Identityserver4.admin: how to RequireConfirmedEmail in skoruba?
I want force identity server check email confirmation before user login
services.AddIdentity
thanks skoruba
hoseinipeyrov
All 6 comments
Added pull request https://github.com/skoruba/IdentityServer4.Admin/pull/592
devarshad
on 29 Apr 2020
You can require the newly registered user to confirm email before he is able to log in. This can be achieved by modifying the Register POST method of the AccountController.cs in the STS.Identity project as follows:
[HttpPost]
[AllowAnonymous]
[ValidateAntiForgeryToken]
public async Task<IActionResult> Register(RegisterViewModel model, string returnUrl = null)
{
returnUrl = returnUrl ?? Url.Content("~/");
ViewData["ReturnUrl"] = returnUrl;
if (!ModelState.IsValid) return View(model);
var user = new TUser
{
UserName = model.UserName,
Email = model.Email,
};
RegisterWithoutUsernameViewModel model1 = new RegisterWithoutUsernameViewModel();
var user1 = _userManager.FindByEmailAsync(model.Email);
if (user1.Result != null)
{
ViewData["UserRegistered"] = "This email registered already.";
return View(model1);
}
var result = await _userManager.CreateAsync(user, model.Password);
if (result.Succeeded)
{
// add new by me on 03-11-2020:
await _userManager.AddToRoleAsync(user, "CommunityRole");
await _userManager.AddClaimAsync(user, new Claim("num_ginckers", "10"));
await _userManager.AddClaimAsync(user, new Claim("register_date", DateTime.Now.ToString("yyyy-MM-dd")));
var code = await _userManager.GenerateEmailConfirmationTokenAsync(user);
var callbackUrl = Url.Action("ConfirmEmail", "Account", new { userId = user.Id, code }, HttpContext.Request.Scheme);
await _emailSender.SendEmailAsync(model.Email, _localizer["ConfirmEmailTitle"], _localizer["ConfirmEmailBody", HtmlEncoder.Default.Encode(callbackUrl)]);
//await _signInManager.SignInAsync(user, isPersistent: false);
//return RedirectToLocal(returnUrl);
return View("CheckEmail");
}
AddErrors(result);
// If we got this far, something failed, redisplay form
if(_loginConfiguration.ResolutionPolicy == LoginResolutionPolicy.Email)
{
return View(model1);
}
return View(model);
}
Here, the CheckEmail view can be very simple. Here is a sample CheckEmail.cshtml file:
@{
ViewData["Title"] = "Check Email";
}
<div class="p-2">
<h2>Thank You for Registration</h2><br />
<p>
A confirmation email is sent to you. Please check your email and click on the link in the email to complete your registration.
</p>
</div>
Hope this helps.
Best, Jack
jack1232
on 29 Apr 2020
Hi guys, thanks for your tips - I will check it and add it into solution.
skoruba
on 18 May 2020
@skoruba, I did a small change to @jack1232 solution above to allow for either require email confirmation or not, please check.
await _emailSender.SendEmailAsync(model.Email, _localizer["ConfirmEmailTitle"], _localizer["ConfirmEmailBody", HtmlEncoder.Default.Encode(callbackUrl)]);
if (_signInManager.Options.SignIn.RequireConfirmedEmail)
{
return View("CheckEmail");
}
await _signInManager.SignInAsync(user, isPersistent: false);
return RedirectToLocal(returnUrl);
Regards, Martinus
martinussuherman
on 15 Jun 2020
I've created PR #627 incorporating some of @jack1232 code.
martinussuherman
on 16 Jun 2020
Merged in master, thanks for your help. 馃憤馃徏
skoruba
on 10 Aug 2020
Related issues
denisisack
路
4Comments
ekjuanrejon
路
4Comments
we4sz
路
4Comments
yiskang
路
3Comments
weedkiller
路
4Comments
Most helpful comment
You can require the newly registered user to confirm email before he is able to log in. This can be achieved by modifying the Register POST method of the AccountController.cs in the STS.Identity project as follows:
Here, the CheckEmail view can be very simple. Here is a sample CheckEmail.cshtml file:
Hope this helps.
Best, Jack