如何实现ASP.NET标识:数据库“master”
首先,我已经在这里查了一下: ASP.Net Identity how to set target DB?
我现在收到此错误
在数据库'master'中拒绝CREATE DATABASE权限。
在这行代码中:
Dim user As User = manager.Find(Trim(Username.Text), Trim(Password.Text))
完整错误:
[SqlException(0x80131904):数据库'master'中的CREATE DATABASE权限被拒绝。]
System.Data.SqlClient.SqlConnection.OnError(SqlException exception,Boolean breakConnection,Action1 wrapCloseInAction) +32498521 completion,String methodName,Boolean sendToPipe,Int32 timeout,Boolean asyncWrite)+367
System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject stateObj, Boolean callerHasConnectionLock, Boolean asyncClose) +345
System.Data.SqlClient.TdsParser.TryRun(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj, Boolean& dataReady) +4927
System.Data.SqlClient.SqlCommand.RunExecuteNonQueryTds(String methodName, Boolean async, Int32 timeout, Boolean asyncWrite) +1287
System.Data.SqlClient.SqlCommand.InternalExecuteNonQuery(TaskCompletionSource
System.Data.SqlClient.SqlCommand.ExecuteNonQuery()+386
System.Data.Entity.Infrastructure.Interception.InternalDispatcher1.Dispatch(TTarget target, Func3操作,TInterceptionContext interceptionContext,Action3 executing, Action3执行)+965
System.Data.Entity.Infrastructure.Interception.DbCommandDispatcher.NonQuery(DbCommand命令,DbCommandInterceptionContext interceptionContext)+505
System.Data.Entity.SqlServer。<> c__DisplayClass1a.b__19(DbConnection conn)+136
System.Data.Entity.SqlServer.SqlProviderServices.UsingConnection(DbConnection sqlConnection,Action1 act) +3471 act)+916
System.Data.Entity.SqlServer.SqlProviderServices.UsingMasterConnection(DbConnection sqlConnection, Action
System.Data.Entity.SqlServer.SqlProviderServices.CreateDatabaseFromScript(Nullable1 commandTimeout, DbConnection sqlConnection, String createDatabaseScript) +1171 commandTimeout,StoreItemCollection storeItemCollection)+212
System.Data.Entity.SqlServer.SqlProviderServices.DbCreateDatabase(DbConnection connection, Nullable
System.Data.Entity.Migrations.Utilities.DatabaseCreator.Create(DbConnection connection)+172
System.Data.Entity.Migrations.DbMigrator.EnsureDatabaseExists(Action mustSucceedToKeepDatabase)+177
System.Data.Entity.Migrations.DbMigrator.Update(String targetMigration)+116
System.Data.Entity.Internal.DatabaseCreator.CreateDatabase(InternalContext internalContext,Func3 createMigrator, ObjectContext objectContext) +1211.InitializeDatabase(TContext context)+257
System.Data.Entity.Database.Create(DatabaseExistenceState existenceState) +169
System.Data.Entity.CreateDatabaseIfNotExists
System.Data.Entity.Internal.InternalContext.PerformInitializationAction(Action action)+72
System.Data.Entity.Internal.InternalContext.PerformDatabaseInitialization()+483
System.Data.Entity.Internal.RetryAction1.PerformAction(TInput input) +1771动作)+274
System.Data.Entity.Internal.LazyInternalContext.InitializeDatabaseAction(Action
System.Data.Entity.Internal.InternalContext.GetEntitySetAndBaseTypeForType(Type entityType)+37
System.Data.Entity.Internal.Linq.InternalSet1.Initialize() +761.get_InternalContext()+ 21
System.Data.Entity.Internal.Linq.InternalSet
System.Data.Entity.Infrastructure.DbQuery1.System.Linq.IQueryable.get_Provider() +591个来源,表达式
System.Data.Entity.QueryableExtensions.FirstOrDefaultAsync(IQueryable1 predicate, CancellationToken cancellationToken) +2081个来源,表达式`1谓词)+172
