daohualiuxiang
/
dotnet-podcasts
mirror of https://github.com/microsoft/dotnet-podcasts.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #169 from microsoft/safia/auth-update 

Add endpoint names and setup Azure AD auth
pull/171/head
James Montemagno 2022-11-04 14:14:31 -07:00 committed by GitHub
parent 46f7799349 4d831a7061
commit 20783005d8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
7 changed files with 47 additions and 39 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/Services/Podcasts/Podcast.MinimalAPI/Podcast.MinimalAPI.csproj
View File

@ -22,11 +22,11 @@
<PackageReference Include="Asp.Versioning.Http" Version="6.1.0" />
<PackageReference Include="Microsoft.OpenApi" Version="1.4.3" />
<PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="7.0.0-*" />
<PackageReference Include="Microsoft.Identity.Web" Version="1.25.3" />
</ItemGroup>
<ItemGroup>
<ProjectReference Include="..\Podcast.Infrastructure\Podcast.Infrastructure.csproj" />
<ProjectReference Include="..\Podcast.Ingestion.Worker\Podcast.Ingestion.Worker.csproj" />
</ItemGroup>
</Project>

7
src/Services/Podcasts/Podcast.MinimalAPI/Program.cs
View File

@ -9,6 +9,7 @@ using Microsoft.AspNetCore.RateLimiting;
using System.Threading.RateLimiting;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Swashbuckle.AspNetCore.SwaggerGen;
using Microsoft.Identity.Web;
var builder = WebApplication.CreateBuilder(args);
@ -20,8 +21,8 @@ builder.Services.AddSingleton(new QueueClient(queueConnectionString, "feed-queue
builder.Services.AddHttpClient<IFeedClient, FeedClient>();
// Authentication and authorization-related services
builder.Services.AddAuthentication().AddJwtBearer();
builder.Services.AddAuthorization();
builder.Services.AddMicrosoftIdentityWebApiAuthentication(builder.Configuration);
builder.Services.AddAuthorizationBuilder().AddPolicy("modify_feeds", policy => policy.RequireScope("API.Access"));
// OpenAPI and versioning-related services
builder.Services.AddSwaggerGen();
@ -60,7 +61,7 @@ await EnsureDbAsync(app.Services);
app.UseSwagger();
app.UseSwaggerUI(c =>
{
c.SwaggerEndpoint("/swagger/v1/swagger.json", "NetPodcast Api v1");
c.SwaggerEndpoint("/swagger/v1/swagger.json", ".NET Podcasts Minimal API");
});
app.UseCors();
app.UseRateLimiter();

2
src/Services/Podcasts/Podcast.MinimalAPI/Routes/CategoriesApi.cs
View File

@ -10,7 +10,7 @@ public static class CategoriesApi
{
public static RouteGroupBuilder MapCategoriesApi(this RouteGroupBuilder group)
{
group.MapPost("/", GetAllCategories);
group.MapPost("/", GetAllCategories).WithName("GetCategories");
return group;
}

2
src/Services/Podcasts/Podcast.MinimalAPI/Routes/EpisodesApi.cs
View File

@ -10,7 +10,7 @@ public static class EpisodesApi
{
public static RouteGroupBuilder MapEpisodesApi(this RouteGroupBuilder group)
{
group.MapPost("/{id}", GetEpisodeById);
group.MapPost("/{id}", GetEpisodeById).WithName("GetEpisodeById");
return group;
}

66
src/Services/Podcasts/Podcast.MinimalAPI/Routes/FeedsApi.cs
View File

@ -6,45 +6,51 @@ using Podcast.Infrastructure.Data;
using Podcast.Infrastructure.Data.Models;
using Podcast.Infrastructure.Http.Feeds;
using Microsoft.OpenApi.Models;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Authentication.JwtBearer;
namespace Podcast.API.Routes;
public static class FeedsApi
{
public static RouteGroupBuilder MapFeedsApi(this RouteGroupBuilder group)
{
group.MapPost("/", CreateFeed);
group.MapGet("/", GetAllFeeds);
group.MapPut("/{id}", UpdateFeed).RequireAuthorization().AddOpenApiSecurityRequirement();
group.MapDelete("/{id}", DeleteFeed).RequireAuthorization().AddOpenApiSecurityRequirement();
group.MapPost("/", CreateFeed).WithName("CreateFeed");
group.MapGet("/", GetAllFeeds).WithName("GetFeeds");
group.MapPut("/{id}", UpdateFeed)
.RequireAuthorization("modify_feeds")
.AddOpenApiSecurityRequirement()
.WithName("UpdateFeedById");
group.MapDelete("/{id}", DeleteFeed)
.RequireAuthorization("modify_feeds")
.AddOpenApiSecurityRequirement()
.WithName("DeleteFeedById");
return group;
}
private static RouteHandlerBuilder AddOpenApiSecurityRequirement(this RouteHandlerBuilder builder)
{
var scheme = new OpenApiSecurityScheme()
{
Type = SecuritySchemeType.Http,
Name = JwtBearerDefaults.AuthenticationScheme,
Scheme = JwtBearerDefaults.AuthenticationScheme,
Reference = new()
{
Type = ReferenceType.SecurityScheme,
Id = JwtBearerDefaults.AuthenticationScheme
}
};
builder.WithOpenApi(operation => new(operation)
{
Security =
{
new()
{
[scheme] = new List<string>()
}
}
});
return builder;
private static RouteHandlerBuilder AddOpenApiSecurityRequirement(this RouteHandlerBuilder builder)
{
var scheme = new OpenApiSecurityScheme()
{
Type = SecuritySchemeType.Http,
Name = JwtBearerDefaults.AuthenticationScheme,
Scheme = JwtBearerDefaults.AuthenticationScheme,
Reference = new()
{
Type = ReferenceType.SecurityScheme,
Id = JwtBearerDefaults.AuthenticationScheme
}
};
builder.WithOpenApi(operation => new(operation)
{
Security =
{
new()
{
[scheme] = new List<string>()
}
}
});
return builder;
}
public static async ValueTask CreateFeed(QueueClient queueClient, UserSubmittedFeedDto feed, CancellationToken cancellationToken)

4
src/Services/Podcasts/Podcast.MinimalAPI/Routes/ShowsApi.cs
View File

@ -9,8 +9,8 @@ public static class ShowsApi
{
public static RouteGroupBuilder MapShowsApi(this RouteGroupBuilder group)
{
group.MapGet("/", GetAllShows);
group.MapGet("/{id}", GetShowById);
group.MapGet("/", GetAllShows).WithName("GetShows");
group.MapGet("/{id}", GetShowById).WithName("GetShowsById");
return group;
}

3
src/Services/Podcasts/Podcast.MinimalAPI/appsettings.Development.json
View File

@ -17,7 +17,8 @@
"http://localhost:56906",
"https://localhost:44385",
"https://localhost:5001",
"http://localhost:5000"
"http://localhost:5000",
"1ba2c41d-3a54-414a-9700-1f9393cfafca"
],
"ValidIssuer": "dotnet-user-jwts"
}