Presentation is loading. Please wait.

Presentation is loading. Please wait.

Identity & Security Andres Käver, IT Kolledž 2015.

Published byBarnard Neal Modified over 9 years ago

Similar presentations

Presentation on theme: "Identity & Security Andres Käver, IT Kolledž 2015."— Presentation transcript:

1 Identity & Security Andres Käver, IT Kolledž 2015

2 Identity & Security  No Authentication All anonymous users  Individual User Accounts Forms authentication (SQL) Google, Facebook, Twitter, MS  Organizational Accounts Active directory Federation Services (Azure, Office 365)  Windows Authentication Intranet – no anonymous users 2

3 Request & User – set by framework  Request.IsAuthenticated  User.Identity.GetUserName()  User.IsInRole(“xxxxx”) 3 @if (Request.IsAuthenticated) { using (Html.BeginForm("LogOff", "Account", FormMethod.Post, new { id = "logoutForm", @class = "navbar-right" })) { @Html.AntiForgeryToken() @Html.ActionLink("Hello " + User.Identity.GetUserName() + "!", "Manage", "Account", routeValues: null, htmlAttributes: new { title = "Manage" }) Log off }

4 Authorize attribute  [Authorize] – controller or action method Only logged in users (redirect to login page)  [AllowAnonymous] Can override controllers [Authorize]  [Authorize(Users=“akaver, mposka”)]  [Authorize(Roles=“admin, sales”)] 4

5 Database 5

6 Core Identity  Microsoft.AspNet. Identity.Core 6

7 Identity Stored In SQL Server Microsoft.AspNet.Identity.EntityFramework 7

8 UserManager 8 var manager = new ApplicationUserManager( new UserStore ( context.Get () ) ); public class ApplicationUser : IdentityUser { public async Task GenerateUserIdentityAsync( UserManager manager) { var userIdentity = await manager.CreateIdentityAsync(this, DefaultAuthenticationTypes.ApplicationCookie); return userIdentity; } // Add custom fields here } public class ApplicationDbContext : IdentityDbContext { public ApplicationDbContext() : base("StudentDBConnection", throwIfV1Schema: false) { } public static ApplicationDbContext Create() { return new ApplicationDbContext(); }

9 External Logins 9 // Uncomment the following lines to enable logging in with third party login providers //app.UseMicrosoftAccountAuthentication( // clientId: "", // clientSecret: ""); //app.UseTwitterAuthentication( // consumerKey: "", // consumerSecret: ""); //app.UseFacebookAuthentication( // appId: "", // appSecret: ""); app.UseGoogleAuthentication(new GoogleOAuth2AuthenticationOptions() { ClientId = "myapp.apps.googleusercontent.com", ClientSecret = "googlesecret" });

10 THE END Mait Poska & Andres Käver 10

Download ppt "Identity & Security Andres Käver, IT Kolledž 2015."

Similar presentations

Extern name server - translates addresses of e-mails messages - enables users to use e-mail aliases - … ID cards system - controls entrance to buildings,

Extern name server - translates addresses of s messages - enables users to use aliases - … ID cards system - controls entrance to buildings,
Forms Authentication, Users, Roles, Membership Ventsislav Popov Crossroad Ltd.

Forms Authentication, Users, Roles, Membership Ventsislav Popov Crossroad Ltd.
Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.

Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.
WSO2 Identity Server Road Map

WSO2 Identity Server Road Map
SAML 2.0 og ”Geneva” OIOSAML Workshop 31. marts 2009 Århus René Løhde, Microsoft

SAML 2.0 og ”Geneva” OIOSAML Workshop 31. marts 2009 Århus René Løhde, Microsoft
SharePoint 2010 Business Productivity: What's new for Developers in Microsoft SharePoint 2010 Matthew McDermott, MVP Aptillon, Able Blue

SharePoint 2010 Business Productivity: What's new for Developers in Microsoft SharePoint 2010 Matthew McDermott, MVP Aptillon, Able Blue
One Stop Mail Service Bhattacharya, Tonmoy, Bhattacharya, Tonmoy, Hariharan, Rama Krishnan, MS in Engineering Science,

One Stop Mail Service Bhattacharya, Tonmoy, Bhattacharya, Tonmoy, Hariharan, Rama Krishnan, MS in Engineering Science,
Authenticating Users in an ASP.NET Application. Web Site Administration Tool From VS 2008, click Website/ ASP.Net Configuration to open Web Site Administration.

Authenticating Users in an ASP.NET Application. Web Site Administration Tool From VS 2008, click Website/ ASP.Net Configuration to open Web Site Administration.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
GRDevDay March 21, 2015 Cloud-based Identity for Applications.

GRDevDay March 21, 2015 Cloud-based Identity for Applications.
Managing Identity and Permissions

Managing Identity and Permissions
Integrating CRM On Demand with the E-Business Suite to Supercharge your Sales Team Presented by: Tom Connolly, Jason Lieberman Company: BizTech Session.

Integrating CRM On Demand with the E-Business Suite to Supercharge your Sales Team Presented by: Tom Connolly, Jason Lieberman Company: BizTech Session.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Sql Server Advanced Features MIS 424 Professor Sandvig.

Sql Server Advanced Features MIS 424 Professor Sandvig.
Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd

Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd
Copyright © 2007, SAS Institute Inc. All rights reserved. SAS Activity-Based Management Survey Kit (ASK): User Management & Security.

Copyright © 2007, SAS Institute Inc. All rights reserved. SAS Activity-Based Management Survey Kit (ASK): User Management & Security.
Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.

Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.
Session 11: Security with ASP.NET

Session 11: Security with ASP.NET
Telerik Software Academy ASP.NET Web Forms.

Telerik Software Academy ASP.NET Web Forms.
Using AS 10g with EBS What are the Benefits of Integrating AS 10g with Oracle Applications?

Using AS 10g with EBS What are the Benefits of Integrating AS 10g with Oracle Applications?

Similar presentations

Ads by Google