From 6b061d826ea6113c5abeeacb99ee769e306ff867 Mon Sep 17 00:00:00 2001
From: Vincent He <chinadragon0515@gmail.com>
Date: Fri, 22 Jul 2016 16:06:02 +0800
Subject: [PATCH] remove security module

---
 RESTier.sln                                   |  10 --
 .../Spatial/GeographyConverter.cs             |  29 +++-
 .../ApiConfigurationExtensions.cs             |  41 -----
 .../ApiPermission.cs                          | 145 ------------------
 .../ApiPermissionType.cs                      |  46 ------
 .../ApiPolicyActivator.cs                     |  92 -----------
 .../AssertRoleAttribute.cs                    |  56 -------
 .../DenyAttribute.cs                          |  77 ----------
 .../EnableRoleBasedSecurityAttribute.cs       |  35 -----
 .../GrantAttribute.cs                         |  77 ----------
 src/Microsoft.Restier.Security/IApiPolicy.cs  |  30 ----
 .../InvocationContextExtensions.cs            |  71 ---------
 .../Microsoft.Restier.Security.csproj         |  83 ----------
 .../Microsoft.Restier.Security.nuspec         |  17 --
 .../Properties/AssemblyInfo.cs                |  26 ----
 .../Properties/Resources.Designer.cs          |  72 ---------
 .../Properties/Resources.resx                 | 123 ---------------
 .../RoleBasedAuthorizer.cs                    |  95 ------------
 .../packages.config                           |  18 ---
 ...Data.Service.Sample.Northwind.Tests.csproj |   4 -
 ...soft.OData.Service.Sample.Northwind.csproj |   4 -
 .../Models/NorthwindApi.cs                    |  14 --
 22 files changed, 26 insertions(+), 1139 deletions(-)
 delete mode 100644 src/Microsoft.Restier.Security/ApiConfigurationExtensions.cs
 delete mode 100644 src/Microsoft.Restier.Security/ApiPermission.cs
 delete mode 100644 src/Microsoft.Restier.Security/ApiPermissionType.cs
 delete mode 100644 src/Microsoft.Restier.Security/ApiPolicyActivator.cs
 delete mode 100644 src/Microsoft.Restier.Security/AssertRoleAttribute.cs
 delete mode 100644 src/Microsoft.Restier.Security/DenyAttribute.cs
 delete mode 100644 src/Microsoft.Restier.Security/EnableRoleBasedSecurityAttribute.cs
 delete mode 100644 src/Microsoft.Restier.Security/GrantAttribute.cs
 delete mode 100644 src/Microsoft.Restier.Security/IApiPolicy.cs
 delete mode 100644 src/Microsoft.Restier.Security/InvocationContextExtensions.cs
 delete mode 100644 src/Microsoft.Restier.Security/Microsoft.Restier.Security.csproj
 delete mode 100644 src/Microsoft.Restier.Security/Microsoft.Restier.Security.nuspec
 delete mode 100644 src/Microsoft.Restier.Security/Properties/AssemblyInfo.cs
 delete mode 100644 src/Microsoft.Restier.Security/Properties/Resources.Designer.cs
 delete mode 100644 src/Microsoft.Restier.Security/Properties/Resources.resx
 delete mode 100644 src/Microsoft.Restier.Security/RoleBasedAuthorizer.cs
 delete mode 100644 src/Microsoft.Restier.Security/packages.config

diff --git a/RESTier.sln b/RESTier.sln
index b244d77d..696fc3f4 100644
--- a/RESTier.sln
+++ b/RESTier.sln
@@ -9,10 +9,6 @@ Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Core", "Core", "{3F748477-9
 EndProject
 Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "Microsoft.Restier.Core", "src\Microsoft.Restier.Core\Microsoft.Restier.Core.csproj", "{F1BEAB8D-82D4-4BBB-A5C6-BA0E6872E508}"
 EndProject
-Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Modules", "Modules", "{8C1F84BA-3888-4FC5-A286-506A11C54463}"
-EndProject
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "Microsoft.Restier.Security", "src\Microsoft.Restier.Security\Microsoft.Restier.Security.csproj", "{B15A5064-F0D2-480C-A51E-3430A8360827}"
-EndProject
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Providers", "Providers", "{0355FEC8-17CF-44B4-9D24-685266A349FB}"
 EndProject
 Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Publishers", "Publishers", "{432208D4-54DF-453E-96AE-CB7721461030}"
@@ -53,10 +49,6 @@ Global
 		{F1BEAB8D-82D4-4BBB-A5C6-BA0E6872E508}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{F1BEAB8D-82D4-4BBB-A5C6-BA0E6872E508}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{F1BEAB8D-82D4-4BBB-A5C6-BA0E6872E508}.Release|Any CPU.Build.0 = Release|Any CPU
-		{B15A5064-F0D2-480C-A51E-3430A8360827}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
-		{B15A5064-F0D2-480C-A51E-3430A8360827}.Debug|Any CPU.Build.0 = Debug|Any CPU
-		{B15A5064-F0D2-480C-A51E-3430A8360827}.Release|Any CPU.ActiveCfg = Release|Any CPU
-		{B15A5064-F0D2-480C-A51E-3430A8360827}.Release|Any CPU.Build.0 = Release|Any CPU
 		{D1F0FA28-73A1-4202-807B-DCAF5FFEDC2F}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
 		{D1F0FA28-73A1-4202-807B-DCAF5FFEDC2F}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{D1F0FA28-73A1-4202-807B-DCAF5FFEDC2F}.Release|Any CPU.ActiveCfg = Release|Any CPU
@@ -108,8 +100,6 @@ Global
 	GlobalSection(NestedProjects) = preSolution
 		{3F748477-9CDD-485C-A885-1FEC14A24331} = {D5E947EB-03CB-4D04-8937-FF2131BB1F04}
 		{F1BEAB8D-82D4-4BBB-A5C6-BA0E6872E508} = {3F748477-9CDD-485C-A885-1FEC14A24331}
-		{8C1F84BA-3888-4FC5-A286-506A11C54463} = {D5E947EB-03CB-4D04-8937-FF2131BB1F04}
-		{B15A5064-F0D2-480C-A51E-3430A8360827} = {8C1F84BA-3888-4FC5-A286-506A11C54463}
 		{0355FEC8-17CF-44B4-9D24-685266A349FB} = {D5E947EB-03CB-4D04-8937-FF2131BB1F04}
 		{432208D4-54DF-453E-96AE-CB7721461030} = {D5E947EB-03CB-4D04-8937-FF2131BB1F04}
 		{D1F0FA28-73A1-4202-807B-DCAF5FFEDC2F} = {552DD8A7-2F3A-4D0F-B623-B7D832C6C62B}
diff --git a/src/Microsoft.Restier.Providers.EntityFramework/Spatial/GeographyConverter.cs b/src/Microsoft.Restier.Providers.EntityFramework/Spatial/GeographyConverter.cs
index 7033b123..50136689 100644
--- a/src/Microsoft.Restier.Providers.EntityFramework/Spatial/GeographyConverter.cs
+++ b/src/Microsoft.Restier.Providers.EntityFramework/Spatial/GeographyConverter.cs
@@ -16,10 +16,15 @@ namespace Microsoft.Restier.Providers.EntityFramework.Spatial
     /// </summary>
     public static class GeographyConverter
     {
-        private static readonly CultureInfo DefaultCulture = CultureInfo.GetCultureInfo("En-Us");
         private const string GeographyTypeNamePoint = "Point";
         private const string GeographyTypeNameLineString = "LineString";
+        private static readonly CultureInfo DefaultCulture = CultureInfo.GetCultureInfo("En-Us");
 
+        /// <summary>
+        /// Convert a DbGeography to Edm GeographyPoint
+        /// </summary>
+        /// <param name="geography"> The DbGeography to be converted</param>
+        /// <returns>A Edm GeographyPoint</returns>
         public static GeographyPoint ToGeographyPoint(this DbGeography geography)
         {
             if (geography == null)
@@ -42,6 +47,11 @@ public static GeographyPoint ToGeographyPoint(this DbGeography geography)
             return GeographyPoint.Create(lat, lon, alt, m);
         }
 
+        /// <summary>
+        /// Convert a Edm GeographyPoint to DbGeography
+        /// </summary>
+        /// <param name="point">The Edm GeographyPoint to be converted</param>
