You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

435 lines
26 KiB

  1. <?xml version="1.0"?>
  2. <doc>
  3. <assembly>
  4. <name>Microsoft.Owin.Security</name>
  5. </assembly>
  6. <members>
  7. <member name="T:Microsoft.Owin.Security.AppBuilderSecurityExtensions">
  8. <summary>
  9. Provides extensions methods for app.Property values that are only needed by implementations of authentication middleware.
  10. </summary>
  11. </member>
  12. <member name="M:Microsoft.Owin.Security.AppBuilderSecurityExtensions.GetDefaultSignInAsAuthenticationType(Owin.IAppBuilder)">
  13. <summary>
  14. Returns the previously set AuthenticationType that external sign in middleware should use when the
  15. browser navigates back to their return url.
  16. </summary>
  17. <param name="app">App builder passed to the application startup code</param>
  18. <returns></returns>
  19. </member>
  20. <member name="M:Microsoft.Owin.Security.AppBuilderSecurityExtensions.SetDefaultSignInAsAuthenticationType(Owin.IAppBuilder,System.String)">
  21. <summary>
  22. Called by middleware to change the name of the AuthenticationType that external middleware should use
  23. when the browser navigates back to their return url.
  24. </summary>
  25. <param name="app">App builder passed to the application startup code</param>
  26. <param name="authenticationType">AuthenticationType that external middleware should sign in as.</param>
  27. </member>
  28. <member name="T:Microsoft.Owin.Security.AuthenticationMode">
  29. <summary>
  30. Controls the behavior of authentication middleware
  31. </summary>
  32. </member>
  33. <member name="F:Microsoft.Owin.Security.AuthenticationMode.Active">
  34. <summary>
  35. In Active mode the authentication middleware will alter the user identity as the request arrives, and
  36. will also alter a plain 401 as the response leaves.
  37. </summary>
  38. </member>
  39. <member name="F:Microsoft.Owin.Security.AuthenticationMode.Passive">
  40. <summary>
  41. In Passive mode the authentication middleware will only provide user identity when asked, and will only
  42. alter 401 responses where the authentication type named in the extra challenge data.
  43. </summary>
  44. </member>
  45. <member name="T:Microsoft.Owin.Security.AuthenticationOptions">
  46. <summary>
  47. Base Options for all authentication middleware
  48. </summary>
  49. </member>
  50. <member name="M:Microsoft.Owin.Security.AuthenticationOptions.#ctor(System.String)">
  51. <summary>
  52. Initialize properties of AuthenticationOptions base class
  53. </summary>
  54. <param name="authenticationType">Assigned to the AuthenticationType property</param>
  55. </member>
  56. <member name="P:Microsoft.Owin.Security.AuthenticationOptions.AuthenticationType">
  57. <summary>
  58. The AuthenticationType in the options corresponds to the IIdentity AuthenticationType property. A different
  59. value may be assigned in order to use the same authentication middleware type more than once in a pipeline.
  60. </summary>
  61. </member>
  62. <member name="P:Microsoft.Owin.Security.AuthenticationOptions.AuthenticationMode">
  63. <summary>
  64. If Active the authentication middleware alter the request user coming in and
  65. alter 401 Unauthorized responses going out. If Passive the authentication middleware will only provide
  66. identity and alter responses when explicitly indicated by the AuthenticationType.
