Skip to main content
BuyLog In
XAF: Cross-Platform .NET App UI & Web API
Search in…
Docs > API Reference > DevExpress.ExpressApp.Security > UserManager > Methods > IsLockedOut(Object)
All docs
V24.1
.NET 6.0+
  • The page you are viewing does not exist in the .NET Framework 4.5.2+ platform documentation. This link will take you to the parent topic of the current section.
XAF: Cross-Platform .NET App UI & Web API
Getting Started
Installation, Upgrade, Version History
Backend Web API Service
UI Shell and Base Infrastructure
Storage, ORM, and Business Model Design
Data Manipulation and Business Logic
User Interface and Behavior Customization
Data Filtering
Application Security and Data Safety
Multi-Tenancy (Data per Tenant)
Validation (Prevent Data Errors)
Conditional Appearance (Manage State of UI Elements)
Reporting (Shape, Export & Print Data)
Analytics (Extract Data Insights)
Document Management
Business Process Management
Event Planning
Localization
Accessibility Support
Debugging, Testing and Error Handling
Deployment
Support, QA & Troubleshooting
API Reference
DevExpress.EasyTest.Framework
DevExpress.EntityFrameworkCore.Security
DevExpress.ExpressApp
DevExpress.ExpressApp.Actions
DevExpress.ExpressApp.ApplicationBuilder
DevExpress.ExpressApp.AspNetCore
DevExpress.ExpressApp.AuditTrail
DevExpress.ExpressApp.Blazor
DevExpress.ExpressApp.Blazor.ApplicationBuilder
DevExpress.ExpressApp.Blazor.Editors
DevExpress.ExpressApp.Blazor.Editors.Grid
DevExpress.ExpressApp.Blazor.Editors.Models
DevExpress.ExpressApp.Blazor.Services
DevExpress.ExpressApp.Blazor.SystemModule
DevExpress.ExpressApp.Blazor.Templates.Navigation
DevExpress.ExpressApp.Chart
DevExpress.ExpressApp.Chart.Win
DevExpress.ExpressApp.CloneObject
DevExpress.ExpressApp.ConditionalAppearance
DevExpress.ExpressApp.Core
DevExpress.ExpressApp.Dashboards
DevExpress.ExpressApp.Dashboards.Blazor
DevExpress.ExpressApp.Dashboards.Blazor.Components
DevExpress.ExpressApp.Dashboards.Blazor.Components.Models
DevExpress.ExpressApp.Dashboards.Blazor.Controllers
DevExpress.ExpressApp.Dashboards.Blazor.Services
DevExpress.ExpressApp.Dashboards.Win
DevExpress.ExpressApp.Data
DevExpress.ExpressApp.DC
DevExpress.ExpressApp.DC.ClassGeneration
DevExpress.ExpressApp.Editors
DevExpress.ExpressApp.EFCore
DevExpress.ExpressApp.FileAttachments.Blazor
DevExpress.ExpressApp.FileAttachments.Win
DevExpress.ExpressApp.Filtering
DevExpress.ExpressApp.Kpi
DevExpress.ExpressApp.Layout
DevExpress.ExpressApp.MiddleTier
DevExpress.ExpressApp.Model
DevExpress.ExpressApp.Model.Core
DevExpress.ExpressApp.Model.NodeGenerators
DevExpress.ExpressApp.ModelEditor
DevExpress.ExpressApp.Notifications
DevExpress.ExpressApp.Notifications.Blazor
DevExpress.ExpressApp.Notifications.Win
DevExpress.ExpressApp.Office
DevExpress.ExpressApp.Office.Blazor
DevExpress.ExpressApp.Office.Win
DevExpress.ExpressApp.PivotChart
DevExpress.ExpressApp.PivotChart.Win
DevExpress.ExpressApp.PivotGrid
DevExpress.ExpressApp.PivotGrid.Win
DevExpress.ExpressApp.ReportsV2
DevExpress.ExpressApp.ReportsV2.Blazor
DevExpress.ExpressApp.ReportsV2.Services
DevExpress.ExpressApp.ReportsV2.Win
DevExpress.ExpressApp.Scheduler
DevExpress.ExpressApp.Scheduler.Blazor
DevExpress.ExpressApp.Scheduler.Blazor.Editors
DevExpress.ExpressApp.Scheduler.Win
DevExpress.ExpressApp.ScriptRecorder
DevExpress.ExpressApp.ScriptRecorder.Win
DevExpress.ExpressApp.Security
AssociationPermissionsMode
AuthenticationActiveDirectory
AuthenticationActiveDirectory<UserType, LogonParametersType>
AuthenticationActiveDirectory<UserType>