+        /// <returns>A DbGeography</returns>
         public static DbGeography ToDbGeography(this GeographyPoint point)
         {
             if (point == null)
@@ -67,6 +77,11 @@ public static DbGeography ToDbGeography(this GeographyPoint point)
             return DbGeography.FromText(text);
         }
 
+        /// <summary>
+        /// Convert a DbGeography to Edm GeographyPoint
+        /// </summary>
+        /// <param name="geography"> The DbGeography to be converted</param>
+        /// <returns>A Edm GeographyLineString</returns>
         public static GeographyLineString ToGeographyLineString(this DbGeography geography)
         {
             if (geography == null)
@@ -91,12 +106,14 @@ public static GeographyLineString ToGeographyLineString(this DbGeography geograp
             if (numPoints > 0)
             {
                 DbGeography point = geography.PointAt(1);
-                pipleLine.BeginFigure(new GeographyPosition(point.Latitude ?? 0, point.Latitude ?? 0, point.Elevation, point.Measure));
+                pipleLine.BeginFigure(new GeographyPosition(
+                    point.Latitude ?? 0, point.Latitude ?? 0, point.Elevation, point.Measure));
 
                 for (int n = 2; n <= numPoints; n++)
                 {
                     point = geography.PointAt(n);
-                    pipleLine.LineTo(new GeographyPosition(point.Latitude ?? 0, point.Latitude ?? 0, point.Elevation, point.Measure));
+                    pipleLine.LineTo(new GeographyPosition(
+                        point.Latitude ?? 0, point.Latitude ?? 0, point.Elevation, point.Measure));
                 }
 
                 pipleLine.EndFigure();
@@ -107,6 +124,11 @@ public static GeographyLineString ToGeographyLineString(this DbGeography geograp
             return lineString;
         }
 
+        /// <summary>
+        /// Convert a Edm GeographyLineString to DbGeography
+        /// </summary>
+        /// <param name="lineString">The Edm GeographyLineString to be converted</param>
+        /// <returns>A DbGeography</returns>
         public static DbGeography ToDbGeography(this GeographyLineString lineString)
         {
             if (lineString == null)
@@ -142,6 +164,7 @@ public static DbGeography ToDbGeography(this GeographyLineString lineString)
                     sb.Append(",");
                 }
             }
+
             sb.Append(")");
 
             return DbGeography.FromText(sb.ToString());
diff --git a/src/Microsoft.Restier.Security/ApiConfigurationExtensions.cs b/src/Microsoft.Restier.Security/ApiConfigurationExtensions.cs
deleted file mode 100644
index 5be356a8..00000000
--- a/src/Microsoft.Restier.Security/ApiConfigurationExtensions.cs
+++ /dev/null
@@ -1,41 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-using System.Collections.Generic;
-using System.ComponentModel;
-using Microsoft.Extensions.DependencyInjection;
-using Microsoft.Restier.Core;
-using Microsoft.Restier.Core.Query;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Provides a set of static (Shared in Visual Basic)
-    /// methods for interacting with objects that implement
-    /// <see cref="ApiConfiguration"/>.
-    /// </summary>
-    [EditorBrowsable(EditorBrowsableState.Never)]
-    public static class ApiConfigurationExtensions
-    {
-        /// <summary>
-        /// Enables principal-supplied role-based security for an API.
-        /// </summary>
-        /// <param name="services">
-        /// The API services registration.
-        /// </param>
-        /// <remarks>
-        /// This method adds services to the API configuration that
-        /// authorize according to roles assigned to the current principal
-        /// along with any that have been asserted during an API flow.
-        /// </remarks>
-        [CLSCompliant(false)]
-        public static void EnableRoleBasedSecurity(
-            this IServiceCollection services)
-        {
-            Ensure.NotNull(services, "services");
-            services.AddService<IQueryExpressionAuthorizer, RoleBasedAuthorizer>();
-            services.AddService<IQueryExpressionExpander, ApiPolicyActivator>();
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/ApiPermission.cs b/src/Microsoft.Restier.Security/ApiPermission.cs
deleted file mode 100644
index e0a73beb..00000000
--- a/src/Microsoft.Restier.Security/ApiPermission.cs
+++ /dev/null
@@ -1,145 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Represents a role-based security statement that grants or
-    /// denies permission on a securable element to a specific role.
-    /// </summary>
-    public class ApiPermission
-    {
-        private ApiPermission()
-        {
-        }
-
-        /// <summary>
-        /// Gets a value indicating whether this API permission grants access.
-        /// </summary>
-        public bool IsGrant { get; private set; }
-
-        /// <summary>
-        /// Gets a value indicating whether this API permission denies access.
-        /// </summary>
-        public bool IsDeny { get; private set; }
-
-        /// <summary>
-        /// Gets the type of the permission being granted or denied.
-        /// </summary>
-        public string PermissionType { get; private set; }
-
-        /// <summary>
-        /// Gets the name of the namespace containing the securable element.
-        /// </summary>
-        public string NamespaceName { get; private set; }
-
-        /// <summary>
-        /// Gets the name of the securable element.
-        /// </summary>
-        public string SecurableName { get; private set; }
-
-        /// <summary>
-        /// Gets the name of the child of the securable element.
-        /// </summary>
-        public string ChildName { get; private set; }
-
-        /// <summary>
-        /// Gets the role to which this API permission applies.
-        /// </summary>
-        public string Role { get; private set; }
-
-        /// <summary>
-        /// Creates a grant permission.
-        /// </summary>
-        /// <param name="permissionType">
-        /// A built-in or custom permission type.
-        /// </param>
-        /// <param name="role">
-        /// The name of a role, or <c>null</c> to grant permission to everyone.
-        /// </param>
-        /// <param name="namespaceName">
-        /// The name of a namespace that contains a securable element.
-        /// </param>
-        /// <param name="securableName">
-        /// The name of a securable element.
-        /// </param>
-        /// <param name="childName">
-        /// The name of a child of a securable element.
-        /// </param>
-        /// <returns>
-        /// A new API permission.
-        /// </returns>
-        /// <remarks>
-        /// If no securable element is identified, the permission is granted
-        /// across all securable elements. If a namespace name is not provided,
-        /// the securable name identifies an element in the modeled entity
-        /// container, otherwise it identifies an element in a modeled schema.
