AgileWebs/Core.Thalos.BuildingBlocks
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: AgileWebs:main
Branches Tags
AgileWebs:main AgileWebs:development AgileWebs:feature/add-tenant-to-user AgileWebs:feature/tenant-catalogs-adapters AgileWebs:feature/register-jwt-settings AgileWebs:feature/add-google-and-jwt-auth AgileWebs:feature/fix-adapters AgileWebs:feature/adapt-to-use-mongo AgileWebs:feature/use-blueprint-mongo
..
compare: AgileWebs:feature/add-google-and-jwt-auth
Branches Tags
AgileWebs:development AgileWebs:feature/add-tenant-to-user AgileWebs:feature/tenant-catalogs-adapters AgileWebs:feature/register-jwt-settings AgileWebs:feature/add-google-and-jwt-auth AgileWebs:feature/fix-adapters AgileWebs:feature/adapt-to-use-mongo AgileWebs:feature/use-blueprint-mongo AgileWebs:main

15 Commits
main ... feature/ad

Author SHA1 Message Date
Oscar Morales
aeab9548b8 Add google and jwt authentication and authorization 2025-07-15 13:52:09 -06:00
OscarMmtz
3eb6bfc60f Merge pull request #4 from SergioMatias94/feature/fix-adapters 
Remove _id from adapters
 2025-06-17 15:11:07 -06:00
Oscar Morales
33c0cd2642 Remove _id from adapters 2025-06-17 15:10:30 -06:00
OscarMmtz
8ac0eb0bf0 Merge pull request #3 from SergioMatias94/feature/adapt-to-use-mongo 
Add CollectionAttributeName and use ApplicationEnum for Agile
 2025-06-10 23:15:07 -06:00
SergioMatias94
8d954c9a09 Avoid azure app config for local environment 2025-06-09 00:45:40 -06:00
SergioMatias94
f82ebb5e69 Rename variables for public and private key used for jwt token creation 2025-06-09 00:37:17 -06:00
Oscar Morales
44ccda0736 Add CollectionAttributeName and use ApplicationEnum for Agile 2025-06-04 11:51:31 -06:00
OscarMmtz
fd31d5dd00 Merge pull request #2 from SergioMatias94/feature/use-blueprint-mongo 
Use Blueprint.Mongo package
 2025-05-19 17:17:07 -06:00
Oscar Morales
57f0f39614 Add reference to Document class 2025-05-19 14:13:01 -06:00
Sergio Matias Urquin
3acdf880f6 remove heath from code 2025-05-18 18:56:35 -06:00
Sergio Matias Urquin
4fdd80db55 reeplace cerberos by thalos 2025-05-18 18:46:31 -06:00
Sergio Matias Urquin
5b3cd5589d remove modules claim and change return value in GenerateAccessToken 2025-05-12 20:49:56 -06:00
Sergio Matias Urquin
042588097e Remove copyright 2025-05-12 19:39:56 -06:00
Sergio Matias Urquin
37dc22a114 Revert last commit 2025-05-12 19:31:32 -06:00
Sergio Matias Urquin
e761335737 Remove modules claim from token 2025-05-12 11:54:31 -06:00
56 changed files with 724 additions and 486 deletions
Expand all files Collapse all files

95
Core.Cerberos.Adapters/Adapters/PermissionAdapter.cs
View File

@@ -1,95 +0,0 @@
// ***********************************************************************
// <copyright file="PermissionAdapter.cs">
// Heath
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Constants;
using Core.Cerberos.Adapters.Common.Enums;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
{
/// <summary>
/// Adapter for representing a permission.
/// </summary>
public class PermissionAdapter
{
/// <summary>
/// Gets or sets the ID of the entity.
/// </summary>
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("id")]
public string Id { get; set; } = null!;
/// <summary>
/// Gets or sets the name of the entity.
/// </summary>
[BsonElement("name")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("name")]
public string Name { get; set; } = null!;
/// <summary>
/// Gets or sets the description of the entity.
/// </summary>
[BsonElement("description")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("description")]
public string? Description { get; set; }
/// <summary>
/// Gets or sets the status of the entity object.
/// </summary>
[BsonElement("accessLevel")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("accessLevel")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public AccessLevelEnum? AccessLevel { get; set; } = null!;
/// <summary>
/// Gets or sets the date and time when the entity was created.
/// </summary>
[BsonElement("createdAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("createdAt")]
public DateTime CreatedAt { get; set; } = DateTime.UtcNow;
/// <summary>
/// Gets or sets the user who created the entity.
/// </summary>
[BsonElement("createdBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("createdBy")]
public string? CreatedBy { get; set; }
/// <summary>
/// Gets or sets the date and time when the entity was last updated.
/// </summary>
[BsonElement("updatedAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("updatedAt")]
public DateTime? UpdatedAt { get; set; } = null;
/// <summary>
/// Gets or sets the user who last updated the entity.
/// </summary>
[BsonElement("updatedBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("updatedBy")]
public string? UpdatedBy { get; set; } = null;
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("status")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("status")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public StatusEnum Status { get; set; } = StatusEnum.Active;
}
}

107
Core.Cerberos.Adapters/Adapters/RoleAdapter.cs
View File

@@ -1,107 +0,0 @@
// ***********************************************************************
// <copyright file="RoleAdapter.cs">
// Heath
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Enums;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
{
/// <summary>
/// Adapter representing a role.
/// </summary>
public class RoleAdapter
{
/// <summary>
/// Gets or sets the unique identifier of the role.
/// </summary>
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("id")]
public string Id { get; set; } = null!;
/// <summary>
/// Gets or sets the name of the role.
/// </summary>
[BsonElement("name")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("name")]
public string Name { get; set; } = null!;
/// <summary>
/// Gets or sets the description of the role.
/// </summary>
[BsonElement("description")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("description")]
public string? Description { get; set; }
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("applications")]
[JsonPropertyName("applications")]
[JsonConverter(typeof(EnumArrayJsonConverter<ApplicationsEnum>))]
public ApplicationsEnum[]? Applications { get; set; }
/// <summary>
/// Gets or sets the modules of the role.
/// </summary>
[BsonElement("modules")]
[JsonPropertyName("modules")]
public string[] Modules { get; set; } = null!;
/// <summary>
/// Gets or sets the permissions of the role.
/// </summary>
[BsonElement("permissions")]
[JsonPropertyName("permissions")]
public string[] Permissions { get; set; } = null!;
/// <summary>
/// Gets or sets the date and time when the entity was created.
/// </summary>
[BsonElement("createdAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("createdAt")]
public DateTime CreatedAt { get; set; } = DateTime.UtcNow;
/// <summary>
/// Gets or sets the user who created the entity.
/// </summary>
[BsonElement("createdBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("createdBy")]
public string? CreatedBy { get; set; }
/// <summary>
/// Gets or sets the date and time when the entity was last updated.
/// </summary>
[BsonElement("updatedAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("updatedAt")]
public DateTime? UpdatedAt { get; set; } = null;
/// <summary>
/// Gets or sets the user who last updated the entity.
/// </summary>
[BsonElement("updatedBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("updatedBy")]
public string? UpdatedBy { get; set; } = null;
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("status")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("status")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public StatusEnum Status { get; set; } = StatusEnum.Active;
}
}

24
Core.Cerberos.Adapters/Common/Constants/Policies.cs Normal file
View File

@@ -0,0 +1,24 @@
using System;
using System.Collections.Generic;
namespace Core.Thalos.BuildingBlocks.Common.Constants
{
/// <summary>
/// Constants for policy.
/// </summary>
public class Policies
{
/// <summary>
/// Defines the access policy for reading mobile-related data.
/// This policy grants read-only permissions for retrieving mobile device information,
/// user mobile settings, or related data as per the application's authorization scope.
/// </summary>
public const string Read = "Read";
/// <summary>
/// Defines the access policy for writing mobile-related data.
/// This policy grants permissions to modify, update, or store mobile device information,
/// user mobile settings, or related data as per the application's authorization scope.
/// </summary>
public const string Write = "Write";
}
}

