Util.Security by 何镇汐

API Diff between 1.0.11-preview-20180529-1 and 7.1.77

261 Additions 8 Removals

Util.Helpers

public static class Encrypt

Util.Security

public static class ClaimTypes
public static class Extensions
- public static string GetApplicationCode(this ISession session)
- public static Guid GetApplicationId(this ISession session)
- public static T GetApplicationId<T>(this ISession session)
- public static string GetApplicationName(this ISession session)
- public static string GetEmail(this ISession session)
- public static string GetFullName(this ISession session)
- public static string GetMobile(this ISession session)
- public static List<Guid> GetRoleIds(this ISession session)
- public static List<T> GetRoleIds<T>(this ISession session)
- public static string GetRoleName(this ISession session)
- public static string GetTenantCode(this ISession session)
- public static Guid GetTenantId(this ISession session)
- public static T GetTenantId<T>(this ISession session)
- public static string GetTenantName(this ISession session)
- public static Guid GetUserId(this ISession session)
- public static T GetUserId<T>(this ISession session)
- public static string GetUserName(this ISession session)
public class SecurityResource
- public static CultureInfo Culture { get; set; }
- public static string DuplicateApplicationCode { get; }
- public static string DuplicateApplicationName { get; }
- public static string DuplicateEmail { get; }
- public static string DuplicateRoleCode { get; }
- public static string DuplicateRoleName { get; }
- public static string DuplicateUserName { get; }
- public static string InvalidAccountOrPassword { get; }
- public static string InvalidEmailOrPassword { get; }
- public static string InvalidPhoneOrPassword { get; }
- public static string InvalidRoleName { get; }
- public static string InvalidToken { get; }
- public static string InvalidUserName { get; }
- public static string InvalidUserNameOrPassword { get; }
- public static string LoginFailLock { get; }
- public static string PasswordMismatch { get; }
- public static string PasswordRequiresDigit { get; }
- public static string PasswordRequiresNonAlphanumeric { get; }
- public static string PasswordRequiresUniqueChars { get; }
- public static string PasswordRequiresUpper { get; }
- public static string PasswordTooShort { get; }
- public static ResourceManager ResourceManager { get; }
- public static string UserIsDisabled { get; }
- public static string UserNameIsEmpty { get; }

Util.Security.Authentication

public class UnauthenticatedIdentity : ClaimsIdentity
public class UnauthenticatedPrincipal : ClaimsPrincipal

Util.Security.Authorization

public class DefaultPermissionManager : IPermissionManager
public interface IPermissionManager

Util.Security.Encryptors

public interface IEncryptor
public class NullEncryptor : IEncryptor

Util.Security.Identity.Describers

public class IdentityErrorChineseDescriber : IdentityErrorDescriber
- public IdentityErrorChineseDescriber()

Util.Security.Identity.Extensions

public static class Extensions
- public static void Load(this IdentityOptions options, PermissionOptions permissionOptions)
- public static void ThrowIfError(this IdentityResult result)