  67. </summary>
  68. </member>
  69. <member name="P:Microsoft.Owin.Security.AuthenticationOptions.Description">
  70. <summary>
  71. Additional information about the authentication type which is made available to the application.
  72. </summary>
  73. </member>
  74. <member name="T:Microsoft.Owin.Security.Constants">
  75. <summary>
  76. String constants used only by the Security assembly
  77. </summary>
  78. </member>
  79. <member name="F:Microsoft.Owin.Security.Constants.DefaultSignInAsAuthenticationType">
  80. <summary>
  81. Used by middleware extension methods to coordinate the default value Options property SignInAsAuthenticationType
  82. </summary>
  83. </member>
  84. <member name="T:Microsoft.Owin.Security.DataProtection.IDataProtectionProvider">
  85. <summary>
  86. Factory used to create IDataProtection instances
  87. </summary>
  88. </member>
  89. <member name="M:Microsoft.Owin.Security.DataProtection.IDataProtectionProvider.Create(System.String[])">
  90. <summary>
  91. Returns a new instance of IDataProtection for the provider.
  92. </summary>
  93. <param name="purposes">Additional entropy used to ensure protected data may only be unprotected for the correct purposes.</param>
  94. <returns>An instance of a data protection service</returns>
  95. </member>
  96. <member name="T:Microsoft.Owin.Security.DataProtection.IDataProtector">
  97. <summary>
  98. Service used to protect and unprotect data
  99. </summary>
  100. </member>
  101. <member name="M:Microsoft.Owin.Security.DataProtection.IDataProtector.Protect(System.Byte[])">
  102. <summary>
  103. Called to protect user data.
  104. </summary>
  105. <param name="userData">The original data that must be protected</param>
  106. <returns>A different byte array that may be unprotected or altered only by software that has access to
  107. the an identical IDataProtection service.</returns>
  108. </member>
  109. <member name="M:Microsoft.Owin.Security.DataProtection.IDataProtector.Unprotect(System.Byte[])">
  110. <summary>
  111. Called to unprotect user data
  112. </summary>
  113. <param name="protectedData">The byte array returned by a call to Protect on an identical IDataProtection service.</param>
  114. <returns>The byte array identical to the original userData passed to Protect.</returns>
  115. </member>
  116. <member name="T:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler`1">
  117. <summary>
  118. Base class for the per-request work performed by most authentication middleware.
  119. </summary>
  120. <typeparam name="TOptions">Specifies which type for of AuthenticationOptions property</typeparam>
  121. </member>
  122. <member name="T:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler">
  123. <summary>
  124. Base class for the per-request work performed by most authentication middleware.
  125. </summary>
  126. </member>
  127. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler.TeardownAsync">
  128. <summary>
  129. Called once per request after Initialize and Invoke.
  130. </summary>
  131. <returns>async completion</returns>
  132. </member>
  133. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler.InvokeAsync">
  134. <summary>
  135. Called once by common code after initialization. If an authentication middleware responds directly to
  136. specifically known paths it must override this virtual, compare the request path to it's known paths,
  137. provide any response information as appropriate, and true to stop further processing.
  138. </summary>
  139. <returns>Returning false will cause the common code to call the next middleware in line. Returning true will
  140. cause the common code to begin the async completion journey without calling the rest of the middleware
  141. pipeline.</returns>
  142. </member>
  143. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler.AuthenticateAsync">
  144. <summary>
  145. Causes the authentication logic in AuthenticateCore to be performed for the current request
  146. at most once and returns the results. Calling Authenticate more than once will always return
  147. the original value.
  148. This method should always be called instead of calling AuthenticateCore directly.
  149. </summary>
  150. <returns>The ticket data provided by the authentication logic</returns>
  151. </member>
  152. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler.AuthenticateCoreAsync">
  153. <summary>
  154. The core authentication logic which must be provided by the handler. Will be invoked at most
  155. once per request. Do not call directly, call the wrapping Authenticate method instead.
  156. </summary>
  157. <returns>The ticket data provided by the authentication logic</returns>
  158. </member>
  159. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler.ApplyResponseAsync">
  160. <summary>
  161. Causes the ApplyResponseCore to be invoked at most once per request. This method will be
  162. invoked either earlier, when the response headers are sent as a result of a response write or flush,
  163. or later, as the last step when the original async call to the middleware is returning.
