Geek Answers Handbook

ASP.NET ID: UserManager.PasswordHasher.VerifyHashedPassword Continues to Fail

I am using ASP.NET Identity 2 with Entity Framework 5 (because our Oracle data provider does not support EF6). For some reason, password verification using UserManager.PasswordHasher.VerifyHashedPasswordcontinues to fail.

My class UserStorecontains:

    public Task SetPasswordHashAsync(IccmUser user, string passwordHash)
    {
        IPasswordHasher hasher = new PasswordHasher();

        var t = Task.Run(() => {
            user.PasswordHash = hasher.HashPassword(passwordHash);
        });
        return t;
    }

The password (explicitly hashed) is stored in the database. Thus, this code works very well.

My AccountControllerperforms a password check as follows:

    [HttpPost]
    [AllowAnonymous]
    [ValidateAntiForgeryToken]
    public async Task<ActionResult> Login(SignInModel model, string returnUrl)
    {
        if (ModelState.IsValid) {
            // This fails:
            //var user = await UserManager.FindAsync(model.UserName, model.Password);

            // Thus: do it step by step.
            PasswordVerificationResult result = PasswordVerificationResult.Failed;

            // Step 1: find user.
            IccmUser user = await UserManager.FindByNameAsync(model.UserName);
            if (user == null) {
                ModelState.AddModelError("", "Couldn't find the user.");
            } else {
                // Step 2: validate password
                result = UserManager.PasswordHasher.VerifyHashedPassword(user.PasswordHash, model.Password);
                if (result != PasswordVerificationResult.Success) {
                    ModelState.AddModelError("", "The password is not valid.");
                } else {
                    // Step 3: sign-in user.
                    await SignInAsync(user, model.RememberMe);
                    return Redirect(returnUrl);
                }
            }
        }

        // If we got this far, something failed, redisplay form
        return View(model);
    }

VerifyHashedPassword()in step 2 always returns Failed. Both parameters ( PasswordHashand Password) are transmitted correctly.

Any pointers to what I am missing are greatly appreciated.

+4
source share
1

UserStore. SetPasswordHashAsync() . UserManager.CreateAsync(). , UserStore :

    public Task SetPasswordHashAsync(IccmUser user, string passwordHash)
    {
        return Task.FromResult(user.PasswordHash = passwordHash);
    }

.

+2

More articles:


All Articles