Util.Security.Identity.Models

public abstract class Application<TApplication, TKey> : AggregateRoot<TApplication, TKey>, IDelete, IAudited, ICreationAudited, ICreationAudited<Guid?>, IModificationAudited, IModificationAudited<Guid?> where TApplication : Application<TApplication, TKey>
- public string Code { get; set; }
- public string Comment { get; set; }
- public DateTime? CreationTime { get; set; }
- public Guid? CreatorId { get; set; }
- public bool Enabled { get; set; }
- public bool IsDeleted { get; set; }
- public DateTime? LastModificationTime { get; set; }
- public Guid? LastModifierId { get; set; }
- public string Name { get; set; }
- public bool RegisterEnabled { get; set; }
- protected Application(TKey id)
public abstract class Role<TRole, TKey, TParentId> : TreeEntityBase<TRole, TKey, TParentId>, IDelete, IAudited, ICreationAudited, ICreationAudited<Guid?>, IModificationAudited, IModificationAudited<Guid?> where TRole : Role<TRole, TKey, TParentId>
- public string Code { get; set; }
- public string Comment { get; set; }
- public DateTime? CreationTime { get; set; }
- public Guid? CreatorId { get; set; }
- public bool IsAdmin { get; }
- public bool IsDeleted { get; set; }
- public DateTime? LastModificationTime { get; set; }
- public Guid? LastModifierId { get; set; }
- public string Name { get; set; }
- public string NormalizedName { get; set; }
- public string PinYin { get; set; }
- public string Sign { get; }
- public string Type { get; set; }
- protected Role(TKey id, string path, int level)
- public void InitPinYin()
public abstract class User<TUser, TKey> : AggregateRoot<TUser, TKey>, IDelete, IAudited, ICreationAudited, ICreationAudited<Guid?>, IModificationAudited, IModificationAudited<Guid?> where TUser : User<TUser, TKey>
- public int AccessFailedCount { get; set; }
- public string Comment { get; set; }
- public DateTime? CreationTime { get; set; }
- public Guid? CreatorId { get; set; }
- public string CurrentLoginIp { get; set; }
- public DateTime? CurrentLoginTime { get; set; }
- public DateTime? DisabledTime { get; set; }
- public string Email { get; set; }
- public bool EmailConfirmed { get; set; }
- public bool Enabled { get; set; }
- public IEncryptor Encryptor { get; set; }
- public bool IsDeleted { get; set; }
- public string LastLoginIp { get; set; }
- public DateTime? LastLoginTime { get; set; }
- public DateTime? LastModificationTime { get; set; }
- public Guid? LastModifierId { get; set; }
- public bool LockoutEnabled { get; set; }
- public DateTimeOffset? LockoutEnd { get; set; }
- public int? LoginCount { get; set; }
- public string NormalizedEmail { get; set; }
- public string NormalizedUserName { get; set; }
- public string Password { get; }
- public string PasswordHash { get; set; }
- public string PhoneNumber { get; set; }
- public bool PhoneNumberConfirmed { get; set; }
- public string RegisterIp { get; set; }
- public string SafePassword { get; }
- public string SafePasswordHash { get; set; }
- public string SecurityStamp { get; set; }
- public bool TwoFactorEnabled { get; set; }
- public string UserName { get; set; }
- protected User(TKey id)
- public void AddClaim(Claim claim)
- public void AddClaim(string type, string value)
- public virtual void AddUserClaims()
- public virtual List<Claim> GetClaims()
- protected virtual IEncryptor GetEncryptor()
- public string GetPassword()
- public string GetSafePassword()
- public void SetPassword(bool? storeOriginalPassword, string password)
- public void SetSafePassword(bool? storeOriginalPassword, string password)

Util.Security.Identity.Options

public class LockoutOptions
- public bool AllowedForNewUsers { get; set; }
- public TimeSpan LockoutTimeSpan { get; set; }
- public int MaxFailedAccessAttempts { get; set; }
- public LockoutOptions()
public class PasswordOptions
- public bool Digit { get; set; }
- public int MinLength { get; set; }
- public bool NonAlphanumeric { get; set; }
- public int UniqueChars { get; set; }
- public bool Uppercase { get; set; }
- public PasswordOptions()
public class PermissionOptions
- public LockoutOptions Lockout { get; set; }
- public PasswordOptions Password { get; set; }
- public SignInOptions SignIn { get; set; }
- public StoreOptions Store { get; set; }
- public UserOptions User { get; set; }
- public PermissionOptions()
public class SignInOptions
- public bool ConfirmedEmail { get; set; }
- public bool ConfirmedPhoneNumber { get; set; }
- public SignInOptions()
public class StoreOptions
- public int MaxLengthForKeys { get; set; }
- public bool ProtectPersonalData { get; set; }
- public bool StoreOriginalPassword { get; set; }
- public StoreOptions()
public class UserOptions
- public bool UniqueEmail { get; set; }
- public string UserNameCharacters { get; set; }
- public UserOptions()

