Skip to content
/ fast-aspnet Public

pre-built ASP.NET core web API using .NET 8 with embedded security features, good practices & CLEAN architecture

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Yekuuun/fast-aspnet

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
Api
Api
 
 
assets
assets
 
 
README.md
README.md
 
 
fast-aspnet.sln
fast-aspnet.sln
 
 

Repository files navigation

                          ____           __                                    __ 
                         / __/___ ______/ /_      ____ __________  ____  ___  / /_
                        / /_/ __ `/ ___/ __/_____/ __ `/ ___/ __ \/ __ \/ _ \/ __/
                       / __/ /_/ (__  ) /_/_____/ /_/ (__  ) /_/ / / / /  __/ /_  
                      /_/  \__,_/____/\__/      \__,_/____/ .___/_/ /_/\___/\__/  
                                                         /_/
                                ---ASP.NET core WEB API using .NET8---

fast-aspnet is a pre-built ASP.NET core web API using .NET 8 with embedded security features & good practices.

Code Architecture :

Before delving into features, let's explain the code organization:

MODELS: Models are used to define your future database entities. I've chosen to use BaseEntity models to centralize data logic, such as IDs and creation dates, for cleaner code.

REPOSITORIES: Repositories are utilized to interact directly with the database using an abstraction layer for communication.

SERVICES: Services are employed to manipulate client data using DTOs (Data Transfer Objects) and interact with the database using repository methods.

CONTROLLERS: Controllers are responsible for interacting with your API through endpoints and retrieving data -> All controller are using RESTFULL convention

MIGRATIONS : Migrations are used to interact with database creating your Models into it.

Creating migrations ? : dotnet ef migrations add <migration_name>

DebugInfo

Sec features :

This section contains description about good practices i learned after completing pentest audits for other API's.

HTTP headers

Add custom http headers to yours requests preventing from attacks.

Wich add ? => OWASP CheatSheet

DebugInfo

DebugInfo

Rate limiting

A rate limiter is a mechanism used in web applications and APIs to control the number of requests a client can make to a server within a specified time frame. Here's a concise overview: Purpose of a Rate Limiter:

  • Prevent Abuse: Protect your server from potential Denial of Service (DoS) attacks by limiting the number of requests from a single source.
  • Resource Management: Ensure fair usage of server resources by preventing any single client from overwhelming the system.
  • Cost Control: Reduce infrastructure costs by limiting excessive API calls, especially in cloud-based environments where usage directly impacts billing.
  • Performance Optimization: Maintain consistent performance by preventing any single client from monopolizing server resources.

Rate limiter - IP based.

DebugInfo

About

pre-built ASP.NET core web API using .NET 8 with embedded security features, good practices & CLEAN architecture

Topics

api fast security csharp dotnet aspnet webapi

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages