This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I want user to be able to login using UserName or Email in ASP.NET Core MVC. In case of using the [Required] attribute, both the UserName and the Email must be entered in the model properties during login. While doing the form validation on the server-side, I need to perform model validation before accessing the data access layer in the application where the N-Tier architecture is implemented.
namespace LoginApplication.WebUI.Models
{
public class LoginModel
{
/// <summary>Which data annotation attribute should I use?</summary>
public string UserName { get; set; }
/// <summary>Which data annotation attribute should I use?</summary>
public string Email { get; set; }
[Required]
[DataType(DataType.Password)]
public string Password { get; set; }
}
}
namespace LoginApplication.WebUI.Controllers
{
public class AccountController : Controller
{
/* Other LOCs: Dependency Injection, "Login" Action HttpGet Method */
[HttpPost]
public async Task<IActionResult> Login(LoginModel model)
{
/* At this stage I need to validate the model correctly. */
if(ModelState.IsValid)
{
/* Other LOCs: User Query, Password Authentication, Page Redirection
Error Message Management, Log Management */
}
return View(model);
}
}
}
In this case, what attribute should I use defined in the System.ComponentModel.DataAnnotations namespace? Or is there another way to work around this situation?
Use the [Required] attribute for the required model properties.
[Required]
public string UserName { get; set; }
[Required]
public string Email { get; set; }
Reference documentation.
Model validation in ASP.NET Core MVC and Razor Pages
ASP.NET Core MVC with EF Core - tutorial series
I want to login using UserName "or" Email address according to the user's request. As you stated, both UserName and Email address must be entered mandatory when the [Required] attribute is used for both properties. Otherwise, the validation will be deemed invalid.
I don't agree with the design and find it rather confusing for the user. A possible design approach is adding one more input, like a checkbox, that lets the user pick if the email input is also the username. If the checkbox is checked then the username and email inputs must be equal.
When the user enters a character in one of the UserName or Email <input> elements on the client-side, the other element can be blocked by applying a passive class style. In this way, the user realizes that he can log into the system dynamically using the username or email address information.
I believe, a better design is letting the user select an option rather than writing logic that guesses the user's intention.
You are still at the design phase. Once you settle on a design, then write code to meet the requirements. If you need community debugging support or a code review, then share your design requirements and sample code. Explain how you expect the code to function and how the code actually functions.
If you know the MVC architecture, you can easily understand what I want to do from the code pieces I have shared. I didn't ask this question to read your personal UI critiques. I learned that I could meet this requirement by developing a custom validator. Thank you anyway.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 61%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Just allow the user to use their email as username. Trivial with a little javascript and a checkbox.
Thanks for the suggestion. I learned that this requirement can be fulfilled by defining custom validator.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 78%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBZ%3C/text%3E%3C/svg%3E)
Hi sercan,
Yes, your requirement could be done by using custom validate. The next questions is this custom validate is server validation, it happened at the server-side. Client side will not work if you used this custom validate.
I'm using the jquery-validate plugin to check the form on the client-side without going to the server-side. The jquery-validate plugin includes a feature that allows some entries to be ignored:
$("#myForm").validate({
ignore: ".ignore"
})
Client-side validation can be blocked in a single field:
$("#field").rules('remove', 'required');
In my opinion, I suggest you could consider directly using the remote validate, since you need to write the specific logic to do the validation. The remote validate could be directly call from client side by using ajax and checked it at server-side. Details, you could refer to this article.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 51%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 60%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFE%3C/text%3E%3C/svg%3E)
public class SignInViewModel
{
[Required]
[Display(Name = "Kullanıcı Adı / Şifre")]
public string Email { get; set; }
[Required]
[DataType(DataType.Password)]
public string Password { get; set; }
[Display(Name = "Seni Hatırlayalım mı ?")]
public bool RememberMe { get; set; }
}
[Route("/giris")]
[Route("/login")]
[HttpPost]
[AllowAnonymous]
[ValidateAntiForgeryToken]
public async Task<IActionResult> Giris(SignInViewModel model, string returnUrl = null)
{
returnUrl = returnUrl ?? Url.Content("~/");
if (model.Email.IndexOf('@') > -1)
{
//E POSTA DOĞRULAMA
string emailRegex = @"^([a-zA-Z0-9_\-\.]+)@((\[[0-9]{1,3}" +
@"\.[0-9]{1,3}\.[0-9]{1,3}\.)|(([a-zA-Z0-9\-]+\" +
@".)+))([a-zA-Z]{2,4}|[0-9]{1,3})(\]?)$";
Regex re = new Regex(emailRegex);
if (!re.IsMatch(model.Email))
{
ModelState.AddModelError("EPosta", "E-Posta doğrulanamadı");
}
}
else
{
//KULLANICI ADI DOĞRULAMA
string emailRegex = @"^[a-zA-Z0-9]*$";
Regex re = new Regex(emailRegex);
if (!re.IsMatch(model.Email))
{
ModelState.AddModelError("EPosta", "kullanıcı adı doğrulanamadı");
}
}
if (ModelState.IsValid)
{
var userName = model.Email;
if (userName.IndexOf('@') > -1)
{
var user = await _userManager.FindByEmailAsync(model.Email);
if (user == null)
{
ModelState.AddModelError("", "değişik bir hata meydana geldi.");
return View(model);
}
else
{
userName = user.UserName;
}
}
var result =
await _signInManager.PasswordSignInAsync(userName, model.Password, model.RememberMe, lockoutOnFailure: true);
hatalı giriş sonucu kullanıcı kilitleme aktif değilse
lockoutOnFailure false yapabilirsiniz.