AgileWebs/Core.Thalos.BuildingBlocks
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

merge into: AgileWebs:main
Branches Tags
AgileWebs:main
AgileWebs:development
...
pull from: AgileWebs:development
Branches Tags
AgileWebs:development
AgileWebs:main

36 Commits
main ... developmen

Author SHA1 Message Date
Sergio Matias
8cfbad61fb retrieve redirec uri gogle from app settings 2025-08-29 12:51:41 -06:00
Sergio Matias
9b7e55c439 Retrieve redirect uri from app settings 2025-08-29 12:50:26 -06:00
OscarMmtz
806b5242b0 Merge pull request 'Add the code to retrieve the idToken instead of accessToken in google authentication' (#7) from feature/use-id-token into development 
Reviewed-on: https://gitea.white-enciso.pro/AgileWebs/Core.Thalos.BuildingBlocks/pulls/7
Reviewed-by: efrain_marin <efrain.marin@agilewebs.com>
Reviewed-by: Sergio Matías <sergio.matias@agilewebs.com>
 2025-08-28 17:39:55 +00:00
Oscar Morales
24f5711e1c Add the code to retrieve the idToken instead of accessToken in google authentication 2025-08-27 23:23:04 -06:00
Sergio Matias
e3d75fbfa8 Fix duplicated property 2025-08-26 14:18:33 -06:00
Sergio Matías
9872c1b88b Merge pull request 'Add tenant property to user' (#6) from feature/add-tenant-to-user into development 
Reviewed-on: https://gitea.white-enciso.pro/AgileWebs/Core.Thalos.BuildingBlocks/pulls/6
Reviewed-by: OscarMmtz <oscar.morales@agilewebs.com>
 2025-08-26 20:18:04 +00:00
Sergio Matias
fe4c0696e8 Merge branch 'development' into feature/add-tenant-to-user 2025-08-26 14:16:33 -06:00
Sergio Matias
3b752f182f fix 2025-08-26 14:11:09 -06:00
Sergio Matias
4a2ed52a2f fix 2025-08-26 14:10:48 -06:00
Sergio Matias
5277896bdc Add tenant identifier in user property 2025-08-26 14:10:29 -06:00
Sergio Matias
9a02f0e4d6 Fixed google settings 2025-08-22 21:04:25 -06:00
Sergio Matias
4cd89c6a83 Fix id property in user claims 2025-08-08 23:51:23 -06:00
Sergio Matias
0bd46f2594 Remove GUID property from user 2025-08-08 23:49:44 -06:00
Sergio Matias
7bbb8ebfe5 Add tenant property to user 2025-08-08 23:05:27 -06:00
Sergio Matias
035da054d6 Fix Change status route 2025-08-07 13:16:37 -06:00
Sergio Matias
a025bd87c1 fix id route 2025-07-31 19:56:56 -06:00
Sergio Matias
ff404ec105 Add collection attribute name 2025-07-31 19:43:46 -06:00
Sergio Matias
8d1e218eb9 Added catalog and tenant adapter 2025-07-31 18:45:08 -06:00
Sergio Matias
db10d185da Remove unnecessary properties from user adapter 2025-07-25 23:53:00 -06:00
Sergio Matias
cbeeebd5a6 Revise authentication logic 2025-07-25 23:44:07 -06:00
Sergio Matías
0f7567ec67 Merge pull request 'Add google and jwt authentication and authorization' (#5) from feature/add-google-and-jwt-auth into development 
Reviewed-on: https://gitea.white-enciso.pro/AgileWebs/Core.Thalos.BuildingBlocks/pulls/5
Reviewed-by: Sergio Matías <sergio.matias@agilewebs.com>
Reviewed-by: efrain_marin <efrain.marin@agilewebs.com>
 2025-07-18 00:59:23 +00:00
Oscar Morales
aeab9548b8 Add google and jwt authentication and authorization 2025-07-15 13:52:09 -06:00
OscarMmtz
3eb6bfc60f
Merge pull request #4 from SergioMatias94/feature/fix-adapters 
Remove _id from adapters
 2025-06-17 15:11:07 -06:00
Oscar Morales
33c0cd2642 Remove _id from adapters 2025-06-17 15:10:30 -06:00
OscarMmtz
8ac0eb0bf0
Merge pull request #3 from SergioMatias94/feature/adapt-to-use-mongo 
Add CollectionAttributeName and use ApplicationEnum for Agile
 2025-06-10 23:15:07 -06:00
SergioMatias94
8d954c9a09 Avoid azure app config for local environment 2025-06-09 00:45:40 -06:00
SergioMatias94
f82ebb5e69 Rename variables for public and private key used for jwt token creation 2025-06-09 00:37:17 -06:00
Oscar Morales
44ccda0736 Add CollectionAttributeName and use ApplicationEnum for Agile 2025-06-04 11:51:31 -06:00
OscarMmtz
fd31d5dd00
Merge pull request #2 from SergioMatias94/feature/use-blueprint-mongo 
Use Blueprint.Mongo package
 2025-05-19 17:17:07 -06:00
Oscar Morales
57f0f39614 Add reference to Document class 2025-05-19 14:13:01 -06:00
Sergio Matias Urquin
3acdf880f6 remove heath from code 2025-05-18 18:56:35 -06:00
Sergio Matias Urquin
4fdd80db55 reeplace cerberos by thalos 2025-05-18 18:46:31 -06:00
Sergio Matias Urquin
5b3cd5589d remove modules claim and change return value in GenerateAccessToken 2025-05-12 20:49:56 -06:00
Sergio Matias Urquin
042588097e Remove copyright 2025-05-12 19:39:56 -06:00
Sergio Matias Urquin
37dc22a114 Revert last commit 2025-05-12 19:31:32 -06:00
Sergio Matias Urquin
e761335737 Remove modules claim from token 2025-05-12 11:54:31 -06:00
56 changed files with 926 additions and 612 deletions
Show Stats Expand all files Collapse all files

