Update RefreshSignInAsync documentation and fix null checks

Copilot · halter73 · Copilot · commit 6bd9dbb22690 · 2025-11-07T18:50:29.000Z
- Updated XML documentation to clearly state user must be signed in
- Added explicit null check for auth result at the beginning
- Removed unnecessary null-conditional operators after auth.Succeeded check
- All existing tests pass

Co-authored-by: halter73 &lt;54385+halter73@users.noreply.github.com&gt;
diff --git a/src/Identity/Core/src/SignInManager.cs b/src/Identity/Core/src/SignInManager.cs
@@ -165,10 +165,14 @@ public virtual async Task<bool> CanSignInAsync(TUser user)
     }
 
     /// <summary>
-    /// Signs in the specified <paramref name="user"/>, whilst preserving the existing
+    /// Refreshes the sign-in for the specified <paramref name="user"/>, whilst preserving the existing
     /// AuthenticationProperties of the current signed-in user like rememberMe, as an asynchronous operation.
     /// </summary>
-    /// <param name="user">The user to sign-in.</param>
+    /// <remarks>
+    /// The user must already be signed in, and the user ID must match the currently authenticated user.
+    /// If the user is not signed in, use <see cref="SignInAsync(TUser, bool, string)"/> instead.
+    /// </remarks>
+    /// <param name="user">The user to refresh the sign-in for.</param>
     /// <returns>The task object representing the asynchronous operation.</returns>
     public virtual async Task RefreshSignInAsync(TUser user)
     {
@@ -189,6 +193,12 @@ public virtual async Task RefreshSignInAsync(TUser user)
     private async Task<(bool success, bool? isPersistent)> RefreshSignInCoreAsync(TUser user)
     {
         var auth = await Context.AuthenticateAsync(AuthenticationScheme);
+        if (auth == null)
+        {
+            Logger.LogError("RefreshSignInAsync prevented because authentication result is null.");
+            return (false, null);
+        }
+
         if (!auth.Succeeded || auth.Principal?.Identity?.IsAuthenticated != true)
         {
             Logger.LogError("RefreshSignInAsync prevented because the user is not currently authenticated. Use SignInAsync instead for initial sign in.");
@@ -204,8 +214,8 @@ public virtual async Task RefreshSignInAsync(TUser user)
         }
 
         IList<Claim> claims = Array.Empty<Claim>();
-        var authenticationMethod = auth.Principal?.FindFirst(ClaimTypes.AuthenticationMethod);
-        var amr = auth.Principal?.FindFirst("amr");
+        var authenticationMethod = auth.Principal.FindFirst(ClaimTypes.AuthenticationMethod);
+        var amr = auth.Principal.FindFirst("amr");
 
         if (authenticationMethod != null || amr != null)
         {
@@ -221,7 +231,7 @@ public virtual async Task RefreshSignInAsync(TUser user)
         }
 
         await SignInWithClaimsAsync(user, auth.Properties, claims);
-        return (true, auth.Properties?.IsPersistent ?? false);
+        return (true, auth.Properties.IsPersistent);
     }
 
     /// <summary>

Original file line number	Diff line number	Diff line change
`@@ -165,10 +165,14 @@ public virtual async Task<bool> CanSignInAsync(TUser user)`
`165`	`165`	`}`
`166`	`166`
`167`	`167`	`/// <summary>`
`168`		`- /// Signs in the specified <paramref name="user"/>, whilst preserving the existing`
	`168`	`+ /// Refreshes the sign-in for the specified <paramref name="user"/>, whilst preserving the existing`
`169`	`169`	`/// AuthenticationProperties of the current signed-in user like rememberMe, as an asynchronous operation.`
`170`	`170`	`/// </summary>`
`171`		`- /// <param name="user">The user to sign-in.</param>`
	`171`	`+ /// <remarks>`
	`172`	`+ /// The user must already be signed in, and the user ID must match the currently authenticated user.`
	`173`	`+ /// If the user is not signed in, use <see cref="SignInAsync(TUser, bool, string)"/> instead.`
	`174`	`+ /// </remarks>`
	`175`	`+ /// <param name="user">The user to refresh the sign-in for.</param>`
`172`	`176`	`/// <returns>The task object representing the asynchronous operation.</returns>`
`173`	`177`	`public virtual async Task RefreshSignInAsync(TUser user)`
`174`	`178`	`{`
`@@ -189,6 +193,12 @@ public virtual async Task RefreshSignInAsync(TUser user)`
`189`	`193`	`private async Task<(bool success, bool? isPersistent)> RefreshSignInCoreAsync(TUser user)`
`190`	`194`	`{`
`191`	`195`	`var auth = await Context.AuthenticateAsync(AuthenticationScheme);`
	`196`	`+ if (auth == null)`
	`197`	`+ {`
	`198`	`+ Logger.LogError("RefreshSignInAsync prevented because authentication result is null.");`
	`199`	`+ return (false, null);`
	`200`	`+ }`
	`201`	`+`
`192`	`202`	`if (!auth.Succeeded \|\| auth.Principal?.Identity?.IsAuthenticated != true)`
`193`	`203`	`{`
`194`	`204`	`Logger.LogError("RefreshSignInAsync prevented because the user is not currently authenticated. Use SignInAsync instead for initial sign in.");`
`@@ -204,8 +214,8 @@ public virtual async Task RefreshSignInAsync(TUser user)`
`204`	`214`	`}`
`205`	`215`
`206`	`216`	`IList<Claim> claims = Array.Empty<Claim>();`
`207`		`- var authenticationMethod = auth.Principal?.FindFirst(ClaimTypes.AuthenticationMethod);`
`208`		`- var amr = auth.Principal?.FindFirst("amr");`
	`217`	`+ var authenticationMethod = auth.Principal.FindFirst(ClaimTypes.AuthenticationMethod);`
	`218`	`+ var amr = auth.Principal.FindFirst("amr");`
`209`	`219`
`210`	`220`	`if (authenticationMethod != null \|\| amr != null)`
`211`	`221`	`{`
`@@ -221,7 +231,7 @@ public virtual async Task RefreshSignInAsync(TUser user)`
`221`	`231`	`}`
`222`	`232`
`223`	`233`	`await SignInWithClaimsAsync(user, auth.Properties, claims);`
`224`		`- return (true, auth.Properties?.IsPersistent ?? false);`
	`234`	`+ return (true, auth.Properties.IsPersistent);`
`225`	`235`	`}`
`226`	`236`
`227`	`237`	`/// <summary>`