-        /// </remarks>
-        public static ApiPermission CreateGrant(
-            string permissionType,
-            string role = null,
-            string namespaceName = null,
-            string securableName = null,
-            string childName = null)
-        {
-            Ensure.NotNull(permissionType, "permissionType");
-            return new ApiPermission()
-            {
-                IsGrant = true, IsDeny = false,
-                PermissionType = permissionType,
-                NamespaceName = namespaceName,
-                SecurableName = securableName,
-                ChildName = childName,
-                Role = role
-            };
-        }
-
-        /// <summary>
-        /// Creates a deny permission.
-        /// </summary>
-        /// <param name="permissionType">
-        /// A built-in or custom permission type.
-        /// </param>
-        /// <param name="role">
-        /// The name of a role, or <c>null</c> to deny permission to everyone.
-        /// </param>
-        /// <param name="namespaceName">
-        /// The name of a namespace that contains a securable element.
-        /// </param>
-        /// <param name="securableName">
-        /// The name of a securable element.
-        /// </param>
-        /// <param name="childName">
-        /// The name of a child of a securable element.
-        /// </param>
-        /// <returns>
-        /// A new API permission.
-        /// </returns>
-        /// <remarks>
-        /// If no securable element is identified, the permission is denied
-        /// across all securable elements. If a namespace name is not provided,
-        /// the securable name identifies an element in the modeled entity
-        /// container, otherwise it identifies an element in a modeled schema.
-        /// </remarks>
-        public static ApiPermission CreateDeny(
-            string permissionType,
-            string role = null,
-            string namespaceName = null,
-            string securableName = null,
-            string childName = null)
-        {
-            Ensure.NotNull(permissionType, "permissionType");
-            return new ApiPermission()
-            {
-                IsGrant = false, IsDeny = true,
-                PermissionType = permissionType,
-                NamespaceName = namespaceName,
-                SecurableName = securableName,
-                ChildName = childName,
-                Role = role
-            };
-        }
-    }
-}
\ No newline at end of file
diff --git a/src/Microsoft.Restier.Security/ApiPermissionType.cs b/src/Microsoft.Restier.Security/ApiPermissionType.cs
deleted file mode 100644
index 6acab167..00000000
--- a/src/Microsoft.Restier.Security/ApiPermissionType.cs
+++ /dev/null
@@ -1,46 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Represents a set of built-in API permission types.
-    /// </summary>
-    public static class ApiPermissionType
-    {
-        /// <summary>
-        /// Allows inspecting the model definition of a securable element.
-        /// </summary>
-        public const string Inspect = "Inspect";
-
-        /// <summary>
-        /// Allows creation of a new entity in an entity set.
-        /// </summary>
-        public const string Create = "Create";
-
-        /// <summary>
-        /// Allows reading entities from an entity set.
-        /// </summary>
-        public const string Read = "Read";
-
-        /// <summary>
-        /// Allows updating entities in an entity set.
-        /// </summary>
-        public const string Update = "Update";
-
-        /// <summary>
-        /// Allows deleting entities in an entity set.
-        /// </summary>
-        public const string Delete = "Delete";
-
-        /// <summary>
-        /// Allows invoking a function or action.
-        /// </summary>
-        public const string Invoke = "Invoke";
-
-        /// <summary>
-        /// Allows all actions on a securable element.
-        /// </summary>
-        public const string All = "All";
-    }
-}
diff --git a/src/Microsoft.Restier.Security/ApiPolicyActivator.cs b/src/Microsoft.Restier.Security/ApiPolicyActivator.cs
deleted file mode 100644
index faf10a77..00000000
--- a/src/Microsoft.Restier.Security/ApiPolicyActivator.cs
+++ /dev/null
@@ -1,92 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-using System.Linq;
-using System.Linq.Expressions;
-using System.Reflection;
-using Microsoft.OData.Edm;
-using Microsoft.Restier.Core;
-using Microsoft.Restier.Core.Query;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// This class applies security policy on expanded expression nodes.
-    /// </summary>
-    public class ApiPolicyActivator : IQueryExpressionExpander
-    {
-        /// <inheritdoc/>
-        public IQueryExpressionExpander InnerHandler { get; set; }
-
-        /// <summary>
-        /// Expands an expression.
-        /// </summary>
-        /// <param name="context">
-        /// The query expression context.
-        /// </param>
-        /// <returns>
-        /// An expanded expression of the same type as the visited node, or
-        /// if expansion did not apply, the visited node or <c>null</c>.
-        /// </returns>
-        public Expression Expand(QueryExpressionContext context)
-        {
-            Ensure.NotNull(context, "context");
-
-            if (context.ModelReference == null)
-            {
-                return CallInner(context);
-            }
-
-            var dataSourceStubReference = context.ModelReference as DataSourceStubModelReference;
-            if (dataSourceStubReference == null)
-            {
-                return CallInner(context);
-            }
-
-            var entitySet = dataSourceStubReference.Element as IEdmEntitySet;
-            if (entitySet == null)
-            {
-                return CallInner(context);
-            }
-
-            var target = context.QueryContext.GetApiService<ApiBase>();
-            var entitySetProperty = target.GetType().GetProperties(
-                BindingFlags.Public | BindingFlags.Instance |
-                BindingFlags.Static | BindingFlags.DeclaredOnly)
-                .SingleOrDefault(p => p.Name == entitySet.Name);
-            if (entitySetProperty != null)
-            {
-                var policies = entitySetProperty.GetCustomAttributes()
-                        .OfType<IApiPolicy>();
-
-                foreach (var policy in policies)
-                {
-                    policy.Activate(context.QueryContext);
-                }
-
-                context.AfterNestedVisitCallback = () =>
-                {
-                    foreach (var policy in policies.Reverse())
-                    {
-                        policy.Deactivate(context.QueryContext);
-                    }
-                };
-            }
-
-            // This class is used to activate and deactivate the policies
-            // thus it is NOT intended to actually expand any query here.
-            return CallInner(context);
-        }
-
-        private Expression CallInner(QueryExpressionContext context)
-        {
-            if (this.InnerHandler != null)
-            {
-                return this.InnerHandler.Expand(context);
-            }
-
-            return null;
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/AssertRoleAttribute.cs b/src/Microsoft.Restier.Security/AssertRoleAttribute.cs
deleted file mode 100644
index c833affc..00000000
--- a/src/Microsoft.Restier.Security/AssertRoleAttribute.cs
+++ /dev/null
@@ -1,56 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-using Microsoft.Restier.Core;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Specifies an API security policy that asserts a role should be
-    /// present for the current principal on the target type or member.
-    /// </summary>
-    [Serializable]
-    [AttributeUsage(AttributeTargets.All, AllowMultiple = true)]
-    public sealed class AssertRoleAttribute : Attribute, IApiPolicy
-    {
-        /// <summary>
-        /// Initializes a new instance of the <see cref="AssertRoleAttribute" /> class.
-        /// </summary>
-        /// <param name="role">
-        /// The name of a role.
-        /// </param>
-        public AssertRoleAttribute(string role)
-        {
-            Ensure.NotNull(role, "role");
-            this.Role = role;
-        }
-
-        /// <summary>
-        /// Gets the role being asserted.
