C
C#2y ago
Poller

Minimal Api Attributes

The testcode in my screenshot doesnt call the IAuthorizationFilter implementing attribute on my method head. when i use a inline delegate in programm.cs i loose DI(afaik). i am sure there is a correct way, but for minimal apis i cant find it. Some tipps? ps: in a controller api all works fina as expected.
17 Replies
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Pobiega
Pobiega2y ago
Also, minimal API doesn't support actionfilters. In .net 7 they support a new type of filter
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Poller
Poller2y ago
its a custom attribute. and i know we all should use MS Identity, but this is a test and i do not see it usefull all the time. but this is another topic so is IAuthorizationFilter the 1% or would you do stuff like this in middleware?
Pobiega
Pobiega2y ago
Authorize isnt a filter iirc, its actually a flag for the middleware to kick in
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Poller
Poller2y ago
gimme 20 minutes ill be right back it just cheks on controllers/routes: - is a custom allowanonymous attribute set - is the user attatched to the context and are a few user criteria met(locked, permissions(also attributes on routes)) but as it seems, @Pobiega pointed out that it seems not working yet. so i wait till net7 to play around with this a bit more.
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Poller
Poller2y ago
dont get hung up on the authorize and best pacteces. this is just some tester project to play with stuff. i might take a look into another approach without attributes. (thinking, for permissions i dont want to go without((
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
MODiX
MODiX2y ago
tebeco#0205
alternative: 
app.MapGet("/auth", () => "This endpoint requires authorization")
   .RequireAuthorization();
app.MapGet("/auth", () => "This endpoint requires authorization")
   .RequireAuthorization();
Quoted by
<@!689473681302224947> from #Minimal Api Attributes (click here)
React with ❌ to remove this embed.
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
MODiX
MODiX2y ago
tebeco#0205
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Identity;
using Microsoft.EntityFrameworkCore;
using WebRPauth.Data;

var builder = WebApplication.CreateBuilder(args);
builder.Services.AddAuthorization(o => o.AddPolicy("AdminsOnly", 
                                  b => b.RequireClaim("admin", "true")));

var connectionString = builder.Configuration.GetConnectionString("DefaultConnection");
builder.Services.AddDbContext<ApplicationDbContext>(options =>
    options.UseSqlServer(connectionString));
builder.Services.AddDatabaseDeveloperPageExceptionFilter();

builder.Services.AddDefaultIdentity<IdentityUser>(options => options.SignIn.RequireConfirmedAccount = true)
    .AddEntityFrameworkStores<ApplicationDbContext>();

var app = builder.Build();

app.UseAuthorization();

app.MapGet("/auth", [Authorize] () => "This endpoint requires authorization.");
app.MapGet("/", () => "This endpoint doesn't require authorization.");
app.MapGet("/Identity/Account/Login", () => "Sign in page at this endpoint.");

app.Run();
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Identity;
using Microsoft.EntityFrameworkCore;
using WebRPauth.Data;

var builder = WebApplication.CreateBuilder(args);
builder.Services.AddAuthorization(o => o.AddPolicy("AdminsOnly", 
                                  b => b.RequireClaim("admin", "true")));

var connectionString = builder.Configuration.GetConnectionString("DefaultConnection");
builder.Services.AddDbContext<ApplicationDbContext>(options =>
    options.UseSqlServer(connectionString));
builder.Services.AddDatabaseDeveloperPageExceptionFilter();

builder.Services.AddDefaultIdentity<IdentityUser>(options => options.SignIn.RequireConfirmedAccount = true)
    .AddEntityFrameworkStores<ApplicationDbContext>();

var app = builder.Build();

app.UseAuthorization();

app.MapGet("/auth", [Authorize] () => "This endpoint requires authorization.");
app.MapGet("/", () => "This endpoint doesn't require authorization.");
app.MapGet("/Identity/Account/Login", () => "Sign in page at this endpoint.");

app.Run();
Quoted by
<@!689473681302224947> from #Minimal Api Attributes (click here)
React with ❌ to remove this embed.
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
MODiX
MODiX2y ago
tebeco#0205
or "docs aspnetcore resource based authorization"
Quoted by
<@!689473681302224947> from #Minimal Api Attributes (click here)
React with ❌ to remove this embed.
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Poller
Poller2y ago
resource based authorization looks interesting. its on my list for next weekend 🙂
Want results from more Discord servers?
Add your server
More Posts
What's a repository and the repository pattern? [Answered]Some articles are telling me that a repository is in essence just an interface that abstracts data aNewtonsoft.Json deserialize issue [Answered]I have a json string. For example this one: ```json {"type":"accept","id":0,"ms_id":"00000","user_idNeed help converting xml to C [Answered]https://api.privatbank.ua/p24api/pboffice?city=%D0%94%D0%BD%D0%B5%D0%BF%D1%80%D0%BE%D0%BF%D0%B5%D1%8List as a field of an object. [Answered]``` public class Character { public string? Id { get; set; } // Identifier. publCapturing images from specific DirectX windowI want to capture images (pretty quickly, so pretty much like a video) from different applications, how do i edit registry keys that cant be edited even as adminthe key ```Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes``` hWhat's a runtime explain me like I am 5 [Answered]Help. It's part of the SDK I think I am correct about that.Create a `Delegate` from a `MethodInfo` [Answered]I need to create a `Delegate` (the class) from a `MethodInfo`. I know `MethodInfo.CreateDelegate` exCreating template with parameters on line basisHow can I create a template with parameters in my case Asp.Net Core, where some lines in certain filDereference of a possibly null reference [Answered]I'm making a HTTP call and I get the aforementioned warning (also see attached). I thought my if-els