  164. </summary>
  165. <returns></returns>
  166. </member>
  167. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler.ApplyResponseCoreAsync">
  168. <summary>
  169. Core method that may be overridden by handler. The default behavior is to call two common response
  170. activities, one that deals with sign-in/sign-out concerns, and a second to deal with 401 challenges.
  171. </summary>
  172. <returns></returns>
  173. </member>
  174. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler.ApplyResponseGrantAsync">
  175. <summary>
  176. Override this method to dela with sign-in/sign-out concerns, if an authentication scheme in question
  177. deals with grant/revoke as part of it's request flow. (like setting/deleting cookies)
  178. </summary>
  179. <returns></returns>
  180. </member>
  181. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler.ApplyResponseChallengeAsync">
  182. <summary>
  183. Override this method to dela with 401 challenge concerns, if an authentication scheme in question
  184. deals an authentication interaction as part of it's request flow. (like adding a response header, or
  185. changing the 401 result to 302 of a login page or external sign-in location.)
  186. </summary>
  187. <returns></returns>
  188. </member>
  189. <member name="M:Microsoft.Owin.Security.Infrastructure.AuthenticationHandler`1.Initialize(`0,Microsoft.Owin.IOwinContext)">
  190. <summary>
  191. Initialize is called once per request to contextualize this instance with appropriate state.
  192. </summary>
  193. <param name="options">The original options passed by the application control behavior</param>
  194. <param name="context">The utility object to observe the current request and response</param>
  195. <returns>async completion</returns>
  196. </member>
  197. <member name="T:Microsoft.Owin.Security.ICertificateValidator">
  198. <summary>
  199. Interface for providing pinned certificate validation, which checks HTTPS
  200. communication against a known good list of certificates to protect against
  201. compromised or rogue CAs issuing certificates for hosts without the
  202. knowledge of the host owner.
  203. </summary>
  204. </member>
  205. <member name="M:Microsoft.Owin.Security.ICertificateValidator.Validate(System.Object,System.Security.Cryptography.X509Certificates.X509Certificate,System.Security.Cryptography.X509Certificates.X509Chain,System.Net.Security.SslPolicyErrors)">
  206. <summary>
  207. Verifies the remote Secure Sockets Layer (SSL) certificate used for authentication.
  208. </summary>
  209. <param name="sender">An object that contains state information for this validation.</param>
  210. <param name="certificate">The certificate used to authenticate the remote party.</param>
  211. <param name="chain">The chain of certificate authorities associated with the remote certificate.</param>
  212. <param name="sslPolicyErrors">One or more errors associated with the remote certificate.</param>
  213. <returns>A Boolean value that determines whether the specified certificate is accepted for authentication.</returns>
  214. </member>
  215. <member name="T:Microsoft.Owin.Security.CertificateThumbprintValidator">
  216. <summary>
  217. Provides pinned certificate validation based on the certificate thumbprint.
  218. </summary>
  219. </member>
  220. <member name="M:Microsoft.Owin.Security.CertificateThumbprintValidator.#ctor(System.Collections.Generic.IEnumerable{System.String})">
  221. <summary>
  222. Initializes a new instance of the <see cref="T:Microsoft.Owin.Security.CertificateThumbprintValidator"/> class.
  223. </summary>
  224. <param name="validThumbprints">A set of thumbprints which are valid for an HTTPS request.</param>
  225. </member>
  226. <member name="M:Microsoft.Owin.Security.CertificateThumbprintValidator.Validate(System.Object,System.Security.Cryptography.X509Certificates.X509Certificate,System.Security.Cryptography.X509Certificates.X509Chain,System.Net.Security.SslPolicyErrors)">
  227. <summary>
  228. Validates that the certificate thumbprints in the signing chain match at least one whitelisted thumbprint.
  229. </summary>
  230. <param name="sender">An object that contains state information for this validation.</param>
  231. <param name="certificate">The certificate used to authenticate the remote party.</param>
  232. <param name="chain">The chain of certificate authorities associated with the remote certificate.</param>
  233. <param name="sslPolicyErrors">One or more errors associated with the remote certificate.</param>
  234. <returns>A Boolean value that determines whether the specified certificate is accepted for authentication.</returns>
  235. </member>
  236. <member name="T:Microsoft.Owin.Security.DataProtection.DpapiDataProtectionProvider">
  237. <summary>
  238. Used to provide the data protection services that are derived from the Data Protection API. It is the best choice of
  239. data protection when you application is not hosted by ASP.NET and all processes are running as the same domain identity.
