Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cross verify which pages are missing authorization through reflection #8

Closed
weedkiller opened this issue Feb 28, 2021 · 2 comments
Closed

Cross verify which pages are missing authorization through reflection #8

weedkiller opened this issue Feb 28, 2021 · 2 comments

Comments

@weedkiller
Copy link

weedkiller commented Feb 28, 2021
edited

Hi @mguinness take a peek at this, it would be nice during compile or early runtime to run a check and see if any pages are missing or overlapping policies or roles.

The main approach there is to reflect on the assembly, gather the list of the controllers/actions collection and allow user to select which ones to setup.

Our can be to reflect and check which ones we already have, and if any are left missing/open or vulnerable.

Lastly, Rate limiting or DDOS throttle: https://codeburst.io/rate-limiting-api-endpoints-in-asp-net-core-926e31428017

For the views can we use Bootstrap 5, since its in beta already
@mguinness
Copy link
Owner

While those ideas are good, they're beyond the scope of this project which is to manage the data stored in the following tables.

AspNetRoleClaims
AspNetRoles
AspNetUserClaims
AspNetUserRoles
AspNetUsers

@weedkiller
Copy link
Author

weedkiller commented Mar 1, 2021
edited

gotcha.

On a different note, would it be possible to build a menu based on roles

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mguinness @weedkiller