How to render the AspNetUserRole in razor page?

Question

How to render the AspNetUserRole in razor page?

sblb 1,231

Hi, the post follows on from the exchange in the post here :

https://learn.microsoft.com/en-us/answers/questions/1407352/dynamic-roles-based-authorisation-in-blazor-webass

I tried to mange the User role in AdminPage.razor ; below the code in razor page.


  <table class="table">
        <thead>
            <tr>
                <th>Name</th>
                <th>Authenfication</th>
                <th>Role</th>               
            </tr>
        </thead>
        <tbody>
            @foreach (var userT in aDmin)
            {
                <tr>
                    <td>@userT.UserName</td>
                    <td>@userT.IsAuthenticated</td>
                    <td>
                    <InputSelect @bind-Value="@userT.Role" >
                     @foreach (var roleUser in Enum.GetValues(typeof(RoleUser)))
                                {
									<option value="@roleUser">@roleUser</option>
                                }
                        </InputSelect>
                    </td>
                    <td>@userT.Role</td>
                    <td></td>
                </tr>
            }
        </tbody>
    </table>
@code {
   
    IEnumerable<CurrentUser>? aDmin;

    public string[]? roleUser { get; set; } = Enum.GetNames(typeof(RoleUser));

    protected override async Task OnInitializedAsync() 
    {        
       aDmin = await client.GetFromJsonAsync<CurrentUser[]>("api/auth/CurrentUserInfo"); 
    }

When I run my application I obtain :

User's image

But I received An unhandled error has occurred

Failed to load resource: the server responded with a status of 404

blazor.webassembly.js:1 crit: Microsoft.AspNetCore.Components.WebAssembly.Rendering.WebAssemblyRenderer[100] Unhandled exception rendering component: Object reference not set to an instance of an object.System.NullReferenceException: Object reference not set to an instance of an object. at FollowUpDash.Client.Pages.AdministrateurPage.AdminPage.BuildRenderTree(RenderTreeBuilder __builder) in C:\App\sbd\FollowUpDash - LAST - OK - v7\FollowUpDash\Client\Pages\AdministrateurPage\AdminPage.razor:line 37 at Microsoft.AspNetCore.Components.ComponentBase.<.ctor>b__6_0(RenderTreeBuilder builder) at Microsoft.AspNetCore.Components.Rendering.ComponentState.RenderIntoBatch(RenderBatchBuilder batchBuilder, RenderFragment renderFragment, Exception& renderFragmentException)

blazor.webassembly.js:1 crit: Microsoft.AspNetCore.Components.WebAssembly.Rendering.WebAssemblyRenderer[100]

Unhandled exception rendering component: The JSON value could not be converted to FollowUpDash.Shared.Models.CurrentUser[]. Path: $ | LineNumber: 0 | BytePositionInLine: 1.

System.Text.Json.JsonException: The JSON value could not be converted to FollowUpDash.Shared.Models.CurrentUser[]. Path: $ | LineNumber: 0 | BytePositionInLine: 1.

at System.Text.Json.ThrowHelper.ThrowJsonException_DeserializeUnableToConvertValue(Type propertyType)

at System.Text.Json.Serialization.JsonCollectionConverter`2[[FollowUpDash.Shared.Models.CurrentUser[], FollowUpDash.Shared, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null],[FollowUpDash.Shared.Models.CurrentUser, FollowUpDash.Shared, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]].OnTryRead(Utf8JsonReader& reader, Type typeToConvert, JsonSerializerOptions options, ReadStack& state, CurrentUser[]& value)

at System.Text.Json.Serialization.JsonConverter`1[[FollowUpDash.Shared.Models.CurrentUser[], FollowUpDash.Shared, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]].TryRead(Utf8JsonReader& reader, Type typeToConvert, JsonSerializerOptions options, ReadStack& state, CurrentUser[]& value)

at System.Text.Json.Serialization.JsonConverter`1[[FollowUpDash.Shared.Models.CurrentUser[], FollowUpDash.Shared, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]].ReadCore(Utf8JsonReader& reader, JsonSerializerOptions options, ReadStack& state)

at System.Text.Json.JsonSerializer.ReadCore[CurrentUser[]](JsonConverter jsonConverter, Utf8JsonReader& reader, JsonSerializerOptions options, ReadStack& state)

at System.Text.Json.JsonSerializer.ReadCore[CurrentUser[]](JsonReaderState& readerState, Boolean isFinalBlock, ReadOnlySpan`1 buffer, JsonSerializerOptions options, ReadStack& state, JsonConverter converterBase)

at System.Text.Json.JsonSerializer.ContinueDeserialize[CurrentUser[]](ReadBufferState& bufferState, JsonReaderState& jsonReaderState, ReadStack& readStack, JsonConverter converter, JsonSerializerOptions options)

at System.Text.Json.JsonSerializer.<ReadAllAsync>d__65`1[[FollowUpDash.Shared.Models.CurrentUser[], FollowUpDash.Shared, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]].MoveNext()

