Web Api found ...

2025-02-11 04:45:05 +00:00
parent d1cadd9df8
commit 6cd5f1d041
23 changed files with 215 additions and 870 deletions
--- a/src/Api/Api.csproj
+++ b/src/Api/Api.csproj
@ -0,0 +1,10 @@
+<Project Sdk="Microsoft.NET.Sdk.Web">
+  <PropertyGroup>
+    <TargetFramework>net8.0</TargetFramework>
+    <Nullable>enable</Nullable>
+    <ImplicitUsings>enable</ImplicitUsings>
+  </PropertyGroup>
+   <ItemGroup>
+    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="8.0.12" />
+ </ItemGroup>
+</Project>
--- a/src/Api/Program.cs
+++ b/src/Api/Program.cs
@ -0,0 +1,77 @@
+/*
+ Copyright (c) 2024 HigginsSoft, Alexander Higgins - https://github.com/alexhiggins732/ 
+
+ Copyright (c) 2018, Brock Allen & Dominick Baier. All rights reserved.
+
+ Licensed under the Apache License, Version 2.0. See LICENSE in the project root for license information. 
+ Source code and license this software can be found 
+
+ The above copyright notice and this permission notice shall be included in all
+ copies or substantial portions of the Software.
+*/
+
+using Microsoft.AspNetCore.Mvc;
+
+internal class Program
+{
+    private static async Task Main(string[] args)
+    {
+        Console.Title = "API";
+
+        var builder = WebApplication.CreateBuilder(args);
+
+        var services = builder.Services;
+
+        // accepts any access token issued by identity server
+        // adds an authorization policy for scope 'api1'
+        services
+            .AddAuthorization(options =>
+            {
+                options.AddPolicy("ApiScope", policy =>
+                {
+                    policy
+                        .RequireAuthenticatedUser()
+                        .RequireClaim("scope", "scope2");
+                });
+            })
+            .AddCors(options =>
+            {
+                // this defines a CORS policy called "default"
+                options.AddPolicy("default", policy =>
+                {
+                    policy.WithOrigins("https://localhost:5003")
+                        .AllowAnyHeader()
+                        .AllowAnyMethod();
+                });
+            })
+            .AddControllers();
+
+        // accepts any access token issued by identity server
+        var authenticationBuilder = services.AddAuthentication()
+                 .AddJwtBearer("Bearer", options =>
+                 {
+                     options.IncludeErrorDetails = true;
+                     options.Authority = "https://localhost:5001";
+                     options.TokenValidationParameters =
+                         new() { ValidateAudience = false };
+                 });
+
+        using (var app = builder.Build())
+        {
+            if (app.Environment.IsDevelopment())
+                app.UseDeveloperExceptionPage();
+
+            app
+                .UseRouting()
+                .UseAuthentication()
+                .UseAuthorization()
+                .UseCors("default");
+
+            app.MapGet("/identity", (HttpContext context) =>
+                    new JsonResult(context?.User?.Claims.Select(c => new { c.Type, c.Value }))
+                ).RequireAuthorization("ApiScope");
+
+            await app.RunAsync();
+        }
+    }
+}
--- a/src/Api/appsettings.json
+++ b/src/Api/appsettings.json
@ -0,0 +1,10 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft": "Warning",
+      "Microsoft.Hosting.Lifetime": "Information"
+    }
+  },
+  "AllowedHosts": "*"
+}