protected override void ApplicationStartup(ILifetimeScope container, IPipelines pipelines)
{
StaticConfiguration.DisableErrorTraces = false;
// Enable memory sessions, and secure them against session hijacking
pipelines.EnableInProcSessions();
pipelines.BeforeRequest.AddItemToStartOfPipeline(ctx => {
var antiSessionHijackLogic = container.Resolve <IAntiSessionHijackLogic>();
return(antiSessionHijackLogic.InterceptHijackedSession(ctx.Request));
});
pipelines.AfterRequest.AddItemToEndOfPipeline(ctx => {
var antiSessionHijackLogic = container.Resolve <IAntiSessionHijackLogic>();
antiSessionHijackLogic.ProtectResponseFromSessionHijacking(ctx);
});
// Load the user from the AspNet session. If one is found, create a Nancy identity and assign it.
pipelines.BeforeRequest.AddItemToEndOfPipeline(ctx => {
var identityAssigner = container.Resolve <INancyIdentityFromContextAssigner>();
identityAssigner.AssignNancyIdentityFromContext(ctx);
return(null);
});
pipelines.OnError = pipelines.OnError
+ ErrorPipelines.HandleModelBindingException()
+ ErrorPipelines.HandleRequestValidationException()
+ ErrorPipelines.HandleSecurityException();
base.ApplicationStartup(container, pipelines);
}
public void SetUp()
{
_sut = ErrorPipelines.HandleRequestValidationException();
}