Namespace Umbraco.Cms.Core.Security
Classes
BackOfficeAuthenticationTypeSettings
Configuration settings for back office authentication types.
BackOfficeClaimsPrincipalFactory
A Microsoft.AspNetCore.Identity.UserClaimsPrincipalFactory<TUser> for the back office
BackOfficeErrorDescriber
Umbraco back office specific Microsoft.AspNetCore.Identity.IdentityErrorDescriber
BackOfficeExternalLoginProviderErrors
Represents errors from an external login provider for the back office.
BackOfficeIdentityBuilder
BackOfficeIdentityOptions
Identity options specifically for the back office identity implementation
BackOfficeIdentityUser
The identity user used for the back office
BackOfficePasswordHasher
A password hasher for back office users
BackOfficeUserClientCredentialsManager
BackOfficeUserStore
The user store for back office users
BackOfficeUserValidator<T>
ClientCredentialsManagerBase
ContentPermissions
Checks user access to content
ExternalLogin
ExternalLoginToken
FileStreamSecurityValidator
Default implementation of IFileStreamSecurityValidator that validates file streams using registered IFileStreamSecurityAnalyzer instances.
IdentityAuditEventArgs
This class is used by events raised from the BackofficeUserManager
IdentityMapDefinition
IdentityUserLogin
Entity type for a user's login (i.e. Facebook, Google)
IdentityUserToken
Entity type for a user's external login token.
LegacyPasswordSecurity
Handles password hashing and formatting for legacy hashing algorithms.
MediaPermissions
Checks user access to media
MemberClientCredentials
MemberClientCredentialsManager
MemberIdentityBuilder
MemberIdentityUser
The identity user used for the member
MemberPasswordHasher
A password hasher for members
MemberRoleStore
A custom user store that uses Umbraco member data
MemberUserStore
A custom user store that uses Umbraco member data
MembersErrorDescriber
NoopHtmlSanitizer
A no-operation implementation of IHtmlSanitizer that returns HTML unchanged.
NoopLocalLoginSettingProvider
A default implementation of ILocalLoginSettingProvider that always allows local login.
NoopLookupNormalizer
No-op lookup normalizer to maintain compatibility with ASP.NET Identity 2
NoopMarkdownSanitizer
NoopSetupTwoFactorModel
A No-operation implementation of the ISetupTwoFactorModel.
PasswordGenerator
Generates a password
UmbracoErrorDescriberBase
UmbracoIdentityRole
UmbracoIdentityUser
Abstract class for use in Umbraco Identity for users and members
UmbracoPasswordHasher<TUser>
UmbracoUserConfirmation<TUser>
Confirms whether a user is approved or not
UmbracoUserManager<TUser, TPasswordConfig>
Abstract class for Umbraco User Managers for back office users or front-end members
UmbracoUserStore<TUser, TRole>
UpdateMemberProfileResult
Represents the result of a member profile update operation.
UserGroupAssignmentAuthorization
Shared authorization logic for user group assignment.
Interfaces
IBackOfficePasswordChanger
Provides functionality to change back office user passwords.
IBackOfficeSecurity
Provides methods for backoffice security operations including authentication and authorization.
IBackOfficeSecurityAccessor
Provides access to the IBackOfficeSecurity instance for the current request.
IBackOfficeUserClientCredentialsManager
IBackOfficeUserManager
The user manager for the back office
IBackOfficeUserPasswordChecker
Used by the BackOfficeUserManager to check the username/password which allows for developers to more easily set the logic for this procedure.
IBackOfficeUserStore
Manages persistence of users.
ICoreBackOfficeSignInManager
Provides core sign-in functionality for back office users.
ICoreBackOfficeUserManager
Provides core user management functionality for back office users.
ICspNonceService
Provides CSP nonce generation and retrieval for the current HTTP request.
IExternalLogin
Used to persist external login data for a user
IExternalLoginToken
Used to persist an external login token for a user
IFileStreamSecurityAnalyzer
Analyzes file streams for potential security threats.
IFileStreamSecurityValidator
Validates file streams for security using registered IFileStreamSecurityAnalyzer implementations.
IForgotPasswordUriProvider
Provides functionality to create forgot password URIs for users.
IHmacSecretKeyService
Used to get and create the imaging HMAC secret key.
IHtmlSanitizer
Provides HTML sanitization functionality to prevent XSS attacks.
IIdentityUserLogin
An external login provider linked to a user
IIdentityUserToken
An external login provider token
IInviteUriProvider
Provides functionality to create invite URIs for users.
ILocalLoginSettingProvider
A setting provider for local logins.
IMarkdownSanitizer
Sanitizer service for the markdown editor.
IMemberClientCredentialsManager
IMemberManager
The user manager for members
IMemberUserStore
A custom user store that uses Umbraco member data
IPasswordChanger<TUser>
IPasswordHasher
Provides password hashing functionality.
IPublicAccessChecker
Provides functionality to check public access rules for content items.
ISetupTwoFactorModel
Marker interface that is used to setup different two factor methods. The interface ensures the openapi docs will show all possible implementations.
ITwoFactorProvider
A two factor provider
IUmbracoUserManager<TUser>
A user manager for Umbraco (either back office users or front-end members)
IUserForgotPasswordSender
Provides functionality to send forgot password messages to users.
IUserInviteSender
Provides functionality to send user invitation messages.
IUserSessionStore<TUser>
An IUserStore interface part to implement if the store supports validating user session Ids
Enums
AuditEvent
Specifies the type of audit event that occurred.
BackOfficeUserPasswordCheckerResult
The result returned from the IBackOfficeUserPasswordChecker.
ContentPermissions.ContentAccess
Represents the result of a content access check.
HmacSecretKeyOperationStatus
Represents the status of an HMAC secret key operation.
MediaPermissions.MediaAccess
Represents the result of a media access check.
PublicAccessStatus
Represents the result of a public access check for protected content.
UpdateMemberProfileStatus
Represents the status of a member profile update operation.