SecurityToken IsAnonymousUser inconsistent

totte.perera · November 19, 2021, 11:10am

Hi.

We have a scenario when SecurityToken.IsAnonymousUser is set to true when a user is logged in and visiting the category page, how can this be possible?

It is set to false in the same session for other pages.

I see no difference when debugging Thread.CurrentPrincipal.Identity

Litium version: 7.7.1

NiclasSparr · November 19, 2021, 12:01pm

Hi, I had a similar issue in a project. The issue was that PageModelBuilder was registred as a singleton, which caused the injected security context to be “Captive dependency” in that singleton.

[Service(Lifetime = DependencyLifetime.Singleton)]
public abstract class PageModelBuilder<T> : IViewModelBuilder<T>

Should be just
public abstract class PageModelBuilder : IViewModelBuilder

/Niclas

totte.perera · November 19, 2021, 12:11pm

Thank you Niclas, that did the trick!

system · December 17, 2021, 12:12pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
_securityToken.IsAnonymousUser is true in WebApi Questions	5	475	March 18, 2020
_securityContextService.ActAsSystem() When to use? Questions	2	377	October 10, 2019
Solution.Instance.SystemToken in litium 8 Questions litium-8	2	261	July 13, 2022
What part of Litium is depending on ASP.NET_SessionId Questions	2	334	October 17, 2019
Response cache with anti-forgery token Questions litium-8	1	175	July 26, 2023

SecurityToken IsAnonymousUser inconsistent

Related Topics