Namespace The.Security
Classes
- AccountRealm
Identities representing an IUserAccount.
- AuthenticatedRealm
Identities produced by an authenticator.
- AuthenticationFailure
An error category code and possibly extra details.
- AuthenticationResult
Represents the result of an authentication operation.
- AuthenticationResult<T>
Represents the result of an authentication operation with a typed result.
- AuthenticationResult<T, U>
Represents the result of an authentication operation with two typed results.
- Credentials
Serialisable, plaintext data used to authenticate.
- LimitedTenancy
allow access to shards with the given tenant ids
- NTLMAuthentication
Authentication based on Windows Identity Foundation.
- PasswordAuthentication
Authenticator plugin based on a username and password.
- Permission
Granting the right to perform some operation on some class of objects.
- PermissionSerialiserV1
Optional class for storing a particular in-memory permission format as XML. Does not support storing export permissions or tenancies.
- PermissionSet
A collection of access rights for authorisation purposes.
- PermissionSetBuilder
Builds a custom PermissionSet from fluent method calls.
- ReadOnlyAuthorisation
Wraps another IAuthorisation and filters its permissions to remove all write access.
- RemoteAuthorisation
Implementation of IAuthorisation that obtains an identity's list of roles via an RPC without needing to see entities such as IUserClaim.
- RoleCache
Stores the result of (expensive) authorisation lookups.
- SecurityService
Provides a high-level IPrincipal API over the generalised implementations of authentication and authorisation.
- SemanticAuthentication
Wraps another authenticator, attaching semantic meaning to the username. Semantic alternates are stored in ASP.NET Identity-compatible claims.
- Tenancy
specifies which shards of a tenant-filtered table are accessible
- TrustedRealm
Hardcoded identities with no runtime verification.
- UniversalTenancy
allow access to an entire table
- VerificationCode
A single-use code produced or consumed by OneTimeCodeAuthentication
Structs
- AuthorisationResult
Stores the result of an authorisation lookup - named roles and granted permissions.
- Role
A name granted to some principal which can be checked by authorisation.
Interfaces
- IAuthentication
Implementations of IAuthentication ("authenticators") represent methods of acquiring and validating identities. All authenticators support the following use cases: - produce an identity from supplied credentials (which may be null in the case of an "ambient" identity) - validate asserted credentials or the ambient identity For client/server authentication, extra features may optionally be supported - sign/verify a message, used to mutually authenticate on a per-operation basis - encrypt/decrypt a message, used to mutually authenticate a session key - enter credentials from user input, which can then be used to support any of the above functions
- IAuthorisation
Implemented by plugins to provide an access control policy.
- IPrincipal
An security context for an identity, which can be used to check its authentication status and resource access.
Enums
- FailureCode
Error categories which can occur during authentication.
- PermissionType
Actions permitted by Permissions for some class of objects.