System.Data.Entity.QueryableExtensions.FirstOrDefaultAsync(IQueryableMicrosoft.AspNet.Identity.EntityFramework.d__6c.MoveNext()+502
System.Runtime.CompilerServices.TaskAwaiter.ThrowForNonSuccess(任务任务)+13855856
System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(任务任务)+61
Microsoft.AspNet.Identity.CultureAwaiter1.GetResult() +481 func)+348
Microsoft.AspNet.Identity.<FindAsync>d__12.MoveNext() +357
System.Runtime.CompilerServices.TaskAwaiter.ThrowForNonSuccess(Task task) +13855856
System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) +61
Microsoft.AspNet.Identity.AsyncHelper.RunSync(Func
C:\ MyApp \ Login_identity.aspx.vb中的MyApp.Login_identity.UserLogin_Click(Object sender,EventArgs e):168 System.Web.UI.WebControls.Button.OnClick(EventArgs e)+11747645
System.Web.UI.WebControls.Button.RaisePostBackEvent(String eventArgument)+150
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint,Boolean includeStagesAfterAsyncPoint)+3360
我将DbContext中的AppModel.vb初始化更改为现有的连接字符串conn1,该字符串指向已转换为新标识表的SQL Server数据库。
我的连接字符串:
<add name="conn1"
connectionString="data source=(local)\sqlexpress;Initial Catalog=myapp;User Id=sa;Password=XXXX;"
providerName="System.Data.SqlClient" />
AppModel.vb:
Imports Microsoft.AspNet.Identity
Imports Microsoft.AspNet.Identity.EntityFramework
Imports System.Collections.Generic
Imports System.ComponentModel.DataAnnotations
Imports System.Data.Entity
Imports System.Linq
Imports System.Web
Namespace AspnetIdentitySample.Models
Public Class ApplicationUser
Inherits IdentityUser
' HomeTown will be stored in the same table as Users
Public Property HomeTown() As String
Get
Return m_HomeTown
End Get
Set(value As String)
m_HomeTown = Value
End Set
End Property
Private m_HomeTown As String
Public Overridable Property ToDoes() As ICollection(Of ToDo)
Get
Return m_ToDoes
End Get
Set(value As ICollection(Of ToDo))
m_ToDoes = Value
End Set
End Property
Private m_ToDoes As ICollection(Of ToDo)
' FirstName & LastName will be stored in a different table called MyUserInfo
Public Overridable Property MyUserInfo() As MyUserInfo
Get
Return m_MyUserInfo
End Get
Set(value As MyUserInfo)
m_MyUserInfo = Value
End Set
End Property
Private m_MyUserInfo As MyUserInfo
End Class
Public Class MyUserInfo
Public Property Id() As Integer
Get
Return m_Id
End Get
Set(value As Integer)
m_Id = Value
End Set
End Property
Private m_Id As Integer
Public Property FirstName() As String
Get
Return m_FirstName
End Get
Set(value As String)
m_FirstName = Value
End Set
End Property
Private m_FirstName As String
Public Property LastName() As String
Get
Return m_LastName
End Get
Set(value As String)
m_LastName = Value
End Set
End Property
Private m_LastName As String
End Class
Public Class ToDo
Public Property Id() As Integer
Get
Return m_Id
End Get
Set(value As Integer)
m_Id = Value
End Set
End Property
Private m_Id As Integer
Public Property Description() As String
Get
Return m_Description
End Get
Set(value As String)
m_Description = Value
End Set
End Property
Private m_Description As String
Public Property IsDone() As Boolean
Get
Return m_IsDone
End Get
Set(value As Boolean)
m_IsDone = Value
End Set
End Property
Private m_IsDone As Boolean
Public Overridable Property User() As ApplicationUser
Get
Return m_User
End Get
Set(value As ApplicationUser)