95
Core.Cerberos.Adapters/Adapters/PermissionAdapter.cs
View File

@ -1,95 +0,0 @@
// ***********************************************************************
// <copyright file="PermissionAdapter.cs">
// Heath
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Constants;
using Core.Cerberos.Adapters.Common.Enums;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
{
/// <summary>
/// Adapter for representing a permission.
/// </summary>
public class PermissionAdapter
{
/// <summary>
/// Gets or sets the ID of the entity.
/// </summary>
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("id")]
public string Id { get; set; } = null!;
/// <summary>
/// Gets or sets the name of the entity.
/// </summary>
[BsonElement("name")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("name")]
public string Name { get; set; } = null!;
/// <summary>
/// Gets or sets the description of the entity.
/// </summary>
[BsonElement("description")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("description")]
public string? Description { get; set; }
/// <summary>
/// Gets or sets the status of the entity object.
/// </summary>
[BsonElement("accessLevel")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("accessLevel")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public AccessLevelEnum? AccessLevel { get; set; } = null!;
/// <summary>
/// Gets or sets the date and time when the entity was created.
/// </summary>
[BsonElement("createdAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("createdAt")]
public DateTime CreatedAt { get; set; } = DateTime.UtcNow;
/// <summary>
/// Gets or sets the user who created the entity.
/// </summary>
[BsonElement("createdBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("createdBy")]
public string? CreatedBy { get; set; }
/// <summary>
/// Gets or sets the date and time when the entity was last updated.
/// </summary>
[BsonElement("updatedAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("updatedAt")]
public DateTime? UpdatedAt { get; set; } = null;
/// <summary>
/// Gets or sets the user who last updated the entity.
/// </summary>
[BsonElement("updatedBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("updatedBy")]
public string? UpdatedBy { get; set; } = null;
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("status")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("status")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public StatusEnum Status { get; set; } = StatusEnum.Active;
}
}