AuthenticationBase
AuthenticationStandard
AuthenticationStandard<UserType, LogonParametersType>
AuthenticationStandard<UserType>
AuthenticationStandardEvents
AuthenticationStandardLogonParameters
AuthenticationStandardProviderOptions
CustomCreateUserEventArgs
CustomizeClaimContext
CustomizeLoginTokenContext
HasRightsToModifyMemberController
INonsecuredObjectSpaceProvider
IntermediateObjectAttribute
IOperationPermission
IOperationPermissionProvider
IPermissionRequest
ISecurityProvider
ISecurityStrategyBase
ISecurityUser
ISecurityUserLockout
ISecurityUserLoginInfo
ISecurityUserWithLoginInfo
ISecurityUserWithRoles
IsGrantedExtensions
LockoutOptions
MemberOperationPermission
ModelOperationPermission
ModelOperationPermissionRequest
MyDetailsController
NonSecureActionsInitializingEventArgs
ObjectAccess
ObjectAccessModifier
ObjectOperationPermission
OperationPermissionBase
OperationPermissionRequestBase
PermissionRequestProcessorBase<ProcessorPermissionRequestType>
PermissionSettingHelper
PermissionsReloadMode
RolesMergingMode
SecuredXPObjectSpace
SecurityBrowsableAttribute
SecurityBuilder
SecurityModule
SecurityModuleOptions
SecurityOperations
SecurityOptions
SecurityStrategy
SecurityStrategyBase
SecurityStrategyComplex
SecurityUserBase
ServerPermissionRequestProcessor
SignInManager
TypeOperationPermission
UserManager
Members
Constructors
Methods
AccessFailed(Object)
AddLogin<TUser>(TUser, String, String)
CreateUser
FindUserByKey<TUser>(IObjectSpace, String)
FindUserByLogin<TUser>(IObjectSpace, String, String)
FindUserByName<TUser>(IObjectSpace, String)
FindUserByPrincipal<TUser>(IObjectSpace, IPrincipal)
GetAuthenticationToken<TUser>(TUser, Int32, IEnumerable<Claim>)
GetCurrentPrincipal()
GetLoginProviderName(IPrincipal)
GetProviderUserKey(IPrincipal)
GetUserName(IPrincipal)
IsLockedOut(Object)
ResetLockout(Object)
XafApplicationExtensions
DevExpress.ExpressApp.Security.Adapters
DevExpress.ExpressApp.Security.Authentication
DevExpress.ExpressApp.Security.ClientServer
DevExpress.ExpressApp.Security.ClientServer.Wcf
DevExpress.ExpressApp.Security.ClientServer.WebApi
DevExpress.ExpressApp.Security.EF.Adapters
DevExpress.ExpressApp.Security.Strategy
DevExpress.ExpressApp.Security.Xpo.Adapters
DevExpress.ExpressApp.Services.Localization
DevExpress.ExpressApp.StateMachine
DevExpress.ExpressApp.SystemModule
DevExpress.ExpressApp.Templates
DevExpress.ExpressApp.Templates.ActionContainers
DevExpress.ExpressApp.TreeListEditors
DevExpress.ExpressApp.TreeListEditors.Win
DevExpress.ExpressApp.Updating
DevExpress.ExpressApp.Utils
DevExpress.ExpressApp.Validation
DevExpress.ExpressApp.Validation.Win
DevExpress.ExpressApp.ViewVariantsModule
DevExpress.ExpressApp.WebApi.Services
DevExpress.ExpressApp.Win
DevExpress.ExpressApp.Win.ApplicationBuilder
DevExpress.ExpressApp.Win.Core
DevExpress.ExpressApp.Win.Editors
DevExpress.ExpressApp.Win.Model
DevExpress.ExpressApp.Win.SystemModule
DevExpress.ExpressApp.Win.Templates
DevExpress.ExpressApp.Win.Templates.Navigation
DevExpress.ExpressApp.Win.Utils
DevExpress.ExpressApp.Xpo
DevExpress.ExpressApp.Xpo.Utils
DevExpress.Persistent.AuditTrail
DevExpress.Persistent.Base
DevExpress.Persistent.Base.General
DevExpress.Persistent.Base.ReportsV2
DevExpress.Persistent.Base.Security
DevExpress.Persistent.BaseImpl
DevExpress.Persistent.BaseImpl.AuditTrail.Services
DevExpress.Persistent.BaseImpl.EF
DevExpress.Persistent.BaseImpl.EF.PermissionPolicy
DevExpress.Persistent.BaseImpl.PermissionPolicy
DevExpress.Persistent.Validation
Download CHM