at System.Net.Http.Json.HttpContentJsonExtensions.<ReadFromJsonAsyncCore>d__4`1[[FollowUpDash.Shared.Models.CurrentUser[], FollowUpDash.Shared, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]].MoveNext()

at System.Net.Http.Json.HttpClientJsonExtensions.<GetFromJsonAsyncCore>d__13`1[[FollowUpDash.Shared.Models.CurrentUser[], FollowUpDash.Shared, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null]].MoveNext()

at FollowUpDash.Client.Pages.AdministrateurPage.AdminPage.OnInitializedAsync() in C:\App\sbd\FollowUpDash - LAST - OK - v7\FollowUpDash\Client\Pages\AdministrateurPage\AdminPage.razor:line 71

at Microsoft.AspNetCore.Components.ComponentBase.RunInitAndSetParametersAsync()

at Microsoft.AspNetCore.Components.RenderTree.Renderer.GetErrorHandledTask(Task taskToHandle, ComponentState owningComponentState)

How can I fix this problem?

Thanks in advance

AgaveJoe 1,510 Reputation points

2023-11-02T13:08:11.2533333+00:00
I assume you are trying to build a page where an administrator can manage user roles? If so, your design does not come close to fulfilling this requirement.

Before I explain the problems with your design I want to mention, once again, how I would approach this basic CRUD use case. Start by following tried and true CRUD patterns found in every ASP.NET Core tutorial.

Create a component that list the users. This component should have a search feature. Selecting a user opens another component that show the user and the user's roles. The roles can be checkboxes and should be table drive not enum driven.

This exact scenario is covered in the tutorials on this site. I've linked you to these tutorials probably over 10 times in the last year. See step 7 but you really should go through the entire tutorial.

Razor Pages with Entity Framework Core in ASP.NET Core - Tutorial 1 of 8

Part 7, Razor Pages with EF Core in ASP.NET Core - Update Related Data

Let's look at the problems with the current design. I'm assuming you are building a feature to manage users roles.

The IsAuthenticated property is a property of the current user's principal which is populated by the CustomStateProvider. The CurrentUser type is simply a container to get the data from the action to the CustomStateProvider where the principal is built. Therefore, in the context of your design, the following line of code is nonsensical.

<td>@userT.IsAuthenticated</td>

Then we have this nuttiness.

aDmin = await client.GetFromJsonAsync<CurrentUser[]>("api/auth/CurrentUserInfo");

The "api/auth/CurrentUserInfo" endpoint is used by the CustomStateProvider to fetch the identity of the current user and the current user's roles/claims. The CurrentUserInfo action returns a single CurrentUser not an array. But more importantly, the action is called from the CustomStateProvider and not intended to be called directly by code in a component.

[HttpGet] public CurrentUser CurrentUserInfo() { return new CurrentUser { IsAuthenticated = User.Identity.IsAuthenticated, UserName = User.Identity.Name, Claims = User.Claims.Select((c) => new KeyValuePair<string, string>(c.Type, c.Value)).ToList() }; }

Quite honestly, it is very hard to understand your thought process with the current design.

sblb 1,231

you do not understand the code from the tutorial you are following.

I think that I understand the tutorial but I want to add a new add the page to manage the user role.

So, I've started from the beginning.

I created a new Class UserForRole, a new Service AssignRoles and Controller;

public class UserForRole

{

[Key]

public long Id { get; set; }

public string? UserName { get; set; }

public string? Role { get; set; }

public string? Email { get; set; }

}

public interface IAssignRoleService
    {
        public List<UserForRole> UserSansRole { get; set; }
        public Task LoadUsersWithoutRole();
        public Task AssignRole(long userId, string role);
    }

public class AssignRoleService : IAssignRoleService
    {
        public List<UserForRole> UserSansRole { get; set; }
        private readonly HttpClient _httpClient;
        public AssignRoleService(HttpClient httpClient)
        {
            _httpClient = httpClient;
        }
        public async Task LoadUsersWithoutRole()
        {
            UserSansRole = await _httpClient.GetFromJsonAsync<List<UserForRole>>($"assignrole/getuserswithoutrole");
        }
        public async Task AssignRole(long userId, string role)
        {
            var user = new UserForRole { Id = userId, Role = role };
            await _httpClient.PutAsJsonAsync("assignrole/putrole", user);
        }
    }

  // Authorization Code
        [HttpGet("getuserswithoutrole")]
        public async Task<List<UserForRole>> GetUsersWithoutRole()
        {
            return await _context.UserForRoles.Select(user => new UserForRole()
            { Id = user.Id, UserName = user.UserName, Email = user.Email }).ToListAsync();
        }
        [HttpPut("putrole")]
        public async Task<int> PutRole([FromBody] UserForRole user)
        {
            UserForRole userToUpdate = await _context.UserForRoles.Where(u => u.Id == user.Id).FirstOrDefaultAsync();
            userToUpdate.Role = user.Role;
            int result = await _context.SaveChangesAsync();
            return result;
        }

But I guess I've to update the CustomStateProvider to do the link between ...

Here I need some help!!

Plus as you understand I use cookie (following the tutorial) not JwT.