107
Core.Cerberos.Adapters/Adapters/RoleAdapter.cs
View File

@ -1,107 +0,0 @@
// ***********************************************************************
// <copyright file="RoleAdapter.cs">
// Heath
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Enums;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
{
/// <summary>
/// Adapter representing a role.
/// </summary>
public class RoleAdapter
{
/// <summary>
/// Gets or sets the unique identifier of the role.
/// </summary>
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("id")]
public string Id { get; set; } = null!;
/// <summary>
/// Gets or sets the name of the role.
/// </summary>
[BsonElement("name")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("name")]
public string Name { get; set; } = null!;
/// <summary>
/// Gets or sets the description of the role.
/// </summary>
[BsonElement("description")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("description")]
public string? Description { get; set; }
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("applications")]
[JsonPropertyName("applications")]
[JsonConverter(typeof(EnumArrayJsonConverter<ApplicationsEnum>))]
public ApplicationsEnum[]? Applications { get; set; }
/// <summary>
/// Gets or sets the modules of the role.
/// </summary>
[BsonElement("modules")]
[JsonPropertyName("modules")]
public string[] Modules { get; set; } = null!;
/// <summary>
/// Gets or sets the permissions of the role.
/// </summary>
[BsonElement("permissions")]
[JsonPropertyName("permissions")]
public string[] Permissions { get; set; } = null!;
/// <summary>
/// Gets or sets the date and time when the entity was created.
/// </summary>
[BsonElement("createdAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("createdAt")]
public DateTime CreatedAt { get; set; } = DateTime.UtcNow;
/// <summary>
/// Gets or sets the user who created the entity.
/// </summary>
[BsonElement("createdBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("createdBy")]
public string? CreatedBy { get; set; }
/// <summary>
/// Gets or sets the date and time when the entity was last updated.
/// </summary>
[BsonElement("updatedAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("updatedAt")]
public DateTime? UpdatedAt { get; set; } = null;
/// <summary>
/// Gets or sets the user who last updated the entity.
/// </summary>
[BsonElement("updatedBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("updatedBy")]
public string? UpdatedBy { get; set; } = null;
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("status")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("status")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public StatusEnum Status { get; set; } = StatusEnum.Active;
}
}

24
Core.Cerberos.Adapters/Common/Constants/Policies.cs Normal file
View File

@ -0,0 +1,24 @@
using System;
using System.Collections.Generic;
namespace Core.Thalos.BuildingBlocks.Common.Constants
{
/// <summary>
/// Constants for policy.
/// </summary>
public class Policies
{
/// <summary>
/// Defines the access policy for reading mobile-related data.
/// This policy grants read-only permissions for retrieving mobile device information,
/// user mobile settings, or related data as per the application's authorization scope.
/// </summary>
public const string Read = "Read";
/// <summary>
/// Defines the access policy for writing mobile-related data.
/// This policy grants permissions to modify, update, or store mobile device information,
/// user mobile settings, or related data as per the application's authorization scope.
/// </summary>
public const string Write = "Write";
}
}

15
Core.Cerberos.Adapters/Common/Constants/Roles.cs Normal file
View File

@ -0,0 +1,15 @@
namespace Core.Thalos.BuildingBlocks.Common.Constants
{
public class Roles
{
/// <summary>
/// The role for Guest.
/// </summary>
public const string Guest = "684909c4826cd093b4f61c11";
/// <summary>
/// The role for Admin.
/// </summary>
public const string Admin = "68407642ec46a0e6fe1e8ec9";
}
}

52
Core.Cerberos.Adapters/Helpers/AuthHelper.cs
View File

@ -1,52 +0,0 @@
using Azure.Identity;
using Core.Cerberos.Adapters.Common.Constants;
using Microsoft.AspNetCore.Builder;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.Configuration.AzureAppConfiguration;
using Microsoft.Extensions.Logging;
namespace Core.Cerberos.Adapters.Helpers
{
public static class AuthHelper
{
private static readonly ILogger logger = LoggerFactory.Create(builder =>
{
builder.AddConsole();
}).CreateLogger("AuthHelper");
public static AuthSettings GetAuthSettings(WebApplicationBuilder builder, string appConfigLabel)
{
builder.Configuration.AddAzureAppConfiguration(options =>
{
var endpoint = builder.Configuration.GetSection("Endpoints:AppConfigurationURI").Value;
if (string.IsNullOrEmpty(endpoint))
throw new ArgumentException("The app configuration is missing");
options.Connect(new Uri(endpoint), new DefaultAzureCredential())
.Select(KeyFilter.Any, "cerberos_common")
.Select(KeyFilter.Any, appConfigLabel);
options.ConfigureKeyVault(keyVaultOptions =>
{
keyVaultOptions.SetCredential(new DefaultAzureCredential());
});
});
return new AuthSettings
{
AzureADInstance = builder.Configuration.GetSection(Secrets.AzureADInstance).Value,
AzureADTenantId = builder.Configuration.GetSection(Secrets.AzureADTenantId).Value,
AzureADClientId = builder.Configuration.GetSection(Secrets.AzureADClientId).Value,
AzureADClientSecret = builder.Configuration.GetSection(Secrets.AzureADClientSecret).Value,
HeathCerberosAppAuthorizationUrl = builder.Configuration.GetSection(Secrets.HeathCerberosAppAuthorizationUrl).Value,
HeathCerberosAppTokenUrl = builder.Configuration.GetSection(Secrets.HeathCerberosAppTokenUrl).Value,
HeathCerberosAppClientId = builder.Configuration.GetSection(Secrets.HeathCerberosAppClientId).Value,
HeathCerberosAppScope = builder.Configuration.GetSection(Secrets.HeathCerberosAppScope).Value,
PrivateKey = builder.Configuration.GetSection(Secrets.PrivateKey).Value,
PublicKey = builder.Configuration.GetSection(Secrets.PublicKey).Value,
};
}
}
}

