AcceptAuthCookieAttribute
Attribute to indicate that the associated action(s) allows cookie based authentication.
ASPSecurityKit.Net
Assembly: ASPSecurityKit.Net
Summary: Provides types common to all supported official .NET web frameworks (ASP.NET Core and legacy ASP.NET MVC/Web API).
Summary: Provides types common to all supported official .NET web frameworks (ASP.NET Core and legacy ASP.NET MVC/Web API).
Classes
AcceptHmacTokenInQueryStringAttribute
Attribute to indicate that the associated action(s) allows HMAC token in queryString based authentication.
AcceptServiceHmacTokenAttribute
Attribute to indicate that the associated action(s) allows service HMAC token based authentication.
AcceptServiceKeyAttribute
Attribute to indicate that the associated action(s) allows service key based authentication.
ActivityPermittedHandler
Implements the IActivityPermittedHandler for service stack
AllowAnonymousAttribute
Attribute to indicate that the associated action(s) is accessible to users who aren’t authenticated (anonymous users).
AllowImpersonationAttribute
Attribute to indicate that the associated action(s) is accessible during impersonation.
AllowPasswordExpiredAttribute
Attribute to indicate that the associated action(s) is accessible even if the password has expired.
AllowSuspendedUserAttribute
Attribute to indicate that the associated action(s) is accessible even if user is suspended.
ASPSecurityKitRegistryBase
Base class to encapsulate logic to register dependencies for .NET.
AuthActionAttribute
Attribute to indicate the action part of the permission code for activity-based authorization checks.
AuthEntityAttribute
Attribute to indicate the entity type part of the permission code for activity-based authorization checks.
AuthorizeControllerAttribute
Explicitly indicates the controller which contains the action methods for the associated authRequestDefinitions.
AuthorizeRequestDefinitionRegistrar
Default implementation for IAuthorizeRequestDefinitionRegistrar.
AuthPermissionAttribute
Attribute to indicate the complete permission code for the associated action(s) for activity-based authorization checks.
DisabledAttribute
Attribute to indicate that the associated action(s) is disabled.
ExcludeBodyFromHmacAttribute
Attribute to indicate that the associated action’s body is ignored while creating HMAC token for authentication.
FeatureAttribute
Attribute to indicate one or more RequestFeature values for the associated action(s).
MFANotRequiredAttribute
Attribute to indicate that the associated action(s) is accessible even when multi-factor authentication is not yet done.
MultiFactorSettingAttribute
Attribute to indicate that the associated action(s) is used to manage multi-factor settings. Hence should be accessible to enable MFA when MFA is enforced on user. Other actions are blocked because user hasn’t enabled MFA.
MvcSecurityFailureResponseHandler
Implements the ISecurityFailureResponseHandler for MVC actions and performs redirection to URL specified in INetSecuritySettings for corresponding errors, provided that the request is not IsApiRequest, the caller is a known browser (as determined by IsBrowser) and the URL to redirect to isn’t the same as the current URL.
NetSecuritySettings
Implements the INetSecuritySettings.
PossessesPermissionCodeAttribute
Attribute to indicate that authorization should only check the existence of a permission code and skip entity instance-based check for the associated action(s). Don’t confuse it with general actions. See remarks for more information.
PublicAttribute
Attribute to indicate that the associated action(s) is accessible with public keys (requiring no MFA/authorization checks).
RegistrationOptions
Defines options for ASP Security Kit plugin registration.
ResponseStatus
Represents an error response for a failed API request.
SkipActivityAuthorizationAttribute
Attribute to indicate that associated action(s) doesn’t require activity-based authorization checks.
VerificationNotRequiredAttribute
Attribute to indicate that the associated action(s) is accessible to users who aren’t yet verified.
Interfaces
IAuthorizeRequestDefinition
Represents auth definition to provide authorization related methods for an action.
IAuthorizeRequestDefinitionRegistrar
Provides implementers a way to register authDefinitions that ASK can use to perform authorization for the associated actions.
INetRequestService
Provides a common abstraction to interact with Asp.Net (both .NET Framework and .NET Core) based request/response objects.
INetSecuritySettings
Defines ASP.NET related configuration settings for security pipeline.