The razor take a new form:

if (_iassignroleservice.UserSansRole != null && _iassignroleservice.UserSansRole.Count() > 0)
{
    foreach (UserForRole user in _iassignroleservice.UserSansRole)
    {
        <div class="list-group-item list-group-item-action flex-column align-items-start contact-list-item" style="height: 55px;">
            <div class="row col-12">
                <div class="col-6" style="font-size: large;">
                    @user.Email
                </div>
                <div class="col-3">
                    <select class="form-control"
                            name="roles"
                            id="roles"
                            @onchange = "@AssignRole">
                        <option value=@("#"+ user.Id)>None</option>
                        <option value=@("user#"+ user.Id)>Admin</option>
                        <option value=@("admin#"+ user.Id)>User</option>
                    </select>
                </div>
               
            </div>
        </div>
    }
}
@code {
    protected override async Task OnInitializedAsync()
    {
       await _iassignroleservice.LoadUsersWithoutRole();      
    }
    private async Task AssignRole(ChangeEventArgs eventArgs)
    {
        Console.WriteLine(eventArgs.Value);
        var selectedValues = eventArgs.Value.ToString().Split('#');
        await _iassignroleservice.AssignRole(Convert.ToInt64(selectedValues[1]), selectedValues[0]);
      
    }
}

AgaveJoe 1,510 Reputation points

2023-11-02T18:32:00.9766667+00:00
But I guess I've to update the CustomStateProvider to do the link between ...

I have no idea what link you're referring to. Plus you have not once explained the actual problem. I can't read your mind.

My best guess is you changed the role of a user after a user logged in and expect the role to take affect immediately. That's not how the tutorial works!!!!! The user's claims are cached in the authentication cookie. The user must log out then in again which recreates the authentication cookie. If you want the roles to take affect immediately for current users then you have to design code that detects a change to the user state in the database by comparing it to the cached state in the cookie. If the state is different then either recreate the authentication cookie or invalidate the user and make them login again.

What is the purpose of the UserForRoles table? It think you are trying to find user without roles???? If so, you don't need a separate table just a basic query.

[HttpGet] public IActionResult GetUserWithoutRoles() { var usersWithoutRoles = _context.Users.FromSqlRaw($@"SELECT u.* FROM AspNetUsers u LEFT JOIN AspNetUserRoles ur ON u.Id = ur.UserId WHERE ur.UserId IS NULL")?.Select(u => new UsersWithoutrolesModel() { Id = u.Id, UserName = u.UserName, Email = u.Email }); return Ok(usersWithoutRoles); }

public class UsersWithoutrolesModel { public string Id { get; set; } public string UserName { get; set; } public string Email { get; set; } }

Other than that, the rest of the code you've design is not good. For roles just return the roles that exist in the database and use the results as a select if you don't want to take my advice and use checkboxes.

All that's needed to add a role to a user is the user and the role. Why make such simple logic so complicated?
sblb 1,231 Reputation points

2023-11-02T19:39:27.39+00:00

After all things I don't know how I can do!!
AgaveJoe 1,510 Reputation points

2023-11-02T19:58:15.34+00:00

After all things I don't know how I can do!!

Your first code made no logical sense. Your second code sample is not much better.

I keep asking you to explain the problem but you never answer the question.

For example, are you trying to find users without roles? Do you need help populating a select with roles from the database? Do you need general help building a component that submit a UserId and RoleId?
sblb 1,231 Reputation points

2023-11-02T20:16:13.5433333+00:00

I'm not sure how to deal with this subject.

The subject is : create a table of all users to which the administrator can assign the role.

After that I can use <AuthorizeView> to limit the acces to components.

are you trying to find users without roles? Do you need help populating a select with roles from the database?

I wanted to do this so that I could then assign a role in a table where one column would be of type Action and each row would have a drop-down menu for assigning a role.
AgaveJoe 1,510 Reputation points

2023-11-02T20:45:53.8033333+00:00
The subject is : create a table of all users to which the administrator can assign the role.

Returning a list of users is very simple.

[Route("api/[controller]")] [ApiController] public class UsersController : ControllerBase { private readonly ApiSqliteContext _context; public UsersController(ApiSqliteContext context) { _context = context; } [HttpGet] public async Task<IActionResult> Get() { List<UsersModel> users = await _context.Users.Select(u => new UsersModel() { Id = u.Id, UserName = u.UserName, Email = u.Email }).ToListAsync(); return Ok(users); } }

Add an edit link to the table that navigates to the an "edit role" component passing the UserId in the route. The component simply displays a list of roles from the database the admin can select.

At this point, you have the UserId and the RoleId. Submit the data to a Web API action which assigns the role to the user. I would use the UserManager.

This type edit pattern is covered in every tutorial.
sblb 1,231 Reputation points

2023-11-02T21:49:06.3833333+00:00
The class CurrentUser is defined as below.

public class CurrentUser { public long CurrentId { get; set; } public bool IsAuthenticated { get; set; } public string? UserName { get; set; } public List<KeyValuePair<string, string>>? Claims { get; set; } public string? Role { get; set; } public string? Email { get; set; } }

The CurrentId is not recognised.

