Presentation is loading. Please wait.

Presentation is loading. Please wait.

MVC5 Identity & Security Mait Poska & Andres Käver, IT Kolledž 2014.

Published byKelley Patterson Modified over 9 years ago

Similar presentations

Presentation on theme: "MVC5 Identity & Security Mait Poska & Andres Käver, IT Kolledž 2014."— Presentation transcript:

1 MVC5 Identity & Security Mait Poska & Andres Käver, IT Kolledž 2014

2 Identity & Security  No Authentication All anonymous users  Individual User Accounts Forms authentication (SQL) Google, Facebook, Twitter, MS  Organizational Accounts Active directory Federation Services (Azure, Office 365)  Windows Authentication Intranet – no anonymous users 2

3 Request & User – set by framework  Request.IsAuthenticated  User.Identity.GetUserName()  User.IsInRole(“xxxxx”) 3 @if (Request.IsAuthenticated) { using (Html.BeginForm("LogOff", "Account", FormMethod.Post, new { id = "logoutForm", @class = "navbar-right" })) { @Html.AntiForgeryToken() @Html.ActionLink("Hello " + User.Identity.GetUserName() + "!", "Manage", "Account", routeValues: null, htmlAttributes: new { title = "Manage" }) Log off }

4 Authorize attribute  [Authorize] – controller or action method Only logged in users (redirect to login page)  [AllowAnonymous] Can override controllers [Authorize]  [Authorize(Users=“akaver, mposka”)]  [Authorize(Roles=“admin, sales”)] 4

5 Database 5

6 Core Identity  Microsoft.AspNet. Identity.Core 6

7 Identity Stored In SQL Server Microsoft.AspNet.Identity.EntityFramework 7

8 UserManager 8 var manager = new ApplicationUserManager( new UserStore ( context.Get () ) ); public class ApplicationUser : IdentityUser { public async Task GenerateUserIdentityAsync( UserManager manager) { var userIdentity = await manager.CreateIdentityAsync(this, DefaultAuthenticationTypes.ApplicationCookie); return userIdentity; } // Add custom fields here } public class ApplicationDbContext : IdentityDbContext { public ApplicationDbContext() : base("StudentDBConnection", throwIfV1Schema: false) { } public static ApplicationDbContext Create() { return new ApplicationDbContext(); }

9 External Logins 9

10 THE END Mait Poska & Andres Käver 10

Download ppt "MVC5 Identity & Security Mait Poska & Andres Käver, IT Kolledž 2014."

Similar presentations

Extern name server - translates addresses of e-mails messages - enables users to use e-mail aliases - … ID cards system - controls entrance to buildings,

Extern name server - translates addresses of s messages - enables users to use aliases - … ID cards system - controls entrance to buildings,
Forms Authentication, Users, Roles, Membership Ventsislav Popov Crossroad Ltd.

Forms Authentication, Users, Roles, Membership Ventsislav Popov Crossroad Ltd.
Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.

Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.
WSO2 Identity Server Road Map

WSO2 Identity Server Road Map
SharePoint 2010 Business Productivity: What's new for Developers in Microsoft SharePoint 2010 Matthew McDermott, MVP Aptillon, Able Blue

SharePoint 2010 Business Productivity: What's new for Developers in Microsoft SharePoint 2010 Matthew McDermott, MVP Aptillon, Able Blue
One Stop Mail Service Bhattacharya, Tonmoy, Bhattacharya, Tonmoy, Hariharan, Rama Krishnan, MS in Engineering Science,

One Stop Mail Service Bhattacharya, Tonmoy, Bhattacharya, Tonmoy, Hariharan, Rama Krishnan, MS in Engineering Science,
Authenticating Users in an ASP.NET Application. Web Site Administration Tool From VS 2008, click Website/ ASP.Net Configuration to open Web Site Administration.

Authenticating Users in an ASP.NET Application. Web Site Administration Tool From VS 2008, click Website/ ASP.Net Configuration to open Web Site Administration.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
Managing Identity and Permissions

Managing Identity and Permissions
Integrating CRM On Demand with the E-Business Suite to Supercharge your Sales Team Presented by: Tom Connolly, Jason Lieberman Company: BizTech Session.

Integrating CRM On Demand with the E-Business Suite to Supercharge your Sales Team Presented by: Tom Connolly, Jason Lieberman Company: BizTech Session.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)

SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
TWSd Configuring Tivoli Workload Scheduler Security 1of3

TWSd Configuring Tivoli Workload Scheduler Security 1of3
Sql Server Advanced Features MIS 424 Professor Sandvig.

Sql Server Advanced Features MIS 424 Professor Sandvig.
Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd

Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd
Session 11: Security with ASP.NET

Session 11: Security with ASP.NET
Microsoft Azure Introduction ISYS 512. Microsoft Azure Microsoft Azure is a cloud.

Microsoft Azure Introduction ISYS 512. Microsoft Azure Microsoft Azure is a cloud.
© 2011 PLANET TECHNOLOGIES, INC. Extending User Profiles with Line of Business Data Patrick Curran, MCT FEBRUARY 24, 2013.

© 2011 PLANET TECHNOLOGIES, INC. Extending User Profiles with Line of Business Data Patrick Curran, MCT FEBRUARY 24, 2013.
Telerik Software Academy ASP.NET Web Forms.

Telerik Software Academy ASP.NET Web Forms.
Philadelphia Area SharePoint User Group Building Customer/Partner Extranets Designing a Secure Extranet with Sharepoint 2007 Russ Basiura RJB Technical.

Philadelphia Area SharePoint User Group Building Customer/Partner Extranets Designing a Secure Extranet with Sharepoint 2007 Russ Basiura RJB Technical.
Goals One ASP.NET Membership story – Web APIs and Web Apps Profile. Extensibility allows for non SQL persistence model. Improve unit testability of.

Goals One ASP.NET Membership story – Web APIs and Web Apps Profile. Extensibility allows for non SQL persistence model. Improve unit testability of.

Similar presentations

Ads by Google