<p>GitHub Link: <a href="https://github.com/venbacodes/ABAC-Sample-for-API" class="autolinkedURL autolinkedURL-url" target="_blank">github.com/venbacodes/ABAC-Sample-for-API</a></p>
<p>This is a simple demo sample on implementing ABAC in a .Net Core API Application. This uses three main aspects of Attributes =&gt; ACCESS, SCOPE, and MODULE.</p>
<h2 id="heading-key-points">Key Points</h2>
<ol>
<li>Access, Scope, and Module attributes are used</li>
<li>It is possible to extend this sample to accommodate as many attributes as needed</li>
<li>No External libraries were used</li>
<li>Handled all the necessary authn and authz in the handlers itself.</li>
<li>Optional takeaway - added an additional path for restricting resources in <a target="_blank" href="https://github.com/venbacodes/ABAC-Sample-for-API/blob/main/Authorization/PermissionsAuthHandler.cs#L60">PermissionsAuthHandler.cs#L60</a></li>
</ol>
<h2 id="heading-to-explore">To Explore</h2>
<ol>
<li>Clone and run the code</li>
<li>Generate a JWT token with email/sub and exp. Applicable emails can be found in <a target="_blank" href="https://github.com/venbacodes/ABAC-Sample-for-API/blob/main/Model/TestUsers.cs">TestUsers.cs</a></li>
<li>Add the generated JWT token in the swagger authorization menu and call the APIs</li>
</ol>


GitHub Link: https://github.com/venbacodes/ABAC-Sample-for-API

This is a simple demo sample on implementing ABAC in a .Net Core API Application. This uses three main aspects of Attributes => ACCESS, SCOPE, and MODULE.

## Key Points
1. Access, Scope, and Module attributes are used
2. It is possible to extend this sample to accommodate as many attributes as needed
3. No External libraries were used
4. Handled all the necessary authn and authz in the handlers itself.
5. Optional takeaway - added an additional path for restricting resources in [PermissionsAuthHandler.cs#L60](https://github.com/venbacodes/ABAC-Sample-for-API/blob/main/Authorization/PermissionsAuthHandler.cs#L60)

## To Explore
1. Clone and run the code
2. Generate a JWT token with email/sub and exp. Applicable emails can be found in [TestUsers.cs](https://github.com/venbacodes/ABAC-Sample-for-API/blob/main/Model/TestUsers.cs)
3. Add the generated JWT token in the swagger authorization menu and call the APIs

Attribute-Based Access Control Sample for a .Net Core API Application

Web architect cum developer working in the .NET ecosystem with Azure and having completed many successful projects and products mainly Syncfusion Data Platform - Bold BI and Bold Reports.
