devdeer.Libraries.Repository.EntityFrameworkCore.Authorized
                                
                            
                                13.0.1
                            
                        
                    dotnet add package devdeer.Libraries.Repository.EntityFrameworkCore.Authorized --version 13.0.1
NuGet\Install-Package devdeer.Libraries.Repository.EntityFrameworkCore.Authorized -Version 13.0.1
<PackageReference Include="devdeer.Libraries.Repository.EntityFrameworkCore.Authorized" Version="13.0.1" />
<PackageVersion Include="devdeer.Libraries.Repository.EntityFrameworkCore.Authorized" Version="13.0.1" />
<PackageReference Include="devdeer.Libraries.Repository.EntityFrameworkCore.Authorized" />
paket add devdeer.Libraries.Repository.EntityFrameworkCore.Authorized --version 13.0.1
#r "nuget: devdeer.Libraries.Repository.EntityFrameworkCore.Authorized, 13.0.1"
#:package devdeer.Libraries.Repository.EntityFrameworkCore.Authorized@13.0.1
#addin nuget:?package=devdeer.Libraries.Repository.EntityFrameworkCore.Authorized&version=13.0.1
#tool nuget:?package=devdeer.Libraries.Repository.EntityFrameworkCore.Authorized&version=13.0.1
devdeer.Libraries.Repository.EntityFrameworkCore.Authorized
 
Disclaimer
If you want to use this package you should be aware of some principles and practices we at DEVDEER use. So be aware that this is not backed by a public repository. The purpose here is to give out customers easy access to our logic. Nevertheless you are welcome to use this lib if it provides any advantages.
Summary
The purpose of this package is to simplify and standardize the process of performing HTTP context user detection and automated role management for an API using Azure AD and a backend using EF Core code first.
Using this package automatically leads to changes in the database structure. Again be aware that this is completely built around the standards of DEVDEER.
Usage
After you added a Nuget reference to your project you should first inherit your DbContext from SimpleAuthorizationContext instead
of DbContext. This will add some additional logic to your context which is needed to work with the repository.
public class MyContext : SimpleAuthorizationContext
{
     public MyContext(DbContextOptions dbContextOptions,
        IOptions<EntityFrameworkAuthorizationOptions> authorizationOptions) : base(dbContextOptions, authorizationOptions)
     {
     }
}
You should now take care about your settings. In the appsettings.json there should be a new setting:
"EfCoreAuthorization": {
    "IsEnabled": true,
    "AutoCreateNewUsers": true,
    "AutoCreateRoleKey": "GUE",
    "UseCaching": true,
    "CacheTimeoutSeconds": 1800,
    "RequiredRoles": [
        {
            "Id": 1,
            "ParentId": null,
            "UniqueKey": "GUE",
            "DisplayLabel": "Guest"
        },
        {
            "Id": 2,
            "ParentId": 1,
            "UniqueKey": "USR",
            "DisplayLabel": "User"
        },
        {
            "Id": 3,
            "ParentId": 2,
            "UniqueKey": "ADM",
            "DisplayLabel": "Administrator"
        }
    ]
}
The code above shows kind of the default configuration. It enables the authorization using this package and ensures that users
always will be automatically created whenever they "arrive" at the API as bearer tokens. For this it will use a role assignment
with the key specicfied which in turn must be one of the unique keys you specified in the RequiredRoles section. The UseCaching
option switches memory caching of users on using the CacheTimeoutSeconds as timeout.
The RequiredRoles section is used to define which roles should be available in the database. The ParentId allows you to create
a hierarchy here. In the sample shown all admins will be members of users als which in turn are always implcitly members of the guest.
