tagged [authorization]
Custom authorization attribute not working in WebAPI
Custom authorization attribute not working in WebAPI Above is my CustomAuthorizeAttribute Class and ``` [CustomAuthorize] // both [CustomAuthorize] and [CustomAuthorizeAttr
- Modified
- 28 Apr at 10:47
Azman Obsolete? What is the new alternative to Azman?
Azman Obsolete? What is the new alternative to Azman? Is there a replacement for Azman, that is a new way to apply security. Previously we were using EntLib 3 and used Azman for our security and autho...
- Modified
- 9 Jan at 06:50
ServiceStack - prevent unauthorized access to static files
ServiceStack - prevent unauthorized access to static files I understand there is more than one way of handling service authentication/authorization, but I cannot make it work for static files. Is ther...
- Modified
- 22 Feb at 20:39
Authorization in ASP.NET Core. Always 401 Unauthorized for [Authorize] attribute
Authorization in ASP.NET Core. Always 401 Unauthorized for [Authorize] attribute For the first time I'm creating Authorization in ASP.NET Core. I used tutorial from here [TUTORIAL](https://dev.to/samu...
- Modified
- 27 Apr at 11:3
Oauth 2 autentication from a desktop or console app
Oauth 2 autentication from a desktop or console app I am trying to authenticate to an Oauth 2 service from a console app. When opening the authorization server with the browser (Process.Start...) to a...
- Modified
- 4 Nov at 13:28
How do you create a custom AuthorizeAttribute in ASP.NET Core?
How do you create a custom AuthorizeAttribute in ASP.NET Core? I'm trying to make a custom authorization attribute in ASP.NET Core. In previous versions it was possible to override `bool AuthorizeCore...
- Modified
- 24 Jan at 22:55
ASP.NET 5 Authorize against two or more policies (OR-combined policy)
ASP.NET 5 Authorize against two or more policies (OR-combined policy) Is it possible to apply authorization against two or more policies? I am using ASP.NET 5, rc1. If not, how may I achieve this with...
- Modified
- 5 Apr at 00:4
How require authorization within whole ASP .NET MVC application
How require authorization within whole ASP .NET MVC application I create application where every action beside those which enable login should be out of limits for not logged user. Should I add `[Auth...
- Modified
- 26 Jul at 12:24
ServiceStack's Config.AdminAuthSecret is not working
ServiceStack's Config.AdminAuthSecret is not working I have a service using the attribute I would like to use ServiceStack's feature but it isn't working. I have set the as shown below: Therefore I
- Modified
- 20 Jun at 11:42
Web.config for authorization of a private user folder
Web.config for authorization of a private user folder I have a private folder with thousand of users' folders which only be accessible by the correct user. No user can access other users' folders. I c...
- Modified
- 27 Apr at 12:45
Authorize an entire security group to perform an Action in ASP.Net MVC
Authorize an entire security group to perform an Action in ASP.Net MVC I'd like to authorize users to perform specific actions within my controllers. I've found the [ASP.NET tutorial](http://www.asp.n...
- Modified
- 19 Nov at 22:6
Unit test AuthorizationHandler
Unit test AuthorizationHandler I used the resource-based authorization pattern in .NET Core 2.1 as described [here](https://learn.microsoft.com/en-us/aspnet/core/security/authorization/resourcebased?v...
- Modified
- 14 Feb at 19:53
Authenticating ASP.NET Web API
Authenticating ASP.NET Web API I've created a new ASP.NET Web API and things are working well. I'm at the point now where I want to secure the API. I put the [Authorize] attribute above my base contro...
- Modified
- 5 Nov at 16:25
How to implement custom authentication in ASP.NET MVC 5
How to implement custom authentication in ASP.NET MVC 5 I'm developing an ASP.NET MVC 5 application. I have an existing DB, from which I created my ADO.NET Entity Data Model. I have a table in that DB...
- Modified
- 23 Jul at 10:19
ASP.NET MVC 4 Custom Authorize Attribute with Permission Codes (without roles)
ASP.NET MVC 4 Custom Authorize Attribute with Permission Codes (without roles) I need to control the access to views based on users privilege levels (there are no roles, only privilege levels for CRUD...
- Modified
- 26 Mar at 20:49
ServiceStack AuthProvider IsAuthorized is not called when calling service from ASP.NET code behind
ServiceStack AuthProvider IsAuthorized is not called when calling service from ASP.NET code behind I've a service operation which I marked with the Authenticate attribute The method IsAuthorized of th...
- Modified
- 6 Dec at 15:50
WPF consumer with ServiceStack using openid
WPF consumer with ServiceStack using openid We have a servicestack webservice which is authenticated using openid and the client is a wpf app, trying to use openid/oauth and have questions Is is possi...
- Modified
- 3 Apr at 06:52
Multiple Roles for a User belonging to multiple Organizations
Multiple Roles for a User belonging to multiple Organizations I am working on a web application where a User belongs to multiple Organizations. The Role to be used is determined by what Organization t...
- Modified
- 28 Mar at 19:47
Best Practices for securing a REST API / web service
Best Practices for securing a REST API / web service When designing a REST API or service are there any established best practices for dealing with security (Authentication, Authorization, Identity Ma...
- Modified
- 14 Jul at 22:18
ASP.NET MVC: Problem setting the Authorize attribute Role from a variable, requires const
ASP.NET MVC: Problem setting the Authorize attribute Role from a variable, requires const I am having a problem setting the Authorize attribute Role value from a variable. The error message says it re...
- Modified
- 18 Dec at 01:52
c# check if the user member of a group?
c# check if the user member of a group? I have a code that I use to check if the user is member of the AD, worked perfectly, now I want to add the possibility to check if the user also a member of a g...
- Modified
- 6 Dec at 11:51
HTTPClient getting two 401s before success (sending wrong token)
HTTPClient getting two 401s before success (sending wrong token) I'm trying to communicate with a self-hosted WebAPI client using `HttpClient`. The client is created with the following code: on the se...
- Modified
- 13 May at 08:26
ASP.NET Web API : Correct way to return a 401/unauthorised response
ASP.NET Web API : Correct way to return a 401/unauthorised response I have an MVC webapi site that uses OAuth/token authentication to authenticate requests. All the relevant controllers have the right...
- Modified
- 3 Jul at 12:2
Simple token based authentication/authorization in asp.net core for Mongodb datastore
Simple token based authentication/authorization in asp.net core for Mongodb datastore I need to implement pretty simple auth mechanizm with basically 2 roles: `Owners` and `Users`. And I think that ha...
- Modified
- 23 May at 17:17
Redirecting unauthorized controller in ASP.NET MVC
Redirecting unauthorized controller in ASP.NET MVC I have a controller in ASP.NET MVC that I've restricted to the admin role: If a user who is not in the Admin role navigates to this controller they a...
- Modified
- 3 Jul at 20:36