15
Core.Cerberos.Adapters/Common/Constants/Roles.cs Normal file
View File

@@ -0,0 +1,15 @@
namespace Core.Thalos.BuildingBlocks.Common.Constants
{
public class Roles
{
/// <summary>
/// The role for Guest.
/// </summary>
public const string Guest = "684909c4826cd093b4f61c11";
/// <summary>
/// The role for Admin.
/// </summary>
public const string Admin = "68407642ec46a0e6fe1e8ec9";
}
}

52
Core.Cerberos.Adapters/Helpers/AuthHelper.cs
View File

@@ -1,52 +0,0 @@
using Azure.Identity;
using Core.Cerberos.Adapters.Common.Constants;
using Microsoft.AspNetCore.Builder;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.Configuration.AzureAppConfiguration;
using Microsoft.Extensions.Logging;
namespace Core.Cerberos.Adapters.Helpers
{
public static class AuthHelper
{
private static readonly ILogger logger = LoggerFactory.Create(builder =>
{
builder.AddConsole();
}).CreateLogger("AuthHelper");
public static AuthSettings GetAuthSettings(WebApplicationBuilder builder, string appConfigLabel)
{
builder.Configuration.AddAzureAppConfiguration(options =>
{
var endpoint = builder.Configuration.GetSection("Endpoints:AppConfigurationURI").Value;
if (string.IsNullOrEmpty(endpoint))
throw new ArgumentException("The app configuration is missing");
options.Connect(new Uri(endpoint), new DefaultAzureCredential())
.Select(KeyFilter.Any, "cerberos_common")
.Select(KeyFilter.Any, appConfigLabel);
options.ConfigureKeyVault(keyVaultOptions =>
{
keyVaultOptions.SetCredential(new DefaultAzureCredential());
});
});
return new AuthSettings
{
AzureADInstance = builder.Configuration.GetSection(Secrets.AzureADInstance).Value,
AzureADTenantId = builder.Configuration.GetSection(Secrets.AzureADTenantId).Value,
AzureADClientId = builder.Configuration.GetSection(Secrets.AzureADClientId).Value,
AzureADClientSecret = builder.Configuration.GetSection(Secrets.AzureADClientSecret).Value,
HeathCerberosAppAuthorizationUrl = builder.Configuration.GetSection(Secrets.HeathCerberosAppAuthorizationUrl).Value,
HeathCerberosAppTokenUrl = builder.Configuration.GetSection(Secrets.HeathCerberosAppTokenUrl).Value,
HeathCerberosAppClientId = builder.Configuration.GetSection(Secrets.HeathCerberosAppClientId).Value,
HeathCerberosAppScope = builder.Configuration.GetSection(Secrets.HeathCerberosAppScope).Value,
PrivateKey = builder.Configuration.GetSection(Secrets.PrivateKey).Value,
PublicKey = builder.Configuration.GetSection(Secrets.PublicKey).Value,
};
}
}
}

2
Core.Cerberos.Adapters.sln → Core.Thalos.BuildingBlocks.sln
View File

@@ -3,7 +3,7 @@ Microsoft Visual Studio Solution File, Format Version 12.00
# Visual Studio Version 17
VisualStudioVersion = 17.10.34928.147
MinimumVisualStudioVersion = 10.0.40219.1
Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Core.Cerberos.Adapters", "Core.Cerberos.Adapters\Core.Cerberos.Adapters.csproj", "{C902AB37-E6D1-4CE7-B271-0E3969C989F3}"
Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Core.Thalos.BuildingBlocks", "Core.Thalos.BuildingBlocks\Core.Thalos.BuildingBlocks.csproj", "{C902AB37-E6D1-4CE7-B271-0E3969C989F3}"
EndProject
Global
GlobalSection(SolutionConfigurationPlatforms) = preSolution

2
Core.Cerberos.Adapters/Adapters/Base/BaseAdapterResponse.cs → Core.Thalos.BuildingBlocks/Adapters/Base/BaseAdapterResponse.cs
View File

@@ -5,7 +5,7 @@ using System.Text;
using System.Text.Json;
using System.Threading.Tasks;
namespace Core.Cerberos.Adapters
namespace Core.Thalos.Adapters
{
public class BaseAdapterResponse
{

60
Core.Cerberos.Adapters/Adapters/ModuleAdapter.cs → Core.Thalos.BuildingBlocks/Adapters/ModuleAdapter.cs
View File

@@ -1,30 +1,23 @@
// ***********************************************************************
// <copyright file="ModuleAdapter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Enums;
using Core.Blueprint.Mongo;
using Core.Thalos.Adapters.Common.Enums;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
namespace Core.Thalos.Adapters
{
/// <summary>
/// Adapter for representing a module.
/// </summary>
public class ModuleAdapter
[CollectionAttributeName("Modules")]
public class ModuleAdapter : Document
{
/// <summary>
/// Gets or sets the ID of the module.
/// </summary>
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("id")]
public string Id { get; set; } = null!;
/// <summary>
/// Gets or sets the name of the module.
/// </summary>
@@ -73,46 +66,5 @@ namespace Core.Cerberos.Adapters
[JsonPropertyName("application")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public ApplicationsEnum? Application { get; set; } = null!;
/// <summary>
/// Gets or sets the date and time when the module was created.
/// </summary>
[BsonElement("createdAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("createdAt")]
public DateTime CreatedAt { get; set; } = DateTime.UtcNow;
/// <summary>
/// Gets or sets the user who created the module.
/// </summary>
[BsonElement("createdBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("createdBy")]
public string? CreatedBy { get; set; }
/// <summary>
/// Gets or sets the date and time when the module was last updated.
/// </summary>
[BsonElement("updatedAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("updatedAt")]
public DateTime? UpdatedAt { get; set; } = null;
/// <summary>
/// Gets or sets the user who last updated the module.
/// </summary>
[BsonElement("updatedBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("updatedBy")]
public string? UpdatedBy { get; set; } = null;
/// <summary>
/// Gets or sets the status of the module.
/// </summary>
[BsonElement("status")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("status")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public StatusEnum Status { get; set; } = StatusEnum.Active;
}
}

46
Core.Thalos.BuildingBlocks/Adapters/PermissionAdapter.cs Normal file
View File

@@ -0,0 +1,46 @@
// ***********************************************************************
// <copyright file="PermissionAdapter.cs">
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Blueprint.Mongo;
using Core.Thalos.Adapters.Common.Constants;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Thalos.Adapters
{
/// <summary>
/// Adapter for representing a permission.
/// </summary>
[CollectionAttributeName("Permissions")]
public class PermissionAdapter : Document
{
/// <summary>
/// Gets or sets the name of the entity.
/// </summary>
[BsonElement("name")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("name")]
public string Name { get; set; } = null!;
/// <summary>
/// Gets or sets the description of the entity.
/// </summary>
[BsonElement("description")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("description")]
public string? Description { get; set; }
/// <summary>
/// Gets or sets the status of the entity object.
/// </summary>
[BsonElement("accessLevel")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("accessLevel")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public AccessLevelEnum? AccessLevel { get; set; } = null!;
}
}

