Last post Apr 03, 2019 05:37 AM by Sherry Chen
Apr 02, 2019 11:06 PM|pacojones|LINK
I have a bunch of WCF services on the same project, and I have a cross-cut module that loads an AzMan XML file which validates against user permissions, based on Active Directory roles.
However the architecture of my platform is evolving to .Net core, and services are sort of being replaced by APIs.
I would like to have some sort of new authorization module, cross-cut to all APIs, which may be ASP.Net Core MVC projects on premisses, on Azure or even azure functions.
I'm aware that for example functions have a different way for authentication/authorization, but is there any out of the box solution/API/Framework that I could use to replace AzMan?
The closest thing I found out is using custom policies in ASP.Net core, not sure if is the right way.,..
Apr 03, 2019 05:37 AM|Sherry Chen|LINK
Hi pacojones ,
Microsoft AzMan (Authorization Manager) is a role-based access and security framework for .NET applications. ASP.NET Core authorization provides a simple, declarative role and
a rich policy-based model. You could also refer to the link below for a simple example of how to implement role based
authorization / access control in an ASP.NET Core 2.2 API with C# .
Best Regards ,