Skip to main content
BuyLog In
XAF: Cross-Platform .NET App UI & Web API
Search in…
Docs > API Reference > DevExpress.ExpressApp.Security > UserManager > Methods > GetAuthenticationToken<TUser>(TUser, Int32, IEnumerable<Claim>)
All docs
V25.1
    • .NET 8.0+
    • The page you are viewing does not exist in the .NET Framework 4.6.2+ platform documentation. This link will take you to the parent topic of the current section.
    XAF: Cross-Platform .NET App UI & Web API
    .NET Support and Migration
    Getting Started
    Installation, Upgrade, Version History
    Backend Web API Service
    UI Shell and Base Infrastructure
    Storage, ORM, and Business Model Design
    Data Manipulation and Business Logic
    User Interface and Behavior Customization
    Data Filtering
    Application Security and Data Safety
    Multi-Tenancy (Data per Tenant)
    Validation (Prevent Data Errors)
    Conditional Appearance (Manage State of UI Elements)
    Reporting (Shape, Export & Print Data)
    Analytics (Extract Data Insights)
    Document Management
    Business Process Management
    Event Planning
    Localization
    Accessibility Support
    Debugging, Testing and Error Handling
    Deployment
    Support, QA & Troubleshooting
    API Reference
    DevExpress.EasyTest.Framework
    DevExpress.EntityFrameworkCore.Security
    DevExpress.ExpressApp
    DevExpress.ExpressApp.Actions
    DevExpress.ExpressApp.ApplicationBuilder
    DevExpress.ExpressApp.AspNetCore
    DevExpress.ExpressApp.AuditTrail
    DevExpress.ExpressApp.Blazor
    DevExpress.ExpressApp.Blazor.ApplicationBuilder
    DevExpress.ExpressApp.Blazor.Editors
    DevExpress.ExpressApp.Blazor.Editors.Models
    DevExpress.ExpressApp.Blazor.Services
    DevExpress.ExpressApp.Blazor.SystemModule
    DevExpress.ExpressApp.Blazor.Templates.Navigation
    DevExpress.ExpressApp.Chart
    DevExpress.ExpressApp.Chart.Win
    DevExpress.ExpressApp.CloneObject
    DevExpress.ExpressApp.ConditionalAppearance
    DevExpress.ExpressApp.Core
    DevExpress.ExpressApp.Dashboards
    DevExpress.ExpressApp.Dashboards.Blazor
    DevExpress.ExpressApp.Dashboards.Blazor.Components
    DevExpress.ExpressApp.Dashboards.Blazor.Components.Models
    DevExpress.ExpressApp.Dashboards.Blazor.Controllers
    DevExpress.ExpressApp.Dashboards.Blazor.Services
    DevExpress.ExpressApp.Dashboards.Win
    DevExpress.ExpressApp.Data
    DevExpress.ExpressApp.DC
    DevExpress.ExpressApp.DC.ClassGeneration
    DevExpress.ExpressApp.Editors
    DevExpress.ExpressApp.EFCore
    DevExpress.ExpressApp.FileAttachments.Blazor
    DevExpress.ExpressApp.FileAttachments.Win
    DevExpress.ExpressApp.Filtering
    DevExpress.ExpressApp.Kpi
    DevExpress.ExpressApp.Layout
    DevExpress.ExpressApp.MiddleTier
    DevExpress.ExpressApp.Model
    DevExpress.ExpressApp.Model.Core
    DevExpress.ExpressApp.Model.NodeGenerators
    DevExpress.ExpressApp.ModelEditor
    DevExpress.ExpressApp.MultiTenancy
    DevExpress.ExpressApp.MultiTenancy.EFCore
    DevExpress.ExpressApp.MultiTenancy.Xpo
    DevExpress.ExpressApp.Notifications
    DevExpress.ExpressApp.Notifications.Blazor
    DevExpress.ExpressApp.Notifications.Win
    DevExpress.ExpressApp.Office
    DevExpress.ExpressApp.Office.Blazor
    DevExpress.ExpressApp.Office.Win
    DevExpress.ExpressApp.PivotChart
    DevExpress.ExpressApp.PivotChart.Win
    DevExpress.ExpressApp.PivotGrid
    DevExpress.ExpressApp.PivotGrid.Win
    DevExpress.ExpressApp.ReportsV2
    DevExpress.ExpressApp.ReportsV2.Blazor
    DevExpress.ExpressApp.ReportsV2.Services
    DevExpress.ExpressApp.ReportsV2.Win
    DevExpress.ExpressApp.Scheduler
    DevExpress.ExpressApp.Scheduler.Blazor
    DevExpress.ExpressApp.Scheduler.Blazor.Editors
    DevExpress.ExpressApp.Scheduler.Win
    DevExpress.ExpressApp.ScriptRecorder
    DevExpress.ExpressApp.ScriptRecorder.Win
    DevExpress.ExpressApp.Security
    AssociationPermissionsMode
    AuthenticationActiveDirectory
    AuthenticationActiveDirectory<UserType, LogonParametersType>
    AuthenticationActiveDirectory<UserType>
    AuthenticationBase
