This is a DocumentDB provider for the ASP.NET Core Identity framework. This was ported from the MongoDB ASP.NET Core Identity framework (Microsoft.AspNetCore.Identity.MongoDB NuGet package) by g0t4.
It's fully compatible with ASP.NET Core 1.0 & 2.0 and can also be used within standard .NET Framework projects. There is also support for partitioned collections (currently in beta).
Add this package to your project via NuGet:
dotnet add package AspNetCore.Identity.DocumentDB
Register the Identity service with DocumentDB stores. Usually in the ConfigureServices method within your Startup.cs:
services.AddIdentityWithDocumentDBStores(documentClient, (p) => collection);
No need to call services.AddIdentity()
before; this is already included in the code above.
This framework provides you with IdentityUser
and IdentityRole
classes that you need to use. You can create your own inherited classes if you like (see Inheriting section below).
Now you can go ahead and inject the UserManager
and/or RoleManager
provided by the Identity framework into your ASP.NET Controllers as you would normally do:
public YourController(UserManager<IdentityUser> userManager)
{
// use the userManager instance as you desire:
userManager.CreateAsync(new IdentityUser(), "password123");
}
There are a few different ways to register the DocumentDB stores that allow for more customization:
Register DocumentDB Stores separately from the AddIdentity() call:
services.AddIdentity<IdentityUser, IdentityRole>()
.RegisterDocumentDBStores<IdentityUser, IdentityRole>(documentClient, (p) => collection);
If you do this make sure the provided IdentityUser
and IdentityRole
classes are matching.
Instead of providing a DocumentClient & DocumentCollection you can also use DocumentDbOptions and optionally IdentityOptions to allow for as much customization as possible:
services.AddIdentityWithDocumentDBStores<IdentityUser, IdentityRole>(
dbOptions => {
dbOptions.DocumentUrl = "...";
dbOptions.DocumentKey = "...";
dbOptions.DatabaseId = "...";
dbOptions.CollectionId = "...";
// optional:
// dbOptions.PartitionKey = [provide definition here];
},
identityOptions => {
identityOptions.User.RequireUniqueEmail = true;
});
The RegisterDocumentDBStores
also allows setting DocumentDbOptions. The IdentityOptions cannot be set there for obvious reasons (hopefully).
If you want to use customized classes for UserManager
and RoleManager
you need to reference them during the DocumentDB stores registration:
services.AddIdentityWithDocumentDBStores<CustomUser, CustomRole>(documentClient, databaseLink);
All methods provided by this library can be used with custom classes.
Have a look into the samples
folder in the repository.
What frameworks are targeted, with rationale:
- Microsoft.AspNetCore.Identity - supports net451 and netstandard1.3
- Microsoft.Azure.DocumentDB v2.0.0 - supports net45
- Microsoft.Azure.DocumentDB.Core v2.0.0 - supports netstandard1.6
- Thus, the lowest common denominators are net451 and netstandard1.6
Additionally this projects targets netstandard2.0 explicitly due to its incompaibility with older versions of Microsoft.AspNetCore.Identity. For netstandard2.0 Microsoft.AspNetCore.Identity v2.0 is required.
This table serves as a quick overview of which interfaces are implemented from the ASP.NET Core Identity framework:
Feature | without partitioning | with partitioning |
---|---|---|
IUserStore | x | x |
IQueryableUserStore | x | x* |
IUserPasswordStore | x | x |
IUserRoleStore | x | x |
IUserLoginStore | x | - |
IUserSecurityStampStore | x | x |
IUserEmailStore | x | x |
IUserClaimStore | x | x |
IUserPhoneNumberStore | x | x |
IUserTwoFactorStore | x | x |
IUserLockoutStore | x | x |
IUserAuthenticationTokenStore | x | x |
IRoleStore | x | x |
IQueryableRoleStore | x | x* |
IRoleClaimStore | x | x |
*= The "Users" & "Roles" properties of the queryable stores are supported for partitioned collection but accessing them will cause a cross-partition query which is generally not recommended due to the high costs & performance. Avoid them when possible.
run commands in build.sh