Decoupling ASP.NET Identity from the Core Domain Models - Onion Architecture

Asked 27/10, 2014 at 2:12 Answered 19/7, 2017 at 17:50

Solved .net entity-framework-6 asp.net-identity onion-architecture

I am using this sample project (https://github.com/imranbaloch/ASPNETIdentityWithOnion) as my application architecture, in this sample the core is completly decoplied from the infrastrure including the identity framework.

In this sample the author has used the adapter pattern to decouple core identity classes (IdentityUser, IdentityRole ... ) and provide classes like them in the Core layer.

Now the issue in this sample project is that the Domain model (Product, Images) are not linked with the dummy classes (AppUser, ApplicationRole, AppliationUserRoles, ...) that mimics the Identity ones.

Then I have modified the code to added the reference to AppUser

public sealed class Image : BaseEntity
{
    public Image()
    {
        Products = new HashSet<Product>();
    }

    public string Path { get; set; }

    public AppUser AppUser { get; set; } // The  Added Reference ...

    public ICollection<Product> Products { get; set; }
}

If I put the "AppUser" navigation property inside the "Image" class, the created database will have FOUR new tables other than the default FIVE tables of the identity framework.

Onion Database Problem with Identity Tables

I need to merge these tables into the default ones. how ?

EDIT:

This is the Identity Models that resides in the Data Layer (which I can not reference from the core).

public class ApplicationIdentityUser :
    IdentityUser<int, ApplicationIdentityUserLogin, ApplicationIdentityUserRole, ApplicationIdentityUserClaim>, IDomainUser {

    public ApplicationIdentityUser()
        : base() {
        Images = new HashSet<Image>();
    }

    public string Name { get; set; }
    public virtual ICollection<Image> Images { get; set; }
}


public class ApplicationIdentityRole : IdentityRole<int, ApplicationIdentityUserRole>
{
    public ApplicationIdentityRole(){}

    public ApplicationIdentityRole(string name){Name = name;}
}

public class ApplicationIdentityUserRole : IdentityUserRole<int> {}

public class ApplicationIdentityUserClaim : IdentityUserClaim<int>{}

public class ApplicationIdentityUserLogin : IdentityUserLogin<int>{}

Also this is my model builder in the OnModelCreating method:

  modelBuilder.Entity<Image>()
            .Property(e => e.Id)
            .HasDatabaseGeneratedOption(DatabaseGeneratedOption.Identity);
        modelBuilder.Entity<Image>()
            .HasMany(e => e.Products)
            .WithRequired(e => e.Image)
            .WillCascadeOnDelete(false);
        modelBuilder.Entity<ApplicationIdentityUser>()
             .Property(e => e.Id)
             .HasDatabaseGeneratedOption(DatabaseGeneratedOption.Identity);
        modelBuilder.Entity<ApplicationIdentityRole>()
            .Property(e => e.Id)
            .HasDatabaseGeneratedOption(DatabaseGeneratedOption.Identity);
        modelBuilder.Entity<ApplicationIdentityUserClaim>()
             .Property(e => e.Id)
             .HasDatabaseGeneratedOption(DatabaseGeneratedOption.Identity);

Plantain answered 27/10, 2014 at 2:12 Comment(7)

AspNet* tables are surplus. Need to get rid of them. Check what is your ApplicationDbContext is doing with these tables? – Tourmaline 27/10, 2014 at 11:9

my ApplicationDbContext is actully driving from the IdentityDbContext, and I need a way to store user information, do you mean that i can use the tables that begins with Application* ? – Plantain 27/10, 2014 at 13:57

I'm saying that there should be only one set of *Users, *UserClaims, etc. tables. Looks like the way you do inheritence in your ApplicationDbContext is broken and you are not overriding Users and Roles and other, so EF creates 2 sets of tables for you. Check for that. – Tourmaline 27/10, 2014 at 14:11

okay thats good, I will update my question to include implementation details – Plantain 27/10, 2014 at 14:28

@Tourmaline i have updated the question, please check ... – Plantain 27/10, 2014 at 14:33

What do IDbsets look like in ApplicationDbContext? – Tourmaline 27/10, 2014 at 15:31

there are no IDbSet in the ApplicationDbContext, entities are only defined using the Fluent API on the OnModelCreating (which also call the base.OnModelCreating). you can check the full project on github in the provided link (first line of the question). – Plantain 27/10, 2014 at 15:59

Okay I have solved this by doing the following:

Include a dependency in your Core to Microsoft.AspNet.Identity.Core
Implement IUser interface on the AppUser (this interface come from Microsoft.AspNet.Identity.Core).
Implement IRole interface on the ApplicationRole.
Completely get rid of the IdentityDbContext and inherit only from DbContext.
Implement your own version of IUserStore* providing your AppUser
Implement your own version of IRoleStore providing your ApplicationRole.

