Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/megabytemark/intradotnet-aspnetcore

ASP.NET Core polyfill for enabling Windows features when targetting an intranet enviroment.
https://github.com/megabytemark/intradotnet-aspnetcore

Last synced: about 1 year ago
JSON representation

ASP.NET Core polyfill for enabling Windows features when targetting an intranet enviroment.

Awesome Lists containing this project

README 

          
# IntraDotNet.AspNetCore



ASP.NET Core polyfill for enabling Windows features when targeting a Windows intranet environment.



## Summary



This library provides middleware and authorization handlers to enable Windows-specific features in an ASP.NET Core application. It includes support for Windows impersonation and Windows group membership authorization, making it easier to integrate with existing Windows-based AD DS infrastructure in an intranet environment.



## Features



- Windows Impersonation Middleware

- Windows Group Membership Authorization



## Installation



To install the library, add the following NuGet package to your project:



```bash

dotnet add package IntraDotNet.AspNetCore

```



## Usage



### Windows Impersonation Middleware



To use the Windows Impersonation Middleware, add it to the middleware pipeline in the Program.cs file:

```csharp

using IntraDotNet.AspNetCore.Middleware;

using Microsoft.AspNetCore.Builder;

using Microsoft.Extensions.DependencyInjection;

using IntraDotNet.AspNetCore.DependencyInjection;

using Microsoft.Extensions.Hosting;



var builder = WebApplication.CreateBuilder(args);



builder.Services.AddControllers();

builder.Services.AddAuthentication(NegotiateDefaults.AuthenticationScheme).AddNegotiate();



//This is to make Windows Auth work on Kestrel.

builder.Services.AddAuthorization(options =>

{

    options.FallbackPolicy = options.DefaultPolicy;

});



var app = builder.Build();



app.UseAuthentication();



// Add after UseAuthentication, you must have already added Negotiate authentication before calling UseAuthentication.

app.UseWindowsImpersonation();



app.UseAuthorization();



app.MapControllers();



app.Run();

```



### Windows Group Membership Authorization



To use Windows Group Membership Authorization, configure the authorization policies in the appsettings.json file and Startup.cs file:



#### appsettings.json

```json

{

  "Authorization": {

    "Policies": [

      {

        "Name": "RequireWindowsGroup",

        "AllowedGroups": [ "DomainName\\GroupName" ]

      }

    ]

  }

}

```



#### Program.cs

```csharp

using IntraDotNet.AspNetCore.Authorization.WindowsGroupMembership.DependencyInjection;

using Microsoft.AspNetCore.Authorization;

using Microsoft.Extensions.Configuration;

using Microsoft.Extensions.DependencyInjection;

using Microsoft.Extensions.Hosting;



var builder = WebApplication.CreateBuilder(args);



builder.Services.AddControllers();



builder.Services.AddWindowsGroupMembershipAuthorization(() =>

{

  return builder.Configuration.GetSection("Authorization:WindowsGroupMembershipAuthorization").Get()

});



var app = builder.Build();



app.UseRouting();

app.UseAuthorization();

app.MapControllers();



app.Run();

```



In your controller, you can then use the policy to protect actions:



```csharp

[Authorize(Policy = "RequireWindowsGroup")]

public class SecureController : ControllerBase

{

    public IActionResult Get()

    {

        return Ok("This is a secure endpoint.");

    }

}

```



For minimal API:

```csharp

app.MapGet("/ping", (HttpContext httpContext) =>

{

    var username = httpContext.User.Identity?.Name ?? "Anonymous";

    return $"pong from {username}";

})

.RequireAuthorization("RequireWindowsGroup");

```



## Contributing



Contributions are welcome! Please open an issue or submit a pull request.



## License



This project is licensed under the MIT License.