So I modified public long Current to public String Current

but after there is other problem. When I tried to EditRole(currenUser.CurrentId) in /adminpage/editrole

there is an Microsoft.AspNetCore.Components.WebAssembly.Rendering.WebAssemblyRenderer[100]

Unhandled exception rendering component: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0.

System.Text.Json.JsonException: '<' is an invalid start of a value. Path: $ | LineNumber: 0 |
AgaveJoe 1,510 Reputation points

2023-11-02T22:24:16.15+00:00

The error message means the client expected json but json was not returned. Most likely an HTML error message was returned.

Debug and troubleshoot your code! Eventually you figure out that your design will not work for the reasons I already explained.
sblb 1,231 Reputation points

2023-11-02T22:32:18.3266667+00:00

the design of my code may not be the most perfect, but!

I tried to understand why I have a mistake

u.Id is the string format

CurrentId is long format.

What do I do?
sblb 1,231 Reputation points

2023-11-02T22:34:44.7766667+00:00

the design of my code may not be the most perfect, but!

u.Id is a string format

CurrentId is long format

What do I do?
AgaveJoe 1,510 Reputation points

2023-11-03T00:42:01.48+00:00

u.Id is a string format. CurrentId is long format. What do I do?

Change the definition of CurrentId to a string to match the UserId type.

sblb 1,231

I changed CurrentId to string and I obtain the error message

Microsoft.AspNetCore.Components.WebAssembly.Rendering.WebAssemblyRenderer[100]
      Unhandled exception rendering component: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0.
System.Text.Json.JsonException: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0.

The Get method


        [HttpGet]
        public async Task<IActionResult> Get()
        {
            List<CurrentUser> users = await _context.Users.Select(u => new CurrentUser()
            {
                CurrentId = u.Id,
                UserName = u.UserName,
                Email = u.Email
            }).ToListAsync();

            return Ok(users);
        }

Class CurrentUSer

    public class CurrentUser
    {
        public int Id { get; set; }
        public string CurrentId { get; set; } 
        public bool IsAuthenticated { get; set; }
        public string? UserName { get; set; }
        [NotMapped]
        public List<KeyValuePair<string, string>>? Claims { get; set; }
        public string? Role { get; set; }
        public string? Email { get; set; }
        
    }

Class ApplicationUser

 public class ApplicationUser : IdentityUser
    {
       
    }
}

Invoke in razor the Get method

 IEnumerable<CurrentUser>? currentUsers;    
 protected override async Task OnInitializedAsync() 
    { 
        currentUsers=await client.GetFromJsonAsync<CurrentUser[]>("api/assignrole");
    }

Really I don't understand!!

AgaveJoe 1,510 Reputation points

2023-11-03T10:05:58.3333333+00:00

The CurrentUser type has a very specific purpose and should not be used outside the CustomStateProvider service which includes the AuthService on the client and the AuthController on the server.

You are messing with the data container (CurrentUser) responsible for transferring the cached user's identity located within the authentication cookie from the server to the client. This code chain is called during authorization triggered on the client. Any changes to the CurrentUser type directly affect the entire Blazor WASM application. It is not surprising that you are having problems.

Is there any way you can explain your thought process? Why not simply create a new type in the shared library that holds the user information like the code example that I shared with you?
sblb 1,231 Reputation points

2023-11-03T11:41:53.43+00:00
Why not simply create a new type in the shared library that holds the user information like the code example that I shared with you?

If I do understand I have to create a new class UsersModel

public class UserModel { public string Id { get; set; } public string? UserName { get; set; } public string? Email { get; set; } }
AgaveJoe 1,510 Reputation points

2023-11-03T12:01:01.53+00:00

If I do understand I have to create a new class UsersModel

"I have to" is the wrong phrase. A better phrase is "I get to" or "I have the option to" created a shared type.

sblb 1,231

It's not possible!! What's happen

Microsoft.AspNetCore.Components.WebAssembly.Rendering.WebAssemblyRenderer[100]
      Unhandled exception rendering component: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0.
System.Text.Json.JsonException: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0.

sblb 1,231

I've turned the question around and it still doesn't work; I agree with you that it seems elementary to do a get()

   [ApiController]
    [Route("api/[controller]")]    
    public class AssignRole : ControllerBase
    {      
        private readonly ApplicationDbContext _context;
       
        public AssignRole(ApplicationDbContext context)
        {
            this._context = context;
            
        }

        [HttpGet]
        public async Task<IActionResult> Get()
        {
            List<UserModel> users = await _context.Users.Select(u => new UserModel()
            {
                Id = u.Id,
                UserName = u.UserName,
                Email = u.Email, 
                
            }).ToListAsync();

            return Ok(users);
        }

 public class UserModel
    {
        public string Id { get; set; }
        public string? UserName { get; set; }
        public string? Email { get; set; }
    }

  private UserModel[] userModel;

    protected override async Task OnInitializedAsync() 
    { 
       userModel=await client.GetFromJsonAsync<UserModel[]>($"api/assignrole");
    }

I've made a breakpoint when invoke the get() any information except that userModel is null

AgaveJoe 1,510 Reputation points

2023-11-03T17:44:06.6033333+00:00

Troubleshoot!

