User.IsInRole not working. How to check rolebased authorization?

Question

I am using MVC 5 with EntityFramework 6. In "IdentityModel" I am inheriting IdentityUser class using following code:

public class ApplicationUser : IdentityUser
{
    [Display(Name="First Name")]
    [StringLength(50, ErrorMessage = "Length exceed")]
    public string FirstName { set; get; }

    [Display(Name = "Last Name")]
    [StringLength(50, ErrorMessage = "Length exceed")]
    public string LastName { set; get; }

}
public class ApplicationDbContext : IdentityDbContext<ApplicationUser>
{
    public ApplicationDbContext()
        : base("DefaultConnection")
    {
        this.Configuration.LazyLoadingEnabled = false;
    }


  protected override void OnModelCreating(DbModelBuilder modelBuilder)
    {



        modelBuilder.Entity<IdentityUser>().HasKey(r => r.Id); 
        modelBuilder.Entity<IdentityUserLogin>().HasKey<string>(l => l.UserId);
        modelBuilder.Entity<IdentityRole>().HasKey<string>(r => r.Id);
        modelBuilder.Entity<IdentityUserRole>().HasKey(r => new { r.RoleId, r.UserId });


    }

I have assigned roles to "IdentityUser" using the following code:

UserManager.AddToRole(user.Id, "User");

I can see assigned roles in "IdentityUserRole" table, but when trying to access the roles using

User.IsInRole("User");

It returns always false.

After adding following code in my web.config I get "Could not find stored procedure 'dbo.aspnet_CheckSchemaVersion'." this error.

<roleManager enabled="true" defaultProvider="SqlRoleProvider">
  <providers>
    <clear/> 
    <add name="SqlRoleProvider" type="System.Web.Security.SqlRoleProvider" connectionStringName="DefaultConnection"  />
  </providers>
</roleManager>

I am not using code first migration.

score 3 · Answer 1 · answered Jul 09 '14 at 12:57

3

User.IsInRole uses the 'old' version of role manager whereas your code is using the newer Identity framework. Instead use the new UserManager (you seem to already have the object):

if (UserManager.IsInRole(user.Id, "Admin"))
{
    //...
}

answered Jul 09 '14 at 12:57

DavidG

113,891
12
217
223

It is still returning false always. – Twix Jul 10 '14 at 05:32
Are you checking the correct role? I put "Admin" but I noticed your role is "User". – DavidG Jul 10 '14 at 08:03
Yes. I have checked for all roles. – Twix Jul 10 '14 at 09:21
Have you checked the database to see if there is an entry in the user-roles table? – DavidG Jul 10 '14 at 09:22
Yes. Roles are created and assigned to users. – Twix Jul 10 '14 at 10:36
Odd, you should probably turn off roleManager in web.config, that may help but I doubt it. – DavidG Jul 10 '14 at 10:47
Suppose I don't have the Identity database but a custom database with users and roles. What do I need to set during user login so that subsequent controllers can use the IsInRole? – variable Jan 10 '22 at 15:05

score 0 · Answer 2 · edited May 23 '17 at 11:54

0

This version work for me:

if (UserManager.IsInRole(User.Identity.GetUserId(), "Admin"))
{
     Response.Write("IS IN ADMIN!");
}

If you want use Authorize attribule with role name like [Authorize(Roles = "Admin")] in your action, i recomend watch this topic:Authorize attribute not working with roles

edited May 23 '17 at 11:54

Community

1
1

answered Mar 22 '17 at 09:10

Anonimys

596
1
5
14

User.IsInRole not working. How to check rolebased authorization?

2 Answers2