2

My application is performing email validation sending an email to the user. When the user click on the link, the following action is called:

[AllowAnonymous]
    public ActionResult RegisterConfirmation(string Id) //Id=ConfirmationToken
    {
        if (WebSecurity.ConfirmAccount(Id))
        {
            //get userId and perfom some operations related to it
            return RedirectToAction("ConfirmationSuccess");
        }
        return RedirectToAction("ConfirmationFailure");
    }

My question is:

How can I get the userId using the ConfirmationToken?

I'm using SimpleMembershipProvider and I have acces to my database context.

amp
  • 11,754
  • 18
  • 77
  • 133

1 Answers1

3

That information is in the webpages_Membership table and you can use the context for SimpleMembership to directly query for that information by using context.Database.SqlQuery.

select UserId from webpages_Membership where ConfirmationToken = {0}

That being said, I would not recommend using this to automatically log the person in after confirmation is complete, if that is your intention. There are some security issues that can be caused by doing this as discussed in the comments of this article.

Kevin Junghans
  • 17,475
  • 4
  • 45
  • 62
  • Thanks, that helped. It's not to log the person automatically... Is to update some values in another database. – amp Jun 07 '13 at 11:40