Skip to main content
BuyLog In
XAF: Cross-Platform .NET App UI & Web API
Search in…
Docs > Application Security and Data Safety > Security (Access Control & Authentication) > Non-XAF UI Scenarios > Connect a Non-XAF Application to a Middle Tier Security Server (EF Core)
All docs
V25.1
    • .NET 8.0+
    XAF: Cross-Platform .NET App UI & Web API
    .NET Support and Migration
    Getting Started
    Installation, Upgrade, Version History
    Backend Web API Service
    UI Shell and Base Infrastructure
    Storage, ORM, and Business Model Design
    Data Manipulation and Business Logic
    User Interface and Behavior Customization
    Data Filtering
    Application Security and Data Safety
    Security (Access Control & Authentication)
    Security Tiers
    User Logon and Authentication
    ORM Object Model, Policy Configuration and Storage
    Authorization and Data Protection
    Non-XAF UI Scenarios
    Connect a Non-XAF Application to a Middle Tier Security Server (EF Core)
    Connect to an XPO Middle Tier Server from Non-XAF Applications (.NET)
    Connect to an XPO WCF Application Server from Non-XAF Applications (.NET Framework)
    Security Considerations
    Audit Trail (History of Data Changes)
    Multi-Tenancy (Data per Tenant)
    Validation (Prevent Data Errors)
    Conditional Appearance (Manage State of UI Elements)
    Reporting (Shape, Export & Print Data)
    Analytics (Extract Data Insights)
    Document Management
    Business Process Management
    Event Planning
    Localization
    Accessibility Support
    Debugging, Testing and Error Handling
    Deployment
    Support, QA & Troubleshooting
    API Reference
    Download CHM

    Connect a Non-XAF Application to a Middle Tier Security Server (EF Core)

    • 2 minutes to read

    The following steps outline how to connect a non-XAF .NET application to a database through the EF Core-based Middle Tier Security application.

    Note

    The technique described in this topic was not tested with .NET MAUI and Blazor WebAssembly clients. With these platforms, we recommend that you use our Web API Service on the backend as demonstrated in the following examples on GitHub:

    1. Install the following NuGet package: DevExpress.ExpressApp.EFCore.

    2. Create a Middle Tier client:

      // The following code sample sets the Middle Tier server URL to the default value for debug mode
// This setting may be different in your application
// You can check this setting in the following Middle Tier project's file: Properties/launchSettings.json
var middleTierClient = new MiddleTierClientBuilder<MainDemoDbContext>()
    .UseServer(" https://localhost:44319/ ")
    .UsePasswordAuthentication("John", "")
    .Build();

    3. After the client successfully connects to the Middle Tier server and passes authentication, you can access security permissions for the current user.

      var objectSpace = middleTierClient.CreateObjectSpace();
bool isReadGranted = middleTierClient.Security.CanRead<Employee>(objectSpace);
bool isWriteGranted = middleTierClient.Security.CanWrite<Employee>(objectSpace, nameof(Employee.Address1));

    4. You can use the Middle Tier Security as a database provider to access data through an EF Core DbContext or Object Space:

      // Use DbContext to access data:
var dbContext = middleTierClient.CreateDbContext();
var users = dbContext.Employees.ToList();

// Use Object Space to access data:
var objectSpace = middleTierClient.CreateObjectSpace();
var users = objectSpace.GetObjectsQuery<Employee>().ToList();

    5. You need to dispose the Middle Tier client when it is no longer needed:

      middleTierClient.Dispose();

    Tip

    You can use DevExpress Template Kit for Visual Studio to create WinForms and WPF applications that implement the described approach.

    See Also