59
Core.Thalos.BuildingBlocks/Adapters/RoleAdapter.cs Normal file
View File

@@ -0,0 +1,59 @@
// ***********************************************************************
// <copyright file="RoleAdapter.cs">
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Blueprint.Mongo;
using Core.Thalos.Adapters.Common.Enums;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Thalos.Adapters
{
/// <summary>
/// Adapter representing a role.
/// </summary>
[CollectionAttributeName("Roles")]
public class RoleAdapter : Document
{
/// <summary>
/// Gets or sets the name of the role.
/// </summary>
[BsonElement("name")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("name")]
public string Name { get; set; } = null!;
/// <summary>
/// Gets or sets the description of the role.
/// </summary>
[BsonElement("description")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("description")]
public string? Description { get; set; }
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("applications")]
[JsonPropertyName("applications")]
[JsonConverter(typeof(EnumArrayJsonConverter<ApplicationsEnum>))]
public ApplicationsEnum[]? Applications { get; set; }
/// <summary>
/// Gets or sets the modules of the role.
/// </summary>
[BsonElement("modules")]
[JsonPropertyName("modules")]
public string[] Modules { get; set; } = null!;
/// <summary>
/// Gets or sets the permissions of the role.
/// </summary>
[BsonElement("permissions")]
[JsonPropertyName("permissions")]
public string[] Permissions { get; set; } = null!;
}
}

6
Core.Cerberos.Adapters/Adapters/TokenAdapter.cs → Core.Thalos.BuildingBlocks/Adapters/TokenAdapter.cs
View File

@@ -1,10 +1,10 @@
// ***********************************************************************
// <copyright file="TokenAdapter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters
namespace Core.Thalos.Adapters
{
public class TokenAdapter
{
@@ -13,6 +13,6 @@ namespace Core.Cerberos.Adapters
public RoleAdapter? Role { get; set; }
public IEnumerable<PermissionAdapter>? Permissions { get; set; }
public IEnumerable<ModuleAdapter>? Modules { get; set; }
public IEnumerable<ModuleAdapter> Modules { get; set; } = null!;
}
}

59
Core.Cerberos.Adapters/Adapters/UserAdapter.cs → Core.Thalos.BuildingBlocks/Adapters/UserAdapter.cs
View File

@@ -1,29 +1,21 @@
// ***********************************************************************
// <copyright file="UserAdapter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Enums;
using Core.Blueprint.Mongo;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
namespace Core.Thalos.Adapters
{
/// <summary>
/// Adapter representing a user.
/// </summary>
public class UserAdapter : BaseAdapterResponse
[CollectionAttributeName("Users")]
public class UserAdapter : Document
{
/// <summary>
/// Gets or sets the unique identifier of the user.
/// </summary>
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("id")]
public string Id { get; set; } = null!;
/// <summary>
/// Gets or sets the guid of the user.
/// </summary>
@@ -126,46 +118,5 @@ namespace Core.Cerberos.Adapters
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("token")]
public string? Token { get; set; } = null;
/// <summary>
/// Gets or sets the date and time when the entity was created.
/// </summary>
[BsonElement("createdAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("createdAt")]
public DateTime CreatedAt { get; set; } = DateTime.UtcNow;
/// <summary>
/// Gets or sets the user who created the entity.
/// </summary>
[BsonElement("createdBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("createdBy")]
public string? CreatedBy { get; set; }
/// <summary>
/// Gets or sets the date and time when the entity was last updated.
/// </summary>
[BsonElement("updatedAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("updatedAt")]
public DateTime? UpdatedAt { get; set; } = null;
/// <summary>
/// Gets or sets the user who last updated the entity.
/// </summary>
[BsonElement("updatedBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("updatedBy")]
public string? UpdatedBy { get; set; } = null;
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("status")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("status")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public StatusEnum Status { get; set; } = StatusEnum.Active;
}
}

2
Core.Cerberos.Adapters/Attributes/Permission.cs → Core.Thalos.BuildingBlocks/Attributes/Permission.cs
View File

@@ -1,4 +1,4 @@
namespace Core.Cerberos.Adapters
namespace Core.Thalos.Adapters
{
public class Permission
{

2
Core.Cerberos.Adapters/Attributes/PermissionAttribute.cs → Core.Thalos.BuildingBlocks/Attributes/PermissionAttribute.cs
View File

@@ -2,7 +2,7 @@
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Mvc.Filters;
namespace Core.Cerberos.Adapters.Attributes
namespace Core.Thalos.Adapters.Attributes
{
/// <summary>
/// Custom authorization attribute that checks if the user has any of the required permissions.

38
Core.Thalos.BuildingBlocks/Authentication/Authorization/Google/GoogleAuthorization.cs Normal file
View File

@@ -0,0 +1,38 @@
using Core.Thalos.BuildingBlocks.Authentication.Helpers;
using Google.Apis.Auth.OAuth2;
using Google.Apis.Auth.OAuth2.Flows;
using Microsoft.Extensions.Configuration;
namespace Core.Thalos.BuildingBlocks.Authentication.Authorization.Google
{
public class GoogleAuthorization(
IGoogleAuthHelper googleHelper, IConfiguration config) : IGoogleAuthorization
{
private string RedirectUrl = config["Authentication:Google:RedirectUri"]!;
public async Task<UserCredential> ExchangeCodeForToken(string code)
{
var flow = new GoogleAuthorizationCodeFlow(
new GoogleAuthorizationCodeFlow.Initializer
{
ClientSecrets = googleHelper.GetClientSecrets(),
Scopes = googleHelper.GetScopes()
});
var token = await flow.ExchangeCodeForTokenAsync(
"user", code, RedirectUrl, CancellationToken.None);
return new UserCredential(flow, "user", token);
}
public string GetAuthorizationUrl() =>
new GoogleAuthorizationCodeFlow(
new GoogleAuthorizationCodeFlow.Initializer
{
ClientSecrets = googleHelper.GetClientSecrets(),
Scopes = googleHelper.GetScopes(),
Prompt = "consent"
}).CreateAuthorizationCodeRequest(RedirectUrl).Build().ToString();
}
}

10
Core.Thalos.BuildingBlocks/Authentication/Authorization/Google/IGoogleAuthorization.cs Normal file
View File

@@ -0,0 +1,10 @@
using Google.Apis.Auth.OAuth2;
namespace Core.Thalos.BuildingBlocks.Authentication.Authorization.Google
{
public interface IGoogleAuthorization
{
string GetAuthorizationUrl();
Task<UserCredential> ExchangeCodeForToken(string code);
}
}

9
Core.Thalos.BuildingBlocks/Authentication/Authorization/Jwt/PermissionAuthorizationAdapter.cs Normal file
View File

@@ -0,0 +1,9 @@
using Microsoft.AspNetCore.Authorization;
namespace Core.Thalos.BuildingBlocks.Authentication.Authorization.Jwt
{
public class PermissionAuthorizationAdapter(string[] permission) : IAuthorizationRequirement
{
public string[] Permission { get; } = permission ?? throw new ArgumentNullException(nameof(permission));
}
}

18
Core.Thalos.BuildingBlocks/Authentication/Authorization/Jwt/PermissionsAuthorizationHandler.cs Normal file
View File

@@ -0,0 +1,18 @@
using Microsoft.AspNetCore.Authorization;
namespace Core.Thalos.BuildingBlocks.Authentication.Authorization.Jwt
{
public class PermissionsAuthorizationHandler : AuthorizationHandler<PermissionAuthorizationAdapter>
{
protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, PermissionAuthorizationAdapter requirement)
{
PermissionAuthorizationAdapter requirement2 = requirement;
if (context.User.Claims.Any((x) => x.Type == "roleId" && requirement2.Permission.Contains(x.Value)))
{
context.Succeed(requirement2);
}
return Task.CompletedTask;
}
}
}

