How do I create a custom membership provider for ASP.NET MVC 2?
到目前为止,我已经成功地实现自定义的成员资格提供和该部分工作正常。 RoleManager仍然需要进行一些修改...


public class SAMembershipProvider : MembershipProvider 

     #region - Properties - 

     private int NewPasswordLength { get; set; } 
     private string ConnectionString { get; set; } 

     public bool enablePasswordReset { get; set; } 
     public bool enablePasswordRetrieval { get; set; } 
     public bool requiresQuestionAndAnswer { get; set; } 
     public bool requiresUniqueEmail { get; set; } 
     public int maxInvalidPasswordAttempts { get; set; } 
     public int passwordAttemptWindow { get; set; } 
     public MembershipPasswordFormat passwordFormat { get; set; } 
     public int minRequiredNonAlphanumericCharacters { get; set; } 
     public int minRequiredPasswordLength { get; set; } 
     public string passwordStrengthRegularExpression { get; set; } 

     public override string ApplicationName { get; set; } 

     public override bool EnablePasswordRetrieval 
      get { return enablePasswordRetrieval; } 

     public override bool EnablePasswordReset 
      get { return enablePasswordReset; } 

     public override bool RequiresQuestionAndAnswer 
      get { return requiresQuestionAndAnswer; } 

     public override int MaxInvalidPasswordAttempts 
      get { return maxInvalidPasswordAttempts; } 

     public override int PasswordAttemptWindow 
      get { return passwordAttemptWindow; } 

     public override bool RequiresUniqueEmail 
      get { return requiresUniqueEmail; } 

     public override MembershipPasswordFormat PasswordFormat 
      get { return passwordFormat; } 

     public override int MinRequiredPasswordLength 
      get { return minRequiredPasswordLength; } 

     public override int MinRequiredNonAlphanumericCharacters 
      get { return minRequiredNonAlphanumericCharacters; } 

     public override string PasswordStrengthRegularExpression 
      get { return passwordStrengthRegularExpression; } 


     #region - Methods - 

     public override void Initialize(string name, NameValueCollection config) 
      throw new NotImplementedException(); 

     public override bool ChangePassword(string username, string oldPassword, string newPassword) 
      throw new NotImplementedException(); 

     public override bool ChangePasswordQuestionAndAnswer(string username, string password, string newPasswordQuestion, string newPasswordAnswer) 
      throw new NotImplementedException(); 

     public override MembershipUser CreateUser(string username, string password, string email, string passwordQuestion, string passwordAnswer, bool isApproved, object providerUserKey, out MembershipCreateStatus status) 
      throw new NotImplementedException(); 

     public override bool DeleteUser(string username, bool deleteAllRelatedData) 
      throw new NotImplementedException(); 

     public override MembershipUserCollection FindUsersByEmail(string emailToMatch, int pageIndex, int pageSize, out int totalRecords) 
      throw new NotImplementedException(); 

     public override MembershipUserCollection FindUsersByName(string usernameToMatch, int pageIndex, int pageSize, out int totalRecords) 
      throw new NotImplementedException(); 

     public override MembershipUserCollection GetAllUsers(int pageIndex, int pageSize, out int totalRecords) 
      throw new NotImplementedException(); 

     public override int GetNumberOfUsersOnline() 
      throw new NotImplementedException(); 

     public override string GetPassword(string username, string answer) 
      throw new NotImplementedException(); 

     public override MembershipUser GetUser(object providerUserKey, bool userIsOnline) 
      throw new NotImplementedException(); 

     public override MembershipUser GetUser(string username, bool userIsOnline) 
      throw new NotImplementedException(); 

     public override string GetUserNameByEmail(string email) 
      throw new NotImplementedException(); 

     protected override void OnValidatingPassword(ValidatePasswordEventArgs e) 

     public override string ResetPassword(string username, string answer) 
      throw new NotImplementedException(); 

     public override bool UnlockUser(string userName) 
      throw new NotImplementedException(); 

     public override void UpdateUser(MembershipUser user) 
      throw new NotImplementedException(); 

     public override bool ValidateUser(string username, string password) 
      AccountRepository accountRepository = new AccountRepository(); 
      var user = accountRepository.GetUser(username); 

      if (string.IsNullOrEmpty(password.Trim())) return false; 
      if (user == null) return false; 

      //string hash = EncryptPassword(password); 
      var email = user.Email; 
      var pass = user.Password;    

      if (user == null) return false; 

      if (pass == password) 
       //User = user; 
       return true; 

      return false; 

     protected string EncryptPassword(string password) 
      //we use codepage 1252 because that is what sql server uses 
      byte[] pwdBytes = Encoding.GetEncoding(1252).GetBytes(password); 
      byte[] hashBytes = System.Security.Cryptography.MD5.Create().ComputeHash(pwdBytes); 
      return Encoding.GetEncoding(1252).GetString(hashBytes); 



public class SARoleProvider : RoleProvider 
     AccountRepository accountRepository = new AccountRepository(); 

