Can this skill help with the new OAuth2 implementation in XAF v24.2?

Yes, it includes specific guidance for implementing OAuth2 and Entra ID authentication providers introduced in XAF v24.2 and stabilized in v25.1.

How does it handle Web API security?

It provides standardized setup instructions for JWT Bearer authentication, enabling secure access to XAF OData and Web API endpoints from external clients.

Does it support both EF Core and XPO?

Yes, the skill provides implementation patterns for security configuration across both Entity Framework Core and XPO ORM providers within XAF.

Can I use this for row-level security (multi-tenancy)?

Absolutely. It covers Object-level permissions using criteria strings and lambda expressions to ensure users only retrieve permitted records automatically.

XAF Security System Expert

Name: XAF Security System Expert
Author: kashiash

bykashiash

•

安全与测试

Implements and configures robust role-based access control and authentication for DevExpress XAF applications.

This skill enables Claude to architect and implement the DevExpress eXpressApp Framework (XAF) Security System. It provides deep expertise in configuring the SecurityStrategyComplex, setting up diverse authentication types like OAuth2 (v24.2+) and Active Directory, and defining granular permissions at the type, object, and member levels. It is particularly useful for developers needing to implement complex row-level security, secure Web API endpoints with JWT, or automate security seeding within the Database Updater, ensuring enterprise-grade protection for .NET business applications.

主要功能

01Configures RBAC via SecurityStrategyComplex and Permission Policies

02Defines granular Type, Object, and Member-level permissions

03Implements multi-provider Authentication (Standard, AD, OAuth2, Entra ID)

04Automates security seeding and programmatic permission checks

052 GitHub stars

06Integrates JWT-based security for XAF Web API and OData endpoints

使用场景

01Setting up Single Sign-On (SSO) with Microsoft Entra ID in XAF v24.2+

02Securing backend services for XAF Blazor and WinForms applications

03Implementing row-level security based on user ownership or department

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add kashiash/xaf-skills xaf-security

For use in Claude.ai and ChatGPT