92
Core.Thalos.BuildingBlocks/Authentication/Extensions/AuthenticationExtension.cs Normal file
View File

@@ -0,0 +1,92 @@
using Core.Thalos.Adapters.Common.Constants;
using Core.Thalos.Adapters.Options;
using Core.Thalos.BuildingBlocks.Authentication.Authorization.Google;
using Core.Thalos.BuildingBlocks.Authentication.Authorization.Jwt;
using Core.Thalos.BuildingBlocks.Authentication.Handlers;
using Core.Thalos.BuildingBlocks.Authentication.Helpers;
using Core.Thalos.BuildingBlocks.Common.Constants;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Authorization;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.IdentityModel.Tokens;
using System.Text;
namespace Core.Thalos.BuildingBlocks.Authentication.Extensions
{
/// <summary>
/// Extension methods for configuring authentication with various Google and JWT setups.
/// </summary>
public static class AuthenticationExtension
{
/// <summary>
/// Configures authentication using Google Auth for an API that requires downstream API access.
/// </summary>
/// <param name="services">The <see cref="IServiceCollection"/> to add the services to.</param>
/// <param name="configuration">The <see cref="IConfiguration"/> containing Google Auth configuration settings.</param>
public static void ConfigureAuthentication(this IServiceCollection services, IConfiguration configuration)
{
var secretKey = configuration.GetSection("SecretKey").Value ?? string.Empty;
var _signingKey = new SymmetricSecurityKey(Encoding.ASCII.GetBytes(secretKey));
var jwtAppSettingsOptions = configuration.GetSection(nameof(JwtIssuerOptions));
var jwtIssuerOptions = jwtAppSettingsOptions.Get<JwtIssuerOptions>();
var googleClientId = configuration["Authentication:Google:ClientId"];
var googleClientSecret = configuration["Authentication:Google:ClientSecret"];
var redirectUri = configuration["Authentication:Google:RedirectUri"];
services.AddAuthentication(options =>
{
options.DefaultAuthenticateScheme = Schemes.GoogleScheme;
options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
})
.AddScheme<AuthenticationSchemeOptions,
GoogleAccessTokenAuthenticationHandler>(Schemes.GoogleScheme, null)
.AddGoogle(options =>
{
options.ClientId = googleClientId!;
options.ClientSecret = googleClientSecret!;
//options.SaveTokens = true;
options.CallbackPath = $"/{redirectUri}";
})
.AddJwtBearer(Schemes.DefaultScheme, x =>
{
x.TokenValidationParameters = new TokenValidationParameters
{
ValidIssuer = jwtIssuerOptions?.Issuer,
ValidateIssuer = true,
ValidateAudience = true,
ValidateLifetime = true,
ValidateIssuerSigningKey = true,
ValidAudience = jwtIssuerOptions?.Audience,
IssuerSigningKey = new SymmetricSecurityKey(
Encoding.UTF8.GetBytes(configuration["SecretKey"] ?? string.Empty))
};
});
services.Configure<JwtIssuerOptions>(options =>
{
options.Issuer = jwtAppSettingsOptions[nameof(jwtIssuerOptions.Issuer)] ?? string.Empty;
options.Audience = jwtAppSettingsOptions[nameof(jwtIssuerOptions.Audience)] ?? string.Empty;
options.SigningCredentials = new SigningCredentials(_signingKey, SecurityAlgorithms.HmacSha256);
});
services.AddSingleton(jwtAppSettingsOptions);
string[] roles = { Roles.Guest, Roles.Admin };
services.AddAuthorization(options =>
{
options.AddPolicy(Policies.Read, policy => policy.Requirements.Add(new PermissionAuthorizationAdapter(roles)));
options.AddPolicy(Policies.Write, policy => policy.Requirements.Add(new PermissionAuthorizationAdapter(roles)));
});
services.AddTransient<IAuthorizationHandler, PermissionsAuthorizationHandler>();
services.AddAuthorization();
services.AddScoped<IGoogleAuthHelper, GoogleAuthHelper>();
services.AddScoped<IGoogleAuthorization, GoogleAuthorization>();
}
}
}

84
Core.Thalos.BuildingBlocks/Authentication/Extensions/SwaggerExtension.cs Normal file
View File

@@ -0,0 +1,84 @@
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.OpenApi.Any;
using Microsoft.OpenApi.Interfaces;
using Microsoft.OpenApi.Models;
namespace Core.Thalos.BuildingBlocks.Authentication.Extensions
{
public static class SwaggerExtension
{
public static void AddSwaggerGen(this IServiceCollection services, IConfiguration configuration)
{
services.AddSwaggerGen(opts =>
{
const string schemeName = "oauth2";
opts.AddSecurityDefinition(schemeName, new OpenApiSecurityScheme
{
Type = SecuritySchemeType.OAuth2,
Scheme = "bearer",
BearerFormat = "JWT",
Name = "Authorization",
In = ParameterLocation.Header,
Extensions = new Dictionary<string, IOpenApiExtension>
{
["x-tokenName"] = new OpenApiString("id_token")
},
Flows = new OpenApiOAuthFlows
{
AuthorizationCode = new OpenApiOAuthFlow
{
AuthorizationUrl = new Uri("https://accounts.google.com/o/oauth2/v2/auth"),
TokenUrl = new Uri("https://oauth2.googleapis.com/token"),
Scopes = new Dictionary<string, string>
{
{ "openid", "OpenID Connect" },
{ "email", "Access email" },
{ "profile", "Access profile" }
}
}
}
});
// every operation requires the scheme
opts.AddSecurityRequirement(new OpenApiSecurityRequirement
{
[new OpenApiSecurityScheme
{
Reference = new OpenApiReference
{ Type = ReferenceType.SecurityScheme, Id = schemeName }
}
] = new[] { "openid", "email", "profile" }
});
opts.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme
{
Description = "JWT Authorization header using the Bearer scheme",
Name = "Authorization",
In = ParameterLocation.Header,
Type = SecuritySchemeType.Http,
Scheme = "bearer",
BearerFormat = "JWT"
});
opts.AddSecurityRequirement(new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme
{
Reference = new OpenApiReference
{
Type = ReferenceType.SecurityScheme,
Id = "Bearer"
}
},
Array.Empty<string>()
}
});
});
}
}
}

63
Core.Thalos.BuildingBlocks/Authentication/Handlers/GoogleAccessTokenAuthenticationHandler.cs Normal file
View File

@@ -0,0 +1,63 @@
using Core.Thalos.Adapters.Common.Constants;
using Google.Apis.Auth;
using Microsoft.AspNetCore.Authentication;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Options;
using System.Security.Claims;
using System.Text.Encodings.Web;
namespace Core.Thalos.BuildingBlocks.Authentication.Handlers
{
public class GoogleAccessTokenAuthenticationHandler(IOptionsMonitor<AuthenticationSchemeOptions> options,
ILoggerFactory logger,
UrlEncoder encoder,
IConfiguration config) : AuthenticationHandler<AuthenticationSchemeOptions>(options, logger, encoder)
{
protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
{
if (!Request.Headers.ContainsKey("Authorization"))
return AuthenticateResult.Fail("Missing Authorization header");
var authHeader = Request.Headers.Authorization.ToString();
if (!authHeader.StartsWith("Bearer ", StringComparison.OrdinalIgnoreCase))
return AuthenticateResult.Fail("Invalid Authorization header");
var idToken = authHeader["Bearer ".Length..].Trim();
GoogleJsonWebSignature.Payload payload;
try
{
payload = await GoogleJsonWebSignature.ValidateAsync(
idToken,
new GoogleJsonWebSignature.ValidationSettings
{
Audience = new[] { config["Authentication:Google:ClientId"]! }
});
}
catch (InvalidJwtException)
{
return AuthenticateResult.Fail("Invalid Google token");
}
var claims = new List<Claim>
{
new Claim(ClaimTypes.NameIdentifier, payload.Subject),
new Claim(ClaimTypes.Email, payload.Email),
new Claim(ClaimTypes.Name, payload.Name ?? "")
};
var identity = new ClaimsIdentity(claims, Schemes.GoogleScheme);
var principal = new ClaimsPrincipal(identity);
var userEmail = principal.FindFirst(ClaimTypes.Email)?.Value;
if (string.IsNullOrEmpty(userEmail) ||
!userEmail.EndsWith("@agilewebs.com", StringComparison.OrdinalIgnoreCase))
return AuthenticateResult.Fail("Unauthorized Access");
var ticket = new AuthenticationTicket(principal, Schemes.GoogleScheme);
return AuthenticateResult.Success(ticket);
}
}
}