m_User = Value
End Set
End Property
Private m_User As ApplicationUser
End Class
Public Class MyDbContext
Inherits IdentityDbContext(Of ApplicationUser)
Public Sub New()
MyBase.New("conn1") 'DefaultConnection
End Sub
Protected Overrides Sub OnModelCreating(modelBuilder As DbModelBuilder)
MyBase.OnModelCreating(modelBuilder)
' Change the name of the table to be Users instead of AspNetUsers
modelBuilder.Entity(Of IdentityUser)().ToTable("Users")
modelBuilder.Entity(Of ApplicationUser)().ToTable("Users")
End Sub
Public Property ToDoes() As DbSet(Of ToDo)
Get
Return m_ToDoes
End Get
Set(value As DbSet(Of ToDo))
m_ToDoes = Value
End Set
End Property
Private m_ToDoes As DbSet(Of ToDo)
Public Property MyUserInfo() As DbSet(Of MyUserInfo)
Get
Return m_MyUserInfo
End Get
Set(value As DbSet(Of MyUserInfo))
m_MyUserInfo = Value
End Set
End Property
Private m_MyUserInfo As DbSet(Of MyUserInfo)
End Class
End Namespace
更新
根据评论,我还检查了here。
我真的不明白为什么这是一个角色问题,因为我正在重用一个已经正常工作的连接字符串来更新其他(非身份相关的)表。此外,我不明白为什么错误引用了master表,因为我预计我不会试图通过manager.Find方法以任何方式连接到该表。
无论如何,我正在测试的用户已经被分配到sysadmin角色:
更新2
好的,感谢Jeremy在下面的评论我更近了一步......我需要将用户IIS APPPOOL\.NET v4.5添加到角色sysadmin,因为那是用户连接,如SQL Server Profiler所示(虽然我不确定将此用户添加到此角色时的安全风险)。
无论如何,Find方法不再抛出错误并使用SQL Server探查器我看到执行此代码Dim user As User = manager.FindByName(Trim(Username.Text))时触发了SQL语句
exec sp_executesql N'SELECT TOP (1)
[Extent1].[Id] AS [Id],
[Extent1].[ApplicationId] AS [ApplicationId],
[Extent1].[MobileAlias] AS [MobileAlias],
[Extent1].[IsAnonymous] AS [IsAnonymous],
[Extent1].[LastActivityDate] AS [LastActivityDate],
[Extent1].[MobilePIN] AS [MobilePIN],
[Extent1].[LoweredEmail] AS [LoweredEmail],
[Extent1].[LoweredUserName] AS [LoweredUserName],
[Extent1].[PasswordQuestion] AS [PasswordQuestion],
[Extent1].[PasswordAnswer] AS [PasswordAnswer],
[Extent1].[IsApproved] AS [IsApproved],
[Extent1].[IsLockedOut] AS [IsLockedOut],
[Extent1].[CreateDate] AS [CreateDate],
[Extent1].[LastLoginDate] AS [LastLoginDate],
[Extent1].[LastPasswordChangedDate] AS [LastPasswordChangedDate],
[Extent1].[LastLockoutDate] AS [LastLockoutDate],
[Extent1].[FailedPasswordAttemptCount] AS [FailedPasswordAttemptCount],
[Extent1].[FailedPasswordAttemptWindowStart] AS [FailedPasswordAttemptWindowStart],
[Extent1].[FailedPasswordAnswerAttemptCount] AS [FailedPasswordAnswerAttemptCount],
[Extent1].[FailedPasswordAnswerAttemptWindowStart] AS [FailedPasswordAnswerAttemptWindowStart],
[Extent1].[Comment] AS [Comment],
[Extent1].[Email] AS [Email],
[Extent1].[EmailConfirmed] AS [EmailConfirmed],
[Extent1].[PasswordHash] AS [PasswordHash],
[Extent1].[SecurityStamp] AS [SecurityStamp],
[Extent1].[PhoneNumber] AS [PhoneNumber],
[Extent1].[PhoneNumberConfirmed] AS [PhoneNumberConfirmed],
[Extent1].[TwoFactorEnabled] AS [TwoFactorEnabled],
[Extent1].[LockoutEndDateUtc] AS [LockoutEndDateUtc],
[Extent1].[LockoutEnabled] AS [LockoutEnabled],
[Extent1].[AccessFailedCount] AS [AccessFailedCount],
[Extent1].[UserName] AS [UserName]
FROM [dbo].[AspNetUsers] AS [Extent1]
WHERE ((UPPER([Extent1].[UserName])) = (UPPER(@p__linq__0))) OR ((UPPER([Extent1].[UserName]) IS NULL) AND (UPPER(@p__linq__0) IS NULL))',N'@p__linq__0 nvarchar(4000)',@p__linq__0=N'flo@outlook.com'
奇怪的是:当我直接在SQL Server Management Studio中执行它时,我得到了一条返回的记录,但在我的代码中,变量user是Nothing ....它可以是什么?
