Microsoft.AspNetCore.DataProtection.Extensions
Reads an unsigned 64-bit integer from
starting at offset . Data is read big-endian.
Writes an unsigned 64-bit integer to starting at
offset . Data is written big-endian.
Helpful extension methods for data protection APIs.
Cryptographically protects a piece of plaintext data, expiring the data after
the specified amount of time has elapsed.
The protector to use.
The plaintext data to protect.
The amount of time after which the payload should no longer be unprotectable.
The protected form of the plaintext data.
Cryptographically protects a piece of plaintext data, expiring the data at
the chosen time.
The protector to use.
The plaintext data to protect.
The time when this payload should expire.
The protected form of the plaintext data.
Cryptographically protects a piece of plaintext data, expiring the data after
the specified amount of time has elapsed.
The protector to use.
The plaintext data to protect.
The amount of time after which the payload should no longer be unprotectable.
The protected form of the plaintext data.
Converts an into an
so that payloads can be protected with a finite lifetime.
The to convert to a time-limited protector.
An .
Cryptographically unprotects a piece of protected data.
The protector to use.
The protected data to unprotect.
An 'out' parameter which upon a successful unprotect
operation receives the expiration date of the payload.
The plaintext form of the protected data.
Thrown if is invalid, malformed, or expired.
Contains factory methods for creating an where keys are stored
at a particular location on the file system.
Use these methods when not using dependency injection to provide the service to the application.
Creates a that store keys in a location based on
the platform and operating system.
An identifier that uniquely discriminates this application from all other
applications on the machine.
Creates an given a location at which to store keys.
The in which keys should be stored. This may
represent a directory on a local disk or a UNC share.
Creates an given a location at which to store keys and an
optional configuration callback.
The in which keys should be stored. This may
represent a directory on a local disk or a UNC share.
An optional callback which provides further configuration of the data protection
system. See for more information.
Creates a that store keys in a location based on
the platform and operating system and uses the given to encrypt the keys.
An identifier that uniquely discriminates this application from all other
applications on the machine.
The to be used for encryption.
Creates an given a location at which to store keys
and a used to encrypt the keys.
The in which keys should be stored. This may
represent a directory on a local disk or a UNC share.
The to be used for encryption.
Creates an given a location at which to store keys, an
optional configuration callback and a used to encrypt the keys.
The in which keys should be stored. This may
represent a directory on a local disk or a UNC share.
An optional callback which provides further configuration of the data protection
system. See for more information.
The to be used for encryption.
An interface that can provide data protection services where payloads have
a finite lifetime.
It is intended that payload lifetimes be somewhat short. Payloads protected
via this mechanism are not intended for long-term persistence (e.g., longer
than a few weeks).
Creates an given a purpose.
The purpose to be assigned to the newly-created .
An tied to the provided purpose.
The parameter must be unique for the intended use case; two
different instances created with two different
values will not be able to decipher each other's payloads. The parameter
value is not intended to be kept secret.
Cryptographically protects a piece of plaintext data, expiring the data at
the chosen time.
The plaintext data to protect.
The time when this payload should expire.
The protected form of the plaintext data.
Cryptographically unprotects a piece of protected data.
The protected data to unprotect.
An 'out' parameter which upon a successful unprotect
operation receives the expiration date of the payload.
The plaintext form of the protected data.
Thrown if is invalid, malformed, or expired.
Wraps an existing and appends a purpose that allows
protecting data with a finite lifetime.
Determines whether an exception must be homogenized by being wrapped inside a
CryptographicException before being rethrown.
An error occurred during a cryptographic operation.
The payload expired at {0}.
The payload expired at {0}.
The payload is invalid.