31
Core.Thalos.BuildingBlocks/Authentication/Helpers/GoogleAuthHelper.cs Normal file
View File

@@ -0,0 +1,31 @@
using Google.Apis.Auth.OAuth2;
using Google.Apis.Oauth2.v2;
using Microsoft.Extensions.Configuration;
namespace Core.Thalos.BuildingBlocks.Authentication.Helpers
{
public class GoogleAuthHelper(IConfiguration config) : IGoogleAuthHelper
{
public ClientSecrets GetClientSecrets()
{
string clientId = config["Authentication:Google:ClientId"]!;
string clientSecret = config["Authentication:Google:ClientSecret"]!;
return new() { ClientId = clientId, ClientSecret = clientSecret };
}
public string[] GetScopes()
{
var scopes = new[]
{
Oauth2Service.Scope.Openid,
Oauth2Service.Scope.UserinfoEmail,
Oauth2Service.Scope.UserinfoProfile
};
return scopes;
}
public string ScopeToString() => string.Join(", ", GetScopes());
}
}

11
Core.Thalos.BuildingBlocks/Authentication/Helpers/IGoogleAuthHelper.cs Normal file
View File

@@ -0,0 +1,11 @@
using Google.Apis.Auth.OAuth2;
namespace Core.Thalos.BuildingBlocks.Authentication.Helpers
{
public interface IGoogleAuthHelper
{
string[] GetScopes();
string ScopeToString();
ClientSecrets GetClientSecrets();
}
}

4
Core.Cerberos.Adapters/Common/Constants/AccessLevelEnum.cs → Core.Thalos.BuildingBlocks/Common/Constants/AccessLevelEnum.cs
View File

@@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="AccessLevelEnum.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Specifies different access level for a permission.

4
Core.Cerberos.Adapters/Common/Constants/AzureAd.cs → Core.Thalos.BuildingBlocks/Common/Constants/AzureAd.cs
View File

@@ -1,9 +1,9 @@
// ***********************************************************************
// <copyright file="AzureAd.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Constants for Azure Active Directory.

4
Core.Cerberos.Adapters/Common/Constants/Claims.cs → Core.Thalos.BuildingBlocks/Common/Constants/Claims.cs
View File

@@ -1,9 +1,9 @@
// ***********************************************************************
// <copyright file="Claims.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Constants for claims used in JWT tokens.

2
Core.Cerberos.Adapters/Common/Constants/CollectionNames.cs → Core.Thalos.BuildingBlocks/Common/Constants/CollectionNames.cs
View File

@@ -1,4 +1,4 @@
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
public static class CollectionNames
{

4
Core.Cerberos.Adapters/Common/Constants/EnvironmentVariables.cs → Core.Thalos.BuildingBlocks/Common/Constants/EnvironmentVariables.cs
View File

@@ -1,10 +1,10 @@
// ***********************************************************************
// <copyright file="EnvironmentVariables.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Constants of the environment variables for this service.

4
Core.Cerberos.Adapters/Common/Constants/KeyVaultConfiguration.cs → Core.Thalos.BuildingBlocks/Common/Constants/KeyVaultConfiguration.cs
View File

@@ -1,9 +1,9 @@
// ***********************************************************************
// <copyright file="KeyVaultConfiguration.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Constants for Key Vault configuration.

2
Core.Cerberos.Adapters/Common/Constants/MimeTypes.cs → Core.Thalos.BuildingBlocks/Common/Constants/MimeTypes.cs
View File

@@ -6,7 +6,7 @@
using System.Globalization;
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Constants for the mime types.

24
Core.Thalos.BuildingBlocks/Common/Constants/Policies.cs Normal file
View File

@@ -0,0 +1,24 @@
using System;
using System.Collections.Generic;
namespace Core.Thalos.BuildingBlocks.Common.Constants
{
/// <summary>
/// Constants for policy.
/// </summary>
public class Policies
{
/// <summary>
/// Defines the access policy for reading mobile-related data.
/// This policy grants read-only permissions for retrieving mobile device information,
/// user mobile settings, or related data as per the application's authorization scope.
/// </summary>
public const string Read = "Read";
/// <summary>
/// Defines the access policy for writing mobile-related data.
/// This policy grants permissions to modify, update, or store mobile device information,
/// user mobile settings, or related data as per the application's authorization scope.
/// </summary>
public const string Write = "Write";
}
}

15
Core.Thalos.BuildingBlocks/Common/Constants/Roles.cs Normal file
View File

@@ -0,0 +1,15 @@
namespace Core.Thalos.BuildingBlocks.Common.Constants
{
public class Roles
{
/// <summary>
/// The role for Guest.
/// </summary>
public const string Guest = "684909c4826cd093b4f61c11";
/// <summary>
/// The role for Admin.
/// </summary>
public const string Admin = "68407642ec46a0e6fe1e8ec9";
}
}

4
Core.Cerberos.Adapters/Common/Constants/Routes.cs → Core.Thalos.BuildingBlocks/Common/Constants/Routes.cs
View File

@@ -1,10 +1,10 @@
// ***********************************************************************
// <copyright file="Routes.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Constants of the routes of this service.

11
Core.Cerberos.Adapters/Common/Constants/Schemes.cs → Core.Thalos.BuildingBlocks/Common/Constants/Schemes.cs
View File

@@ -1,4 +1,4 @@
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Constants for schemes.
@@ -6,13 +6,18 @@
public class Schemes
{
/// <summary>
/// The heath scheme.
/// The default scheme.
/// </summary>
public const string HeathScheme = "HeathScheme";
public const string DefaultScheme = "DefaultScheme";
/// <summary>
/// The azure scheme.
/// </summary>
public const string AzureScheme = "AzureScheme";
/// <summary>
/// The google scheme.
/// </summary>
public const string GoogleScheme = "GoogleScheme";
}
}

16
Core.Cerberos.Adapters/Common/Constants/Secrets.cs → Core.Thalos.BuildingBlocks/Common/Constants/Secrets.cs
View File

@@ -1,9 +1,9 @@
// ***********************************************************************
// <copyright file="AppSettings.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.Adapters.Common.Constants
{
/// <summary>
/// Constants for secrets in azure key vault.
@@ -49,11 +49,11 @@ namespace Core.Cerberos.Adapters.Common.Constants
public const string AzureADTenantId = "B2C:TenantId";
public const string AzureADClientId = "B2C:ClientId";
public const string AzureADClientSecret = "B2C:ClientSecret";
public const string HeathCerberosAppAuthorizationUrl = "Swagger:AuthorizationUri";
public const string HeathCerberosAppTokenUrl = "Swagger:TokenUri";
public const string HeathCerberosAppClientId = "Swagger:ClientId";
public const string HeathCerberosAppScope = "Swagger:Scope";
public const string PrivateKey = "B2C:JwtIssuerOptions:TokenPrivateKey";
public const string PublicKey = "B2C:JwtIssuerOptions:TokenPublicKey";
public const string ThalosAppAuthorizationUrl = "Swagger:AuthorizationUri";
public const string ThalosAppTokenUrl = "Swagger:TokenUri";
public const string ThalosAppClientId = "Swagger:ClientId";
public const string ThalosAppScope = "Swagger:Scope";
public const string PrivateKey = "JwtTokenPrivateKey";
public const string PublicKey = "JwtTokenPublicKey";
}
}