Set a breakpoint in the Get action. Is the break point hit? What does the variable "users" contain? Is "users" null? If so, then check the User table with SSMS. Does the table contain users?

If "users" has a list of users then there is a problem in the component that call the endpoint. Set a breakpoint and single step through the code.

Accepted answer

0 additional answers

Your answer

AgaveJoe 1,510 Reputation points

2023-11-02T18:32:00.9766667+00:00

But I guess I've to update the CustomStateProvider to do the link between ...

I have no idea what link you're referring to. Plus you have not once explained the actual problem. I can't read your mind.

My best guess is you changed the role of a user after a user logged in and expect the role to take affect immediately. That's not how the tutorial works!!!!! The user's claims are cached in the authentication cookie. The user must log out then in again which recreates the authentication cookie. If you want the roles to take affect immediately for current users then you have to design code that detects a change to the user state in the database by comparing it to the cached state in the cookie. If the state is different then either recreate the authentication cookie or invalidate the user and make them login again.

What is the purpose of the UserForRoles table? It think you are trying to find user without roles???? If so, you don't need a separate table just a basic query.

[HttpGet] public IActionResult GetUserWithoutRoles() { var usersWithoutRoles = _context.Users.FromSqlRaw($@"SELECT u.* FROM AspNetUsers u LEFT JOIN AspNetUserRoles ur ON u.Id = ur.UserId WHERE ur.UserId IS NULL")?.Select(u => new UsersWithoutrolesModel() { Id = u.Id, UserName = u.UserName, Email = u.Email }); return Ok(usersWithoutRoles); }

public class UsersWithoutrolesModel { public string Id { get; set; } public string UserName { get; set; } public string Email { get; set; } }

Other than that, the rest of the code you've design is not good. For roles just return the roles that exist in the database and use the results as a select if you don't want to take my advice and use checkboxes.

All that's needed to add a role to a user is the user and the role. Why make such simple logic so complicated?
sblb 1,231 Reputation points

2023-11-02T19:39:27.39+00:00

After all things I don't know how I can do!!
AgaveJoe 1,510 Reputation points

2023-11-02T19:58:15.34+00:00

After all things I don't know how I can do!!

Your first code made no logical sense. Your second code sample is not much better.

I keep asking you to explain the problem but you never answer the question.

For example, are you trying to find users without roles? Do you need help populating a select with roles from the database? Do you need general help building a component that submit a UserId and RoleId?
sblb 1,231 Reputation points

2023-11-02T20:16:13.5433333+00:00

I'm not sure how to deal with this subject.

The subject is : create a table of all users to which the administrator can assign the role.

After that I can use <AuthorizeView> to limit the acces to components.

are you trying to find users without roles? Do you need help populating a select with roles from the database?

I wanted to do this so that I could then assign a role in a table where one column would be of type Action and each row would have a drop-down menu for assigning a role.
AgaveJoe 1,510 Reputation points

2023-11-02T20:45:53.8033333+00:00

The subject is : create a table of all users to which the administrator can assign the role.

Returning a list of users is very simple.

[Route("api/[controller]")] [ApiController] public class UsersController : ControllerBase { private readonly ApiSqliteContext _context; public UsersController(ApiSqliteContext context) { _context = context; } [HttpGet] public async Task<IActionResult> Get() { List<UsersModel> users = await _context.Users.Select(u => new UsersModel() { Id = u.Id, UserName = u.UserName, Email = u.Email }).ToListAsync(); return Ok(users); } }

Add an edit link to the table that navigates to the an "edit role" component passing the UserId in the route. The component simply displays a list of roles from the database the admin can select.

At this point, you have the UserId and the RoleId. Submit the data to a Web API action which assigns the role to the user. I would use the UserManager.

This type edit pattern is covered in every tutorial.
sblb 1,231 Reputation points

2023-11-02T21:49:06.3833333+00:00

The class CurrentUser is defined as below.

public class CurrentUser { public long CurrentId { get; set; } public bool IsAuthenticated { get; set; } public string? UserName { get; set; } public List<KeyValuePair<string, string>>? Claims { get; set; } public string? Role { get; set; } public string? Email { get; set; } }

The CurrentId is not recognised.

So I modified public long Current to public String Current

but after there is other problem. When I tried to EditRole(currenUser.CurrentId) in /adminpage/editrole

there is an Microsoft.AspNetCore.Components.WebAssembly.Rendering.WebAssemblyRenderer[100]

Unhandled exception rendering component: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0.

System.Text.Json.JsonException: '<' is an invalid start of a value. Path: $ | LineNumber: 0 |
AgaveJoe 1,510 Reputation points

2023-11-02T22:24:16.15+00:00

The error message means the client expected json but json was not returned. Most likely an HTML error message was returned.

Debug and troubleshoot your code! Eventually you figure out that your design will not work for the reasons I already explained.
sblb 1,231 Reputation points

2023-11-02T22:32:18.3266667+00:00

the design of my code may not be the most perfect, but!

