Dazinator.AspNetCore.Authorization

Useful classes and extensions when working with Microsoft.Extensions.Authorization

Stars
1
Committers
3
View Code on GitHub
Ecosystems: C#

Features

Composite Authorization Policy Provider

Allows you to build a composite AuthorizationPolicyProvider for your ASP.NET Core application. This basically allows you to consolidate multiple IAuthorizationPolicyProviders into a single one, which will loop through the inner providers in order, to query each one to obtain the policy. If a NULL policy is returned by a provider, it will proceed to query the next provider in the list, until either the policy is returned, or the last NULL is returned.

Usage in startup.cs:


            services.AddCompositeAuthorizationPolicyProvider((builder) =>
            {
                builder.AddProvider<PermissionPolicyProvider>((a) => a.AsSingleton())
                       .AddProvider<TestPolicyProvider>((s) =>
                       {
                           s.AsSingleton((sp) => new TestPolicyProvider("Bar"));
                       })
					   .AddProvider<DefaultAuthorizationPolicyProvider>((a) => a.AsSingleton()); // Asp.net default provider.
            });
    ```

See the tests for more information regarding usage.

## MemoryCaching AuthorizationPolicyProvider

Allows you to decorate an `IAuthorizationPolicyProvider` provider with a Memory Caching one, along with configuring cache expiration for policies.
See tests and README in the Caching project for more info.

Usage:

```csharp

            services.AddCompositeAuthorizationPolicyProvider((builder) =>
            {
                builder.AddProvider<TestPolicyProvider>((a) =>
                {
                    a.AsSingleton((sp) => new TestPolicyProvider()) // custom factory method
                     .AddCaching((cacheOptions) =>
                     {
                         cacheOptions.SetMemoryCacheFactory(sp => new MemoryCache(new MemoryCacheOptions
                         {
                             SizeLimit = 1024
                         })).SetConfigureCacheEntry((policyName, entry) =>
                         {
                             entry.AbsoluteExpirationRelativeToNow = TimeSpan.FromSeconds(10);
                         });
                     });
                })
                .AddProvider<DefaultAuthorizationPolicyProvider>((a) => a.AsSingleton());  // add more providers to composite.             

            });

Note to Provider Authors

Are you writing a custom AuthorizationPolicyProvider that others might user? I would recommend adhering to the following pattern so that your provider will behave well as either part of a composite provider, or just registered on it's own but with a specific desired fallback provider:


    public class CustomAuthorizationPolicyProvider : IAuthorizationPolicyProvider
    {
        public const string PolicyPrefix = "Custom:";
        private readonly IAuthorizationPolicyProvider _innerProvider;
        private readonly Task<AuthorizationPolicy> NullResult = Task.FromResult(default(AuthorizationPolicy));

        public PermissionsAuthorizationPolicyProvider(IAuthorizationPolicyProvider innerProvider = null)
        {
            _innerProvider = innerProvider;
        }

        public Task<AuthorizationPolicy> GetDefaultPolicyAsync()
        {
            if (_innerProvider == null)
            {
                return NullResult;
            }
            return _innerProvider?.GetDefaultPolicyAsync();
        }

#if NETCOREAPP3_0
        public Task<AuthorizationPolicy> GetFallbackPolicyAsync()
        {
            if (_innerProvider == null)
            {
                return NullResult;
            }
            return _innerProvider?.GetFallbackPolicyAsync();
        }
#endif

        public Task<AuthorizationPolicy> GetPolicyAsync(string policyName)
        {
            if (!policyName.StartsWith(PolicyPrefix, StringComparison.OrdinalIgnoreCase))
            {
                if (_innerProvider == null)
                {
                    return NullResult;
                }
                return _innerProvider?.GetPolicyAsync(policyName);
            }

            // TODO: Build policy but also think about caching!
            // var policy = new AuthorizationPolicyBuilder()
            //     .RequireClaim(CustomClaimTypes.Foo, permissionClaimValues)
            //     .Build();

            return Task.FromResult(policy);
        }
    }

By sticking to this pattern, consumers of your provider will have the most flexibility. They can either register it with any provider they'd like as the fallback, for example the Default provider:


   services.AddSingleton<IAuthorizationPolicyProvider, CustomAuthorizationPolicyProvider>(sp=> {
                return new CustomAuthorizationPolicyProvider(new DefaultAuthorizationPolicyProvider(sp.GetRequiredService<IOptions<AuthorizationOptions>>()));
            });

Or they can use it as part of a CompositePolicyProvider (as provided in this repository) and shown in above in this readme. In either situation, your provider should work.

As a bonus, here is an example of the extension method you might ship with your custom provider, so consumers can add it directly and specify it's inner provider, when not wishing to add it using the composite pattern provided by this repo:


    public static class ServiceCollectionExtensions
    {
        public static IServiceCollection AddMyCustomAuthorisationPolicyProvider(this IServiceCollection services, Func<IServiceProvider, IAuthorizationPolicyProvider> innerProviderFactory = null)
        {
            services.AddSingleton<IAuthorizationPolicyProvider, PermissionsAuthorizationPolicyProvider>(sp =>
            {
                return new PermissionsAuthorizationPolicyProvider(innerProviderFactory?.Invoke(sp));
            });
           
            return services;
        }
    }
Badges
Extracted from project README
Build Status
Related Projects
jwt

Jwt.Net, a JWT (JSON Web Token) implementation for .NET

19 Jun 2011 2,126
jab

C# Source Generator based dependency injection container implementation.

11 Dec 2020 1,039
BackgroundServiceSandbox

Messing around with .NET7 and .NET8 BackgroundServices

09 Oct 2023 4
Dazinator.Extensions.DependencyInjection

Useful additions to Microsoft.Extensions.DependencyInjection such as Named Services.

07 Mar 2020 36
ConsoleAppFramework

Micro-framework for console applications to building CLI tools/Daemon/Batch for .NET, C#.

21 Feb 2019 1,212
AspNetCorePathAuthorization

A middleware to enable path-based authorization in an ASP.NET Core application.

17 Jun 2022 38
Dazinator.Extensions.FileProviders

02 Oct 2016 36
SwizlyPeasy.Gateway

SwizlyPeasy.Gateway is a simple API gateway based on YARP Reverse Proxy. This gateway should supp...

03 Jul 2023 6
Dotnettency

Mutlitenancy for dotnet applications

19 Jul 2017 111
WorkflowGuard.NET

WorkflowGuard is a .NET library that provides an easy-to-use attribute-based mechanism for applyi...

07 Aug 2024 0
Dazinator.ResponsiveCore

Enable your .net applications to be more responsive to changes at runtime, so you don't have to r...

06 Oct 2020 5
Scrutor

Assembly scanning and decoration extensions for Microsoft.Extensions.DependencyInjection

14 Nov 2015 3,581
MagicOnion

Unified Realtime/API framework for .NET platform and Unity.

10 Dec 2016 3,650
SteroidsDI

Advanced Dependency Injection to use every day.

08 Mar 2020 20
HttpMessageHandlerFactory

具有生命周期管理和动态Web代理的HttpMessageHandler创建工厂

19 May 2023 12