Confused by ASP.NET Identity and IdentityDbContext -


it's been while since i've done serious work using asp.net authentication , i'm bit rusty. asp.net identity in thing. i'm hoping can explain i'm doing , have tell me why , assumptions wrong or if they're not wrong.

the application i'm building going hipaa compliant, , such cannot store identifiable information in database. spent time looking @ how asp.net identity works, noting things applicationuser (which inherits identityuser), applicationdbcontext (inheriting identitydbcontext). read couple msdn articles , forth.

i noticed identitydbcontext seems tied aspnetusers table in database. noticed concerning me in aspnetusers table since i'm writing application cannot store identifiable: email , phonenumber columns.

so wanted remove those. looked under hood bit , saw aspnetusers table mapped dbset property of identitydbcontext (see here). tuser applicationuser, inherits identityuser. , identityuser has email (see here).

so...after of that...my question this: if want create own version of aspnetusers without phone number / email address / etc. have create own implementation of iuser in place of identityuser, correct?

are there particular gotchyas i'm going run doing this, then, or should straightforward task? going gut lot of pre-written code wanting remove email database?

personally, me, seems unreasonable email property part of fundamental class associated user identity -- when asp.net identity being touted highly flexible (it seem more reasonable me have people add own email property auto-generated applicationuser class).

it may seem silly me worry column write into, has ever had deal hipaa regulations can strike paranoia heart (and want can remove mistaken holding onto personal information).

getting rid of phone number should not problem. removing email field bigger pain, used framework.

i'd implement own iuserstore (and related) classes. on post initial guidance: http://odetocode.com/blogs/scott/archive/2014/01/20/implementing-asp-net-identity.aspx

then identity source code userstore , gut out bits require email present.


Comments

Popular posts from this blog

css - SVG using textPath a symbol not rendering in Firefox -

Java 8 + Maven Javadoc plugin: Error fetching URL -

datatable - Matlab struct computations -