-        /// </summary>
-        public string Role { get; private set; }
-
-        /// <summary>
-        /// Activates this API policy.
-        /// </summary>
-        /// <param name="context">
-        /// An invocation context.
-        /// </param>
-        public void Activate(InvocationContext context)
-        {
-            context.AssertRole(this.Role);
-        }
-
-        /// <summary>
-        /// Deactivates this API policy.
-        /// </summary>
-        /// <param name="context">
-        /// An invocation context.
-        /// </param>
-        public void Deactivate(InvocationContext context)
-        {
-            context.RevokeRole(this.Role);
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/DenyAttribute.cs b/src/Microsoft.Restier.Security/DenyAttribute.cs
deleted file mode 100644
index 57f802dc..00000000
--- a/src/Microsoft.Restier.Security/DenyAttribute.cs
+++ /dev/null
@@ -1,77 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-using Microsoft.Extensions.DependencyInjection;
-using Microsoft.Restier.Core;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Specifies a role-based security statement for an API that
-    /// denies permission on a securable element to a specific role.
-    /// </summary>
-    [Serializable]
-    [AttributeUsage(AttributeTargets.Class, AllowMultiple = true)]
-    public sealed class DenyAttribute : ApiConfiguratorAttribute
-    {
-        /// <summary>
-        /// Initializes a new instance of the <see cref="DenyAttribute" /> class.
-        /// </summary>
-        /// <param name="permissionType">
-        /// A built-in or custom permission type.
-        /// </param>
-        public DenyAttribute(string permissionType)
-        {
-            Ensure.NotNull(permissionType, "permissionType");
-            this.PermissionType = permissionType;
-        }
-
-        /// <summary>
-        /// Gets the type of the permission being denied.
-        /// </summary>
-        public string PermissionType { get; private set; }
-
-        /// <summary>
-        /// Gets or sets the name of the namespace
-        /// containing the securable element.
-        /// </summary>
-        public string OnNamespace { get; set; }
-
-        /// <summary>
-        /// Gets or sets the name of the securable element.
-        /// </summary>
-        public string On { get; set; }
-
-        /// <summary>
-        /// Gets or sets the name of the child of the securable element.
-        /// </summary>
-        public string OnChild { get; set; }
-
-        /// <summary>
-        /// Gets or sets the role to which this API permission applies.
-        /// </summary>
-        public string To { get; set; }
-
-        /// <summary>
-        /// Add API services into the DI container.
-        /// </summary>
-        /// <param name="services">
-        /// The API services registration.
-        /// </param>
-        /// <param name="type">
-        /// The API type on which this attribute was placed.
-        /// </param>
-        [CLSCompliant(false)]
-        public override void AddApiServices(IServiceCollection services, Type type)
-        {
-            var permission = ApiPermission.CreateDeny(
-                this.PermissionType,
-                this.To,
-                this.OnNamespace,
-                this.On,
-                this.OnChild);
-            services.AddSingleton(permission);
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/EnableRoleBasedSecurityAttribute.cs b/src/Microsoft.Restier.Security/EnableRoleBasedSecurityAttribute.cs
deleted file mode 100644
index bfdd416c..00000000
--- a/src/Microsoft.Restier.Security/EnableRoleBasedSecurityAttribute.cs
+++ /dev/null
@@ -1,35 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-using Microsoft.Extensions.DependencyInjection;
-using Microsoft.Restier.Core;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Specifies that principal-supplied role-based
-    /// security should be enabled for an API.
-    /// </summary>
-    [Serializable]
-    [AttributeUsage(AttributeTargets.Class)]
-    public sealed class EnableRoleBasedSecurityAttribute : ApiConfiguratorAttribute
-    {
-        /// <summary>
-        /// Add API services into the DI container.
-        /// </summary>
-        /// <param name="services">
-        /// The API services registration.
-        /// </param>
-        /// <param name="type">
-        /// The API type on which this attribute was placed.
-        /// </param>
-        [CLSCompliant(false)]
-        public override void AddApiServices(
-            IServiceCollection services,
-            Type type)
-        {
-            services.EnableRoleBasedSecurity();
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/GrantAttribute.cs b/src/Microsoft.Restier.Security/GrantAttribute.cs
deleted file mode 100644
index 6de8f1cb..00000000
--- a/src/Microsoft.Restier.Security/GrantAttribute.cs
+++ /dev/null
@@ -1,77 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-using Microsoft.Extensions.DependencyInjection;
-using Microsoft.Restier.Core;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Specifies a role-based security statement for an API that
-    /// grants permission on a securable element to a specific role.
-    /// </summary>
-    [Serializable]
-    [AttributeUsage(AttributeTargets.Class, AllowMultiple = true)]
-    public sealed class GrantAttribute : ApiConfiguratorAttribute
-    {
-        /// <summary>
-        /// Initializes a new instance of the <see cref="GrantAttribute" /> class.
-        /// </summary>
-        /// <param name="permissionType">
-        /// A built-in or custom permission type.
-        /// </param>
-        public GrantAttribute(string permissionType)
-        {
-            Ensure.NotNull(permissionType, "permissionType");
-            this.PermissionType = permissionType;
-        }
-
-        /// <summary>
-        /// Gets the type of the permission being granted.
-        /// </summary>
-        public string PermissionType { get; private set; }
-
-        /// <summary>
-        /// Gets or sets the name of the namespace
-        /// containing the securable element.
-        /// </summary>
-        public string OnNamespace { get; set; }
-
-        /// <summary>
-        /// Gets or sets the name of the securable element.
-        /// </summary>
-        public string On { get; set; }
-
-        /// <summary>
-        /// Gets or sets the name of the child of the securable element.
-        /// </summary>
-        public string OnChild { get; set; }
-
-        /// <summary>
-        /// Gets or sets the role to which this API permission applies.
-        /// </summary>
-        public string To { get; set; }
-
-        /// <summary>
-        /// Add API services into the DI container.
-        /// </summary>
-        /// <param name="services">
-        /// The API services registration.
-        /// </param>
-        /// <param name="type">
-        /// The API type on which this attribute was placed.
-        /// </param>
-        [CLSCompliant(false)]
-        public override void AddApiServices(IServiceCollection services, Type type)
-        {
-            var permission = ApiPermission.CreateGrant(
-                this.PermissionType,
-                this.To,
-                this.OnNamespace,
-                this.On,
-                this.OnChild);
-            services.AddSingleton(permission);
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/IApiPolicy.cs b/src/Microsoft.Restier.Security/IApiPolicy.cs
deleted file mode 100644
index aeab07fb..00000000
--- a/src/Microsoft.Restier.Security/IApiPolicy.cs
+++ /dev/null
@@ -1,30 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using Microsoft.Restier.Core;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Represents a policy applicable to an API that can be
-    /// activated during an API flow then later deactivated.
-    /// </summary>
-    public interface IApiPolicy
-    {
-        /// <summary>
-        /// Activates this API policy.
-        /// </summary>
-        /// <param name="context">
-        /// An invocation context.
-        /// </param>
-        void Activate(InvocationContext context);
-
-        /// <summary>
-        /// Deactivates this API policy.
-        /// </summary>
-        /// <param name="context">
-        /// An invocation context.
