Get all users with a given claim

asp.net-core asp.net-identity claims-based-identity entity-framework-core

Question

I'm working on an aspnet core 1.0 project, I've recently understood what claims are and how to use them to achieve policy based authorization.

What I'm trying to acheive:

I want to get all users that are authorized with a given policy (i.e. users that have a given claim, let's say Claim {Type = "CanReceiveXReport", Value = True})

The code I'd expect to do this is something like:

public static IQueryable<User> WithClaim(this IQueryable<User> users, string claimName) =>
    users
        .Include(u=> u.Claims)
        .Where(u=> u.Claims.Any(c=> c.ClaimType == claimName));

The problem:

When I run the above code, for all users, user.Claims is always empty. I've also tried to materialize the query by adding a ToList() after the Include() with no success.

When I realized this wasn't working I expected there to be a ClaimsManager<T> of some sort to do this kind of operations.

All the apis and answers I've found are focused on getting claims for a single user.

I know I could do something like what this answer but I rather not do that, I want that query to be run in the database.

I imagine it's possible to create a stored procedure, but I'd rather mantain my domain logic in my app.

Versions:

(That I think are relevant)

{
    "Microsoft.AspNetCore.Identity": "1.0.0",
    "Microsoft.AspNetCore.Identity.EntityFrameworkCore": "1.0.0",
    "Microsoft.EntityFrameworkCore.Relational": "1.0.0",
    "Microsoft.EntityFrameworkCore.SqlServer": "1.0.1",
    "Microsoft.NETCore.App": "1.0.0"
}
1
2
5/23/2017 12:02:05 PM

Fastest Entity Framework Extensions

Bulk Insert
Bulk Delete
Bulk Update
Bulk Merge

Popular Answer

I believe you are looking for this method in UserManager:

/// <summary>
/// Returns a list of users from the user store who have the specified <paramref name="claim"/>.
/// </summary>
/// <param name="claim">The claim to look for.</param>
/// <returns>
/// A <see cref="Task{TResult}"/> that represents the result of the asynchronous query, a list of <typeparamref name="TUser"/>s who
/// have the specified claim.
/// </returns>
public virtual Task<IList<TUser>> GetUsersForClaimAsync(Claim claim)
{
    ThrowIfDisposed();
    var store = GetClaimStore();
    if (claim == null)
    {
        throw new ArgumentNullException(nameof(claim));
    }
    return store.GetUsersForClaimAsync(claim, CancellationToken);
}
3
11/15/2016 8:01:14 AM

Related Questions

Asp.Net 5 / Identity 3: Caching of Claims in the IdentityDbContext implementation

The issue was caused due to there being two different ways to create a service via dependency injection: The sample code in my question used...var dbContext = context.HttpContext.ApplicationServices.GetRequiredService<ApplicationDbContext>(); ...where it should use...var dbContext = context.HttpContext.RequestServices.GetRequiredService<Application...
asp.net asp.net-core asp.net-identity-3 c# entity-framework-core
asked by GeorgDangl

How to extend IdentityUser as a claim in ASP.NET Core / MVC 6 / EF7?

if you have added a claim for AccountId you can then easily write an extension method to get it:...public static string GetAccountId(this ClaimsPrincipal principal) { if (principal == null) { throw new ArgumentNullException(nameof(principal)); } var claim = principal.FindFirst("AccountId"); return claim != null ? claim.V...
asp.net-core asp.net-core-mvc asp.net-identity entity-framework-core
asked by Joe Audette

Asp.net Core Get User by User Id

Using Asp.net Core Identity and entity framework core, how can I get an asp.net user object by it's UserId property? I know it's possible to get the current logged in user from the HttpContext.User object using:...UserManager.GetUserAsync(HttpContext.User) ...However when an admin is logged in, I want them to be able to access/modify any user's da...
asp.net-core asp.net-core-identity entity-framework-core
asked by big_water

How to get Role Claims?

You can use SQL-like query expressions and get all claims from all roles of a user like this:...var claims = from ur in _context.UserRoles where ur.UserId == "user_id" join r in _context.Roles on ur.RoleId equals r.Id join rc in _context.RoleClaims on r.Id equals rc.RoleId select rc;
asp.net-core asp.net-identity entity-framework-core
asked by tmg

Creating a DbContextFactory that gets the connection string from user-secrets

It's been a long time since you posted it, but I've just had this error and found out the reason (even though it makes no sense)...The problem is in the line ...console.Write($"CONNECTION STRING: {connectionString}" + Environment.NewLine); ...If you romove the colon after CONNECTION STRING it works. I have no idea why the colon in the interpolation...
asp.net-core c# entity-framework-core
asked by Paolo Ramos

How to get ApplicationUser object for a given user

try ...var user = await _userManager.FindByNameAsync(model.SelectedUserName);...it seems like AddToRoleAsync expects ApplicationUser as first parameter, but you giving Task So if you use ...await... before FindByNameAsync call your ...user... variable will be ApplicationUser.
asp.net-core asp.net-identity entity-framework-core
asked by Akmal Salikhov

Identity Server 4 Claims empty on API

I have been trying to Integrate Identity Server 4 with SPA application. I am able to Authorize the Application in API but after the authorization the ...User.Claims... are always ...empty... though i have added the Claims in Scopes....I am using Asp.net Identity in API with entity framework core. ...My project are distributed in different projects....
asp.net-core-2.0 asp.net-identity entity-framework-core identityserver4
asked by aakash

SignInManager<User> gives "a second operation started on this context"

I have read the following questions before asking:...A second operation started on this context before a previous operation completed...How to fix 'A second operation started on this context before [...]...UserManager Error - A second operation started on this context before [...]...A second operation started on this context before a previous [...]...
asp.net-core-2.0 asp.net-identity entity-framework-core
asked by Mathieu VIALES

Error while trying to access Claims Identity Core

Configure your model like below:...public partial class User : IdentityUser { public string FirstName { get; set; } public string LastName { get; set; } public virtual ICollection<UserClaim> UserClaim { get; set; } } public partial class UserClaim : Microsoft.AspNetCore.Identity.IdentityUserClaim<string> { public byte[] Version { ge...
asp.net-core entity-framework-core
asked by Rena

I am getting error quoted in the body when I add new user and try adding claim in the next line

I have found the cause of error so I thought of sharing it with you guys. I had an overridden OnModelCreating method. I mainly used it to set the maximum character length of string value columns. For some internal purpose logic, I was setting the key to these string base columns. So when it would come to IdentityUser columns they were also passing ...
asp.net-core asp.net-identity c# entity-framework-core
asked by Muhammad Irfan

Fastest Entity Framework Extensions

Bulk Insert
Bulk Delete
Bulk Update
Bulk Merge
View more on Stack Overflow

Prime Library

Performance

Expression Evaluator

More Projects...

Related

Licensed under: CC-BY-SA with attribution
Not affiliated with Stack Overflow
Licensed under: CC-BY-SA with attribution
Not affiliated with Stack Overflow