  240. </summary>
  241. </member>
  242. <member name="M:Microsoft.Owin.Security.DataProtection.DpapiDataProtectionProvider.#ctor">
  243. <summary>
  244. Initializes a new DpapiDataProtectionProvider with a random application
  245. name. This is only useful to protect data for the duration of the
  246. current application execution.
  247. </summary>
  248. </member>
  249. <member name="M:Microsoft.Owin.Security.DataProtection.DpapiDataProtectionProvider.#ctor(System.String)">
  250. <summary>
  251. Initializes a new DpapiDataProtectionProvider which uses the given
  252. appName as part of the protection algorithm
  253. </summary>
  254. <param name="appName">A user provided value needed to round-trip secured
  255. data. The default value comes from the IAppBuilder.Properties["owin.AppName"]
  256. when self-hosted.</param>
  257. </member>
  258. <member name="M:Microsoft.Owin.Security.DataProtection.DpapiDataProtectionProvider.Create(System.String[])">
  259. <summary>
  260. Returns a new instance of IDataProtection for the provider.
  261. </summary>
  262. <param name="purposes">Additional entropy used to ensure protected data may only be unprotected for the correct purposes.</param>
  263. <returns>An instance of a data protection service</returns>
  264. </member>
  265. <member name="T:Microsoft.Owin.Security.Infrastructure.SecurityHelper">
  266. <summary>
  267. Helper code used when implementing authentication middleware
  268. </summary>
  269. </member>
  270. <member name="M:Microsoft.Owin.Security.Infrastructure.SecurityHelper.#ctor(Microsoft.Owin.IOwinContext)">
  271. <summary>
  272. Helper code used when implementing authentication middleware
  273. </summary>
  274. <param name="request"></param>
  275. </member>
  276. <member name="M:Microsoft.Owin.Security.Infrastructure.SecurityHelper.AddUserIdentity(System.Security.Principal.IIdentity)">
  277. <summary>
  278. Add an additional ClaimsIdentity to the ClaimsPrincipal in the "server.User" environment key
  279. </summary>
  280. <param name="identity"></param>
  281. </member>
  282. <member name="M:Microsoft.Owin.Security.Infrastructure.SecurityHelper.LookupChallenge(System.String,Microsoft.Owin.Security.AuthenticationMode)">
  283. <summary>
  284. Find response challenge details for a specific authentication middleware
  285. </summary>
  286. <param name="authenticationType">The authentication type to look for</param>
  287. <param name="authenticationMode">The authentication mode the middleware is running under</param>
  288. <returns>The information instructing the middleware how it should behave</returns>
  289. </member>
  290. <member name="M:Microsoft.Owin.Security.Infrastructure.SecurityHelper.LookupSignIn(System.String)">
  291. <summary>
  292. Find response sign-in details for a specific authentication middleware
  293. </summary>
  294. <param name="authenticationType">The authentication type to look for</param>
  295. <returns>The information instructing the middleware how it should behave</returns>
  296. </member>
  297. <member name="M:Microsoft.Owin.Security.Infrastructure.SecurityHelper.LookupSignOut(System.String,Microsoft.Owin.Security.AuthenticationMode)">
  298. <summary>
  299. Find response sign-out details for a specific authentication middleware
  300. </summary>
  301. <param name="authenticationType">The authentication type to look for</param>
  302. <param name="authenticationMode">The authentication mode the middleware is running under</param>
  303. <returns>The information instructing the middleware how it should behave</returns>
  304. </member>
  305. <member name="T:Microsoft.Owin.Security.Provider.BaseContext`1">
  306. <summary>
  307. Base class used for certain event contexts
  308. </summary>
  309. </member>
  310. <member name="T:Microsoft.Owin.Security.Provider.EndpointContext`1">
  311. <summary>
  312. Base class used for certain event contexts
  313. </summary>
  314. </member>
  315. <member name="M:Microsoft.Owin.Security.Provider.EndpointContext`1.#ctor(Microsoft.Owin.IOwinContext,`0)">
  316. <summary>
  317. Creates an instance of this context
  318. </summary>
  319. </member>
  320. <member name="M:Microsoft.Owin.Security.Provider.EndpointContext`1.RequestCompleted">