If you are using EF Core migrations using the IDesignTimeDbContextFactory pattern you need to ensure that this is passed to your
context instance there as follows:
public MyContext CreateDbContext(string[] args)
{
    var options = new DbContextOptionsBuilder<MyContext>().UseSqlServer(
            "CONNECTIONSTRING",
            o =>
            {
                o.MigrationsHistoryTable("MigrationHistory", "SystemData");
                o.CommandTimeout(3600);
            })
        .Options;
    return new MyContext(
        options,
        Options.Create(
            new EntityFrameworkAuthorizationOptions
            {
                AutoCreateNewUsers = true,
                AutoCreateRoleKey = "GUE",
                RequiredRoles = new RoleModel[]
                {
                    new()
                    {
                        Id = 1,
                        UniqueKey = "GUE",
                        DisplayLabel = "Guest"
                    },
                    new()
                    {
                        Id = 2,
                        ParentId = 1,
                        UniqueKey = "USR",
                        DisplayLabel = "User"
                    },
                    new()
                    {
                        Id = 3,
                        ParentId = 2,
                        UniqueKey = "ADM",
                        DisplayLabel = "Administrator"
                    }
                },
                IsEnabled = true
            }));
}
Also make sure, that your MyContext override of OnModelCreating calls the parents method in any case:
/// <inheritdoc />
protected override void OnModelCreating(ModelBuilder modelBuilder)
{
    base.OnModelCreating(modelBuilder);
    // your code here
}
Afterwards you need to create a new migration if you are using code first:
dotnet ef migrations add "AuthorizationStructure"
dotnet ef database update
Whereever you are performing application startup is the place where you now generate 3 implementations:
public class DefaultAuthorizationMiddlewareResultHandler : BaseSimpleAuthorizationMiddlewareResultHandler<MyContext>
{
    #region constructors and destructors
    /// <inheritdoc />
    public DefaultAuthorizationMiddlewareResultHandler(
        AuthOptions authorizationOptions,
        IAuthorizedUserRepository<long, User, Role, UserRole, UserModel> repository) : base(
        authorizationOptions,
        repository)
    {
    }
    #endregion
}
public class DefaultAuthorizedUserRepository : BaseSimpleAuthorizedUserRepository<MyContext>
{
    #region constructors and destructors
    /// <inheritdoc />
    public DefaultAuthorizedUserRepository(
        IServiceProvider serviceProvider,
        MyContext dbContext,
        IMapper mapper) : base(serviceProvider, dbContext, mapper)
    {
    }
    #endregion
}
public class DefaultRolesAuthorizationHandler : BaseSimpleAuthorizationHandler<MyContext>
{
    #region constructors and destructors
    /// <inheritdoc />
    public DefaultRolesAuthorizationHandler(
        IAuthorizedUserRepository<long, User, Role, UserRole, UserModel> repository) : base(repository)
    {
    }
    #endregion
}
Now you can call the DI configuration using these types:
builder.Services
    .ConfigureAuthorizationDefaults<DefaultAuthorizationMiddlewareResultHandler, DefaultRolesAuthorizationHandler,
        DefaultAuthorizedUserRepository, MyContext>();
To test this you could add a simple controller like
[ApiController]
[Authorize]
[ApiVersion("1.0")]
[Route("api/v{version:apiVersion}/[controller]")]
public class UserController : ControllerBase
{
    public UserController(ISimpleAuthorizedUserRepository repository)
    {
        Repository = repository;
    }
    [HttpGet("Me")]
    [Authorize(Roles = "GUE")]
    public async ValueTask<ActionResult<UserModel?>> GetAsync()
    {
        var userData = await Repository.GetOrCreateUserAsync();
        return Ok(userData);
    }
    [Injected]
    private ISimpleAuthorizedUserRepository Repository { get; } = default!;
}
If you call this method in an authorized session it should automatically detect the context user and create a new entry in the default role in your database.
About DEVDEER
DEVDEER is a company from Magdeburg, Germany which is specialized in consulting, project management and development. We are very focussed on Microsoft Azure as a platform to run our products and solutions in the cloud. So all of our backend components usually runs in this environment and is developed using .NET. In the frontend area we are using react and a huge bunch of packages to build our UIs.
