C# (CSharp) Microsoft.AspNet.Authorization AuthorizationOptions.AddPolicy 예제들

예제 #1

파일: AuthorizationPolicyFacts.cs 프로젝트: james-wu/Security

        public void CanCombineAuthorizeAttributes()
        {
            // Arrange
            var attributes = new AuthorizeAttribute[] {
                new AuthorizeAttribute(),
                new AuthorizeAttribute("1") { ActiveAuthenticationSchemes = "dupe" },
                new AuthorizeAttribute("2") { ActiveAuthenticationSchemes = "dupe" },
                new AuthorizeAttribute { Roles = "r1,r2", ActiveAuthenticationSchemes = "roles" },
            };
            var options = new AuthorizationOptions();
            options.AddPolicy("1", policy => policy.RequireClaim("1"));
            options.AddPolicy("2", policy => policy.RequireClaim("2"));

            // Act
            var combined = AuthorizationPolicy.Combine(options, attributes);

            // Assert
            Assert.Equal(2, combined.ActiveAuthenticationSchemes.Count());
            Assert.True(combined.ActiveAuthenticationSchemes.Contains("dupe"));
            Assert.True(combined.ActiveAuthenticationSchemes.Contains("roles"));
            Assert.Equal(4, combined.Requirements.Count());
            Assert.True(combined.Requirements.Any(r => r is DenyAnonymousAuthorizationRequirement));
            Assert.Equal(2, combined.Requirements.OfType<ClaimsAuthorizationRequirement>().Count());
            Assert.Equal(1, combined.Requirements.OfType<RolesAuthorizationRequirement>().Count());
        }

예제 #2

파일: Policies.cs 프로젝트: Sirikon/HealthClinic.biz

        public static void Configuration(AuthorizationOptions options)
        {
            options.AddPolicy(Admin, policy =>
            {
                policy.RequireClaim("ManageUsers", "Allowed");
                policy.RequireClaim("ManageTenants", "Allowed");
            });

            options.AddPolicy(Tenant, policy =>
            {
                policy.RequireClaim("ManageTenants", "Allowed");
            });
        }

예제 #3

파일: CookieMonsterSecurity.cs 프로젝트: softwarejc/angular2-aspmvc-core1-getting-started

        public static void Authorization(AuthorizationOptions options)
        {
            options.AddPolicy(CookieMonsterSecurity.OnlyGoodMonstersPolicy, policy =>
            {
                policy.AuthenticationSchemes.Add(CookieMonsterAuthenticationSchema);

                // Custom requirement
                policy.AddRequirements(new IsGoodMonsterRequirement());
            });
        }

예제 #4

파일: AuthorizationPolicyFacts.cs 프로젝트: leloulight/Security

        public void CanReplaceDefaultPolicy()
        {
            // Arrange
            var attributes = new AuthorizeAttribute[] {
                new AuthorizeAttribute(),
                new AuthorizeAttribute("2") { ActiveAuthenticationSchemes = "dupe" }
            };
            var options = new AuthorizationOptions();
            options.DefaultPolicy = new AuthorizationPolicyBuilder("default").RequireClaim("default").Build();
            options.AddPolicy("2", policy => policy.RequireClaim("2"));

            // Act
            var combined = AuthorizationPolicy.Combine(options, attributes);

            // Assert
            Assert.Equal(2, combined.AuthenticationSchemes.Count());
            Assert.True(combined.AuthenticationSchemes.Contains("dupe"));
            Assert.True(combined.AuthenticationSchemes.Contains("default"));
            Assert.Equal(2, combined.Requirements.Count());
            Assert.False(combined.Requirements.Any(r => r is DenyAnonymousAuthorizationRequirement));
            Assert.Equal(2, combined.Requirements.OfType<ClaimsAuthorizationRequirement>().Count());
        }