{"id":16715543,"url":"https://github.com/stijnmoreels/arcus.security.authorization-poc","last_synced_at":"2025-03-15T08:46:33.302Z","repository":{"id":92225567,"uuid":"295396329","full_name":"stijnmoreels/arcus.security.authorization-poc","owner":"stijnmoreels","description":"Proof of concept of a role-based authorization of the secret providers registered in the Arcus secret store by low-level customization.","archived":false,"fork":false,"pushed_at":"2020-09-18T12:02:43.000Z","size":14,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-01-21T23:41:29.542Z","etag":null,"topics":["arcus","authorization","role-based-access-control","security"],"latest_commit_sha":null,"homepage":"","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/stijnmoreels.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-09-14T11:36:06.000Z","updated_at":"2020-09-18T12:02:46.000Z","dependencies_parsed_at":"2023-06-08T01:30:24.466Z","dependency_job_id":null,"html_url":"https://github.com/stijnmoreels/arcus.security.authorization-poc","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stijnmoreels%2Farcus.security.authorization-poc","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stijnmoreels%2Farcus.security.authorization-poc/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stijnmoreels%2Farcus.security.authorization-poc/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stijnmoreels%2Farcus.security.authorization-poc/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/stijnmoreels","download_url":"https://codeload.github.com/stijnmoreels/arcus.security.authorization-poc/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":243707307,"owners_count":20334616,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["arcus","authorization","role-based-access-control","security"],"created_at":"2024-10-12T21:09:42.469Z","updated_at":"2025-03-15T08:46:33.277Z","avatar_url":"https://github.com/stijnmoreels.png","language":"C#","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Arcus.Security.Core.Authorization\nExample of how the Arcus secret store can be customized to include authorization on provider-level.\n\n```csharp\npublic class Program\n{\n    public static void Main(string[] args) =\u003e\n        CreateHostBuilder(args).Build().Run();\n\n    public static IHostBuilder CreateHostBuilder(string[] args) =\u003e\n        Host.CreateDefaultBuilder(args)\n            .ConfigureAppConfiguration((context, config) =\u003e \n            {\n                config.AddJsonFile(\"appsettings.json\")\n                      .AddJsonFile(\"appsettings.Development.json\");\n            })\n            .ConfigureServices(services =\u003e services.AddSingleton(new FixedRoleAuthorization(Role.Writer))\n            .ConfigureSecretStore((IConfiguration config, SecretStoreBuilder secretStoreBuilder) =\u003e\n            {\n#if DEBUG\n                secretStoreBuilder.AddConfiguration(config);\n#endif\n                var keyVaultName = config[\"KeyVault_Name\"];\n                secretStoreBuilder.AuthorizedWithin(Role.Writer, builder =\u003e \n                    builder.AddAzureKeyVaultWithManagedServiceIdentity($\"https://{keyVaultName}.vault.azure.net\"));\n                    \n                secretStoreBuilder.AuthorizedWithin(Role.Admin, builder =\u003e builder.AddEnvironmentVariables();\n            })\n            .ConfigureWebHostDefaults(webBuilder =\u003e webBuilder.UseStartup\u003cStartup\u003e());\n}\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fstijnmoreels%2Farcus.security.authorization-poc","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fstijnmoreels%2Farcus.security.authorization-poc","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fstijnmoreels%2Farcus.security.authorization-poc/lists"}