UserManager.IsLockedOut(Object) Method

Gets a value that indicates whether the specified user account is locked out by “Brute Force” attack protection.

Namespace: DevExpress.ExpressApp.Security

Assembly: DevExpress.ExpressApp.Security.v24.1.dll

NuGet Package: DevExpress.ExpressApp.Security

Declaration

public bool IsLockedOut(
    object user
)

Parameters

Name Type Description
user Object

An application user object.

Returns

Type Description
Boolean

A System.Boolean value that indicates whether or not the user account is locked out.

Remarks

See the ISecurityUserLockout topic for information on the user lockout (“Brute Force” attack protection) feature in XAF.

Example

This example demonstrates how to use UserManager API to allow administrators to view the lockout status of application users and how to implement a controller action that administrators can use to reset the lockout for a specific user account.

To display the user lockout status in the List View and Detail View for the ApplicationUser persistent class, add a non-persistent IsLockedOut property to this class. In the property getter, use the UserManager.IsLockedOut method to obtain the lockout status for the current user object:

using Microsoft.Extensions.DependencyInjection;
using DevExpress.ExpressApp.Security;
// ...
public class ApplicationUser : PermissionPolicyUser, ISecurityUserWithLoginInfo, ISecurityUserLockout {
    // ...
    [NotMapped]
    public virtual bool IsLockedOut {
        get {
            var userManager = ObjectSpace.ServiceProvider.GetRequiredService<UserManager>();
            return userManager.IsLockedOut(this);
        }    
    }
}

Next, add a new View Controller and implement a controller action that calls the UserManager.ResetLockout method to reset the lockout for the currently viewed user account:

using DevExpress.ExpressApp;
using DevExpress.ExpressApp.Actions;
using DevExpress.ExpressApp.Security;
using DevExpress.Persistent.Base;
using Microsoft.Extensions.DependencyInjection;
using MySolution.Module.BusinessObjects;
// ...
public class ResetUserLockoutController : ViewController {
    IServiceProvider serviceProvider;
    SimpleAction resetUserLockoutAction;

    public ResetUserLockoutController() { }

    [ActivatorUtilitiesConstructor]
    public ResetUserLockoutController(IServiceProvider serviceProvider) : this() {
        this.serviceProvider = serviceProvider;
        TargetViewType = ViewType.DetailView;
        TargetObjectType = typeof(ApplicationUser);

        resetUserLockoutAction = new SimpleAction(this, "ResetLockout", PredefinedCategory.View) {
            Caption = "Reset Lockout",
        };

        resetUserLockoutAction.Execute += ResetUserLockoutAction_Execute;
    }

    private void ResetUserLockoutAction_Execute(object sender, SimpleActionExecuteEventArgs e) {
        var userManager = serviceProvider.GetRequiredService<UserManager>();
        userManager.ResetLockout(View.CurrentObject);
        View.Refresh();
    }

    protected override void OnActivated() {
        base.OnActivated();
        // Hide the action from non-admin users.
        ISecurityStrategyBase securityStrategy = serviceProvider.GetRequiredService<ISecurityProvider>().GetSecurity();
        ApplicationUser currentUser = (ApplicationUser)securityStrategy.User;
        resetUserLockoutAction.Active["AdminOnlyAction"] = currentUser.Roles.Any(r => r.IsAdministrative);
    }
}

The image below demonstrates the result:

Result

See Also