Giter Site home page Giter Site logo

authentic's Introduction

Abandonware

Essentially this sits in the request pipeline, intercepting HTTP calls and providing hooks to do authentication outside of IIS. This allows for implementing basic / digest auth easily without involving IIS and it's dependency on being tied to Active Directory, rather than to a database, which is the usual implementation.

At one point this was a viable security infrastructure that was intended to be cleaned up and open-sourced.

The code should still work fine, and work well -- but it will require a bit of polish to ensure it's well tested and can be officially released on NuGet.

If you're still working in a Microsoft world, and haven't moved on to something like ServiceStack and it's simple plugin architecture, then this might be a good fit for you.

There are a handful of nifty tricks around mocking, and providing lightweight handlers for Authentication, based strictly on Func<>.

At one point this code used a Git submodule for build tooling -- that has been removed, but the projects haven't been properly reconstructed or setup with a tool like Psake -- that work would need to be performed before this can even build.

authentic's People

Stargazers

avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar

Forkers

jarlah

authentic's Issues

Old Issues

  • TODO: verify that rule violations properly propagate up and become ConfigurationErrorsExceptions -- look at HttpContextInspectingAuthenticatorConfigurationElementValidator / HttpContextInspectingAuthenticatorConfigurationElement for reference
  • also look at the constructor of EPS.Web.Authentication.Digest.AuthenticationInspectingAuthenticator to see stuff that needs to be moved out into a separate validator
  • TODO: flush out tests for HttpContextInspectingAuthenticatorConfigurationElementValidatorTest
  • TODO: PrincipalBuilderCache doesnt' validate that types exist -- perhaps toss an ArgumentException -- probably makes sense
    http://fluentvalidation.codeplex.com/

** something like this **

    public class DigestHttpContextInspectingAuthenticatorConfigurationElementValidator :
        AbstractValidator<IAuthenticationHeaderInspectorConfigurationElement>
    {
        /// <summary>
        /// Initializes a new instance of the DigestHttpContextInspectingAuthenticatorConfigurationElementValidator class.
        /// </summary>
        public DigestHttpContextInspectingAuthenticatorConfigurationElementValidator()
        {
            new HttpContextInspectingAuthenticatorConfigurationElementValidator().r

        }
    }

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.