FAQ Database Discussion Community


Thinktecture claims authorization workflow. How does it work?

c#,.net,asp.net-mvc,claims-based-identity,thinktecture-ident-model
I have installed the Thinktecture.IdentityModel.Core package. Suppose I've registered my custom implementation of AuthorizationManager in web.config file. public class AuthorizationManager : ClaimsAuthorizationManager { public override Boolean CheckAccess(AuthorizationContext context) { // authorization implementation } } There are a permissions defined in the application db for user roles. So that User might...

Bridging forms authentication and OAUTH

oauth,forms-authentication,thinktecture-ident-model
It's not hard to modify the forms authentication login process so that in addition to normal forms authentication, a WebClient object does basic authentication to the api/token url served by a Web Api DAL set up with Thinktecture IdentityModel. The returned session token can then be stored in the Session...

Unable to get token from Thinktecture Authorization Server

oauth,oauth-2.0,thinktecture-ident-server,thinktecture-ident-model,thinktecture
I am unable to get an access token from Thinktecture Authorization Server. After successfully getting grant code, I try make a POST request to the token endpoint, but always get a 400 Bad Request with this response: message: "{ "error": "invalid_client" }" My request was: POST to https://host/authz/users/oauth/token request body:...

How to mock owin's authorizationManager to test my api controller

c#,unit-testing,mocking,owin,thinktecture-ident-model
I'm using ThinkTecture's resource based authorization in my WebApi. I'm trying to test one of my controller that I needed to check the access inside the function. But now, I can't test the function anymore since, I can't mock an extension method and since it's a nuget method, I can't...