admin管理员组文章数量:1292148
For the purposes of customer support, I would like to be able to be able to see a users shopping basket without being logged in (using the user's credentials).
This could by creating a master password, cookies or something like that.
I realise that this might seem like a strange request but due to the custom nature of the product, we quite often have to help customers with the placing of their order.
So being able to see the same view of our website as they see it would be very useful.
Thanks,
Will
For the purposes of customer support, I would like to be able to be able to see a users shopping basket without being logged in (using the user's credentials).
This could by creating a master password, cookies or something like that.
I realise that this might seem like a strange request but due to the custom nature of the product, we quite often have to help customers with the placing of their order.
So being able to see the same view of our website as they see it would be very useful.
Thanks,
Will
Share Improve this question edited Feb 13 at 17:51 marc_s 755k184 gold badges1.4k silver badges1.5k bronze badges asked Feb 13 at 16:39 willcmswillcms 134 bronze badges 1- I'm assuming you are storing the cart in the DB. So just create an admin page (or application) that allows support to view stored carts. Support should obviously have a way to verify the customer's identity ahead of time. ( shouldn't have to be too crazy on the security side, as cart contents aren't super sensitive data...) If you need to "see the same view" as the customer, you might need to remote in to their machine, though. (pretty broad question though, you might want to make it more focused/detailed) – browsermator Commented Feb 13 at 18:59
1 Answer
Reset to default 0For the purposes of customer support, I would like to be able to be able to see a users shopping basket without being logged in (using the user's credentials).
This could by creating a master password, cookies or something like that.
Using the master password is less secure, it might lead to unauthorized access or security issues. So, I will not recommend use this method.
According to your scenario, you can try to use the following methods:
In the Admin panel, add a "View as Customer" feature.
In the internal admin panel (visible only to admin users), add a ViewAsCustomer page, where admin users can enter the customer's email or basket ID to view the specified customer's basket.
Use a temporary "Support Access" Link.
Add a button to let customer generate a temporary, shareable link from their account or cart page. This link would encode a secure token that grants read-only access to their cart. And you could set an expiration time (e.g., 30 minutes) and invalidate it after use.
The support engineer could open this link in a new session (without logging in as the user) and could get the customer information or basket information from the token, then display shopping basket in the page.
Update:
For the "View as Customer" feature, it is based on Role-Based Authentication and View-based authorization. Here are some resources you can refer to them:
Role-based authorization in ASP.NET Core
View-based authorization in ASP.NET Core MVC
Load different views dependant on user role asp core mvc
本文标签:
版权声明:本文标题:cookies - ASP.NET Core - viewing a user's shopping basket without being logged in for customer service purposes or acces 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1741516521a2382922.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。
发表评论