I tried to understand why I have a mistake

u.Id is the string format

CurrentId is long format.

What do I do?
sblb 1,231 Reputation points

2023-11-02T22:34:44.7766667+00:00

the design of my code may not be the most perfect, but!

u.Id is a string format

CurrentId is long format

What do I do?
AgaveJoe 1,510 Reputation points

2023-11-03T00:42:01.48+00:00

u.Id is a string format. CurrentId is long format. What do I do?

Change the definition of CurrentId to a string to match the UserId type.
sblb 1,231 Reputation points

2023-11-03T08:33:46.11+00:00

I changed CurrentId to string and I obtain the error message

Microsoft.AspNetCore.Components.WebAssembly.Rendering.WebAssemblyRenderer[100] Unhandled exception rendering component: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0. System.Text.Json.JsonException: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0.

The Get method

[HttpGet] public async Task<IActionResult> Get() { List<CurrentUser> users = await _context.Users.Select(u => new CurrentUser() { CurrentId = u.Id, UserName = u.UserName, Email = u.Email }).ToListAsync(); return Ok(users); }

Class CurrentUSer

public class CurrentUser { public int Id { get; set; } public string CurrentId { get; set; } public bool IsAuthenticated { get; set; } public string? UserName { get; set; } [NotMapped] public List<KeyValuePair<string, string>>? Claims { get; set; } public string? Role { get; set; } public string? Email { get; set; } }

Class ApplicationUser

public class ApplicationUser : IdentityUser { } }

Invoke in razor the Get method

IEnumerable<CurrentUser>? currentUsers; protected override async Task OnInitializedAsync() { currentUsers=await client.GetFromJsonAsync<CurrentUser[]>("api/assignrole"); }

Really I don't understand!!
AgaveJoe 1,510 Reputation points

2023-11-03T10:05:58.3333333+00:00

The CurrentUser type has a very specific purpose and should not be used outside the CustomStateProvider service which includes the AuthService on the client and the AuthController on the server.

You are messing with the data container (CurrentUser) responsible for transferring the cached user's identity located within the authentication cookie from the server to the client. This code chain is called during authorization triggered on the client. Any changes to the CurrentUser type directly affect the entire Blazor WASM application. It is not surprising that you are having problems.

Is there any way you can explain your thought process? Why not simply create a new type in the shared library that holds the user information like the code example that I shared with you?
sblb 1,231 Reputation points

2023-11-03T11:41:53.43+00:00

Why not simply create a new type in the shared library that holds the user information like the code example that I shared with you?

If I do understand I have to create a new class UsersModel

public class UserModel { public string Id { get; set; } public string? UserName { get; set; } public string? Email { get; set; } }
AgaveJoe 1,510 Reputation points

2023-11-03T12:01:01.53+00:00

If I do understand I have to create a new class UsersModel

"I have to" is the wrong phrase. A better phrase is "I get to" or "I have the option to" created a shared type.
sblb 1,231 Reputation points

2023-11-03T13:00:31.0833333+00:00

It's not possible!! What's happen

Microsoft.AspNetCore.Components.WebAssembly.Rendering.WebAssemblyRenderer[100] Unhandled exception rendering component: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0. System.Text.Json.JsonException: '<' is an invalid start of a value. Path: $ | LineNumber: 0 | BytePositionInLine: 0.
sblb 1,231 Reputation points

2023-11-03T17:21:53.79+00:00

I've turned the question around and it still doesn't work; I agree with you that it seems elementary to do a get()

[ApiController] [Route("api/[controller]")] public class AssignRole : ControllerBase { private readonly ApplicationDbContext _context; public AssignRole(ApplicationDbContext context) { this._context = context; } [HttpGet] public async Task<IActionResult> Get() { List<UserModel> users = await _context.Users.Select(u => new UserModel() { Id = u.Id, UserName = u.UserName, Email = u.Email, }).ToListAsync(); return Ok(users); }

public class UserModel { public string Id { get; set; } public string? UserName { get; set; } public string? Email { get; set; } }

private UserModel[] userModel; protected override async Task OnInitializedAsync() { userModel=await client.GetFromJsonAsync<UserModel[]>($"api/assignrole"); }

I've made a breakpoint when invoke the get() any information except that userModel is null
AgaveJoe 1,510 Reputation points

2023-11-03T17:44:06.6033333+00:00

Troubleshoot!

Set a breakpoint in the Get action. Is the break point hit? What does the variable "users" contain? Is "users" null? If so, then check the User table with SSMS. Does the table contain users?

If "users" has a list of users then there is a problem in the component that call the endpoint. Set a breakpoint and single step through the code.

Answer 1

It's not possible!! What's happen

I've explained this error. There no way for me to figure out what mistakes you are making since you did not provide any code. You should debug your code.

I build a working demo using the design I described several times. This is not production code! Feel free to update the demo code as needed.

