Stack Overflow
Stack Overflow

Questions tagged [policy-based-security]

11 questions
4
votes
1 answer

How to get URI in Blazor AuthorizationHandler

I'm using a custom policy to secure a page in a server-side Blazor app. All is working well except one of my policies requires knowing the query parameters of the request. For example, the URI path is something like https://mywebsite/profile/1234,…
Randy Gamage
  • 1,801
  • 6
  • 22
  • 31
4
votes
1 answer

How to implement ABAC- Attribute Based Access Control in nodejs? Is it good / fit for small and large scale application?

How I can implement ABAC in nodejs. I want to give access to user using his location and role. any one have demo for it? I am refering npm package PolicyLine: npm i policyline refer link - https://www.npmjs.com/package/policyline
Vaibhav Gaikwad
  • 811
  • 2
  • 12
  • 21
2
votes
1 answer

why Authorization Handler invoked two time when added a global authorization filter?

I used policy-based authorization in asp.net core mvc 3.1, I have an authorization requirement for read, named ReadAuthorizationRequirement, also I have a global IPAllowedAuthorizationRequirement that checks a user's IP and if this IP is allowed…
mesut
  • 2,099
  • 3
  • 23
  • 35
1
vote
1 answer

AuthorizeView not working correctly when using with MudBlazor.MudMenu

I have defined a MudAppBar that contains AuthorizeView to hide a MudMenu when the user doesn't meet the policy ManagementPolicy (verifies if the user has at least one permission of a list), and others AuthorizeView to hide some options in the menu…
Román Alvarez
  • 21
  • 1
  • 6
1
vote
0 answers

Is it possible to add a new Security Policy in .NET without recompiling?

If I need to add new test to a policy-based security configuration, MS says to add a new condition or the like to my handler or create another…
johnny
  • 19,272
  • 52
  • 157
  • 259
0
votes
0 answers

.net 7.0 policy based authorisation

I am applying custom authorisation on .net 7.0 API. I am using policy based authorization with a custom requirement and a custom authorisation…
Rashmi Pandit
  • 23,230
  • 17
  • 71
  • 111
0
votes
0 answers

minio: bucket level policy vs identity level policy

I am novice in Minio so my question is very basic but I really can't find direct answer for that. In minio console I've found 2 places where I can setup policy On bucket level: On identity level: I've understood here that I can create a policy…
gstackoverflow
  • 36,709
  • 117
  • 359
  • 710
0
votes
1 answer

How to define authorization policy?

I get some idea about the policy based authorization in .NET 6.0 based on Microsoft article. https://learn.microsoft.com/en-us/aspnet/core/security/authorization/policies?view=aspnetcore-6.0 The article mentioned about to hard code the policy in the…
user2724058
  • 318
  • 5
  • 20
0
votes
1 answer

How to get pkexec's return value?

pkexec's return value is 126 when the user doesn't authenticate. How can I use it? I tried assigning pkexec to a variable for later use, but that doesn't work. Else, how can I set auth to 1 when pkexec is run and the user authenticates, so it's…
Marek Möhling
  • 142
  • 8
0
votes
1 answer

Is it possible to add exceptions for which controller actions the default authorization policy should not be used?

If we want our ASP.NET Core application to use the default authorization policy on all actions, except X actions, how would we do that, other than defining separate policies/using an Authorization Filter that will filter them based on the request's…
SpiritBob
  • 2,355
  • 3
  • 24
  • 62
0
votes
1 answer

Same Policy but different required parameter for each action method

In a .Net core Webapi 2.1 project, I have a tons of action methods. All action methods should be authorized against the same policy (named FooPolicy) but with a different required argument. Based on Microsoft's docs: Policy-based-Authorization One…
Rzassar
  • 2,117
  • 1
  • 33
  • 55