5 个答案:
答案 0 :(得分:1)
您的连接字符串包含&#34; User Id = sa; Password = XXXX&#34;,因此该连接正在尝试使用SQL Server身份验证。您的SSMS登录属性的标题栏似乎在识别Windows帐户,这意味着有人认为应该使用Windows身份验证。然而,该连接正在尝试使用SQL Server身份验证(而不是Windows身份验证)。如果尚未配置,则可以更改SQL Server的身份验证模式以支持SQL身份验证和Windows身份验证(&#34;混合模式&#34;身份验证),请参阅https://msdn.microsoft.com/en-us/library/ms188670.aspx。
或者,可以根据https://msdn.microsoft.com/en-us/library/jj653752(v=vs.110).aspx#integratedsecurity
更改连接字符串以使用Windows身份验证/集成安全性答案 1 :(得分:1)
如果您的应用程序池在NETWORK SERVICE标识下运行,请尝试此操作。然后为“NT AUTHORITY \ NETWORK SERVICE”提供SysAdmin角色:
或者将SysAdmin提供给运行应用程序池的帐户。
如果这不起作用,请检查以下任何解决方案是否有帮助:CREATE DATABASE permission denied in database 'master' (EF code-first)
修改
给所有这些帐户sysAdmin不是很安全。在您开始工作之后,将SQL安全性加强到dbReader和dbWriter角色。
FindByName方法出了什么问题?
现在没有例外,问题是我认为没有数据返回 还有一些事情正在发生。
由于您在连接字符串中使用SQL身份验证,您可以尝试使用Windows集成吗?否则,请尝试在连接字符串中使用appPool IIS帐户凭据,看看是否会产生关于错误的线索?
答案 2 :(得分:0)
为什么要使用身份字段而不是在NVARCHAR()字段中使用HASH值?
例如:您可以从用户(或其字段的连接)获取单个数据,从.NET Cryptography库计算HASH并使用数据设置NVARCHAR()。
这种方式(假设您正在使用SHA-512 HASH),您将能够拥有一个单独数据的Base64字符串,就像身份本身一样。
但是,如果您的目标是动力的身份,您可以获取用户数据,加上当前日期时间,计算其HASH并将此数据保存为记录的标识。< / p>
答案 3 :(得分:0)
您应该使用与&#34; sa&#34;不同的SQL帐户。但是sa的默认数据库是master。即使在连接字符串中定义了myapp,Find方法也可能使用用户的默认数据库。
将sa的默认数据库更改为myapp,此处为:
答案 4 :(得分:-1)
您的用户应添加到dbcreator角色。
否则您不允许创建新数据库。
系统管理员/公众是不够的。
- 数据库'master'中的CREATE DATABASE权限被拒绝
- 如何在Windows身份验证中处理“在数据库主机中创建数据库权限”?
- 数据库'master'中的CREATE DATABASE权限被拒绝
- 如何实现ASP.NET标识:数据库“master”
- 数据库&#39; master&#39;中的CREATE TABLE权限被拒绝。
- 在数据库&#39; master&#39;中拒绝CREATE DATABASE权限。发布到Web服务器时
- 实体框架MigrateDatabaseToLatestVersion在数据库&#39; master&#39;中拒绝CREATE DATABASE权限错误
- 数据库主机中的CREATE DATABASE权限被拒绝
- 数据库&#39; master&#39;中的CREATE DATABASE权限被拒绝与实体框架
- 更新数据库期间,数据库“ master”中的CREATE DATABASE权限被拒绝
- 我写了这段代码,但我无法理解我的错误
- 我无法从一个代码实例的列表中删除 None 值,但我可以在另一个实例中。为什么它适用于一个细分市场而不适用于另一个细分市场?
- 是否有可能使 loadstring 不可能等于打印?卢阿
- java中的random.expovariate()
- Appscript 通过会议在 Google 日历中发送电子邮件和创建活动
- 为什么我的 Onclick 箭头功能在 React 中不起作用?
- 在此代码中是否有使用“this”的替代方法?
- 在 SQL Server 和 PostgreSQL 上查询,我如何从第一个表获得第二个表的可视化
- 每千个数字得到
- 更新了城市边界 KML 文件的来源?