Util.Security.Identity.Repositories

public interface IApplicationRepository<TApplication, TKey> : IRepository<TApplication, TKey>, IQueryRepository<TApplication, TKey>, IQueryStore<TApplication, TKey>, IScopeDependency, IFindQueryable<TApplication, TKey>, IFindById<TApplication, TKey>, IFindByIdAsync<TApplication, TKey>, IFindByIds<TApplication, TKey>, IFindByIdsAsync<TApplication, TKey>, IFindByIdNoTracking<TApplication, TKey>, IFindByIdNoTrackingAsync<TApplication, TKey>, IFindByIdsNoTracking<TApplication, TKey>, IFindByIdsNoTrackingAsync<TApplication, TKey>, ISingle<TApplication, TKey>, ISingleAsync<TApplication, TKey>, IFindAll<TApplication, TKey>, IFindAllAsync<TApplication, TKey>, IFindAllNoTracking<TApplication, TKey>, IFindAllNoTrackingAsync<TApplication, TKey>, IExists<TApplication, TKey>, IExistsAsync<TApplication, TKey>, IExistsByExpression<TApplication, TKey>, IExistsByExpressionAsync<TApplication, TKey>, ICount<TApplication, TKey>, ICountAsync<TApplication, TKey>, IPageQuery<TApplication, TKey>, IPageQueryAsync<TApplication, TKey>, IStore<TApplication, TKey>, IAdd<TApplication, TKey>, IAddAsync<TApplication, TKey>, IUpdate<TApplication, TKey>, IUpdateAsync<TApplication, TKey>, IRemove<TApplication, TKey>, IRemoveAsync<TApplication, TKey> where TApplication : Application<TApplication, TKey>
public interface IRoleRepository<TRole, TKey, TParentId> : ITreeRepository<TRole, TKey, TParentId>, IRepository<TRole, TKey>, IQueryRepository<TRole, TKey>, IQueryStore<TRole, TKey>, IScopeDependency, IFindQueryable<TRole, TKey>, IFindById<TRole, TKey>, IFindByIdAsync<TRole, TKey>, IFindByIds<TRole, TKey>, IFindByIdsAsync<TRole, TKey>, IFindByIdNoTracking<TRole, TKey>, IFindByIdNoTrackingAsync<TRole, TKey>, IFindByIdsNoTracking<TRole, TKey>, IFindByIdsNoTrackingAsync<TRole, TKey>, ISingle<TRole, TKey>, ISingleAsync<TRole, TKey>, IFindAll<TRole, TKey>, IFindAllAsync<TRole, TKey>, IFindAllNoTracking<TRole, TKey>, IFindAllNoTrackingAsync<TRole, TKey>, IExists<TRole, TKey>, IExistsAsync<TRole, TKey>, IExistsByExpression<TRole, TKey>, IExistsByExpressionAsync<TRole, TKey>, ICount<TRole, TKey>, ICountAsync<TRole, TKey>, IPageQuery<TRole, TKey>, IPageQueryAsync<TRole, TKey>, IStore<TRole, TKey>, IAdd<TRole, TKey>, IAddAsync<TRole, TKey>, IUpdate<TRole, TKey>, IUpdateAsync<TRole, TKey>, IRemove<TRole, TKey>, IRemoveAsync<TRole, TKey>, ITreeCompactRepository<TRole, TKey, TParentId>, ICompactRepository<TRole, TKey> where TRole : Role<TRole, TKey, TParentId>
public interface IUserRepository<TUser, TKey> : IRepository<TUser, TKey>, IQueryRepository<TUser, TKey>, IQueryStore<TUser, TKey>, IScopeDependency, IFindQueryable<TUser, TKey>, IFindById<TUser, TKey>, IFindByIdAsync<TUser, TKey>, IFindByIds<TUser, TKey>, IFindByIdsAsync<TUser, TKey>, IFindByIdNoTracking<TUser, TKey>, IFindByIdNoTrackingAsync<TUser, TKey>, IFindByIdsNoTracking<TUser, TKey>, IFindByIdsNoTrackingAsync<TUser, TKey>, ISingle<TUser, TKey>, ISingleAsync<TUser, TKey>, IFindAll<TUser, TKey>, IFindAllAsync<TUser, TKey>, IFindAllNoTracking<TUser, TKey>, IFindAllNoTrackingAsync<TUser, TKey>, IExists<TUser, TKey>, IExistsAsync<TUser, TKey>, IExistsByExpression<TUser, TKey>, IExistsByExpressionAsync<TUser, TKey>, ICount<TUser, TKey>, ICountAsync<TUser, TKey>, IPageQuery<TUser, TKey>, IPageQueryAsync<TUser, TKey>, IStore<TUser, TKey>, IAdd<TUser, TKey>, IAddAsync<TUser, TKey>, IUpdate<TUser, TKey>, IUpdateAsync<TUser, TKey>, IRemove<TUser, TKey>, IRemoveAsync<TUser, TKey> where TUser : User<TUser, TKey>

Util.Security.Identity.Results

public class SignInResult
- public SignInState State { get; set; }
- public string UserId { get; set; }
- public SignInResult()
- public SignInResult(SignInState state, string userId)
public enum SignInState
- Failed = 1
- Succeeded = 0
- TwoFactor = 2

