c# - ASP.Net Identity “Invalid token” on password reset with * in password -


we invalid token error messages when user tries reset password on reset password screen after entering new password. works fine special character #. have case puts in * in new password on reset pw screen, gets error message because of special character.

i've tried hours of research find solution why happens no luck. i've found this solution here has issue special characters in username don't have issue. there issue special character in password. in production can't disallow character in passwords.

someone got clue?

generating token controller method:

[httppost] [allowanonymous] public async task<actionresult> forgotpassword(forgotpasswordviewmodel model) {     if (modelstate.isvalid)     {         var user = await _usermanager.findbynameasync(model.email.tolower());         if (user == null || !(await _usermanager.isemailconfirmedasync(user.username)))         {             // don't reveal user not exist or not confirmed             return view("forgotpasswordconfirmation");         }          // more information on how enable account confirmation , password reset please visit http://go.microsoft.com/fwlink/?linkid=320771         // send email link         var code = await _usermanager.generatepasswordresettokenasync(user.username);         code = httputility.urlencode(code);         var callbackurl = url.action("resetpassword", "account", new { userid = user.username, code = code }, protocol: request.url.scheme);          await _emailservice.createresetpasswordemailasync(user, callbackurl);         return redirecttoaction("forgotpasswordconfirmation", "account");     }      // if got far, failed, redisplay form     return view(model); }

reset password controller method:

[httppost] [allowanonymous] public async task<actionresult> resetpassword(resetpasswordviewmodel model) {     if (!modelstate.isvalid)     {         return view(model);     }      var user = await _usermanager.findbynameasync(model.email.tolower());     if (user == null)     {         // don't reveal user not exist         return redirecttoaction("resetpasswordconfirmation", "account");     }      var result = await _usermanager.resetpasswordasync(user.username, httputility.urldecode(model.code), model.password);     if (result.succeeded)     {         return redirecttoaction("resetpasswordconfirmation", "account");     }      adderrors(result);     return view(); }

the problem double encoding reset token. here:

var code = await _usermanager.generatepasswordresettokenasync(user.username); code = httputility.urlencode(code);  //<--problem line var callbackurl = url.action("resetpassword", "account",      new { userid = user.username, code = code }, protocol: request.url.scheme);

you encode token , url.action again. solution not encode manually , let mvc handle - remove second line here.

also, on other end, there's no need decode again, code there be:

var result = await _usermanager.resetpasswordasync(user.username,      model.code, model.password);

-

Comments

Post a Comment

Popular posts from this blog

php - Permission denied. Laravel linux server -

when try register , send email user got error. working till yesterday. today gives me , cant figure out why. way on local testing work's. i'm stuck. please errorexception in compiled.php line 7512: file_put_contents(/var/www/html/storage/framework/views/53de219dee4f11a2db4f64a2c574ad02db5613f4.php): failed open stream: permission denied in compiled.php line 7512 @ handleexceptions->handleerror('2', 'file_put_contents(/var/www/html/storage/framework/views/53de219dee4f11a2db4f64a2c574ad02db5613f4.php): failed open stream: permission denied', '/var/www/html/bootstrap/cache/compiled.php', '7512', array('path' => '/var/www/html/storage/framework/views/53de219dee4f11a2db4f64a2c574ad02db5613f4.php', 'contents' => 'please activate account clicking on following link. <a href="<?php echo e(route('auth.activate', $token)); ?>"><?php echo e(route('auth.activate', $token)); ?
Read more

google bigquery - Delta between query execution time and Java query call to finish -

context our container cluster located @ us-east1-c we using following java library: google-cloud-bigquery, 0.9.2-beta our dataset has around 26m rows , represents ~10g all of our queries return less 100 rows grouping on specific column question we analyzed last 100 queries executed in bigquery, these executed in 2-3 seconds (we analyzed calling bq --format=prettyjson show -j jobid , end time - creation time). in our java logs though, of calls bigquery.query blocking 5-6 seconds (and 10 seconds not out of ordinary). explain systematic gap between query finish in bigquery cluster , results being available in java? know 5-6 seconds isn't astronomic, curious see if normal behaviour when using java bigquery cloud library. i didn't dig point analyzed outbound call using wireshark. our tests executed in our container cluster (kubernetes). code queryrequest request = queryrequest.newbuilder(sql) .setmaxwaittime(30000l) .setuselega
Read more

python - Pandas two dataframes multiplication? -

i have 2 data frames (a , b) a: column 1, column 2, column 3 0.1 0.5 0.7 b: row 1 5 row 2 6 row 3 7 how perform multiplication like (0.1)*5, (0.5)* 6, , (0.7)*7? in other words, how multiply value in first row of b value in first column of a, second row of b value in second column of b, , etc? you want multiply values without respect whether rows or columns. pd.series(a.values.ravel() * b.values.ravel()) 0 0.5 1 3.0 2 4.9 dtype: float64
Read more