Enables integration with Microsoft's OWIN security middeware from the Katana project. This package will allow you to easily access the IAuthenticationManager. This version supports Nancy v2 on .NET 4.5.2 (or greater) only. When using Nancy v1, please use Nancy.MSOwinSecurity v2 instead.
Installing the nuget package:
install-package Nancy.MSOwinSecurity
Getting the authentication manager and current user from the context:
public class MyModule : NancyModule
{
public MyModule()
{
// v1.x Route Syntax
Get["/"] = _ =>
{
IAuthenticationManager authenticationManager = Context.GetAuthenticationManager();
//ClaimsPrincipal user = authenticationManager.User;
//authenticationManager.SignIn(..);
//authenticationManager.SignOut(..);
//authenticationManager.AuthenticateAsync(..);
//authenticationManager.Challenge(..);
};
// v2.x Route Syntax
Get("/", _ =>
{
IAuthenticationManager authenticationManager = Context.GetAuthenticationManager();
//ClaimsPrincipal user = authenticationManager.User;
//authenticationManager.SignIn(..);
//authenticationManager.SignOut(..);
//authenticationManager.AuthenticateAsync(..);
//authenticationManager.Challenge(..);
});
}
}Securing a module:
public class MyModule : NancyModule
{
public MyModule()
{
this.RequiresMSOwinAuthentication();
// v1.x Route Syntax
Get["/"] = _ => {...});
// v2.x Route Syntax
Get("/", _ => {...});
}
}Securing a route:
public class MyModule : NancyModule
{
public MyModule()
{
// v1.x route syntax
Get["/"] = _ =>
{
this.RequiresMSOwinAuthentication();
....
});
// v2.x Route Syntax
Get("/", _ =>
{
this.RequiresMSOwinAuthentication();
....
});
}
}Getting the current user (just a helper extension around IAuthenticationManager.User):
public class MyModule : NancyModule
{
public MyModule()
{
// v1.x route syntax
Get["/"] = _ =>
{
ClaimsPrincipal = Context.GetMSOwinUser();
....
});
// v2.x Route Syntax
Get("/", _ =>
{
ClaimsPrincipal = Context.GetMSOwinUser();
....
});
}
}Authorizing the user at module level:
public class MyModule : NancyModule
{
public MyModule()
{
this.RequiresSecurityClaims(claims => claims.Any(claim =>
claim.ClaimType = ClaimTypes.Country &&
claim.Value.Equals("IE", StringComparision.Ordinal)));
// v1.x route syntax
Get["/"] = _ =>
{
....
});
// v2.x Route Syntax
Get("/", _ =>
{
....
});
}
}Authorizing the user at route level:
public class MyModule : NancyModule
{
public MyModule()
{
// v1.x route syntax
Get["/"] = _ =>
{
this.RequiresSecurityClaims(claims => claims.Any(claim =>
claim.ClaimType = ClaimTypes.Country &&
claim.Value.Equals("IE", StringComparision.Ordinal)));
});
// v2.x Route Syntax
Get("/", _ =>
{
this.RequiresSecurityClaims(claims => claims.Any(claim =>
claim.ClaimType = ClaimTypes.Country &&
claim.Value.Equals("IE", StringComparision.Ordinal)));
...
});
}
}Personal note: this nancy extension package would integrate much better if we had extension properties in c# :(
MIT
Please report issues on github. Questions, criticisms, compliments or otherwise, @randompunter, or pop by the Nancy Jabbr room.