Shared models

    public class UserModel
    {
        public string Id { get; set; }
        public string UserName { get; set; }
        public string Email { get; set; }
    }

    public class RoleModel
    {
        public string Id { get; set; } = string.Empty;
        public string Name { get; set; } = string.Empty;
    }

    public class UserRolesModel
    {
        public string UserName { get; set; } = string.Empty;
        public List<string> RoleNames { get; set; } = new List<string>();
    }

UserRoles controller (server)

    [Route("api/[controller]/[action]")]
    [ApiController]
    public class UserRolesController : ControllerBase
    {
        private readonly UserManager<ApplicationUser> _userManager;
        private readonly ApiSqliteContext _context;

        public UserRolesController(UserManager<ApplicationUser> userManager, ApiSqliteContext context)
        {
            _userManager = userManager;
            _context = context;
        }

        [HttpGet]
        public IActionResult GetUserWithoutRoles()
        {
            var usersWithoutRoles = _context.Users.FromSqlRaw($@"SELECT u.*
                                                                FROM AspNetUsers u
	                                                                LEFT JOIN AspNetUserRoles ur ON u.Id = ur.UserId
                                                                WHERE ur.UserId IS NULL")?.Select(u => new UserModel()
            {
                                                                        Id = u.Id,
                                                                        UserName = u.UserName,
                                                                        Email   = u.Email
            });
            return Ok(usersWithoutRoles);
        }

        [HttpGet("{Username}")]
        public async Task<IActionResult> GetUserRolesByUsername(string Username)
        {
            UserRolesModel model = new UserRolesModel() { UserName = Username };
            ApplicationUser? user = _context.Users.FirstOrDefault(u => u.UserName == Username);

            IList<string> roles = await _userManager.GetRolesAsync(user);
            model.RoleNames = roles.ToList();

            return Ok(model);
        }
        [HttpPost]
        public async Task<IActionResult> UpdateUserRoles(UserRolesModel input)
        {
            //Remove all the user's roles.
            ApplicationUser? user = _context.Users.FirstOrDefault(u => u.UserName == input.UserName);
            IList<string> roles = await _userManager.GetRolesAsync(user);
            foreach(var role in roles)
            {
                await _userManager.RemoveFromRoleAsync(user, role);
            }

            foreach(var role in input.RoleNames)
            {
                await _userManager.AddToRoleAsync(user, role);
            }

            UserRolesModel model = new UserRolesModel() { UserName = user.UserName };
            model.RoleNames = (await _userManager.GetRolesAsync(user)).ToList();
            return Ok(model);

  
        }
    }

Users controller (server)

    [Route("api/[controller]")]
    [ApiController]
    public class UsersController : ControllerBase
    {
        private readonly ApiSqliteContext _context;
        public UsersController(ApiSqliteContext context)
        {
            _context = context;
        }

        [HttpGet]
        public async Task<IActionResult> Get() {
            List<UserModel> users = await _context.Users.Select(u => new UserModel() 
            { 
                Id = u.Id, 
                UserName = u.UserName, 
                Email = u.Email 
            }).ToListAsync();

            return Ok(users);
        }
    }

Roles Controller (server)

    [Route("api/[controller]")]
    [ApiController]
    public class RolesController : ControllerBase
    {
        private readonly ApiSqliteContext _context;

        public RolesController(ApiSqliteContext context)
        {
            _context= context;
        }

        public async Task<IActionResult> Get()
        {
            List<RoleModel> roles = await _context.Roles.Select(r => new RoleModel() { Id = r.Id, Name = r.Name }).ToListAsync();
            return Ok(roles);
        }
    }

App users component that list the users (client)

@page "/appusers"
@using BlazorWasmHosted.Shared
@inject HttpClient Http
@inject NavigationManager Navigation
@attribute [Authorize(Roles = "Admin")]

<PageTitle>Users Accounts</PageTitle>

<h1>User Accounts</h1>

@if (userAccounts == null)
{
    <p><em>Loading...</em></p>
}
else
{
    <table class="table">
        <thead>
            <tr>
                <th>UserName</th>
                <th>Email</th>
            </tr>
        </thead>
        <tbody>
            @foreach (var userAccount in userAccounts)
            {
                <tr>
                    <td>@userAccount.UserName</td>
                    <td>@userAccount.Email</td>
                    <td>
                        <button class="btn btn-primary" @onclick="@(e => NavigateToUserRolesComponent(userAccount.UserName))">
                            Edit Roles
                        </button>
                    </td>
                </tr>
            }
        </tbody>
    </table>
}

@code {
    private UserModel[]? userAccounts;

    protected override async Task OnInitializedAsync()
    {
        userAccounts = await Http.GetFromJsonAsync<UserModel[]>("api/Users");
    }

    private void NavigateToUserRolesComponent(string Id)
    {
        Navigation.NavigateTo($"userroles/{Id}");
    }
}

User roles component to manage roles (client)

@page "/userroles/{Username}"
@inject HttpClient Http
@inject NavigationManager Navigation
@inject ILogger<UserRoles> Logger