Util.Security.Identity.Services.Abstractions

public interface IRoleManager<TRole, TKey, TParentId> : IDomainService, IScopeDependency where TRole : Role<TRole, TKey, TParentId>
- Task CreateAsync(TRole role)
- Task UpdateAsync(TRole role)
public interface ISignInManager<TUser, TKey> : IDomainService, IScopeDependency where TUser : User<TUser, TKey>
- Task<SignInResult> SignInAsync(string account, string password, bool isPersistent = false, bool lockoutOnFailure = true, string applicationCode = "")
- Task<SignInResult> SignInByEmailAsync(string email, string password, bool isPersistent = false, bool lockoutOnFailure = true, string applicationCode = "")
- Task<SignInResult> SignInByPhoneAsync(string phoneNumber, string password, bool isPersistent = false, bool lockoutOnFailure = true, string applicationCode = "")
- Task<SignInResult> SignInByUserNameAsync(string userName, string password, bool isPersistent = false, bool lockoutOnFailure = true, string applicationCode = "")
- Task SignOutAsync()
public interface IUserManager<TUser, TKey> : IDomainService, IScopeDependency where TUser : User<TUser, TKey>
- Task ChangePasswordAsync(TUser user, string currentPassword, string newPassword)
- Task ConfirmEmailAsync(TUser user, string token)
- Task CreateAsync(TUser user, string password)
- Task<TUser> FindByEmailAsync(string email)
- Task<TUser> FindByNameAsync(string userName)
- Task<TUser> FindByPhoneAsync(string phoneNumber)
- Task<string> GenerateEmailConfirmationTokenAsync(TUser user)
- Task<string> GenerateEmailPasswordResetTokenAsync(TUser user)
- Task<string> GeneratePhonePasswordResetTokenAsync(TUser user)
- Task<string> GenerateRegisterTokenAsync(string phone, string application = "")
- Task<string> GenerateTokenAsync(string phone, string purpose, string application = "", string provider = "")
- Task<string> GenerateTokenAsync(TUser user, string purpose, string application = "", string provider = "")
- Task ResetPasswordByEmailAsync(TUser user, string token, string newPassword)
- Task ResetPasswordByPhoneAsync(TUser user, string token, string newPassword)
- Task<bool> VerifyRegisterTokenAsync(string phone, string token, string application = "")
- Task<bool> VerifyTokenAsync(string phone, string purpose, string token, string application = "", string provider = "")
- Task<bool> VerifyTokenAsync(TUser user, string purpose, string token, string application = "", string provider = "")

Util.Security.Identity.Services.Configs

public static class TokenPurpose
- public const string PhoneRegister = "PhoneRegister"

