public AuthGroupServiceWrapperTest() { _groupService = A.Fake<IGroupService>(); _principal = A.Fake<ClaimsPrincipal>(); _identity = A.Fake<IIdentity>(); A.CallTo(() => _principal.Identity).Returns(_identity); A.CallTo(() => _identity.IsAuthenticated).Returns(true); _entityValidator = A.Fake<EntityValidator>(); _userStore = A.Fake<IUserStore<IUserDto, int>>(); _authorizationManager = new EasyTeach.Core.Security.ClaimsAuthorizationManager(); _authGroupServiceWrapper = new AuthGroupServiceWrapper( _groupService, _principal, _entityValidator, _userStore, _authorizationManager); }
public AuthScoreServiceWrapper( IScoreService scoreService, ClaimsPrincipal principal, EntityValidator entityValidator, IUserStore<IUserDto, int> userStore, ClaimsAuthorizationManager authorizationManager) { if (scoreService == null) { throw new ArgumentNullException("scoreService"); } if (principal == null) { throw new ArgumentNullException("principal"); } if (entityValidator == null) { throw new ArgumentNullException("entityValidator"); } if (userStore == null) { throw new ArgumentNullException("userStore"); } if (authorizationManager == null) { throw new ArgumentNullException("authorizationManager"); } _scoreService = scoreService; _principal = principal; _entityValidator = entityValidator; _userStore = userStore; _authorizationManager = authorizationManager; }
public AuthVisitServiceWrapper( IVisitService visitService, ClaimsPrincipal principal, EntityValidator entityValidator, IUserStore<IUserDto, int> userStore, ClaimsAuthorizationManager authorizationManager) { if (visitService == null) { throw new ArgumentNullException("visitService"); } _visitService = visitService; if (principal == null) { throw new ArgumentNullException("principal"); } _principal = principal; if (entityValidator == null) { throw new ArgumentNullException("entityValidator"); } _entityValidator = entityValidator; if (userStore == null) { throw new ArgumentNullException("userStore"); } _userStore = userStore; if (authorizationManager == null) { throw new ArgumentNullException("authorizationManager"); } _authorizationManager = authorizationManager; }
public string GetGrade(int value) { // // Method 1. Simple access check using static method. // Expect this to be most common method. // ClaimsPrincipalPermission.CheckAccess("Grade", "read"); string result = new GradeAction().GetGrade(value); Console.WriteLine(result); // // Method 2. Programmatic check using the permission class // Follows model found at http://msdn.microsoft.com/en-us/library/system.security.permissions.principalpermission.aspx // var cpp = new ClaimsPrincipalPermission("Grade", "read"); cpp.Demand(); result = new GradeAction().GetGrade(value); Console.WriteLine(result); // // Method 3. Access check interacting directly with the authorization manager. // var am = new ClaimsAuthorizationManager(); if (!am.CheckAccess(new AuthorizationContext((ClaimsPrincipal)Thread.CurrentPrincipal, "Grade", "read"))) throw new SecurityException("Access denied"); result = new GradeAction().GetGrade(value); Console.WriteLine(result); // // Method 4. Call a method that is protected using the permission attribute class // result = new GradeAction().ProtectedGetGrade(value); Console.WriteLine(result); return result; }
/// <summary> /// Loads the settings for the IdentityConfiguration from the application or web configuration file. /// </summary> /// <remarks> /// If there is no configuration file, or the named section does not exist, then no exception is thrown, /// instead the class is loaded with a set of default values. /// </remarks> protected void LoadConfiguration(IdentityConfigurationElement element) { if (element != null) { // // Load the claims authentication manager // if (element.ClaimsAuthenticationManager.IsConfigured) { _claimsAuthenticationManager = GetClaimsAuthenticationManager(element); } // // Load the claims authorization manager. // if (element.ClaimsAuthorizationManager.IsConfigured) { _claimsAuthorizationManager = CustomTypeElement.Resolve<ClaimsAuthorizationManager>(element.ClaimsAuthorizationManager); } // // Load the service level Security Token Handler configuration // _serviceHandlerConfiguration = LoadHandlerConfiguration(element); } // // Reads handler configuration via LoadConfiguredHandlers. Do this last. // _securityTokenHandlerCollectionManager = LoadHandlers(element); }
public WifAuthorizer(ClaimsAuthorizationManager manager) { this.manager = manager; }