    AuthenticationStandard
    AuthenticationStandard<UserType, LogonParametersType>
    AuthenticationStandard<UserType>
    AuthenticationStandardEvents
    AuthenticationStandardLogonParameters
    AuthenticationStandardProviderOptions
    CustomCreateUserEventArgs
    CustomizeClaimContext
    CustomizeLoginTokenContext
    HasRightsToModifyMemberController
    INonsecuredObjectSpaceProvider
    IntermediateObjectAttribute
    IOperationPermission
    IOperationPermissionProvider
    IPermissionRequest
    IRequestSecurityStrategy
    ISecurityProvider
    ISecurityStrategyBase
    ISecurityUser
    ISecurityUserLockout
    ISecurityUserLoginInfo
    ISecurityUserWithLoginInfo
    ISecurityUserWithRoles
    IsGrantedExtensions
    LockoutOptions
    MemberOperationPermission
    ModelOperationPermission
    ModelOperationPermissionRequest
    MyDetailsController
    NonSecureActionsInitializingEventArgs
    ObjectAccess
    ObjectAccessModifier
    ObjectOperationPermission
    OperationPermissionBase
    OperationPermissionRequestBase
    PermissionRequestProcessorBase<ProcessorPermissionRequestType>
    PermissionSettingHelper
    PermissionsReloadMode
    RolesMergingMode
    SecuredXPObjectSpace
    SecurityBrowsableAttribute
    SecurityBuilder
    SecurityModule
    SecurityModuleOptions
    SecurityOperations
    SecurityOptions
    SecurityStrategy
    SecurityStrategyBase
    SecurityStrategyComplex
    SecurityUserBase
    ServerPermissionRequestProcessor
    SignInManager
    TypeOperationPermission
    UserManager
    Members
    Constructors
    Methods
    AccessFailed(Object)
    AddLogin<TUser>(TUser, String, String)
    CreateUser
    FindUserByKey<TUser>(IObjectSpace, String)
    FindUserByLogin<TUser>(IObjectSpace, String, String)
    FindUserByName<TUser>(IObjectSpace, String)
    FindUserByPrincipal<TUser>(IObjectSpace, IPrincipal)
    GetAuthenticationToken<TUser>(TUser, Int32, IEnumerable<Claim>)
    GetCurrentPrincipal()
    GetLoginProviderName(IPrincipal)
    GetProviderUserKey(IPrincipal)
    GetUserName(IPrincipal)
    IsLockedOut(Object)
    ResetLockout(Object)
    XafApplicationExtensions
    DevExpress.ExpressApp.Security.Adapters
    DevExpress.ExpressApp.Security.Authentication
    DevExpress.ExpressApp.Security.ClientServer
    DevExpress.ExpressApp.Security.ClientServer.Wcf
    DevExpress.ExpressApp.Security.ClientServer.WebApi
    DevExpress.ExpressApp.Security.EF.Adapters
    DevExpress.ExpressApp.Security.Strategy
    DevExpress.ExpressApp.Security.Xpo.Adapters
    DevExpress.ExpressApp.Services.Localization
    DevExpress.ExpressApp.StateMachine
    DevExpress.ExpressApp.SystemModule
    DevExpress.ExpressApp.Templates
    DevExpress.ExpressApp.Templates.ActionContainers
    DevExpress.ExpressApp.TreeListEditors
    DevExpress.ExpressApp.TreeListEditors.Win
    DevExpress.ExpressApp.Updating
    DevExpress.ExpressApp.Utils
    DevExpress.ExpressApp.Validation
    DevExpress.ExpressApp.Validation.Win
    DevExpress.ExpressApp.ViewVariantsModule
    DevExpress.ExpressApp.WebApi.Services
    DevExpress.ExpressApp.Win
    DevExpress.ExpressApp.Win.ApplicationBuilder
    DevExpress.ExpressApp.Win.Core
    DevExpress.ExpressApp.Win.Editors
    DevExpress.ExpressApp.Win.Model
    DevExpress.ExpressApp.Win.SystemModule
    DevExpress.ExpressApp.Win.Templates
    DevExpress.ExpressApp.Win.Templates.Navigation
    DevExpress.ExpressApp.Win.Utils
    DevExpress.ExpressApp.Xpo
    DevExpress.ExpressApp.Xpo.Utils
    DevExpress.Persistent.AuditTrail
    DevExpress.Persistent.Base
    DevExpress.Persistent.Base.General
    DevExpress.Persistent.Base.MultiTenancy
    DevExpress.Persistent.Base.ReportsV2
    DevExpress.Persistent.Base.Security
    DevExpress.Persistent.BaseImpl
    DevExpress.Persistent.BaseImpl.AuditTrail.Services
    DevExpress.Persistent.BaseImpl.EF
    DevExpress.Persistent.BaseImpl.EF.MultiTenancy
    DevExpress.Persistent.BaseImpl.EF.PermissionPolicy
    DevExpress.Persistent.BaseImpl.PermissionPolicy
    DevExpress.Persistent.Validation
    Download CHM

