Code based configuration
No attributes or nasty xml cluttering up your code.
FluentSecurity won't spread like wildfire in your application. Your configuration can be kept in a single file.
ASP.NET MVC 4 ready
Built against the latest version of ASP.NET MVC. Use the built in ASP.NET membership provider or roll your own security.
Don't like what's in the box? Create your own implementations and hook it in using your IoC-container.
Have a need for something not supported by FluentSecurity? Fork us on github, do your magic and send us the patch!
FluentSecurity is used successfully in production and has a code coverage of 99%.
- Securing an ASP.NET MVC Application using FluentSecurity
- MVC3 Security: A Fluent Way
- Fluent security with VB.Net
- Implement secure ASP.NET MVC applications
- Secure your web app fluently
- FluentSecurity + MvcSiteMapProvider = Better .Net Security Management
- Setting Up FluentSecurity to Use Ninject for Dependency Resolution
- FluentSecurity without IoC-container
FluentSecurity on twitter
52 days ago
53 days ago
61 days ago
61 days ago
64 days ago
Issues & feature requests
I like to use an own implementation of ISecurityHandler, but it looks like FluentSecurity is resolving this only with the internal ServiceLocator....
As per http://msdn.microsoft.com/en-us/library/system.web.mvc.nonactionattribute(v=vs.118).aspx, it would be reasonable to exclude nonaction method...
Hi,very thanks for FluentSecurity. Current version of FluentSecurity suppurt MVC 5?
It would be handy to have a way to exclude controllers globally so no policies would be applied to them when using methods such as ForAllController...
Hi, I've created a custom policy, and when I configure it on fluent security, validations of missing configuration stop to work (I didn't setup...
Github commits (develop)
- Added a Contributing.md file.
Merge branch 'release/2.1.0' into develop
- Bumped version to 2.1.0.
- Updated the readme file with the a status icon for the develop build.
- Updated the release notes.