  321. <summary>
  322. Prevents the request from being processed further by other components.
  323. IsRequestCompleted becomes true after calling.
  324. </summary>
  325. </member>
  326. <member name="P:Microsoft.Owin.Security.Provider.EndpointContext`1.IsRequestCompleted">
  327. <summary>
  328. True if the request should not be processed further by other components.
  329. </summary>
  330. </member>
  331. <member name="T:Microsoft.Owin.Security.Resources">
  332. <summary>
  333. A strongly-typed resource class, for looking up localized strings, etc.
  334. </summary>
  335. </member>
  336. <member name="P:Microsoft.Owin.Security.Resources.ResourceManager">
  337. <summary>
  338. Returns the cached ResourceManager instance used by this class.
  339. </summary>
  340. </member>
  341. <member name="P:Microsoft.Owin.Security.Resources.Culture">
  342. <summary>
  343. Overrides the current thread's CurrentUICulture property for all
  344. resource lookups using this strongly typed resource class.
  345. </summary>
  346. </member>
  347. <member name="P:Microsoft.Owin.Security.Resources.Exception_AuthenticationTokenDoesNotProvideSyncMethods">
  348. <summary>
  349. Looks up a localized string similar to The AuthenticationTokenProvider&apos;s required synchronous events have not been registered..
  350. </summary>
  351. </member>
  352. <member name="P:Microsoft.Owin.Security.Resources.Exception_DefaultDpapiRequiresAppNameKey">
  353. <summary>
  354. Looks up a localized string similar to The default data protection provider may only be used when the IAppBuilder.Properties contains an appropriate &apos;host.AppName&apos; key..
  355. </summary>
  356. </member>
  357. <member name="P:Microsoft.Owin.Security.Resources.Exception_MissingDefaultSignInAsAuthenticationType">
  358. <summary>
  359. Looks up a localized string similar to A default value for SignInAsAuthenticationType was not found in IAppBuilder Properties. This can happen if your authentication middleware are added in the wrong order, or if one is missing..
  360. </summary>
  361. </member>
  362. <member name="P:Microsoft.Owin.Security.Resources.Exception_UnhookAuthenticationStateType">
  363. <summary>
  364. Looks up a localized string similar to The state passed to UnhookAuthentication may only be the return value from HookAuthentication..
  365. </summary>
  366. </member>
  367. <member name="P:Microsoft.Owin.Security.Resources.Warning_CookieNotFound">
  368. <summary>
  369. Looks up a localized string similar to {0} cookie not found..
  370. </summary>
  371. </member>
  372. <member name="P:Microsoft.Owin.Security.Resources.Warning_CookieStateMismatch">
  373. <summary>
  374. Looks up a localized string similar to {0} correlation cookie and state property mismatch..
  375. </summary>
  376. </member>
  377. <member name="P:Microsoft.Owin.Security.Resources.Warning_StateNotFound">
  378. <summary>
  379. Looks up a localized string similar to {0} state property not found..
  380. </summary>
  381. </member>
  382. <member name="T:Microsoft.Owin.Security.CertificateSubjectKeyIdentifierValidator">
  383. <summary>
  384. Provides pinned certificate validation based on the subject key identifier of the certificate.
  385. </summary>
  386. </member>
  387. <member name="M:Microsoft.Owin.Security.CertificateSubjectKeyIdentifierValidator.#ctor(System.Collections.Generic.IEnumerable{System.String})">
  388. <summary>
  389. Initializes a new instance of the <see cref="T:Microsoft.Owin.Security.CertificateSubjectKeyIdentifierValidator"/> class.