Util.Security.Identity.Services.Implements

public class IdentitySignInManager<TUser, TKey> : SignInManager<TUser> where TUser : User<TUser, TKey>
- public IdentitySignInManager(UserManager<TUser> userManager, IHttpContextAccessor contextAccessor, IUserClaimsPrincipalFactory<TUser> claimsFactory, IOptions<IdentityOptions> optionsAccessor, ILogger<SignInManager<TUser>> logger, IAuthenticationSchemeProvider schemes)
public class IdentityUserManager<TUser, TKey> : AspNetUserManager<TUser> where TUser : User<TUser, TKey>
- public IdentityUserManager(IUserStore<TUser> store, IOptions<IdentityOptions> optionsAccessor, IPasswordHasher<TUser> passwordHasher, IEnumerable<IUserValidator<TUser>> userValidators, IEnumerable<IPasswordValidator<TUser>> passwordValidators, ILookupNormalizer keyNormalizer, IdentityErrorDescriber errors, IServiceProvider services, ILogger<UserManager<TUser>> logger)
- public Task<IdentityResult> ResetPasswordAsync(TUser user, string tokenProvidor, string token, string newPassword)
public abstract class RoleManager<TRole, TKey, TParentId> : DomainServiceBase, IRoleManager<TRole, TKey, TParentId>, IDomainService, IScopeDependency where TRole : Role<TRole, TKey, TParentId>
- protected RoleManager(RoleManager<TRole> roleManager, IRoleRepository<TRole, TKey, TParentId> repository)
- public virtual Task CreateAsync(TRole role)
- protected void ThrowDuplicateCodeException(string code)
- public Task UpdateAsync(TRole role)
- protected virtual Task ValidateCreate(TRole role)
- protected virtual Task ValidateUpdate(TRole role)
public class SignInManager<TUser, TKey> : ISignInManager<TUser, TKey>, IDomainService, IScopeDependency where TUser : User<TUser, TKey>
- protected IdentitySignInManager<TUser, TKey> IdentitySignInManager { get; }
- protected IUserManager<TUser, TKey> UserManager { get; }
- public SignInManager(IdentitySignInManager<TUser, TKey> signInManager, IUserManager<TUser, TKey> userManager)
- protected virtual Task AddClaimsToUser(TUser user, string applicationCode)
- public Task<SignInResult> SignInAsync(string account, string password, bool isPersistent = false, bool lockoutOnFailure = true, string applicationCode = "")
- public Task<SignInResult> SignInByEmailAsync(string email, string password, bool isPersistent = false, bool lockoutOnFailure = true, string applicationCode = "")
- public Task<SignInResult> SignInByPhoneAsync(string phoneNumber, string password, bool isPersistent = false, bool lockoutOnFailure = true, string applicationCode = "")
- public Task<SignInResult> SignInByUserNameAsync(string userName, string password, bool isPersistent = false, bool lockoutOnFailure = true, string applicationCode = "")
- public Task SignOutAsync()
public class UserManager<TUser, TKey> : DomainServiceBase, IUserManager<TUser, TKey>, IDomainService, IScopeDependency where TUser : User<TUser, TKey>
- public UserManager(IdentityUserManager<TUser, TKey> userManager, IOptions<PermissionOptions> options, IUserRepository<TUser, TKey> userRepository)
- public Task ChangePasswordAsync(TUser user, string currentPassword, string newPassword)
- public Task ConfirmEmailAsync(TUser user, string token)
- public Task CreateAsync(TUser user, string password)
- protected virtual string CreateSecurityStamp()
- public Task<TUser> FindByEmailAsync(string email)
- public Task<TUser> FindByNameAsync(string userName)
- public Task<TUser> FindByPhoneAsync(string phoneNumber)
- public Task<string> GenerateEmailConfirmationTokenAsync(TUser user)
- public Task<string> GenerateEmailPasswordResetTokenAsync(TUser user)
- public Task<string> GeneratePhonePasswordResetTokenAsync(TUser user)
- public Task<string> GenerateRegisterTokenAsync(string phone, string application = "")
- public Task<string> GenerateTokenAsync(string phone, string purpose, string application = "", string provider = "")
- public Task<string> GenerateTokenAsync(TUser user, string purpose, string application = "", string provider = "")
- public Task ResetPasswordByEmailAsync(TUser user, string token, string newPassword)
- public Task ResetPasswordByPhoneAsync(TUser user, string token, string newPassword)
- public Task<bool> VerifyRegisterTokenAsync(string phone, string token, string application = "")
- public Task<bool> VerifyTokenAsync(string phone, string purpose, string token, string application = "", string provider = "")
- public Task<bool> VerifyTokenAsync(TUser user, string purpose, string token, string application = "", string provider = "")

Util.Security.Principals

public static class ClaimTypes
- public static string ApplicationCode { get; set; }
- public static string ApplicationId { get; set; }
- public static string ApplicationName { get; set; }
- public static string Email { get; set; }
- public static string FullName { get; set; }
- public static string Mobile { get; set; }
- public static string RoleIds { get; set; }
- public static string RoleName { get; set; }
- public static string TenantCode { get; set; }
- public static string TenantId { get; set; }
- public static string TenantName { get; set; }
- public static string UserId { get; set; }
- public static string UserName { get; set; }

Util.Security.Sessions

public class Session : ISession, ISingletonDependency
- public static readonly ISession Null
- public bool IsAuthenticated { get; }
- public string UserId { get; }
- public Session()
public abstract class SessionMiddlewareBase
- protected SessionMiddlewareBase(RequestDelegate next)
- protected virtual Task Authenticate(HttpContext context)
- protected virtual Task AuthenticateAfter(HttpContext context)
- protected virtual Task AuthenticateBefore(HttpContext context)
- protected T GetService<T>(HttpContext context)
- public Task Invoke(HttpContext context)
- protected virtual bool IsAuthenticated(HttpContext context)
- protected abstract Task LoadClaims(HttpContext context, ClaimsIdentity identity)