Namespace Nevatech.Vsb.Repository.Security

Classes

AndExpression

Represents an expression which is a collection for another expresions. This expression evaluates to True only, if all inner expressions also evaluate to True.

AuthorizationExpressionBase

Represents a base class for all expressions participating in an authorization rule.

AuthorizationExpressionContext

Provides the intercepted message, caller's principal, and other relevant data to an authorization expression.

AuthorizationServiceBehaviorExtension

Provides configuration extension element for the service behavior that replaces Service Authorization Manager to the specified type.

BasicAuthenticationHttpModule

Implements an IHttpModule ensuring that all requests to particular addresses have Basic Authentication HTTP header and issuing 401 challenges if the header is missing.

CallerAddressExpression

Implements an expression that evaluates to True if provided message was sent by a caller with IP address located inside the pre-configured range.

ClaimExpression

Represents an expression which evaluates to True, if provided identity contains at least one claim satisfying to expression's internal rules.

ContextPropertyExpression

Implements an expression that evaluates to True if provided message contains a message processing context property satisfying to configured condition.

CorsHttpModule

Represents an IHttpModule implementing the Cross-Origin Resource Sharing protocol that lets JavaScript overcome the same-origin policy security restriction imposed by browsers.

CustomExpression

Represents a generic expression that can be configured with an user-defined IMessageEvaluator class evaluating incoming messages.

CustomIssuerNameRegistry

Provides methods that return X.509 certificate name or Windows Authority name for provided claim issuer token.

DateTimeExpression

Represents an expression which evaluates to True, if current date and time are within specified boundaries.

FailedAuthenticationFaultException

The exception that is thrown when service is unable to successfully process the caller's authentication.

HttpHeaderExpression

Implements an expression that evaluates to True if provided message contains an HTTP header satisfying to expression's internal rules.

HttpMethodExpression

Implements an expression that evaluates to True if provided HTTP request contains one of the specified HTTP methods (verbs).

HttpStatusExpression

Implements an expression that evaluates to True if provided HTTP request contains one of the specified HTTP methods (verbs).

Represents an expression that evaluates to True, if provided JSON path expression (https://tools.ietf.org/html/draft-goessner-dispatch-jsonpath-00) matches a value in the request message and that satisfies the specified condition.

JsonPointerExpression

Represents an expression that evaluates to True, if provided JSON pointer expression (https://tools.ietf.org/html/rfc6901) matches a value in the request message and that satisfies the specified condition.

MatchAllExpression

Represents an expression which always evaluates to True. It is used for default cases when all requests, which are not matched so far, must be blocked or permitted.

NotExpression

Represents an expression which is a holder of another expresions. This expression evaluates to True, if inner expression evaluates to False; and this expression evaluates to False, if inner expression evaluates to True.

OperationExpression

Implements an expression that evaluates to True, if the currently executed virtual service operation name matches the specified mask.

OrExpression

Represents an expression which is a collection for another expresions. This expression evaluates to True, if at least one inner expressions evaluates to True.

PassThroughUserNameTokenHandler

Represents a pass-through UserNameSecurityTokenHandler which issues claims containing user name and authentication type.

PassThroughUserNameValidator

Represents a pass-through user name and password validator that accepts all names and passwords. This validator is required for pass-through user name token validation, if token is presented through transport level authentication method.

RegexExpression

Represents an expression that evaluates to True, if provided Regular Expression matches the content of the provided message.

RepositoryAuthorizationManager

Performs authorization of the console users and nodes accessing repository service.

RepositoryUserNameTokenHandler

Represents a custom UserNameSecurityTokenHandler which authenticates token's username/password against Repository user store and issues claims containing user name and authentication type.

RuntimeAuthorizationManager

Provides authorization access checking for service operations. Authorization relies on authorization rules provided by repository and assigned to service, contract, endpoint, or specific operation.

TransactionCountExpression

Represents an expression which evaluates to True, if the number of evaluated messages during the specified time interval is within defined boundaries.

UriExpression

Implements an expression that evaluates to True if provided request URI matches the specified template.

UserAuthorizationCache

Represents in-memory cache of the user's authorization/authentication records. Allows to find a user by one of his identities.

UserAuthorizationInfo

Represents a selected user identity, that matches provided search criteria, along with the related user and his access level details.

UserNameExpression

Represents an expression that evaluates to True, if identity containes claims about a user authenticated with the specified user name and password.

WindowsGroupExpression

Represents an expression that evaluates to True, if identity belongs to the specified Windows group.

WindowsSecurityHelper

Provides helper methods related to Windows security API.

WindowsUserExpression

Represents an expression that evaluates to True, if identity corresponds to the specified Windows user.

X509CertificateExpression

Represents an expression that evaluates to True, if identity contains claims about specified X.509 certificate.

XPathExpression

Represents an expression that evaluates to True, if provided XPath condition matches some values in the request message.

Interfaces

IMessageEvaluator

Defines interface for implementation of a custom Access Rule Expression component.

Namespace Nevatech.Vsb.Repository.Security

Classes

Interfaces

Enums