Attribute-Based Access Control Sample for a .Net Core API Application

PublishedJanuary 2, 2022

•1 min read

Attribute-Based Access Control Sample for a .Net Core API Application

GitHub Link: https://github.com/venbacodes/ABAC-Sample-for-API

This is a simple demo sample on implementing ABAC in a .Net Core API Application. This uses three main aspects of Attributes => ACCESS, SCOPE, and MODULE.

Key Points

Access, Scope, and Module attributes are used
It is possible to extend this sample to accommodate as many attributes as needed
No External libraries were used
Handled all the necessary authn and authz in the handlers itself.
Optional takeaway - added an additional path for restricting resources in PermissionsAuthHandler.cs#L60

To Explore

Clone and run the code
Generate a JWT token with email/sub and exp. Applicable emails can be found in TestUsers.cs
Add the generated JWT token in the swagger authorization menu and call the APIs

#dotnetcore #dotnet #authentication #authorization

1.6K views

More from this blog

Metrics with IMeterFactory and Azure Application Insights

Level Up Your .NET 8 ASP.NET Core App: Metrics with IMeterFactory and Azure Application Insights In the world of modern application development, observability is king. You need to know how your application is performing, and metrics are a crucial par...

Mar 5, 20253 min read32

Clean as you code approach — SonarQube Analysis

What is “clean as you code” approach?

Feb 25, 20245 min read50

Clean as you code approach — SonarQube Analysis

SonarQube - Deployment, Integration and Configuration

Deployment SonarQube is a web service that can run in our Azure App Service. It uses an SQL database to store code analysis reports. We can use the SonarQube docker available in Docker Hub to deploy the app into Azure App Service. Here is the docker-...

Feb 22, 20245 min read38

SonarQube - Deployment, Integration and Configuration

C# Extension Methods that come in handy for an ASP.Net Project

In the realm of C# and ASP.NET development, extension methods serve as invaluable tools, empowering developers to enhance the expressiveness and efficiency of their code. In this blog post, we will delve into some of the basic extension methods that ...

Feb 4, 20245 min read99

C# Extension Methods that come in handy for an ASP.Net Project

ASP.Net Core Feature Flags - Intro

ASP.Net Core is a free, open-source framework for building web applications and APIs. One of its powerful features is the ability to use feature flags, which allow developers to enable or disable certain functionality in their application without hav...

Jan 20, 20233 min read44

Venky Writes

14 posts

Web architect cum developer working in the .NET ecosystem with Azure and having completed many successful projects and products mainly Syncfusion Data Platform - Bold BI and Bold Reports.

Command Palette

Key Points

To Explore

More from this blog