且IAuthenticationFilter只存在於MVC 5中。