27
Core.Cerberos.Adapters/Common/Enums/ApplicationsEnum.cs → Core.Thalos.BuildingBlocks/Common/Enums/ApplicationsEnum.cs
View File

@@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="ApplicationsEnum.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters.Common.Enums
namespace Core.Thalos.Adapters.Common.Enums
{
/// <summary>
/// Defines the applications associated with the role.
@@ -15,28 +15,13 @@ namespace Core.Cerberos.Adapters.Common.Enums
public enum ApplicationsEnum
{
/// <summary>
/// LSA Web Portal application.
/// Thalos application.
/// </summary>
LSAWebPortal = 0,
Thalos = 0,
/// <summary>
/// Customer DashBoard application.
/// DreamViewer application.
/// </summary>
CustomerDashboard = 1,
/// <summary>
/// Discover application.
/// </summary>
Discover = 2,
/// <summary>
/// LSA Mobile application.
/// </summary>
LSAMobile = 3,
/// <summary>
/// BluePrint application.
/// </summary>
BluePrint = 4,
DreamViewer = 1,
}
}

4
Core.Cerberos.Adapters/Common/Enums/StatusEnum.cs → Core.Thalos.BuildingBlocks/Common/Enums/StatusEnum.cs
View File

@@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="StatusEnum.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters.Common.Enums
namespace Core.Thalos.Adapters.Common.Enums
{
/// <summary>
/// Defines the status of an entity.

0
Core.Cerberos.Adapters/Common/SchemaFilters/EnumArrayJsonConverter.cs → Core.Thalos.BuildingBlocks/Common/SchemaFilters/EnumArrayJsonConverter.cs
View File

2
Core.Cerberos.Adapters/Common/SchemaFilters/EnumSchemaFilter.cs → Core.Thalos.BuildingBlocks/Common/SchemaFilters/EnumSchemaFilter.cs
View File

@@ -1,6 +1,6 @@
// ***********************************************************************
// <copyright file="EnumSchemaFilter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************

4
Core.Cerberos.Adapters/Contracts/ITokenProvider.cs → Core.Thalos.BuildingBlocks/Contracts/ITokenProvider.cs
View File

@@ -1,10 +1,10 @@
// ***********************************************************************
// <copyright file="ITokenProvider.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Contracts
namespace Core.Thalos.Adapters.Contracts
{
/// <summary>
/// Interface for token provider.

6
Core.Cerberos.Adapters/Contracts/ITokenService.cs → Core.Thalos.BuildingBlocks/Contracts/ITokenService.cs
View File

@@ -1,13 +1,13 @@
// ***********************************************************************
// <copyright file="ITokenService.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
namespace Core.Cerberos.Adapters.Contracts
namespace Core.Thalos.Adapters.Contracts
{
/// <summary>
/// Interface for authenticacion service.
@@ -17,7 +17,7 @@ namespace Core.Cerberos.Adapters.Contracts
/// <summary>
/// Refreshes the access token.
/// </summary>
string GenerateAccessToken(TokenAdapter adapter);
(string, IEnumerable<ModuleAdapter>) GenerateAccessToken(TokenAdapter adapter);
/// <summary>
/// Refreshes the access token.

28
Core.Cerberos.Adapters/Core.Cerberos.Adapters.csproj → Core.Thalos.BuildingBlocks/Core.Thalos.BuildingBlocks.csproj
View File

@@ -8,23 +8,29 @@
<TargetFramework>net8.0</TargetFramework>
<ImplicitUsings>enable</ImplicitUsings>
<Nullable>enable</Nullable>
<VersionPrefix>1.0.5</VersionPrefix>
<VersionSuffix>$(Date:yyyyMMddHHmm)</VersionSuffix>
</PropertyGroup>
<ItemGroup>
<PackageReference Include="Asp.Versioning.Mvc.ApiExplorer" Version="8.1.0" />
<PackageReference Include="Core.Blueprint.Mongo" Version="1.0.0" />
<PackageReference Include="Google.Apis.Auth" Version="1.70.0" />
<PackageReference Include="Google.Apis.Oauth2.v2" Version="1.68.0.1869" />
<PackageReference Include="Microsoft.AspNetCore.Authentication.Google" Version="8.0.18" />
<PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="8.0.10" />
<PackageReference Include="Microsoft.Extensions.Configuration.AzureAppConfiguration" Version="8.0.0" />
<PackageReference Include="Microsoft.Identity.Web" Version="3.2.2" />
<PackageReference Include="Microsoft.Identity.Web.MicrosoftGraph" Version="3.2.2" />
<PackageReference Include="MongoDB.Bson" Version="3.0.0" />
<PackageReference Include="OpenTelemetry" Version="1.9.0" />
<PackageReference Include="OpenTelemetry.Exporter.Console" Version="1.9.0" />
<PackageReference Include="OpenTelemetry.Extensions.Hosting" Version="1.9.0" />
<PackageReference Include="OpenTelemetry.Instrumentation.AspNetCore" Version="1.9.0" />
<PackageReference Include="OpenTelemetry.Instrumentation.Http" Version="1.9.0" />
<PackageReference Include="Microsoft.Extensions.Configuration.AzureAppConfiguration" Version="8.2.0" />
<PackageReference Include="Microsoft.Identity.Web" Version="3.9.1" />
<PackageReference Include="Microsoft.Identity.Web.MicrosoftGraph" Version="3.9.1" />
<PackageReference Include="MongoDB.Bson" Version="3.4.0" />
<PackageReference Include="OpenTelemetry" Version="1.12.0" />
<PackageReference Include="OpenTelemetry.Exporter.Console" Version="1.12.0" />
<PackageReference Include="OpenTelemetry.Extensions.Hosting" Version="1.12.0" />
<PackageReference Include="OpenTelemetry.Instrumentation.AspNetCore" Version="1.12.0" />
<PackageReference Include="OpenTelemetry.Instrumentation.Http" Version="1.12.0" />
<PackageReference Include="Portable.BouncyCastle" Version="1.9.0" />
<PackageReference Include="Swashbuckle.AspNetCore" Version="6.9.0" />
<PackageReference Include="System.Text.Json" Version="8.0.5" />
<PackageReference Include="Swashbuckle.AspNetCore" Version="8.1.1" />
<PackageReference Include="System.Text.Json" Version="9.0.5" />
</ItemGroup>
</Project>

16
Core.Cerberos.Adapters/Extensions/AuthenticationExtension.cs → Core.Thalos.BuildingBlocks/Extensions/AuthenticationExtension.cs
View File

