Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Enhance Lockout Functionality: Add Test for AccessFailedAsync Incrementing Count #60350

Open
wants to merge 11 commits into
base: main
Choose a base branch
from
+62 −3
Open

Enhance Lockout Functionality: Add Test for AccessFailedAsync Incrementing Count #60350

Show file tree
Hide file tree
Changes from 5 commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
3bc8a31
Fixed bug 60181.
Feb 12, 2025
f3116b0
Update src/Identity/test/Identity.Test/UserManagerTest.cs
shethaadit Feb 12, 2025
d09ad4a
Added few missing code and changes.
Feb 12, 2025
2caf051
Moved new property to Public API Unshipped.
Feb 12, 2025
078ff23
More changes.
Feb 12, 2025
badef0e
Update src/Identity/Extensions.Core/src/LockoutOptions.cs
shethaadit Feb 13, 2025
4ec7a28
Update src/Identity/Extensions.Core/src/UserManager.cs
shethaadit Feb 13, 2025
d6b35bc
Merge branch 'main' of https://github.com/shethaadit/aspnetcore into …
Feb 18, 2025
1fb1a1e
Merge branch 'shethaadit/FixBug60181' of https://github.com/shethaadi…
Feb 18, 2025
a3ebac5
Merge branch 'main' of https://github.com/shethaadit/aspnetcore into …
Feb 20, 2025
73b6890
Fixed tests.
Feb 20, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 6 additions & 0 deletions src/Identity/Extensions.Core/src/LockoutOptions.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -32,4 +32,10 @@ public class LockoutOptions
/// </summary>
/// <value>The <see cref="TimeSpan"/> a user is locked out for when a lockout occurs.</value>
public TimeSpan DefaultLockoutTimeSpan { get; set; } = TimeSpan.FromMinutes(5);

/// <summary>
/// Specifies whether the lockout should be permanent.
/// If true, the user will be locked out indefinitely.
/// </summary>
public bool PermanentLockout { get; set; }
}
2 changes: 2 additions & 0 deletions src/Identity/Extensions.Core/src/PublicAPI.Unshipped.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1 +1,3 @@
#nullable enable
Microsoft.AspNetCore.Identity.LockoutOptions.PermanentLockout.get -> bool
Microsoft.AspNetCore.Identity.LockoutOptions.PermanentLockout.set -> void
21 changes: 18 additions & 3 deletions src/Identity/Extensions.Core/src/UserManager.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1818,15 +1818,30 @@ public virtual async Task<IdentityResult> AccessFailedAsync(TUser user)
var store = GetUserLockoutStore();
ArgumentNullThrowHelper.ThrowIfNull(user);

// If this puts the user over the threshold for lockout, lock them out and reset the access failed count
// If PermanentLockout is enabled, lock the user indefinitely
if (Options.Lockout.PermanentLockout)
{
Logger.LogDebug(LoggerEventIds.UserLockedOut, "User is permanently locked out.");
await store.SetLockoutEndDateAsync(user, DateTimeOffset.MaxValue, CancellationToken).ConfigureAwait(false);
return await UpdateUserAsync(user).ConfigureAwait(false);
}

// Increment access failed count
var count = await store.IncrementAccessFailedCountAsync(user, CancellationToken).ConfigureAwait(false);
if (count < Options.Lockout.MaxFailedAccessAttempts)
{
return await UpdateUserAsync(user).ConfigureAwait(false);
}

Logger.LogDebug(LoggerEventIds.UserLockedOut, "User is locked out.");
await store.SetLockoutEndDateAsync(user, DateTimeOffset.UtcNow.Add(Options.Lockout.DefaultLockoutTimeSpan),
CancellationToken).ConfigureAwait(false);

// Set the lockout time based on configuration
var now = DateTimeOffset.UtcNow;
DateTimeOffset lockoutEnd = Options.Lockout.DefaultLockoutTimeSpan == TimeSpan.MaxValue
? DateTimeOffset.MaxValue
: now.Add(Options.Lockout.DefaultLockoutTimeSpan);

await store.SetLockoutEndDateAsync(user, lockoutEnd, CancellationToken).ConfigureAwait(false);
await store.ResetAccessFailedCountAsync(user, CancellationToken).ConfigureAwait(false);
return await UpdateUserAsync(user).ConfigureAwait(false);
}
Expand Down
27 changes: 27 additions & 0 deletions src/Identity/test/Identity.Test/UserManagerTest.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1012,6 +1012,33 @@ public async Task ResetTokenCallNoopForTokenValueZero()
IdentityResultAssert.IsSuccess(await manager.ResetAccessFailedCountAsync(user));
}

[Fact]
public async Task AccessFailedAsyncIncrementsAccessFailedCount()
{
// Arrange
var user = new PocoUser() { UserName = "testuser" };
var store = new Mock<IUserLockoutStore<PocoUser>>();
int failedCount = 1; // Simulated access failed count

store.Setup(x => x.GetAccessFailedCountAsync(user, It.IsAny<CancellationToken>()))
.ReturnsAsync(() => failedCount); // Return the updated value dynamically

store.Setup(x => x.IncrementAccessFailedCountAsync(user, It.IsAny<CancellationToken>()))
.ReturnsAsync(() => ++failedCount); // Increment and return the new count

var manager = MockHelpers.TestUserManager(store.Object);

// Act
var result = await manager.AccessFailedAsync(user);

// Assert
IdentityResultAssert.IsSuccess(result);
store.Verify(x => x.IncrementAccessFailedCountAsync(user, It.IsAny<CancellationToken>()), Times.Once);

var newFailedCount = await manager.GetAccessFailedCountAsync(user);
Assert.Equal(2, newFailedCount); // Ensure the count was actually updated
}

[Fact]
public async Task ManagerPublicNullChecks()
{
Expand Down
Loading