-        /// </param>
-        void Deactivate(InvocationContext context);
-    }
-}
diff --git a/src/Microsoft.Restier.Security/InvocationContextExtensions.cs b/src/Microsoft.Restier.Security/InvocationContextExtensions.cs
deleted file mode 100644
index d83fb02e..00000000
--- a/src/Microsoft.Restier.Security/InvocationContextExtensions.cs
+++ /dev/null
@@ -1,71 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-using System.Collections.Generic;
-using System.ComponentModel;
-using Microsoft.Restier.Core;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Provides a set of static (Shared in Visual Basic)
-    /// methods for interacting with objects that implement
-    /// <see cref="InvocationContext"/>.
-    /// </summary>
-    [EditorBrowsable(EditorBrowsableState.Never)]
-    public static class InvocationContextExtensions
-    {
-        private const string AssertedRoles =
-            "Microsoft.Restier.Security.AssertedRoles";
-
-        /// <summary>
-        /// Asserts that a role should be present for the current principal.
-        /// </summary>
-        /// <param name="context">
-        /// An invocation context.
-        /// </param>
-        /// <param name="role">
-        /// The name of a role.
-        /// </param>
-        public static void AssertRole(
-            this InvocationContext context, string role)
-        {
-            Ensure.NotNull(context, "context");
-            Ensure.NotNull(role, "role");
-            var assertedRoles = context.ApiContext.GetProperty<List<string>>(AssertedRoles);
-            if (assertedRoles == null)
-            {
-                assertedRoles = new List<string>();
-                context.ApiContext.SetProperty(AssertedRoles, assertedRoles);
-            }
-
-            assertedRoles.Add(role);
-        }
-
-        /// <summary>
-        /// Revokes a previous assertion for a role.
-        /// </summary>
-        /// <param name="context">
-        /// An invocation context.
-        /// </param>
-        /// <param name="role">
-        /// The name of a role.
-        /// </param>
-        public static void RevokeRole(
-            this InvocationContext context, string role)
-        {
-            Ensure.NotNull(context, "context");
-            Ensure.NotNull(role, "role");
-            var assertedRoles = context.ApiContext.GetProperty<List<string>>(AssertedRoles);
-            if (assertedRoles != null)
-            {
-                int index = assertedRoles.LastIndexOf(role);
-                if (index >= 0)
-                {
-                    assertedRoles.RemoveAt(index);
-                }
-            }
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/Microsoft.Restier.Security.csproj b/src/Microsoft.Restier.Security/Microsoft.Restier.Security.csproj
deleted file mode 100644
index 5e305f8f..00000000
--- a/src/Microsoft.Restier.Security/Microsoft.Restier.Security.csproj
+++ /dev/null
@@ -1,83 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<Project ToolsVersion="14.0" DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
-  <Import Project="$([MSBuild]::GetDirectoryNameOfFileAbove($(MSBuildThisFileDirectory),RESTier.sln))\tools\RESTier.settings.targets" />
-  <PropertyGroup>
-    <ProjectGuid>{B15A5064-F0D2-480C-A51E-3430A8360827}</ProjectGuid>
-    <OutputType>Library</OutputType>
-    <AppDesignerFolder>Properties</AppDesignerFolder>
-    <RootNamespace>Microsoft.Restier.Security</RootNamespace>
-    <AssemblyName>Microsoft.Restier.Security</AssemblyName>
-    <DocumentationFile>$(OutputPath)$(AssemblyName).xml</DocumentationFile>
-    <RunCodeAnalysis>$(CodeAnalysis)</RunCodeAnalysis>
-    <CodeAnalysisRuleSet>..\Strict.ruleset</CodeAnalysisRuleSet>
-  </PropertyGroup>
-  <ItemGroup>
-    <Reference Include="Microsoft.CSharp" />
-    <Reference Include="Microsoft.Extensions.DependencyInjection, Version=1.0.0.0, Culture=neutral, PublicKeyToken=adb9793829ddae60, processorArchitecture=MSIL">
-      <HintPath>..\..\packages\Microsoft.Extensions.DependencyInjection.1.0.0\lib\netstandard1.1\Microsoft.Extensions.DependencyInjection.dll</HintPath>
-      <Private>True</Private>
-    </Reference>
-    <Reference Include="Microsoft.Extensions.DependencyInjection.Abstractions, Version=1.0.0.0, Culture=neutral, PublicKeyToken=adb9793829ddae60, processorArchitecture=MSIL">
-      <HintPath>..\..\packages\Microsoft.Extensions.DependencyInjection.Abstractions.1.0.0\lib\netstandard1.0\Microsoft.Extensions.DependencyInjection.Abstractions.dll</HintPath>
-      <Private>True</Private>
-    </Reference>
-    <Reference Include="Microsoft.OData.Edm, Version=6.15.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\packages\Microsoft.OData.Edm.6.15.0\lib\portable-net45+win+wpa81\Microsoft.OData.Edm.dll</HintPath>
-      <Private>True</Private>
-    </Reference>
-    <Reference Include="System" />
-    <Reference Include="System.Core" />
-  </ItemGroup>
-  <ItemGroup>
-    <Compile Include="..\CommonAssemblyInfo.cs">
-      <Link>Properties\CommonAssemblyInfo.cs</Link>
-    </Compile>
-    <Compile Include="..\GlobalSuppressions.cs">
-      <Link>GlobalSuppressions.cs</Link>
-      <ExcludeFromStyleCop>true</ExcludeFromStyleCop>
-    </Compile>
-    <Compile Include="..\Shared\Ensure.cs">
-      <Link>Shared\Ensure.cs</Link>
-    </Compile>
-    <Compile Include="ApiPermission.cs" />
-    <Compile Include="ApiPolicyActivator.cs" />
-    <Compile Include="AssertRoleAttribute.cs" />
-    <Compile Include="ApiConfigurationExtensions.cs" />
-    <Compile Include="ApiPermissionType.cs" />
-    <Compile Include="DenyAttribute.cs" />
-    <Compile Include="EnableRoleBasedSecurityAttribute.cs" />
-    <Compile Include="GrantAttribute.cs" />
-    <Compile Include="IApiPolicy.cs" />
-    <Compile Include="InvocationContextExtensions.cs" />
-    <Compile Include="Properties\AssemblyInfo.cs" />
-    <Compile Include="Properties\Resources.Designer.cs">
-      <AutoGen>True</AutoGen>
-      <DesignTime>True</DesignTime>
-      <DependentUpon>Resources.resx</DependentUpon>
-    </Compile>
-    <Compile Include="RoleBasedAuthorizer.cs" />
-  </ItemGroup>
-  <ItemGroup>
-    <ProjectReference Include="..\Microsoft.Restier.Core\Microsoft.Restier.Core.csproj">
-      <Project>{f1beab8d-82d4-4bbb-a5c6-ba0e6872e508}</Project>
-      <Name>Microsoft.Restier.Core</Name>
-    </ProjectReference>
-  </ItemGroup>
-  <ItemGroup>
-    <None Include="Microsoft.Restier.Security.nuspec" />
-    <None Include="packages.config" />
-  </ItemGroup>
-  <ItemGroup>
-    <CodeAnalysisDictionary Include="..\CodeAnalysisDictionary.xml">
-      <Link>CodeAnalysisDictionary.xml</Link>
-    </CodeAnalysisDictionary>
-  </ItemGroup>
-  <ItemGroup>
-    <EmbeddedResource Include="Properties\Resources.resx">
-      <Generator>ResXFileCodeGenerator</Generator>
-      <LastGenOutput>Resources.Designer.cs</LastGenOutput>
-    </EmbeddedResource>
-  </ItemGroup>
-  <Import Project="$(MSBuildToolsPath)\Microsoft.CSharp.targets" />
-  <Import Project="$(StyleCopTargets)" Condition="Exists('$(StyleCopTargets)')" />
-</Project>
\ No newline at end of file
diff --git a/src/Microsoft.Restier.Security/Microsoft.Restier.Security.nuspec b/src/Microsoft.Restier.Security/Microsoft.Restier.Security.nuspec
deleted file mode 100644
index 5c4e8bf6..00000000
--- a/src/Microsoft.Restier.Security/Microsoft.Restier.Security.nuspec
+++ /dev/null
@@ -1,17 +0,0 @@
-<?xml version="1.0"?>
-<package>
-  <metadata>
-    <id>$id$</id>
-    <version>$version$</version>
-    <title>$title$</title>
-    <authors>$author$</authors>
-    <owners>$author$</owners>
-    <description>$description$</description>
-    <licenseUrl>http://opensource.org/licenses/MIT</licenseUrl>
-    <requireLicenseAcceptance>true</requireLicenseAcceptance>
-    <copyright></copyright>
-    <dependencies>
-      <dependency id="Microsoft.Restier.Core" version="[0.6.0]" />
-    </dependencies>
-  </metadata>
-</package>
diff --git a/src/Microsoft.Restier.Security/Properties/AssemblyInfo.cs b/src/Microsoft.Restier.Security/Properties/AssemblyInfo.cs
deleted file mode 100644
index f37202ea..00000000
--- a/src/Microsoft.Restier.Security/Properties/AssemblyInfo.cs
+++ /dev/null
@@ -1,26 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System.Reflection;
-using System.Runtime.CompilerServices;
-using System.Runtime.InteropServices;
-
-// General Information about an assembly is controlled through the following
-// set of attributes. Change these attribute values to modify the information
-// associated with an assembly.
