Usage Examples
Learn how to integrate OAuth authentication into your web application.
Basic Authentication Setup
Complete Program.cs Configuration
This example shows a complete setup with Google and Microsoft authentication.
using Noundry.Authnz.Extensions;
var builder = WebApplication.CreateBuilder(args);
builder.Services.AddRazorPages();
builder.Configuration.AddDotEnvX();
builder.Services.AddNoundryOAuth(options =>
{
options.AddGoogle(
builder.Configuration["GOOGLE_CLIENT_ID"],
builder.Configuration["GOOGLE_CLIENT_SECRET"]
);
options.AddMicrosoft(
builder.Configuration["MICROSOFT_CLIENT_ID"],
builder.Configuration["MICROSOFT_CLIENT_SECRET"]
);
options.JwtSecret = builder.Configuration["JWT_SECRET"];
});
var app = builder.Build();
app.UseNoundryOAuth();
app.UseAuthentication();
app.UseAuthorization();
app.MapRazorPages();
app.Run();Razor Pages Integration
Login Page with OAuth Buttons
Use Noundry.Authnz TagHelpers for easy OAuth integration in Razor Pages.
Pre-built OAuth buttons
Automatic provider detection
Responsive design
@* Pages/Auth/Login.cshtml *@
@page
@model LoginModel
<div class="max-w-md mx-auto mt-16">
<div class="bg-white rounded-lg shadow-lg p-8">
<h2 class="text-2xl font-bold text-center mb-6">
Sign In
</h2>
<!-- OAuth Login Buttons -->
<div class="space-y-4">
<noundry-oauth-login show-all="true"></noundry-oauth-login>
</div>
<!-- Or show individual providers -->
<div class="space-y-3 mt-6">
<noundry-oauth-login provider="google"></noundry-oauth-login>
<noundry-oauth-login provider="microsoft"></noundry-oauth-login>
<noundry-oauth-login provider="github"></noundry-oauth-login>
</div>
</div>
</div>User Status & Profile Display
<!-- Show when user is anonymous -->
<noundry-oauth-status show-when-anonymous="true">
<a asp-page="/Auth/Login">Sign In</a>
</noundry-oauth-status>
<!-- Show when user is authenticated -->
<noundry-oauth-status show-when-authenticated="true"
show-avatar="true"
show-name="true"
show-email="true"
user-class="flex items-center space-x-3">
<a asp-page="/Auth/Logout" class="text-red-600">Logout</a>
</noundry-oauth-status>Example Output:
API Authentication & Authorization
Protecting API Endpoints
Use JWT authentication to protect API endpoints with automatic token validation.
Automatic JWT validation
User claims access
Role-based authorization
[ApiController]
[Route("api/[controller]")]
public class ProductsController : ControllerBase
{
// Public endpoint - no authentication required
[HttpGet]
public IActionResult GetProducts()
{
return Ok(products);
}
// Protected endpoint - authentication required
[HttpPost]
[Authorize]
public IActionResult CreateProduct(Product product)
{
// Access user information from JWT claims
var userId = User.FindFirst("sub")?.Value;
var email = User.FindFirst("email")?.Value;
product.CreatedBy = userId;
return Ok(CreateProduct(product));
}
// Admin only endpoint
[HttpDelete("{id}")]
[Authorize(Roles = "Admin")]
public IActionResult DeleteProduct(int id)
{
return Ok(DeleteProduct(id));
}
}Role-Based Access Control
Custom Authorization Policies
Define custom authorization policies and use claims for fine-grained access control.
Policy-based authorization
Claims-based identity
Razor Page protection
// Add authorization policies
builder.Services.AddAuthorization(options =>
{
options.AddPolicy("AdminOnly", policy =>
policy.RequireClaim("role", "admin"));
options.AddPolicy("ManagerOrAdmin", policy =>
policy.RequireClaim("role", "manager", "admin"));
});
// Use in controllers
[Authorize(Policy = "AdminOnly")]
public IActionResult AdminDashboard()
{
return View();
}Razor Page Authorization
@* Pages/Admin/Index.cshtml *@
@page
@model AdminIndexModel
@attribute [Authorize(Policy = "AdminOnly")]
<h1>Admin Dashboard</h1>
<!-- Show user information -->
<noundry-oauth-status show-when-authenticated="true"
show-name="true"
show-email="true">
</noundry-oauth-status>
<!-- Role-specific content -->
<div asp-authz-policy="AdminOnly">
<h2>Admin Controls</h2>
<!-- Admin-only content here -->
</div>// Pages/Admin/Index.cshtml.cs
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc.RazorPages;
[Authorize(Policy = "AdminOnly")]
public class AdminIndexModel : PageModel
{
public string UserName { get; set; }
public string UserEmail { get; set; }
public void OnGet()
{
// Access user claims from JWT token
UserName = User.FindFirst("name")?.Value;
UserEmail = User.FindFirst("email")?.Value;
// Check specific permissions
var canManageUsers = User.HasClaim("permission", "manage:users");
}
}