Introduction
One of the most powerful improvements of ASP.NET 2.0 was truly the introduction of the membership, role and profile providers. They allow to rapidly integrate user management, role based security as well as visitor based page customization into your ASP.NET application. The name already indicates that they all implement the provider model design pattern.
Unfortunately, Microsoft doesn't have these providers ready to download leveraging the ADO.NET Entity Framework.
The downloadable source from this article provides a ready-to-use implementation for the above mentioned providers. The following article gives a quick overview about providers and it describes what it takes to get the provided source up and running.
In order to understand the source, sound knowledge of LINQ is inevitable. Furthermore, it is important that readers understand the philosophy behind ASP.NET providers.The following link gives a good overview of the ASP.NET providers.
Background
Provider Model Design Pattern
The provider model pattern was designed to provide a configurable component for data access which is defined from the web.config. The Provider interfaces between the Business logic and Data Access. The actual concrete implementation of the provider is defined in the web.config. Custom providers can be built and configured in the web.config without changing the application design. Providers are a subclass of the ProviderBase
class and typically instantiated using a factory method.
Various providers for the same purpose can co-exist and easily be configured in the web.config.
Database Schema
The database schema is closely related to the one that gets created by aspnet_regsql.exe:
The resulting Entity Model looks like the following:
Other than Microsoft's ASP.NET providers for SQL, the presented solution here does not use stored procedures. Instead, all the queries are implemented in the respective providers source using LINQ.
Exposed APIs
Membership Provider
void Initialize(string name, NameValueCollection config)
MembershipUser CreateUser(string username, string password, string email,
string passwordQuestion, string passwordAnswer,
bool isApproved,object providerUserKey,
out MembershipCreateStatus status)
bool ChangePasswordQuestionAndAnswer(string username, string password,
string newPasswordQuestion, string newPasswordAnswer)
string GetPassword(string username, string answer)
bool ChangePassword(string username, string oldPassword, string newPassword)
string ResetPassword(string username, string answer)
void UpdateUser(MembershipUser membershipUser)
bool ValidateUser(string username, string password)
bool UnlockUser(string username)
MembershipUser GetUser(object providerUserKey, bool userIsOnline)
string GetUserNameByEmail(string email)
bool DeleteUser(string username, bool deleteAllRelatedData)
MembershipUserCollection GetAllUsers(int pageIndex, int pageSize, out int totalRecords)
int GetNumberOfUsersOnline()
MembershipUserCollection FindUsersByName
(string usernameToMatch, int pageIndex, int pageSize, out int totalRecords)
MembershipUserCollection FindUsersByEmail
(string emailToMatch, int pageIndex, int pageSize, out int totalRecords)
Role Provider
void Initialize(string name, NameValueCollection config)
bool IsUserInRole(string username, string roleName)
string[] GetRolesForUser(string username)
void CreateRole(string roleName)
bool DeleteRole(string roleName, bool throwOnPopulatedRole)
bool RoleExists(string roleName)
void AddUsersToRoles(string[] userNames, string[] roleNames)
void RemoveUsersFromRoles(string[] userNames, string[] roleNames)
string[] GetUsersInRole(string roleName)
string[] GetAllRoles()
string[] FindUsersInRole(string roleName, string usernameToMatch)
Profile Provider
void Initialize(string name, NameValueCollection config)
SettingsPropertyValueCollection GetPropertyValues(SettingsContext context,
SettingsPropertyCollection properties)
void SetPropertyValues(SettingsContext context,
SettingsPropertyValueCollection properties)
int DeleteProfiles(ProfileInfoCollection profiles)
int DeleteProfiles(string[] usernames)
int DeleteInactiveProfiles(ProfileAuthenticationOption authenticationOption,
DateTime userInactiveSinceDate)
int GetNumberOfInactiveProfiles(ProfileAuthenticationOption authenticationOption,
DateTime userInactiveSinceDate)
ProfileInfoCollection GetAllProfiles(ProfileAuthenticationOption authenticationOption,
int pageIndex, int pageSize, out int totalRecords)
ProfileInfoCollection GetAllInactiveProfiles
(ProfileAuthenticationOption authenticationOption,
DateTime userInactiveSinceDate, int pageIndex,
int pageSize, out int totalRecords)
ProfileInfoCollection FindProfilesByUserName
(ProfileAuthenticationOption authenticationOption,
string usernameToMatch, int pageIndex,
int pageSize, out int totalRecords)
ProfileInfoCollection FindInactiveProfilesByUserName
(ProfileAuthenticationOption authenticationOption,
string usernameToMatch,
DateTime userInactiveSinceDate, int pageIndex,
int pageSize, out int totalRecords)
How To Use the Provided Solution?
The three in this solution contained providers are connected but it shouldn't be too much work to pull them apart if not all of them are required. There are two ways to use the source:
- Use the provided Entity Model to connect to an existing or new database.
- Extend an existing database and hence the existing Entity Model and replace the data context used by the providers with the existing data context.
In general, the following steps have to be applied to get the first approach up and running:
- Create a new database (e.g., EFDataModel).
- Run the CreateTables.sql script located in the DatabaseScripts solution folder on the new database.
- Modify the connection string for the Entity Framework in the App.config file of the SmartSoft.EFProviders.DataLayer project.
- Modify connection string for the Entity Framework in the Web.config file of the Web application.
- Configure the providers in the Web.config as follows:
<!---->
<membership defaultProvider="EFMembershipProvider" userIsOnlineTimeWindow="15">
<providers>
<add name="EFMembershipProvider"
type="HelveticSolutions.EFProviders.Web.Security.EFMembershipProvider,
HelveticSolutions.EFProviders.Web, Version=1.0.0.0, Culture=neutral,
PublicKeyToken=53fb08796b3f3bb2"
connectionStringName="EFProviderConnection"
enablePasswordRetrieval="true"
enablePasswordReset="true"
requiresQuestionAndAnswer="true"
writeExceptionsToEventLog="true" />
</providers>
</membership>
<machineKey validationKey="C50B3C89CB21F4F1422FF158A5B42D0E8DB8CB5CDA174257
2A487D9401E3400267682B202B746511891C1BAF47F8D25C07F6C39A104696DB51F17C529AD3CABE"
decryptionKey="8A9BE8FD67AF6979E7D20198CFEA50DD3D3799C77AF2B72F"
validation="SHA1"/>
<!---->
<roleManager enabled="true" defaultProvider="EFRoleProvider">
<providers>
<add name="EFRoleProvider"
type="HelveticSolutions.EFProviders.Web.Security.EFRoleProvider,
HelveticSolutions.EFProviders.Web, Version=1.0.0.0, Culture=neutral,
PublicKeyToken=53fb08796b3f3bb2"
connectionStringName="EFProviderConnection" />
</providers>
</roleManager>
<!---->
<profile enabled="true"
defaultProvider="EFProfileProvider"
inherits="EFProvidersWebApplication.MyProfile"
automaticSaveEnabled="true">
<providers>
<add name="EFProfileProvider"
type="HelveticSolutions.EFProviders.Web.Profile.EFProfileProvider,
HelveticSolutions.EFProviders.Web, Version=1.0.0.0, Culture=neutral,
PublicKeyToken=53fb08796b3f3bb2"
connectionStringName="EFProviderConnection"/>
</providers>
</profile>
Background
Wherever possible, LINQ queries were written to use expression trees rather than delegates. This article greatly describes the difference.
History