-[assembly: AssemblyTitle("RESTier Security Module")]
-[assembly: AssemblyDescription("A module that defines a role-based security system for the RESTier.")]
-[assembly: AssemblyConfiguration("")]
-[assembly: AssemblyCompany("Microsoft")]
-[assembly: AssemblyProduct("Microsoft.Restier.Security")]
-[assembly: AssemblyCopyright("Copyright © Microsoft Corporation 2014")]
-[assembly: AssemblyTrademark("")]
-[assembly: AssemblyCulture("")]
-
-// Setting ComVisible to false makes the types in this assembly not visible
-// to COM components.  If you need to access a type in this assembly from
-// COM, set the ComVisible attribute to true on that type.
-[assembly: ComVisible(false)]
-
-// The following GUID is for the ID of the typelib if this project is exposed to COM
-[assembly: Guid("0468d28a-e729-4df5-a7b4-a6af7dd88c94")]
\ No newline at end of file
diff --git a/src/Microsoft.Restier.Security/Properties/Resources.Designer.cs b/src/Microsoft.Restier.Security/Properties/Resources.Designer.cs
deleted file mode 100644
index 53c59b1d..00000000
--- a/src/Microsoft.Restier.Security/Properties/Resources.Designer.cs
+++ /dev/null
@@ -1,72 +0,0 @@
-//------------------------------------------------------------------------------
-// <auto-generated>
-//     This code was generated by a tool.
-//     Runtime Version:4.0.30319.34014
-//
-//     Changes to this file may cause incorrect behavior and will be lost if
-//     the code is regenerated.
-// </auto-generated>
-//------------------------------------------------------------------------------
-
-namespace Microsoft.Restier.Security.Properties {
-    using System;
-    
-    
-    /// <summary>
-    ///   A strongly-typed resource class, for looking up localized strings, etc.
-    /// </summary>
-    // This class was auto-generated by the StronglyTypedResourceBuilder
-    // class via a tool like ResGen or Visual Studio.
-    // To add or remove a member, edit your .ResX file then rerun ResGen
-    // with the /str option, or rebuild your VS project.
-    [global::System.CodeDom.Compiler.GeneratedCodeAttribute("System.Resources.Tools.StronglyTypedResourceBuilder", "4.0.0.0")]
-    [global::System.Diagnostics.DebuggerNonUserCodeAttribute()]
-    [global::System.Runtime.CompilerServices.CompilerGeneratedAttribute()]
-    internal class Resources {
-        
-        private static global::System.Resources.ResourceManager resourceMan;
-        
-        private static global::System.Globalization.CultureInfo resourceCulture;
-        
-        [global::System.Diagnostics.CodeAnalysis.SuppressMessageAttribute("Microsoft.Performance", "CA1811:AvoidUncalledPrivateCode")]
-        internal Resources() {
-        }
-        
-        /// <summary>
-        ///   Returns the cached ResourceManager instance used by this class.
-        /// </summary>
-        [global::System.ComponentModel.EditorBrowsableAttribute(global::System.ComponentModel.EditorBrowsableState.Advanced)]
-        internal static global::System.Resources.ResourceManager ResourceManager {
-            get {
-                if (object.ReferenceEquals(resourceMan, null)) {
-                    global::System.Resources.ResourceManager temp = new global::System.Resources.ResourceManager("Microsoft.Restier.Security.Properties.Resources", typeof(Resources).Assembly);
-                    resourceMan = temp;
-                }
-                return resourceMan;
-            }
-        }
-        
-        /// <summary>
-        ///   Overrides the current thread's CurrentUICulture property for all
-        ///   resource lookups using this strongly typed resource class.
-        /// </summary>
-        [global::System.ComponentModel.EditorBrowsableAttribute(global::System.ComponentModel.EditorBrowsableState.Advanced)]
-        internal static global::System.Globalization.CultureInfo Culture {
-            get {
-                return resourceCulture;
-            }
-            set {
-                resourceCulture = value;
-            }
-        }
-        
-        /// <summary>
-        ///   Looks up a localized string similar to Not authorized for read: {0}.
-        /// </summary>
-        internal static string ReadDeniedOnEntitySet {
-            get {
-                return ResourceManager.GetString("ReadDeniedOnEntitySet", resourceCulture);
-            }
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/Properties/Resources.resx b/src/Microsoft.Restier.Security/Properties/Resources.resx
deleted file mode 100644
index 5101272f..00000000
--- a/src/Microsoft.Restier.Security/Properties/Resources.resx
+++ /dev/null
@@ -1,123 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<root>
-  <!-- 
-    Microsoft ResX Schema 
-    
-    Version 2.0
-    
-    The primary goals of this format is to allow a simple XML format 
-    that is mostly human readable. The generation and parsing of the 
-    various data types are done through the TypeConverter classes 
-    associated with the data types.
-    
-    Example:
-    
-    ... ado.net/XML headers & schema ...