  390. </summary>
  391. <param name="validSubjectKeyIdentifiers">A set of subject key identifiers which are valid for an HTTPS request.</param>
  392. </member>
  393. <member name="T:Microsoft.Owin.Security.SubjectPublicKeyInfoAlgorithm">
  394. <summary>
  395. The algorithm used to generate the subject public key information blob hashes.
  396. </summary>
  397. </member>
  398. <member name="T:Microsoft.Owin.Security.CertificateSubjectPublicKeyInfoValidator">
  399. <summary>
  400. Implements a cert pinning validator passed on
  401. http://datatracker.ietf.org/doc/draft-ietf-websec-key-pinning/?include_text=1
  402. </summary>
  403. </member>
  404. <member name="M:Microsoft.Owin.Security.CertificateSubjectPublicKeyInfoValidator.#ctor(System.Collections.Generic.IEnumerable{System.String},Microsoft.Owin.Security.SubjectPublicKeyInfoAlgorithm)">
  405. <summary>
  406. Initializes a new instance of the <see cref="T:Microsoft.Owin.Security.CertificateSubjectPublicKeyInfoValidator"/> class.
  407. </summary>
  408. <param name="validBase64EncodedSubjectPublicKeyInfoHashes">A collection of valid base64 encoded hashes of the certificate public key information blob.</param>
  409. <param name="algorithm">The algorithm used to generate the hashes.</param>
  410. </member>
  411. <member name="M:Microsoft.Owin.Security.CertificateSubjectPublicKeyInfoValidator.Validate(System.Object,System.Security.Cryptography.X509Certificates.X509Certificate,System.Security.Cryptography.X509Certificates.X509Chain,System.Net.Security.SslPolicyErrors)">
  412. <summary>
  413. Validates at least one SPKI hash is known.
  414. </summary>
  415. <param name="sender">An object that contains state information for this validation.</param>
  416. <param name="certificate">The certificate used to authenticate the remote party.</param>
  417. <param name="chain">The chain of certificate authorities associated with the remote certificate.</param>
  418. <param name="sslPolicyErrors">One or more errors associated with the remote certificate.</param>
  419. <returns>A Boolean value that determines whether the specified certificate is accepted for authentication.</returns>
  420. </member>
  421. <member name="M:Microsoft.Win32.NativeMethods.CryptEncodeObject(System.UInt32,System.IntPtr,Microsoft.Win32.NativeMethods.CERT_PUBLIC_KEY_INFO@,System.Byte[],System.UInt32@)">
  422. <summary>
  423. Encodes a structure of the type indicated by the value of the lpszStructType parameter.
  424. </summary>
  425. <param name="dwCertEncodingType">Type of encoding used.</param>
  426. <param name="lpszStructType">The high-order word is zero, the low-order word specifies the integer identifier for the type of the specified structure so
  427. we can use the constants in http://msdn.microsoft.com/en-us/library/windows/desktop/aa378145%28v=vs.85%29.aspx</param>
  428. <param name="pvStructInfo">A pointer to the structure to be encoded.</param>
  429. <param name="pbEncoded">A pointer to a buffer to receive the encoded structure. This parameter can be NULL to retrieve the size of this information for memory allocation purposes.</param>
  430. <param name="pcbEncoded">A pointer to a DWORD variable that contains the size, in bytes, of the buffer pointed to by the pbEncoded parameter.</param>
  431. <returns></returns>
  432. </member>
  433. </members>
  434. </doc>