private async Task SignInAsync(IdentityUser user, bool isPersistent)
{
AuthenticationManager.SignOut(DefaultAuthenticationTypes.ExternalCookie, DefaultAuthenticationTypes.TwoFactorCookie);
AuthenticationManager.SignIn(new AuthenticationProperties {
IsPersistent = isPersistent
}, await user.GenerateUserIdentityAsync(UserManager));
}
public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
{
var userManager = context.OwinContext.GetUserManager <ApplicationUserManager>();
IdentityUser user = await userManager.FindAsync(context.UserName, context.Password);
if (user == null)
{
context.SetError("invalid_grant", "用户名或密码不正确。");
return;
}
ClaimsIdentity oAuthIdentity = await user.GenerateUserIdentityAsync(userManager,
OAuthDefaults.AuthenticationType);
ClaimsIdentity cookiesIdentity = await user.GenerateUserIdentityAsync(userManager,
CookieAuthenticationDefaults.AuthenticationType);
AuthenticationProperties properties = CreateProperties(user.UserName);
AuthenticationTicket ticket = new AuthenticationTicket(oAuthIdentity, properties);
context.Validated(ticket);
context.Request.Context.Authentication.SignIn(cookiesIdentity);
}
private async Task SignInAsync(IdentityUser user, bool isPersistent)
{
var clientKey = Request.Browser.Type + " - " + Request.UserHostAddress;
await UserManager.SignInClientAsync(user, clientKey);
// Zerando contador de logins errados.
await UserManager.ResetAccessFailedCountAsync(user.Id);
// Coletando Claims externos (se houver)
ClaimsIdentity ext = await AuthenticationManager.GetExternalIdentityAsync(DefaultAuthenticationTypes.ExternalCookie);
AuthenticationManager.SignOut(DefaultAuthenticationTypes.ExternalCookie, DefaultAuthenticationTypes.TwoFactorCookie, DefaultAuthenticationTypes.ApplicationCookie);
AuthenticationManager.SignIn
(
new AuthenticationProperties { IsPersistent = isPersistent },
// Criação da instancia do Identity e atribuição dos Claims
await user.GenerateUserIdentityAsync(UserManager, ext)
);
}