Provides easy implementation for Basic HTTP authentication in an ASP.NET Web API project.
By default, will use the ASP.NET Membership Provider (https://msdn.microsoft.com/en-us/library/yh26yfzy(v=VS.100).aspx). But you can modify and extend this behavior in either or both of the following ways:
- Pass your own IMembershipProvider to the BasicAuthenticationMessageHandler constructor
- Set the GetAdditionalClaims property to a Func that returns a collection of System.Security.Claims.Claim objects
- Set the IssueChallengeResponse to true to allow only authenticated callers and tell browsers to prompt for credentials
To configure this module, place the following line somewhere in your startup code - e.g. the Register() method in /app_start/WebApiConfig.cs:
And then make sure you use the [Authorize] attribute to protect your controllers and their actions - either with a global filter or on individual controllers and actions.
Please see the project site for more details.
This package has no dependencies.