@@ -1,14 +1,14 @@
// ***********************************************************************
// <copyright file="AuthExtension.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Constants;
using Core.Cerberos.Adapters.Contracts;
using Core.Cerberos.Adapters.Handlers;
using Core.Cerberos.Adapters.Options;
using Core.Cerberos.Adapters.Services;
using Core.Thalos.Adapters.Common.Constants;
using Core.Thalos.Adapters.Contracts;
using Core.Thalos.Adapters.Handlers;
using Core.Thalos.Adapters.Options;
using Core.Thalos.Adapters.Services;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Authorization;
using Microsoft.Extensions.Configuration;
@@ -17,7 +17,7 @@ using Microsoft.Identity.Web;
using Microsoft.IdentityModel.Tokens;
using System.Security.Cryptography;
namespace Core.Cerberos.Adapters.Extensions
namespace Core.Thalos.Adapters.Extensions
{
/// <summary>
/// Extension methods for configuring authentication with various Azure AD setups.
@@ -68,7 +68,7 @@ namespace Core.Cerberos.Adapters.Extensions
throw new InvalidOperationException("JwtIssuerOptions are not configured correctly.");
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddJwtBearer(Schemes.HeathScheme, x =>
.AddJwtBearer(Schemes.DefaultScheme, x =>
{
x.TokenValidationParameters = new TokenValidationParameters
{

18
Core.Cerberos.Adapters/Extensions/SwaggerExtensions.cs → Core.Thalos.BuildingBlocks/Extensions/SwaggerExtensions.cs
View File

@@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="SwaggerExtensions.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Asp.Versioning.ApiExplorer;
using Core.Cerberos.Adapters.Common.Constants;
using Core.Cerberos.Adapters.Extensions;
using Core.Thalos.Adapters.Common.Constants;
using Core.Thalos.Adapters.Extensions;
using Microsoft.AspNetCore.Builder;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
@@ -16,7 +16,7 @@ using Microsoft.OpenApi.Models;
using Swashbuckle.AspNetCore.SwaggerGen;
using Swashbuckle.AspNetCore.SwaggerUI;
namespace Core.Cerberos.Adapters.Extensions
namespace Core.Thalos.Adapters.Extensions
{
/// <summary>
/// Extension methods for configuring Swagger documentation and UI.
@@ -53,11 +53,11 @@ namespace Core.Cerberos.Adapters.Extensions
{
AuthorizationCode = new OpenApiOAuthFlow
{
AuthorizationUrl = new Uri(authSettings.HeathCerberosAppAuthorizationUrl ?? string.Empty),
TokenUrl = new Uri(authSettings.HeathCerberosAppTokenUrl ?? string.Empty),
AuthorizationUrl = new Uri(authSettings.ThalosAppAuthorizationUrl ?? string.Empty),
TokenUrl = new Uri(authSettings.ThalosAppTokenUrl ?? string.Empty),
Scopes = new Dictionary<string, string>
{
{ authSettings.HeathCerberosAppScope ?? string.Empty, "Access API as User" }
{ authSettings.ThalosAppScope ?? string.Empty, "Access API as User" }
}
}
}
@@ -70,7 +70,7 @@ namespace Core.Cerberos.Adapters.Extensions
{
Reference = new OpenApiReference { Type = ReferenceType.SecurityScheme, Id = "oauth2" }
},
new[] { authSettings.HeathCerberosAppScope }
new[] { authSettings.ThalosAppScope }
}
});
@@ -134,7 +134,7 @@ namespace Core.Cerberos.Adapters.Extensions
app.UseSwaggerUI(options =>
{
options.SwaggerEndpoint("/swagger/v1/swagger.json", "Custom Auth API with Azure AD v1");
options.OAuthClientId(authSettings.HeathCerberosAppClientId);
options.OAuthClientId(authSettings.ThalosAppClientId);
options.OAuthUsePkce();
options.OAuthScopeSeparator(" ");
});

2
Core.Cerberos.Adapters/Extensions/TelemetryExtensions.cs → Core.Thalos.BuildingBlocks/Extensions/TelemetryExtensions.cs
View File

@@ -4,7 +4,7 @@ using OpenTelemetry.Metrics;
using OpenTelemetry.Resources;
using OpenTelemetry.Trace;
namespace Core.Cerberos.Adapters.Extensions
namespace Core.Thalos.Adapters.Extensions
{
public static class TelemetryExtensions
{

2
Core.Cerberos.Adapters/Extensions/TrackingMechanismExtension.cs → Core.Thalos.BuildingBlocks/Extensions/TrackingMechanismExtension.cs
View File

@@ -1,6 +1,6 @@
using Microsoft.AspNetCore.Http;
namespace Core.Cerberos.Adapters.Extensions
namespace Core.Thalos.Adapters.Extensions
{
public sealed class TrackingMechanismExtension : DelegatingHandler
{

2
Core.Cerberos.Adapters/Handlers/Adapters/PermissionsAuthorizationAdapter.cs → Core.Thalos.BuildingBlocks/Handlers/Adapters/PermissionsAuthorizationAdapter.cs
View File

@@ -1,6 +1,6 @@
using Microsoft.AspNetCore.Authorization;
namespace Core.Cerberos.Adapters.Handlers.Adapters
namespace Core.Thalos.Adapters.Handlers.Adapters
{
public class PermissionsAuthorizationAdapter : IAuthorizationRequirement
{

6
Core.Cerberos.Adapters/Handlers/AuthenticatedHttpClientHandler.cs → Core.Thalos.BuildingBlocks/Handlers/AuthenticatedHttpClientHandler.cs
View File

@@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="AuthenticatedHttpClientHandler.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Contracts;
using Core.Thalos.Adapters.Contracts;
namespace Core.Cerberos.Adapters.Handlers
namespace Core.Thalos.Adapters.Handlers
{
/// <summary>
/// Class to inject the token in all requests.

4
Core.Cerberos.Adapters/Handlers/PermissionsAuthorizationHandler.cs → Core.Thalos.BuildingBlocks/Handlers/PermissionsAuthorizationHandler.cs
View File

@@ -1,7 +1,7 @@
using Core.Cerberos.Adapters.Handlers.Adapters;
using Core.Thalos.Adapters.Handlers.Adapters;
using Microsoft.AspNetCore.Authorization;
namespace Core.Cerberos.Adapters.Handlers
namespace Core.Thalos.Adapters.Handlers
{
public class PermissionsAuthorizationHandler : AuthorizationHandler<PermissionsAuthorizationAdapter>
{

57
Core.Thalos.BuildingBlocks/Helpers/AuthHelper.cs Normal file
View File

@@ -0,0 +1,57 @@
using Azure.Identity;
using Core.Thalos.Adapters.Common.Constants;
using Microsoft.AspNetCore.Builder;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.Configuration.AzureAppConfiguration;
using Microsoft.Extensions.Logging;
namespace Core.Thalos.Adapters.Helpers
{
public static class AuthHelper
{
private static readonly ILogger logger = LoggerFactory.Create(builder =>
{
builder.AddConsole();
}).CreateLogger("AuthHelper");
public static AuthSettings GetAuthSettings(WebApplicationBuilder builder, string appConfigLabel)
{
var environment = Environment.GetEnvironmentVariable("ASPNETCORE_ENVIRONMENT") ?? string.Empty;
if (environment != "Local")
{
builder.Configuration.AddAzureAppConfiguration(options =>
{
var endpoint = builder.Configuration.GetSection("Endpoints:AppConfigurationURI").Value;
if (string.IsNullOrEmpty(endpoint))
throw new ArgumentException("The app configuration is missing");
options.Connect(new Uri(endpoint), new DefaultAzureCredential())
.Select(KeyFilter.Any, "thalos_common")
.Select(KeyFilter.Any, appConfigLabel);
options.ConfigureKeyVault(keyVaultOptions =>
{
keyVaultOptions.SetCredential(new DefaultAzureCredential());
});
});
}
return new AuthSettings
{
AzureADInstance = builder.Configuration.GetSection(Secrets.AzureADInstance).Value,
AzureADTenantId = builder.Configuration.GetSection(Secrets.AzureADTenantId).Value,
AzureADClientId = builder.Configuration.GetSection(Secrets.AzureADClientId).Value,
AzureADClientSecret = builder.Configuration.GetSection(Secrets.AzureADClientSecret).Value,
ThalosAppAuthorizationUrl = builder.Configuration.GetSection(Secrets.ThalosAppAuthorizationUrl).Value,
ThalosAppTokenUrl = builder.Configuration.GetSection(Secrets.ThalosAppTokenUrl).Value,
ThalosAppClientId = builder.Configuration.GetSection(Secrets.ThalosAppClientId).Value,
ThalosAppScope = builder.Configuration.GetSection(Secrets.ThalosAppScope).Value,
PrivateKey = builder.Configuration.GetSection(Secrets.PrivateKey).Value,
PublicKey = builder.Configuration.GetSection(Secrets.PublicKey).Value,
};
}
}
}