-    <resheader name="resmimetype">text/microsoft-resx</resheader>
-    <resheader name="version">2.0</resheader>
-    <resheader name="reader">System.Resources.ResXResourceReader, System.Windows.Forms, ...</resheader>
-    <resheader name="writer">System.Resources.ResXResourceWriter, System.Windows.Forms, ...</resheader>
-    <data name="Name1"><value>this is my long string</value><comment>this is a comment</comment></data>
-    <data name="Color1" type="System.Drawing.Color, System.Drawing">Blue</data>
-    <data name="Bitmap1" mimetype="application/x-microsoft.net.object.binary.base64">
-        <value>[base64 mime encoded serialized .NET Framework object]</value>
-    </data>
-    <data name="Icon1" type="System.Drawing.Icon, System.Drawing" mimetype="application/x-microsoft.net.object.bytearray.base64">
-        <value>[base64 mime encoded string representing a byte array form of the .NET Framework object]</value>
-        <comment>This is a comment</comment>
-    </data>
-                
-    There are any number of "resheader" rows that contain simple 
-    name/value pairs.
-    
-    Each data row contains a name, and value. The row also contains a 
-    type or mimetype. Type corresponds to a .NET class that support 
-    text/value conversion through the TypeConverter architecture. 
-    Classes that don't support this are serialized and stored with the 
-    mimetype set.
-    
-    The mimetype is used for serialized objects, and tells the 
-    ResXResourceReader how to depersist the object. This is currently not 
-    extensible. For a given mimetype the value must be set accordingly:
-    
-    Note - application/x-microsoft.net.object.binary.base64 is the format 
-    that the ResXResourceWriter will generate, however the reader can 
-    read any of the formats listed below.
-    
-    mimetype: application/x-microsoft.net.object.binary.base64
-    value   : The object must be serialized with 
-            : System.Runtime.Serialization.Formatters.Binary.BinaryFormatter
-            : and then encoded with base64 encoding.
-    
-    mimetype: application/x-microsoft.net.object.soap.base64
-    value   : The object must be serialized with 
-            : System.Runtime.Serialization.Formatters.Soap.SoapFormatter
-            : and then encoded with base64 encoding.
-
-    mimetype: application/x-microsoft.net.object.bytearray.base64
-    value   : The object must be serialized into a byte array 
-            : using a System.ComponentModel.TypeConverter
-            : and then encoded with base64 encoding.
-    -->
-  <xsd:schema id="root" xmlns="" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:msdata="urn:schemas-microsoft-com:xml-msdata">
-    <xsd:import namespace="http://www.w3.org/XML/1998/namespace" />
-    <xsd:element name="root" msdata:IsDataSet="true">
-      <xsd:complexType>
-        <xsd:choice maxOccurs="unbounded">
-          <xsd:element name="metadata">
-            <xsd:complexType>
-              <xsd:sequence>
-                <xsd:element name="value" type="xsd:string" minOccurs="0" />
-              </xsd:sequence>
-              <xsd:attribute name="name" use="required" type="xsd:string" />
-              <xsd:attribute name="type" type="xsd:string" />
-              <xsd:attribute name="mimetype" type="xsd:string" />
-              <xsd:attribute ref="xml:space" />
-            </xsd:complexType>
-          </xsd:element>
-          <xsd:element name="assembly">
-            <xsd:complexType>
-              <xsd:attribute name="alias" type="xsd:string" />
-              <xsd:attribute name="name" type="xsd:string" />
-            </xsd:complexType>
-          </xsd:element>
-          <xsd:element name="data">
-            <xsd:complexType>
-              <xsd:sequence>
-                <xsd:element name="value" type="xsd:string" minOccurs="0" msdata:Ordinal="1" />
-                <xsd:element name="comment" type="xsd:string" minOccurs="0" msdata:Ordinal="2" />
-              </xsd:sequence>
-              <xsd:attribute name="name" type="xsd:string" use="required" msdata:Ordinal="1" />
-              <xsd:attribute name="type" type="xsd:string" msdata:Ordinal="3" />
-              <xsd:attribute name="mimetype" type="xsd:string" msdata:Ordinal="4" />
-              <xsd:attribute ref="xml:space" />
-            </xsd:complexType>
-          </xsd:element>
-          <xsd:element name="resheader">
-            <xsd:complexType>
-              <xsd:sequence>
-                <xsd:element name="value" type="xsd:string" minOccurs="0" msdata:Ordinal="1" />
-              </xsd:sequence>
-              <xsd:attribute name="name" type="xsd:string" use="required" />
-            </xsd:complexType>
-          </xsd:element>
-        </xsd:choice>
-      </xsd:complexType>
-    </xsd:element>
-  </xsd:schema>
-  <resheader name="resmimetype">
-    <value>text/microsoft-resx</value>
-  </resheader>
-  <resheader name="version">
-    <value>2.0</value>
-  </resheader>
-  <resheader name="reader">
-    <value>System.Resources.ResXResourceReader, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</value>
-  </resheader>
-  <resheader name="writer">
-    <value>System.Resources.ResXResourceWriter, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</value>
-  </resheader>
-  <data name="ReadDeniedOnEntitySet" xml:space="preserve">
-    <value>Not authorized for read: {0}</value>
-  </data>
-</root>
\ No newline at end of file
diff --git a/src/Microsoft.Restier.Security/RoleBasedAuthorizer.cs b/src/Microsoft.Restier.Security/RoleBasedAuthorizer.cs
deleted file mode 100644
index d3b5eabc..00000000
--- a/src/Microsoft.Restier.Security/RoleBasedAuthorizer.cs
+++ /dev/null
@@ -1,95 +0,0 @@
-// Copyright (c) Microsoft Corporation.  All rights reserved.
-// Licensed under the MIT License.  See License.txt in the project root for license information.
-
-using System;
-using System.Collections.Generic;
-using System.Globalization;
-using System.Linq;
-using System.Security;
-using System.Threading;
-using Microsoft.OData.Edm;
-using Microsoft.Restier.Core;
-using Microsoft.Restier.Core.Query;
-using Microsoft.Restier.Security.Properties;
-
-namespace Microsoft.Restier.Security
-{
-    /// <summary>
-    /// Represents a role-based authorization system.
-    /// This class makes role based security checks on expression nodes.
-    /// </summary>
-    public class RoleBasedAuthorizer : IQueryExpressionAuthorizer
-    {
-        private const string AssertedRoles = "Microsoft.Restier.Security.AssertedRoles";
-
-        /// <summary>
-        /// Inspects an expression.
-        /// </summary>
-        /// <param name="context">
-        /// The query expression context.
-        /// </param>
-        /// <returns>
-        /// <c>true</c> if the inspection passed; otherwise, <c>false</c>.
-        /// </returns>
-        public bool Authorize(QueryExpressionContext context)
-        {
-            Ensure.NotNull(context, "context");
-
-            // TODO GitHubIssue#35 : Support Inspect more elements in authorization
-            if (context.ModelReference == null)
-            {
-                return true;
-            }
-
-            var dataSourceStubReference = context.ModelReference as DataSourceStubModelReference;
-            if (dataSourceStubReference == null)
-            {
-                return true;
-            }
-
-            var entitySet = dataSourceStubReference.Element as IEdmEntitySet;
-            if (entitySet == null)
-            {
-                return true;
-            }
-
-            var assertedRoles = context.QueryContext.ApiContext.GetProperty<List<string>>(AssertedRoles);
-            var permissions = context.QueryContext.GetApiServices<ApiPermission>();
-            if (permissions == null)
-            {
-                throw new SecurityException(
-                    string.Format(CultureInfo.InvariantCulture, Resources.ReadDeniedOnEntitySet, entitySet.Name));
-            }
-
-            permissions = permissions.Where(p => (
-                p.PermissionType == ApiPermissionType.All ||
-                p.PermissionType == ApiPermissionType.Read) && (
-                (p.NamespaceName == null && p.SecurableName == null) ||
-                (p.NamespaceName == null && p.SecurableName == entitySet.Name)) &&
-                p.ChildName == null && (p.Role == null || this.IsInRole(p.Role) ||
-                (assertedRoles != null && assertedRoles.Contains(p.Role))));
-            if (!permissions.Any() || permissions.Any(p => p.IsDeny))
-            {
-                throw new SecurityException(
-                    string.Format(CultureInfo.InvariantCulture, Resources.ReadDeniedOnEntitySet, entitySet.Name));
-            }
-
-            return true;
-        }
-
-        /// <summary>
-        /// Determines if the current user is in a role.