You can find us online:
| Product | Versions Compatible and additional computed target framework versions. | 
|---|---|
| .NET | net8.0 is compatible. net8.0-android was computed. net8.0-browser was computed. net8.0-ios was computed. net8.0-maccatalyst was computed. net8.0-macos was computed. net8.0-tvos was computed. net8.0-windows was computed. net9.0 is compatible. net9.0-android was computed. net9.0-browser was computed. net9.0-ios was computed. net9.0-maccatalyst was computed. net9.0-macos was computed. net9.0-tvos was computed. net9.0-windows was computed. net10.0 was computed. net10.0-android was computed. net10.0-browser was computed. net10.0-ios was computed. net10.0-maccatalyst was computed. net10.0-macos was computed. net10.0-tvos was computed. net10.0-windows was computed. | 
- 
                                                    net8.0- devdeer.Libraries.Abstractions (>= 19.1.3)
- devdeer.Libraries.Abstractions.AspNetCore (>= 10.1.2)
- devdeer.Libraries.Abstractions.EntityFramework (>= 10.1.2)
- devdeer.Libraries.Repository.EntityFrameworkCore (>= 23.1.5)
- Mapster (>= 7.4.0)
- Microsoft.Extensions.Options (>= 9.0.10)
- NLog (>= 6.0.5)
- System.Formats.Asn1 (>= 9.0.10)
- System.Text.Json (>= 9.0.10)
 
- 
                                                    net9.0- devdeer.Libraries.Abstractions (>= 19.1.3)
- devdeer.Libraries.Abstractions.AspNetCore (>= 10.1.2)
- devdeer.Libraries.Abstractions.EntityFramework (>= 10.1.2)
- devdeer.Libraries.Repository.EntityFrameworkCore (>= 23.1.5)
- Mapster (>= 7.4.0)
- Microsoft.Extensions.Options (>= 9.0.10)
- NLog (>= 6.0.5)
- System.Formats.Asn1 (>= 9.0.10)
- System.Text.Json (>= 9.0.10)
 
NuGet packages
This package is not used by any NuGet packages.
GitHub repositories
This package is not used by any popular GitHub repositories.
| Version | Downloads | Last Updated | 
|---|---|---|
| 13.0.1 | 142 | 10/21/2025 | 
| 13.0.0 | 101 | 10/18/2025 | 
| 12.0.8 | 157 | 10/15/2025 | 
| 12.0.7 | 103 | 10/11/2025 | 
| 12.0.6 | 100 | 10/11/2025 | 
| 12.0.5 | 105 | 10/11/2025 | 
| 12.0.4 | 161 | 10/7/2025 | 
| 12.0.3 | 162 | 10/7/2025 | 
| 12.0.2 | 168 | 10/6/2025 | 
| 12.0.1 | 163 | 10/4/2025 | 
| 12.0.0 | 106 | 9/27/2025 | 
| 11.0.5 | 249 | 8/28/2025 | 
| 11.0.4 | 189 | 8/13/2025 | 
| 11.0.3 | 130 | 7/29/2025 | 
| 11.0.2 | 130 | 7/29/2025 | 
| 11.0.1 | 181 | 7/17/2025 | 
| 11.0.0 | 177 | 7/16/2025 | 
| 10.0.5 | 340 | 6/11/2025 | 
| 10.0.4 | 146 | 5/30/2025 | 
| 10.0.3 | 239 | 5/16/2025 | 
| 10.0.2 | 241 | 5/16/2025 | 
| 10.0.1 | 253 | 5/16/2025 | 
| 10.0.0 | 197 | 4/11/2025 | 
| 9.0.2 | 181 | 4/11/2025 | 
| 9.0.1 | 197 | 3/18/2025 | 
| 9.0.0 | 165 | 2/14/2025 | 
| 8.1.1 | 182 | 1/6/2025 | 
| 8.1.0 | 190 | 1/4/2025 | 
| 8.0.1 | 192 | 12/13/2024 | 
| 8.0.0 | 173 | 12/11/2024 | 