8
Core.Cerberos.Adapters/Helpers/RsaHelper.cs → Core.Thalos.BuildingBlocks/Helpers/RsaHelper.cs
View File

@@ -1,6 +1,6 @@
// ***********************************************************************
// <copyright file="RsaHelper.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Org.BouncyCastle.Crypto;
@@ -10,7 +10,7 @@ using Org.BouncyCastle.Security;
using System.Security.Cryptography;
using System.Text;
namespace Core.Cerberos.Adapters.Helpers
namespace Core.Thalos.Adapters.Helpers
{
/// <summary>
/// Handles all methods related to RSA encryption"/>.
@@ -62,7 +62,7 @@ namespace Core.Cerberos.Adapters.Helpers
/// <returns>The private key.</returns>
private RSACryptoServiceProvider GetPrivateKeyFromPemFile()
{
using (TextReader privateKeyTextReader = new StringReader(File.ReadAllText(Path.Combine(exeDirectory, "HeathPrivateKey.pem"))))
using (TextReader privateKeyTextReader = new StringReader(File.ReadAllText(Path.Combine(exeDirectory, "PrivateKey.pem"))))
{
AsymmetricCipherKeyPair readKeyPair = (AsymmetricCipherKeyPair)new PemReader(privateKeyTextReader).ReadObject();
@@ -79,7 +79,7 @@ namespace Core.Cerberos.Adapters.Helpers
/// <returns>The public key.</returns>
public RSACryptoServiceProvider GetPublicKeyFromPemFile()
{
using (TextReader publicKeyTextReader = new StringReader(File.ReadAllText(Path.Combine(exeDirectory, "HeathPublicKey.pem"))))
using (TextReader publicKeyTextReader = new StringReader(File.ReadAllText(Path.Combine(exeDirectory, "PublicKey.pem"))))
{
RsaKeyParameters publicKeyParam = (RsaKeyParameters)new PemReader(publicKeyTextReader).ReadObject();

2
Core.Cerberos.Adapters/Options/JwtIssuerOptions.cs → Core.Thalos.BuildingBlocks/Options/JwtIssuerOptions.cs
View File

@@ -1,6 +1,6 @@
using Microsoft.IdentityModel.Tokens;
namespace Core.Cerberos.Adapters.Options
namespace Core.Thalos.Adapters.Options
{
/// <summary>
/// JWT token Issuer options (used for JWT Factory)

19
Core.Cerberos.Adapters/Services/TokenService.cs → Core.Thalos.BuildingBlocks/Services/TokenService.cs
View File

@@ -1,11 +1,11 @@
// ***********************************************************************
// <copyright file="T5okenService.cs">
// Heath
// <copyright file="TokenService.cs">
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Constants;
using Core.Cerberos.Adapters.Contracts;
using Core.Cerberos.Adapters.Options;
using Core.Thalos.Adapters.Common.Constants;
using Core.Thalos.Adapters.Contracts;
using Core.Thalos.Adapters.Options;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Configuration;
@@ -16,7 +16,7 @@ using System.IdentityModel.Tokens.Jwt;
using System.Security.Claims;
using System.Text.Json;
namespace Core.Cerberos.Adapters.Services
namespace Core.Thalos.Adapters.Services
{
/// <summary>
/// Service responsible for manage authenticacion.
@@ -74,7 +74,7 @@ namespace Core.Cerberos.Adapters.Services
/// </summary>
/// <param name="user">The user data.</param>
/// <returns>The user DTO with the generated token.</returns>
public string GenerateAccessToken(TokenAdapter adapter)
public (string, IEnumerable<ModuleAdapter>) GenerateAccessToken(TokenAdapter adapter)
{
@@ -95,9 +95,6 @@ namespace Core.Cerberos.Adapters.Services
new Claim(Claims.Role, adapter?.Role?.Name ?? string.Empty),
new Claim(Claims.RoleId, adapter?.Role?.Id ?? string.Empty),
new Claim(Claims.Applications, JsonSerializer.Serialize(adapter?.Role?.Applications), JsonClaimValueTypes.JsonArray),
new Claim(Claims.Modules, JsonSerializer.Serialize(adapter?.Modules?.Select(m => new { m.Name, m.Application, m.Route, m.Icon, m.Order }), jsonOptions), JsonClaimValueTypes.JsonArray),
new Claim(Claims.Companies, JsonSerializer.Serialize(adapter?.User?.Companies), JsonClaimValueTypes.JsonArray),
new Claim(Claims.Projects, JsonSerializer.Serialize(adapter?.User?.Projects), JsonClaimValueTypes.JsonArray),
new Claim(Claims.Permissions, JsonSerializer.Serialize(adapter?.Permissions?.Select(p => $"{p.Name}.{p.AccessLevel}".Replace(" ", "")).ToArray()), JsonClaimValueTypes.JsonArray),
}),
@@ -109,7 +106,7 @@ namespace Core.Cerberos.Adapters.Services
var token = tokenHandler.CreateEncodedJwt(tokenDescriptor);
return token;
return (token, adapter.Modules);
}
public ActionResult<TimeSpan> ValidateTokenExpiration(string tokenExpiration)

12
Core.Cerberos.Adapters/Settings/AuthSettings.cs → Core.Thalos.BuildingBlocks/Settings/AuthSettings.cs
View File

@@ -1,6 +1,6 @@
// ***********************************************************************
// <copyright file="AuthSettings.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
@@ -12,11 +12,11 @@ public class AuthSettings
public string? AzureADClientId { get; set; }
public string? AzureADClientSecret { get; set; }
// Heath Cerberos App Settings
public string? HeathCerberosAppAuthorizationUrl { get; set; }
public string? HeathCerberosAppTokenUrl { get; set; }
public string? HeathCerberosAppClientId { get; set; }
public string? HeathCerberosAppScope { get; set; }
//Thalos App Settings
public string? ThalosAppAuthorizationUrl { get; set; }
public string? ThalosAppTokenUrl { get; set; }
public string? ThalosAppClientId { get; set; }
public string? ThalosAppScope { get; set; }
// Token Keys
public string? PrivateKey { get; set; }

6
Core.Cerberos.Adapters/TokenProvider/HttpContextTokenProvider.cs → Core.Thalos.BuildingBlocks/TokenProvider/HttpContextTokenProvider.cs
View File

@@ -1,13 +1,13 @@
// ***********************************************************************
// <copyright file="HttpContextTokenProvider.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Contracts;
using Core.Thalos.Adapters.Contracts;
using Microsoft.AspNetCore.Http;
namespace Core.Cerberos.Adapters.TokenProvider
namespace Core.Thalos.Adapters.TokenProvider
{
/// <summary>
/// Class to return the access token to controllers.

4
Core.Cerberos.Adapters/UserExistenceAdapter.cs → Core.Thalos.BuildingBlocks/UserExistenceAdapter.cs
View File

@@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="UserExistenceAdapter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
namespace Core.Thalos.Adapters
{
/// <summary>
/// Adapter representing a user.