-        /// </summary>
-        /// <param name="role">
-        /// The name of a role.
-        /// </param>
-        /// <returns>
-        /// <c>true</c> if the current user is
-        /// in the role; otherwise, <c>false</c>.
-        /// </returns>
-        protected virtual bool IsInRole(string role)
-        {
-            return Thread.CurrentPrincipal.IsInRole(role);
-        }
-    }
-}
diff --git a/src/Microsoft.Restier.Security/packages.config b/src/Microsoft.Restier.Security/packages.config
deleted file mode 100644
index b7ccbe28..00000000
--- a/src/Microsoft.Restier.Security/packages.config
+++ /dev/null
@@ -1,18 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<packages>
-  <package id="Microsoft.Extensions.DependencyInjection" version="1.0.0" targetFramework="net45" />
-  <package id="Microsoft.Extensions.DependencyInjection.Abstractions" version="1.0.0" targetFramework="net45" />
-  <package id="Microsoft.OData.Edm" version="6.15.0" targetFramework="net45" />
-  <package id="System.Collections" version="4.0.11" targetFramework="net45" />
-  <package id="System.Collections.Concurrent" version="4.0.12" targetFramework="net45" />
-  <package id="System.ComponentModel" version="4.0.1" targetFramework="net45" />
-  <package id="System.Diagnostics.Debug" version="4.0.11" targetFramework="net45" />
-  <package id="System.Globalization" version="4.0.11" targetFramework="net45" />
-  <package id="System.Linq" version="4.1.0" targetFramework="net45" />
-  <package id="System.Linq.Expressions" version="4.1.0" targetFramework="net45" />
-  <package id="System.Reflection" version="4.1.0" targetFramework="net45" />
-  <package id="System.Resources.ResourceManager" version="4.0.1" targetFramework="net45" />
-  <package id="System.Runtime.Extensions" version="4.1.0" targetFramework="net45" />
-  <package id="System.Threading" version="4.0.11" targetFramework="net45" />
-  <package id="System.Threading.Tasks" version="4.0.11" targetFramework="net45" />
-</packages>
\ No newline at end of file
diff --git a/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind.Tests/Microsoft.OData.Service.Sample.Northwind.Tests.csproj b/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind.Tests/Microsoft.OData.Service.Sample.Northwind.Tests.csproj
index 7d1eac9f..1b2edb27 100644
--- a/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind.Tests/Microsoft.OData.Service.Sample.Northwind.Tests.csproj
+++ b/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind.Tests/Microsoft.OData.Service.Sample.Northwind.Tests.csproj
@@ -128,10 +128,6 @@
       <Project>{bce769ad-2d64-4ead-b83d-1328621cf6e6}</Project>
       <Name>Microsoft.OData.Service.Sample.Northwind</Name>
     </ProjectReference>
-    <ProjectReference Include="..\..\..\src\Microsoft.Restier.Security\Microsoft.Restier.Security.csproj">
-      <Project>{b15a5064-f0d2-480c-a51e-3430a8360827}</Project>
-      <Name>Microsoft.Restier.Security</Name>
-    </ProjectReference>
     <ProjectReference Include="..\..\..\src\Microsoft.Restier.Core\Microsoft.Restier.Core.csproj">
       <Project>{f1beab8d-82d4-4bbb-a5c6-ba0e6872e508}</Project>
       <Name>Microsoft.Restier.Core</Name>
diff --git a/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind/Microsoft.OData.Service.Sample.Northwind.csproj b/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind/Microsoft.OData.Service.Sample.Northwind.csproj
index 82e92ce4..be0236ab 100644
--- a/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind/Microsoft.OData.Service.Sample.Northwind.csproj
+++ b/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind/Microsoft.OData.Service.Sample.Northwind.csproj
@@ -151,10 +151,6 @@
       <Project>{186f667e-54e5-4b57-9998-21d74cb77c24}</Project>
       <Name>Microsoft.Restier.Publishers.OData</Name>
     </ProjectReference>
-    <ProjectReference Include="..\..\..\src\Microsoft.Restier.Security\Microsoft.Restier.Security.csproj">
-      <Project>{b15a5064-f0d2-480c-a51e-3430a8360827}</Project>
-      <Name>Microsoft.Restier.Security</Name>
-    </ProjectReference>
     <ProjectReference Include="..\..\..\src\Microsoft.Restier.Core\Microsoft.Restier.Core.csproj">
       <Project>{f1beab8d-82d4-4bbb-a5c6-ba0e6872e508}</Project>
       <Name>Microsoft.Restier.Core</Name>
diff --git a/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind/Models/NorthwindApi.cs b/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind/Models/NorthwindApi.cs
index 29d92773..990f17bf 100644
--- a/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind/Models/NorthwindApi.cs
+++ b/test/ODataEndToEnd/Microsoft.OData.Service.Sample.Northwind/Models/NorthwindApi.cs
@@ -8,30 +8,16 @@
 using System.Threading;
 using System.Threading.Tasks;
 using System.Web.OData;
-using System.Web.OData.Builder;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.OData.Edm;
 using Microsoft.OData.Edm.Library;
 using Microsoft.Restier.Core;
 using Microsoft.Restier.Core.Model;
 using Microsoft.Restier.Providers.EntityFramework;
-using Microsoft.Restier.Publishers.OData;
 using Microsoft.Restier.Publishers.OData.Model;
-using Microsoft.Restier.Security;
 
 namespace Microsoft.OData.Service.Sample.Northwind.Models
 {
-    [EnableRoleBasedSecurity]
-    [Grant(ApiPermissionType.All, On = "Customers")]
-    [Grant(ApiPermissionType.All, On = "Products")]
-    [Grant(ApiPermissionType.All, On = "CurrentOrders")]
-    [Grant(ApiPermissionType.All, On = "ExpensiveProducts")]
-    [Grant(ApiPermissionType.All, On = "Orders")]
-    [Grant(ApiPermissionType.All, On = "Employees")]
-    [Grant(ApiPermissionType.All, On = "Regions")]
-    [Grant(ApiPermissionType.Inspect, On = "Suppliers")]
-    [Grant(ApiPermissionType.Read, On = "Suppliers")]
-    [Grant(ApiPermissionType.All, On = "ResetDataSource")]
     public class NorthwindApi : EntityFrameworkApi<NorthwindContext>
     {
         public new NorthwindContext Context { get { return DbContext; } }