<PageTitle>User Roles</PageTitle>

<h1>User Role Management</h1>
<hr />
@if (roles == null)
{
    <p><em>Loading...</em></p>
}
else
{
    <EditForm Model="userRolesModel" OnValidSubmit="@Submit">
        <div>Managing roles for @Username </div>
        <input type="hidden" @bind-value="Username" name="Username" />

        <div>
            @foreach (var role in roles)
            {
                <div>
                    <input type="checkbox"
                        value="role.Name"
                        name="RoleNames"
                        checked="@IsInRole(role.Name)"
                        @onchange="eventArgs => { CheckboxClicked(role.Name, eventArgs.Value); }"> @role.Name
                </div>
            }
        </div>
        <div>
            <button type="submit">Submit</button>
        </div>
    </EditForm>
}

@code {
    private RoleModel[] roles;
    private UserRolesModel userRolesModel { get; set; } = new();

    protected override async Task OnInitializedAsync()
    {
        //Get the user's roles by username
        userRolesModel = await Http.GetFromJsonAsync<UserRolesModel>($"api/UserRoles/GetUserRolesByUsername/{Username}");

        //Get the roles from the database
        roles = await Http.GetFromJsonAsync<RoleModel[]>("api/Roles");
    }

    private bool IsInRole(string RoleName)
    {
        return userRolesModel.RoleNames.Any(r => r == RoleName);
    }

    [Parameter]
    public string? Username { get; set; }

    async Task Submit()
    {

        userRolesModel.UserName = Username;

        Logger.LogInformation("Username = {username}", userRolesModel.UserName);
        foreach (string role in userRolesModel.RoleNames)
        {
            Logger.LogInformation("RoleName = {role}", role);
        }

        await Http.PostAsJsonAsync<UserRolesModel>("api/UserRoles/UpdateUserRoles", userRolesModel);
        Navigation.NavigateTo($"appusers");

    }

    private void CheckboxClicked(string role, object isChecked)
    {
        if ((bool)isChecked)
        {
            if (!userRolesModel.RoleNames.Contains(role))
            {
                userRolesModel.RoleNames.Add(role);
            }
        }
        else
        {
            if (userRolesModel.RoleNames.Contains(role))
            {
                userRolesModel.RoleNames.Remove(role);
            }
        }
    }

}

sblb 1,231 Reputation points

2023-11-03T18:47:54.7733333+00:00

First of all, thank you for your support. I'll study what you've sent me and come back to say if it's OK
AgaveJoe 1,510 Reputation points

2023-11-03T18:50:05.41+00:00

I tested the code. It works. If you have trouble please debug your code before posting.
sblb 1,231 Reputation points

2023-11-04T13:42:25.0766667+00:00

It works perfectly; thank you very much.

I'll add a little cosmetics and it will be perfect for me.

One last question : you wrote "This is not production code!"

How I can update to put this code in production configuration?
sblb 1,231 Reputation points

2023-11-05T11:27:27.0866667+00:00

I'm confused because when I try to assign a new role to a user it's not taken into account.

I've set a breakpoint and I can't see where there's a problem.
sblb 1,231 Reputation points

2023-11-05T11:36:21.1833333+00:00

I'm confused because when I try to assign a new role to a user it's not taken into account.

I've set a breakpoint and I can't see where there's a problem.

I'm connected with the role Admin.

For example, I want to modify the role of the user ******@gmail.com with the role admin it's ok. But If I want to put the role Be this role it's not take into account. Why?
AgaveJoe 1,510 Reputation points

2023-11-05T12:03:08.4366667+00:00

I don't know if you messed up the logic because I can't see the code or if you still do not understand the tutorial you copied. I think the later is true but you've provided no useful information.

If you assigned a role to a user that is logged in, then the user must logout and login again for the role to take affect. Roles are cached in authentication cookie. Logging out clears the cookie and logging in adds the cookie. The CustomStateProvider fetches the user's identity from the authentication cookie.

If logging out and in does not solve the problem then maybe you messed up the code. Use the Visual Studio debugger to find the bugs in your code.

If the problem is a non admin role can access admin resources then you have a configuration issue. Read the docs to figure out where you messed up.

ASP.NET Core Blazor authentication and authorization

ASP.NET Core Blazor routing and navigation
sblb 1,231 Reputation points

2023-11-05T16:19:45.88+00:00

When I tried to add the role "Be" to ******@gmail.com in devTools I received

System.InvalidOperationException: Role BE does not exist. at Microsoft.AspNetCore.Identity.EntityFrameworkCore.UserStore`9.AddToRoleAsync(TUser user, String normalizedRoleName, CancellationToken cancellationToken) at Microsoft.AspNetCore.Identity.UserManager`1.AddToRoleAsync(TUser user, String role)

I don't understand I received Role BE does not exist because in table
sblb 1,231 Reputation points

2023-11-05T16:20:44.33+00:00

I think I've to change in Configuration.cs NormalizedName ETUDE by BE.

I try it!
sblb 1,231 Reputation points

2023-11-05T16:29:14.7466667+00:00

I confirm that I've made an error in NormalizedName configuration.

It's work perfectly!!!

Share via

How to render the AspNetUserRole in razor page?

0 additional answers

Your answer