Check if user is logged in with Token Based Authentication in ASP.NET Core

c# asp.net asp.net-core access-token
user2657943 picture user2657943 · Dec 24, 2016 · Viewed 22.3k times · Source

I managed to implement this token based authentication system in my application, but I have a little question. How can I check if a user is signed it (eg if the there is a valid token in the request) within the method? So with the [Authorize] ?

So I have controller, and in that controller I want to check if the user is signed in. I thought of using this:

if (_signInManager.IsSignedIn(ClaimsPrincipal.Current))
{
    ...
}

but it does not work since ClaimsPrincipal.Current is always null

Answer

Vi100 picture Vi100 · Dec 24, 2016

You don't need to use the SigninManager or something similar. The user is injected on the pipeline (on the User property of the base controller) and it's info is filled automatically by the authentication middleware (cookie or token). So, on your controller:

bool isAuthenticated = User.Identity.IsAuthenticated;

Related questions

How do you create a custom AuthorizeAttribute in ASP.NET Core?

I'm trying to make a custom authorization attribute in ASP.NET Core. In previous versions it was possible to override bool AuthorizeCore(HttpContextBase httpContext). But this no longer exists in AuthorizeAttribute. What is the current approach to make a custom …

Read More
How to create roles in ASP.NET Core and assign them to users?

I am using the ASP.NET Core default website template and have the authentication selected as "Individual User Accounts". How can I create roles and assign it to users so that I can use the roles in a controller to …

Read More
Custom Authentication in ASP.Net-Core

I am working on a web app that needs to integrate with an existing user database. I would still like to use the [Authorize] attributes, but I don't want to use the Identity framework. If I did want to use …

Read More