I know that making a dependency on the Microsoft.AspNet.Identity.Core sounds Odd, but we only need the interface IUser which is basically considered as Core Domain Model for your application too.

The Ultimate Idea here is to GET RID OF THE Microsoft.AspNet.Identity.EntityFramework completely.

Interested devs can +1 this, so I can upload a full working sample on GitHub.

Plantain answered 29/10, 2014 at 6:8 Comment(6)

I was just about to embark on this journey as I came to the same conclusion that Microsoft.AspNet.Identity.EntityFramework is nice sample code but interferes with your domain if you intend users to be first class domain models. – Pourpoint 5/12, 2014 at 22:27

Would really like to see how you've get rid of the IdentityDbContext and how you referenced your ApplicationIdentityUser in the Image entity as it resides in the Core and not the Data layer! Any example would be appreciated. – Ribbonwood 29/5, 2015 at 4:2

Any chance you could put an example on GitHub? – Ribbonwood 23/6, 2015 at 0:56

were you going to put up a sample? – Penology 16/8, 2015 at 18:48

I think this is the sample github.com/imranbaloch/ASPNETIdentityWithOnion – Poteen 11/5, 2016 at 5:57

I don't think so, search the repository and you'll find Microsoft.AspNet.Identity.EntityFramework – Ridglea 23/2, 2017 at 21:40

I'm using this framework, no need to have a link in every entity To get the userID reference, i added a property UserIDBy in BaseEntity so every entity will inherit it.

public abstract class BaseEntity
{
    public int Id { get; set; }
    public string UserIDBy { get; set; }
}

Next, in the web project, there is already an extension method called GetUserId(this IIdentity identity) in IdentityExtensions.cs, so to stock the UserIDBy in every Create and Edit action result:

Create Action Result :

 // POST: /Region/Create
    [HttpPost]
    public async Task<ActionResult> Create([Bind(Include = "RegionName")] Region region)
    {
        if (ModelState.IsValid)
        {
            // TODO: Add insert logic here
            var id = User.Identity.GetUserId();
            region.UserIDBy = id.ToString(); 

            await _regionService.AddAsync(region);
            return Json(new { success = true });
        }

        return PartialView("_Create", region);
    }

Edit Action Result :

 //// POST: /Region/Edit/5
    [HttpPost]
    [ValidateAntiForgeryToken]
    public ActionResult Edit([Bind(Include = "id,RegionName")] Region region)
    {
        if (ModelState.IsValid)
        {
            var id = User.Identity.GetUserId();
            region.UserIDBy = id.ToString(); 
            _regionService.Update(region);
            return Json(new { success = true });
        }
        return PartialView("_Edit", region);
    }

Dont forget to import it :

using Myapp.Web.Extensions;

Provocation answered 3/12, 2015 at 12:30 Comment(2)

Very clever. Thanks for sharing. The ASPNETIdentityWithOnion is a great shell, but the headache of creating the relationship to custom tables and identity framework is not worth it. – Ridglea 23/2, 2017 at 21:52

Do you have an open source project that implements ASPNETIdentityWithOnion? – Ridglea 24/2, 2017 at 1:11

Just stumbled upon this, having the same problem.

The problem with the marked answer is that it still references Microsoft.AspNet, which makes it rough for future .NET Core-plans.

The main problem is really with the general attempt to build in an authentication feature in the core, which defeats the purpose.

Consider letting the built in functionality for web authentication and authorization remain in the web layer, and reference a Core user object (UserProfile?) that represents the Core needs. This would also simplify switching to another authentication method (AD).

Depending on your preference, you can then reference the Core.UserProfile from your AspNetUser to avoid multiple SQL-calls, or simply make sure to have a good cache policy on the Core.UserProfile operations.

This allows you to control your authentication methods separate from your Core model.

Grosgrain answered 19/7, 2017 at 17:50 Comment(0)

Recommended topics

Hot tags