user lockout in asp.net core

nitish-kaushik · nitish-kaushik · commit aee2400eb407 · 2020-11-09T01:02:22.000+05:30
diff --git a/Webgentle.BookStore/Webgentle.BookStore/Controllers/AccountController.cs b/Webgentle.BookStore/Webgentle.BookStore/Controllers/AccountController.cs
@@ -75,6 +75,10 @@ public async Task<IActionResult> Login(SignInModel signInModel, string returnUrl
                 {
                     ModelState.AddModelError("", "Not allowed to login");
                 }
+                else if (result.IsLockedOut)
+                {
+                    ModelState.AddModelError("", "Account blocked. Try after some time.");
+                }
                 else
                 {
                     ModelState.AddModelError("", "Invalid credentials");
diff --git a/Webgentle.BookStore/Webgentle.BookStore/Repository/AccountRepository.cs b/Webgentle.BookStore/Webgentle.BookStore/Repository/AccountRepository.cs
@@ -76,7 +76,7 @@ public async Task GenerateForgotPasswordTokenAsync(ApplicationUser user)
 
         public async Task<SignInResult> PasswordSignInAsync(SignInModel signInModel)
         {
-            return await _signInManager.PasswordSignInAsync(signInModel.Email, signInModel.Password, signInModel.RememberMe, false);
+            return await _signInManager.PasswordSignInAsync(signInModel.Email, signInModel.Password, signInModel.RememberMe, true);
         }
 
         public async Task SignOutAsync()
diff --git a/Webgentle.BookStore/Webgentle.BookStore/Startup.cs b/Webgentle.BookStore/Webgentle.BookStore/Startup.cs
@@ -49,6 +49,14 @@ public void ConfigureServices(IServiceCollection services)
                 options.Password.RequireUppercase = false;
 
                 options.SignIn.RequireConfirmedEmail = true;
+
+                options.Lockout.DefaultLockoutTimeSpan = TimeSpan.FromMinutes(20);
+                options.Lockout.MaxFailedAccessAttempts = 3;
+            });
+
+            services.Configure<DataProtectionTokenProviderOptions>(options =>
+            {
+                options.TokenLifespan = TimeSpan.FromMinutes(5);
             });
 
             services.ConfigureApplicationCookie(config =>

Original file line number	Diff line number	Diff line change
`@@ -75,6 +75,10 @@ public async Task<IActionResult> Login(SignInModel signInModel, string returnUrl`
`75`	`75`	`{`
`76`	`76`	`ModelState.AddModelError("", "Not allowed to login");`
`77`	`77`	`}`
	`78`	`+ else if (result.IsLockedOut)`
	`79`	`+ {`
	`80`	`+ ModelState.AddModelError("", "Account blocked. Try after some time.");`
	`81`	`+ }`
`78`	`82`	`else`
`79`	`83`	`{`
`80`	`84`	`ModelState.AddModelError("", "Invalid credentials");`
Original file line number	Diff line number	Diff line change
`@@ -76,7 +76,7 @@ public async Task GenerateForgotPasswordTokenAsync(ApplicationUser user)`
`76`	`76`
`77`	`77`	`public async Task<SignInResult> PasswordSignInAsync(SignInModel signInModel)`
`78`	`78`	`{`
`79`		`- return await _signInManager.PasswordSignInAsync(signInModel.Email, signInModel.Password, signInModel.RememberMe, false);`
	`79`	`+ return await _signInManager.PasswordSignInAsync(signInModel.Email, signInModel.Password, signInModel.RememberMe, true);`
`80`	`80`	`}`
`81`	`81`
`82`	`82`	`public async Task SignOutAsync()`