     public override bool IsUserInRole(string username, string roleName) 
      return true; 
     public override string ApplicationName 
       throw new NotImplementedException(); 
       throw new NotImplementedException(); 
     public override void AddUsersToRoles(string[] usernames, string[] roleNames) 
      throw new NotImplementedException(); 
     public override void RemoveUsersFromRoles(string[] usernames, string[] roleNames) 
      throw new NotImplementedException(); 
     public override void CreateRole(string roleName) 
      throw new NotImplementedException(); 
     public override bool DeleteRole(string roleName, bool throwOnPopulatedRole) 
      throw new NotImplementedException(); 
     public override bool RoleExists(string roleName) 
      throw new NotImplementedException(); 
     public override string[] GetRolesForUser(string username) 
      int rolesCount = 0; 
      IQueryable<RoleViewModel> rolesNames; 

       // get roles for this user from DB... 
       rolesNames = accountRepository.GetRolesForUser(username); 
       rolesCount = rolesNames.Count(); 

      catch (Exception ex) 
       throw ex; 

      string[] roles = new string[rolesCount]; 
      int counter = 0; 
      foreach (var item in rolesNames) 
       roles[counter] = item.RoleName.ToString(); 

      return roles; 

     public override string[] GetUsersInRole(string roleName) 
      throw new NotImplementedException(); 

     public override string[] FindUsersInRole(string roleName, string usernameToMatch) 
      throw new NotImplementedException(); 

     public override string[] GetAllRoles() 
      throw new NotImplementedException(); 




public class RoleViewModel 
     public string RoleName { get; set; } 

    public class AccountRepository 
     private DB db = new DB(); 

     public User GetUser(string email) 
      return db.Users.SingleOrDefault(d => d.Email == email); 
     public IQueryable<RoleViewModel> GetRolesForUser(string email) 

      var result = (
         from role in db.Roles 
         join user in db.Users on role.RoleID equals user.RoleID 
         where user.Email == email 
         select new RoleViewModel 
          RoleName = role.Name 

      return result; 


<membership defaultProvider="SAMembershipProvider" userIsOnlineTimeWindow="15"> 
      type="SA_Contacts.Membership.SAMembershipProvider, SA_Contacts" 
      connectionStringName ="ShinyAntConnectionString" 

    <roleManager defaultProvider="SARoleProvider" enabled="true" cacheRolesInCookie="true"> 
      connectionStringName ="ShinyAntConnectionString" 


public class AccountController : Controller 
     SAMembershipProvider provider = new SAMembershipProvider(); 
     AccountRepository accountRepository = new AccountRepository(); 

     public AccountController() 

     public ActionResult LogOn() 
      return View(); 

     public ActionResult LogOn(string userName, string password, string returnUrl) 

      if (!ValidateLogOn(userName, password)) 
       return View(); 

      var user = accountRepository.GetUser(userName); 
      var userFullName = user.FirstName + " " + user.LastName; 

      FormsAuthentication.SetAuthCookie(userFullName, false); 
      if (!String.IsNullOrEmpty(returnUrl) && returnUrl != "/") 
       return Redirect(returnUrl); 
       return RedirectToAction("Index", "Home"); 

     public ActionResult LogOff() 

      return RedirectToAction("Index", "Home"); 

     private bool ValidateLogOn(string userName, string password) 
      if (String.IsNullOrEmpty(userName)) 
       ModelState.AddModelError("username", "You must specify a username."); 
      if (String.IsNullOrEmpty(password)) 
       ModelState.AddModelError("password", "You must specify a password."); 
      if (!provider.ValidateUser(userName, password)) 
       ModelState.AddModelError("_FORM", "The username or password provided is incorrect."); 

      return ModelState.IsValid; 


    public class ContactsController : Controller 

     SAMembershipProvider saMembershipProvider = new SAMembershipProvider(); 
     SARoleProvider saRoleProvider = new SARoleProvider(); 

     // GET: /Contact/ 

     public ActionResult Index() 
      string[] roleNames = Roles.GetRolesForUser("[email protected]"); 

      // Outputs admin 
      ViewData["r1"] = roleNames[0].ToString(); 

      // Outputs True 
      // I'm not even sure if this method is the same as the one below 
      ViewData["r2"] = Roles.IsUserInRole("[email protected]", roleNames[0].ToString()); 

      // Outputs True 
      ViewData["r3"] = saRoleProvider.IsUserInRole("[email protected]", "admin"); 

      return View(); 








谢谢,明天早上我会试试!我没有使用断点的习惯,但在这个例子中,这是个好主意! – 2010-05-11 15:59:31


altoguh,我不认为问题出现在RoleExists中,因为在教程中,我遵循角色管理器的工作原理并使用相同的方法实现...但我明天会看到 – 2010-05-11 16:48:55


由于调试,我发现这个问题。问题出在LogOn方法中的Controller中。有这样一行:FormsAuthentication.SetAuthCookie(userFullName,false);并且它将错误的参数插入到cookie中,而不是userFullName,假设是userName – 2010-05-12 06:32:08








不,这不是因为在数据库中它也插入为“admin” – 2010-05-11 14:55:15