Keycloak.AuthServices.Aspire.Hosting
0.1.0
Prefix Reserved
dotnet add package Keycloak.AuthServices.Aspire.Hosting --version 0.1.0
NuGet\Install-Package Keycloak.AuthServices.Aspire.Hosting -Version 0.1.0
<PackageReference Include="Keycloak.AuthServices.Aspire.Hosting" Version="0.1.0" />
paket add Keycloak.AuthServices.Aspire.Hosting --version 0.1.0
#r "nuget: Keycloak.AuthServices.Aspire.Hosting, 0.1.0"
// Install Keycloak.AuthServices.Aspire.Hosting as a Cake Addin #addin nuget:?package=Keycloak.AuthServices.Aspire.Hosting&version=0.1.0 // Install Keycloak.AuthServices.Aspire.Hosting as a Cake Tool #tool nuget:?package=Keycloak.AuthServices.Aspire.Hosting&version=0.1.0
Keycloak.AuthServices
Easy Authentication and Authorization with Keycloak in .NET.
Documentation
See the docs: https://nikiforovall.github.io/keycloak-authorization-services-dotnet
Getting Started
Install packages:
dotnet add package Keycloak.AuthServices.Authentication
dotnet add package Keycloak.AuthServices.Common
// Program.cs
using Keycloak.AuthServices.Authentication;
var builder = WebApplication.CreateBuilder(args);
builder.Services.AddKeycloakWebApiAuthentication(builder.Configuration);
builder.Services.AddAuthorization();
var app = builder.Build();
app.UseAuthentication();
app.UseAuthorization();
app.MapGet("/", () => "Hello World!").RequireAuthorization();
app.Run();
In this example, configuration is based on appsettings.json
.
//appsettings.json
{
"Keycloak": {
"realm": "Test",
"auth-server-url": "http://localhost:8080/",
"ssl-required": "none",
"resource": "test-client",
"verify-token-audience": false,
"credentials": {
"secret": ""
},
"confidential-port": 0
}
}
Example - Add Authorization
With Keycloak.AuthServices.Authorization
, you can implement role-based authorization in your application. This package allows you to define policies based on roles. Also, you can use Keycloak as Authorization Server. It is a powerful way to organize and apply authorization polices centrally.
var builder = WebApplication.CreateBuilder(args);
var host = builder.Host;
var configuration = builder.Configuration;
var services = builder.Services;
services.AddKeycloakWebApiAuthentication(configuration);
services.AddAuthorization(options =>
{
options.AddPolicy("AdminAndUser", builder =>
{
builder
.RequireRealmRoles("User") // Realm role is fetched from token
.RequireResourceRoles("Admin"); // Resource/Client role is fetched from token
});
})
.AddKeycloakAuthorization(configuration);
var app = builder.Build();
app.UseAuthentication();
app.UseAuthorization();
app.MapGet("/hello", () => "[]")
.RequireAuthorization("AdminAndUser");
app.Run();
Example - Invoke Admin API
var services = new ServiceCollection();
services.AddKeycloakAdminHttpClient(new KeycloakAdminClientOptions
{
AuthServerUrl = "http://localhost:8080/",
Realm = "master",
Resource = "admin-api",
});
var sp = services.BuildServiceProvider();
var client = sp.GetRequiredService<IKeycloakRealmClient>();
var realm = await client.GetRealmAsync("Test");
Build and Development
dotnet cake --target build
dotnet cake --target test
dotnet pack -o ./Artefacts
Product | Versions Compatible and additional computed target framework versions. |
---|---|
.NET | net8.0 is compatible. net8.0-android was computed. net8.0-browser was computed. net8.0-ios was computed. net8.0-maccatalyst was computed. net8.0-macos was computed. net8.0-tvos was computed. net8.0-windows was computed. |
-
net8.0
- Aspire.Hosting (>= 8.0.1)
NuGet packages
This package is not used by any NuGet packages.
GitHub repositories (1)
Showing the top 1 popular GitHub repositories that depend on Keycloak.AuthServices.Aspire.Hosting:
Repository | Stars |
---|---|
NikiforovAll/keycloak-authorization-services-dotnet
Authentication and Authorization with Keycloak and ASP.NET Core 🔐
|
Version | Downloads | Last updated |
---|---|---|
0.1.0 | 2,215 | 6/2/2024 |
0.1.0-preview1 | 294 | 6/1/2024 |
The release notes are available at https://github.com/NikiforovAll/keycloak-authorization-services-dotnet/releases