    UserManager.GetAuthenticationToken<TUser>(TUser, Int32, IEnumerable<Claim>) Method

    Gets an authentication token for the specified user.

    Namespace: DevExpress.ExpressApp.Security

    Assembly: DevExpress.ExpressApp.Security.v25.1.dll

    NuGet Package: DevExpress.ExpressApp.Security

    Declaration

    public string GetAuthenticationToken<TUser>(
    TUser user,
    int expirationSeconds,
    IEnumerable<Claim> additionalClaims = null
)
    where TUser : class, ISecurityUserWithLoginInfo

    Parameters

    Name Type Description
    user TUser

    An application user object.
    expirationSeconds Int32

    The number of seconds until the authentication token expires.

    Optional Parameters

    Name Type Default Description
    additionalClaims IEnumerable<Claim> null

    A collection of additional claims to add to the resulting token.

    Type Parameters

    Name Description
    TUser

    The user object type.

    Returns

    Type Description
    String

    A System.Stringthat contains the resulting authentication topic.

    Remarks

    Important

    This method is not supported on the WinForms platform. If called from a WinForms application, it throws the PlatformNotSupportedException.

    The following code snippet demonstrates a custom implementation of an IAuthenticationTokenProviderthat uses the GetAuthenticationToken to generate an authentication token for a successfully authenticated user:

    using DevExpress.ExpressApp;
using DevExpress.ExpressApp.Core;
using DevExpress.ExpressApp.Security;
using DevExpress.ExpressApp.Security.Authentication.ClientServer;
using System.Runtime.ExceptionServices;
// ...
public class JwtTokenProviderService : IAuthenticationTokenProvider {
    IServiceProvider serviceProvider;

    public JwtTokenProviderService(IServiceProvider serviceProvider) {
        this.serviceProvider = serviceProvider;
    }
    public string Authenticate(object logonParameters) {
        var signInManager = serviceProvider.GetRequiredService<SignInManager>();
        var userManager = serviceProvider.GetRequiredService<UserManager>();

        var result = signInManager.AuthenticateByLogonParameters(logonParameters);
        if(result.Succeeded) {
            using IObjectSpace nonSecuredObjectSpace = serviceProvider
                .GetRequiredService<INonSecuredObjectSpaceFactory>().CreateNonSecuredObjectSpace<ApplicationUser>();
            var user = userManager.FindUserByPrincipal<ApplicationUser>(nonSecuredObjectSpace, result.Principal);
            var token = userManager.GetAuthenticationToken(user, 6000);
            return token;
        }
        if(result.Error is IUserFriendlyException) {
            ExceptionDispatchInfo.Throw(result.Error);
        }
        throw new AuthenticationException("Internal server error");
    }
}
    See Also