| 7.7.2 | 443 | 10/27/2024 | 
| 7.7.1 | 172 | 10/12/2024 | 
| 7.7.0 | 173 | 10/3/2024 | 
| 7.6.0 | 227 | 8/23/2024 | 
| 7.5.0 | 263 | 8/2/2024 | 
| 7.4.5 | 182 | 6/27/2024 | 
| 7.4.4 | 287 | 6/12/2024 | 
| 7.4.3 | 181 | 6/12/2024 | 
| 7.4.2 | 170 | 6/12/2024 | 
| 7.4.1 | 193 | 6/1/2024 | 
| 7.4.0 | 171 | 6/1/2024 | 
| 7.3.2 | 476 | 5/29/2024 | 
| 7.3.1 | 196 | 5/29/2024 | 
| 7.3.0 | 181 | 5/29/2024 | 
| 7.2.2 | 205 | 5/28/2024 | 
| 7.2.1 | 199 | 5/27/2024 | 
| 7.2.0 | 181 | 5/27/2024 | 
| 7.1.0 | 184 | 5/27/2024 | 
| 7.0.2 | 206 | 5/27/2024 | 
| 7.0.1 | 199 | 5/25/2024 | 
| 7.0.0 | 181 | 5/24/2024 | 
| 6.0.0 | 242 | 5/14/2024 | 
| 5.1.0 | 287 | 5/4/2024 | 
| 5.0.11 | 175 | 4/19/2024 | 
| 5.0.9 | 352 | 3/11/2024 | 
| 5.0.8 | 270 | 3/9/2024 | 
| 5.0.7 | 326 | 2/18/2024 | 
| 5.0.6 | 460 | 1/18/2024 | 
| 5.0.5 | 613 | 12/25/2023 | 
| 5.0.4 | 480 | 12/25/2023 | 
| 5.0.3 | 433 | 12/25/2023 | 
| 5.0.2 | 481 | 12/11/2023 | 
| 5.0.1 | 450 | 12/10/2023 | 
| 5.0.0 | 490 | 12/10/2023 | 
| 4.4.8 | 542 | 10/29/2023 | 
| 4.4.7 | 483 | 10/29/2023 | 
| 4.4.6 | 522 | 10/29/2023 | 
| 4.4.5 | 591 | 10/15/2023 | 
| 4.4.4 | 526 | 10/15/2023 | 
| 4.4.3 | 553 | 10/15/2023 | 
| 4.4.2 | 521 | 10/13/2023 | 
| 4.4.0 | 534 | 10/7/2023 | 
| 4.3.1 | 528 | 9/27/2023 | 
| 4.3.0 | 575 | 9/16/2023 | 
| 4.2.0 | 617 | 9/14/2023 | 
| 4.1.0 | 580 | 9/14/2023 | 
| 4.0.8 | 621 | 9/8/2023 | 
| 4.0.7 | 568 | 9/7/2023 | 
| 4.0.5 | 598 | 9/6/2023 | 
| 4.0.3 | 628 | 9/6/2023 | 
| 4.0.2 | 596 | 9/6/2023 | 
| 4.0.1 | 590 | 9/6/2023 | 
| 4.0.0 | 602 | 9/6/2023 | 
| 3.2.1 | 660 | 8/15/2023 | 
| 3.2.0 | 609 | 8/15/2023 | 
| 3.1.1 | 680 | 5/29/2023 | 
| 3.1.0 | 695 | 5/29/2023 | 
| 3.0.3 | 688 | 5/28/2023 | 
| 3.0.2 | 679 | 5/28/2023 | 
| 3.0.1 | 734 | 5/24/2023 | 
| 3.0.0 | 684 | 5/24/2023 | 
| 2.0.1 | 672 | 5/23/2023 | 
| 2.0.0 | 705 | 5/23/2023 | 
| 1.0.3 | 728 | 5/21/2023 | 
| 1.0.2 | 684 | 5/21/2023 | 
| 1.0.0 | 717 | 5/21/2023 | 
| 0.5.4-beta | 667 | 4/12/2023 | 
| 0.5.3-beta | 689 | 4/12/2023 | 
| 0.5.2-beta | 693 | 3/11/2023 | 
| 0.5.1-beta | 698 | 1/13/2023 | 
| 0.5.0-beta | 697 | 12/29/2022 | 
| 0.4.2-beta | 671 | 12/26/2022 | 
| 0.4.1-beta | 702 | 12/6/2022 | 
| 0.4.0-beta | 692 | 11/10/2022 | 
| 0.3.2-beta | 745 | 9/30/2022 | 
| 0.3.1-beta | 692 | 9/13/2022 | 
| 0.3.0-beta | 716 | 9/13/2022 | 
| 0.2.0-beta | 771 | 9/13/2022 | 
| 0.1.4-beta | 682 | 9/7/2022 | 
| 0.1.3-beta | 728 | 9/7/2022 | 
| 0.1.2-beta | 703 | 9/7/2022 | 
| 0.1.1-beta | 724 | 9/7/2022 | 
| 0.1.0-beta | 704 | 9/6/2022 | 
| 0.0.8-beta | 717 | 9/6/2022 | 
| 0.0.7-beta | 685 | 9/6/2022 | 
| 0.0.6-beta | 669 | 9/6/2022 | 
| 0.0.3-beta | 701 | 9/6/2022 | 
| 0.0.2-beta | 711 | 9/6/2022 | 
| 0.0.1-beta | 716 | 9/5/2022 | 
- BREAKING: Configuration key now is 'DatabaseAuthorization',
- Package updates.