Supporting .NET 6.0, .NET 5.0, .NET Core 3.0, .NET Standard 2.0 and .NET Framework 4.6.1+. Refer to Microsoft's documentation for compatibility information.
Castle analyzes user behavior in web and mobile apps to stop fraud before it happens.
See the documentation for how to use this SDK with the Castle APIs
Install the Castle.Sdk nuget.
nuget install Castle.Sdk
install-package Castle.Sdk
- Go to Tools -> Package Manager -> Manage NuGet Packages for Solution...
- Click the Browse tab and search for
Castle.Sdk - Click the
Castle.Sdkpackage in the search results, select version and what projects to apply it to on the right side, and click Install
Go to the settings page of your Castle account and find your API Secret. Use it to create a new instance of the CastleClient class.
var client = new CastleClient("YOUR SECRET");It's a good idea to set up your CastleClient instance using an IoC container.
public void ConfigureServices(IServiceCollection services)
{
...
services.AddSingleton(new CastleClient(new CastleConfiguration("YOUR SECRET")));
}The CastleConfiguration object has a number of properties that control the SDK.
| Property | Default | Description |
|---|---|---|
| ApiSecret | Secret used to authenticate with the Castle Api. Required | |
| FailoverStrategy | Allow | The response action to return in case of a failover in an Authenticate request. |
| Timeout | 1000 | Timeout for requests, in milliseconds. |
| BaseUrl | https://api.castle.io | Base Castle Api url. |
| LogLevel | Error | The log level applied by the injected ICastleLogger implementation. |
| AllowList | List of headers that should be passed intact to the API. A list of recommended .headers can be retrieved from the static property Castle.Headers.AllowList in the SDK |
|
| DenyList | List of header that should not be passed intact to the API. | |
| DoNotTrack | false | If true, no requests are actually sent to the Caste Api, and Authenticate returns a failover response. |
| Logger | Your own logger implementation. | |
| IpHeaders | IP Headers to look for a client IP address | |
| TrustedProxies | Trusted public proxies list | |
| TrustedProxyDepth | 0 | Number of trusted proxies used in the chain |
| TrustProxyChain | false | Is trusting all of the proxy IPs in X-Forwarded-For enabled |
The SDK allows customized logging by way of implementing the ICastleLogger interface and passing in an instance as part of the CastleConfiguration. Exactly what gets logged can be controlled by setting the LogLevel property of CastleConfiguration.
var client = new CastleClient(new CastleConfiguration("secret") {
Logger = new MyLogger()
});public class DebugLogger : ICastleLogger
{
public void Info(string message)
{
Debug.WriteLine($"INFO: {message}");
}
public void Warn(string message)
{
Debug.WriteLine($"WARNING: {message}");
}
public void Error(string message)
{
Debug.WriteLine($"ERROR: {message}");
}
}public class HomeController : Controller
{
public ActionResult Index()
{
var actionRequest = new ActionRequest()
{
Context = Castle.Context.FromHttpRequest(Request)
...public class IndexModel : PageModel
{
public void OnGet()
{
var actionRequest = new ActionRequest()
{
Context = Castle.Context.FromHttpRequest(Request)
...You target .NET Framework and get an exception on startup.
System.IO.FileNotFoundException: 'Could not load file or assembly 'System.Runtime.InteropServices.RuntimeInformation, Version=4.0.2.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a' or one of its dependencies. The system cannot find the file specified.
The Castle SDK has a dependency on Sentry.PlatformAbstractions, which in turn uses System.Runtime.InteropServices.RuntimeInformation, version 4.3.0.
Find the binding redirect for System.Runtime.InteropServices.RuntimeInformation in web.config and either remove the entire dependentAssembly element, or update newVersion to 4.3.0.
There is a sample application using ASP.NET Core Razor Pages and this SDK here.