Skip to content
This repository has been archived by the owner on Apr 26, 2020. It is now read-only.

NancyFx/Nancy.MSOwinSecurity

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

64 Commits
 
 
 
 
 
 
 
 

Repository files navigation

Nancy.MSOwinSecurity

Enables integration with Microsoft's OWIN security middeware from the Katana project. This package will allow you to easily access the IAuthenticationManager. This version supports Nancy v2 on .NET 4.5.2 (or greater) only. When using Nancy v1, please use Nancy.MSOwinSecurity v2 instead.

How to use

Installing the nuget package:

install-package Nancy.MSOwinSecurity

Getting the authentication manager and current user from the context:

public class MyModule : NancyModule
{
    public MyModule()
    {
        // v1.x Route Syntax
        Get["/"] = _ =>
        {
            IAuthenticationManager authenticationManager = Context.GetAuthenticationManager();
            //ClaimsPrincipal user = authenticationManager.User;
            //authenticationManager.SignIn(..);
            //authenticationManager.SignOut(..);
            //authenticationManager.AuthenticateAsync(..);
            //authenticationManager.Challenge(..);
        };

        // v2.x Route Syntax
        Get("/", _ =>
        {
            IAuthenticationManager authenticationManager = Context.GetAuthenticationManager();
            //ClaimsPrincipal user = authenticationManager.User;
            //authenticationManager.SignIn(..);
            //authenticationManager.SignOut(..);
            //authenticationManager.AuthenticateAsync(..);
            //authenticationManager.Challenge(..);
        });
    }
}

Securing a module:

public class MyModule : NancyModule
{
    public MyModule()
    {
        this.RequiresMSOwinAuthentication();

        // v1.x Route Syntax
        Get["/"] = _ => {...});

        // v2.x Route Syntax
        Get("/", _ => {...});
    }
}

Securing a route:

public class MyModule : NancyModule
{
    public MyModule()
    {
        // v1.x route syntax
        Get["/"] = _ => 
        {
            this.RequiresMSOwinAuthentication();
            ....
        });

        // v2.x Route Syntax
        Get("/", _ => 
        {
            this.RequiresMSOwinAuthentication();
            ....
        });
    }
}

Getting the current user (just a helper extension around IAuthenticationManager.User):

public class MyModule : NancyModule
{
    public MyModule()
    {
        // v1.x route syntax
        Get["/"] = _ => 
        {
            ClaimsPrincipal = Context.GetMSOwinUser();
            ....
        });

        // v2.x Route Syntax 
        Get("/", _ => 
        {
            ClaimsPrincipal = Context.GetMSOwinUser();
            ....
        });
    }
}

Authorizing the user at module level:

public class MyModule : NancyModule
{
    public MyModule()
    {
        this.RequiresSecurityClaims(claims => claims.Any(claim =>
            claim.ClaimType = ClaimTypes.Country &&
            claim.Value.Equals("IE", StringComparision.Ordinal)));

        // v1.x route syntax 
        Get["/"] = _ => 
        {
           ....
        });

        // v2.x Route Syntax 
        Get("/",  _ => 
        {
           ....
        });
    }
}

Authorizing the user at route level:

public class MyModule : NancyModule
{
    public MyModule()
    {
        // v1.x route syntax 
        Get["/"] = _ => 
        {
           this.RequiresSecurityClaims(claims => claims.Any(claim =>
                claim.ClaimType = ClaimTypes.Country &&
                claim.Value.Equals("IE", StringComparision.Ordinal)));
        });
    
        // v2.x Route Syntax 
        Get("/", _ => 
        {
            this.RequiresSecurityClaims(claims => claims.Any(claim =>
                claim.ClaimType = ClaimTypes.Country &&
                claim.Value.Equals("IE", StringComparision.Ordinal)));
            ...
        });
    }
}

Personal note: this nancy extension package would integrate much better if we had extension properties in c# :(

License

MIT

Please report issues on github. Questions, criticisms, compliments or otherwise, @randompunter, or pop by the Nancy Jabbr room.

About

Nancy Owin Security integration

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages