What was the challenge?
A leading financial organization approached Realized Solutions to increase the security of a web application to better protect their users’ personal information. Realized Solutions accomplished this using ASP.NET Core Identity, a Microsoft system API that is designed to assist with user login functionality and user experience. Combined with MVC, utilizing the Identity interface provides a succinct system for securely managing users, passwords, backend user data, and user roles.
What is the solution?
When applying Identity core to an entity framework, all the relevant tables for holding user data are populated in the preferred data storage location, which is typically configured using SQL Server. The user table stores the user ID, along with any information about that user, and can encrypt data; the user table automatically encrypts classified information such as passwords. By implementing the Identity core system, classes became easily extendable, allowing Realized Solutions to add additional information to the users based on the client requirements.
In addition to having MVC endpoints for registering new users and logging in/out, there was a requirement to register all current users from a separate user repository to ASP.NET Identity Core. Utilizing the provided Microsoft documentation, Realized Solutions implemented a system that took all the relevant data from the current user repository and registered those users as users in the new system. Additionally, they documented any users that were not able to be registered due to Identity’s stricter registration restrictions.
Some of the user data that needed to be stored was not a part of the initial user object in Identity. However, when implementing Identity, several ASP.NET tables get added to the data storage location of choice. These tables include AspNet Users, Roles, Claims, Logins, among others. We were able to add additional AspNet tables easily which sync with the default available tables. Lastly, we were able to add additional fields and columns to the existing tables which integrated into the system seamlessly.
What is the result?
This solution implemented by Realized Solutions will allow the client to have a more secure user storage and login process. All passwords and sensitive data will be safely encrypted, and roles can easily be managed and assigned by system administrators. In addition, since the ASP.NET Identity library is extendable, when new requirements arise it will be a much quicker, safer, and simpler implementation process for both the client and the developers.
Contact us today to learn more about how we can help your business and provide better insights.