25
Core.Cerberos.Adapters/Settings/AuthSettings.cs
View File

@ -1,25 +0,0 @@
// ***********************************************************************
// <copyright file="AuthSettings.cs">
// Heath
// </copyright>
// ***********************************************************************
public class AuthSettings
{
// Azure AD Settings
public string? AzureADInstance { get; set; }
public string? AzureADTenantId { get; set; }
public string? AzureADClientId { get; set; }
public string? AzureADClientSecret { get; set; }
// Heath Cerberos App Settings
public string? HeathCerberosAppAuthorizationUrl { get; set; }
public string? HeathCerberosAppTokenUrl { get; set; }
public string? HeathCerberosAppClientId { get; set; }
public string? HeathCerberosAppScope { get; set; }
// Token Keys
public string? PrivateKey { get; set; }
public string? PublicKey { get; set; }
}

2
Core.Cerberos.Adapters.sln → Core.Thalos.BuildingBlocks.sln
View File

@ -3,7 +3,7 @@ Microsoft Visual Studio Solution File, Format Version 12.00
# Visual Studio Version 17
VisualStudioVersion = 17.10.34928.147
MinimumVisualStudioVersion = 10.0.40219.1
Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Core.Cerberos.Adapters", "Core.Cerberos.Adapters\Core.Cerberos.Adapters.csproj", "{C902AB37-E6D1-4CE7-B271-0E3969C989F3}"
Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "Core.Thalos.BuildingBlocks", "Core.Thalos.BuildingBlocks\Core.Thalos.BuildingBlocks.csproj", "{C902AB37-E6D1-4CE7-B271-0E3969C989F3}"
EndProject
Global
GlobalSection(SolutionConfigurationPlatforms) = preSolution

9
Core.Cerberos.Adapters/Adapters/Base/BaseAdapterResponse.cs → Core.Thalos.BuildingBlocks/Adapters/Base/BaseAdapterResponse.cs
View File

@ -1,11 +1,6 @@
using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using System.Text.Json;
using System.Threading.Tasks;
using System.Text.Json;
namespace Core.Cerberos.Adapters
namespace Core.Thalos.BuildingBlocks
{
public class BaseAdapterResponse
{

32
Core.Thalos.BuildingBlocks/Adapters/CatalogAdapter.cs Normal file
View File

@ -0,0 +1,32 @@
using Core.Blueprint.Mongo;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
namespace Core.Thalos.BuildingBlocks.Adapters
{
[CollectionAttributeName("Catalogs")]
public class CatalogAdapter : Document
{
[BsonElement("name")]
public string Name { get; set; } = null!;
[BsonElement("key")]
public string? Key { get; set; } = null!;
[BsonElement("description")]
public string? Description { get; set; }
public IEnumerable<CatalogValue>? Values { get; set; }
}
public class CatalogValue
{
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
public string _Id { get; set; } = null!;
[BsonElement("value")]
public string Value { get; set; } = null!;
}
}

59
Core.Cerberos.Adapters/Adapters/ModuleAdapter.cs → Core.Thalos.BuildingBlocks/Adapters/ModuleAdapter.cs
View File

@ -1,30 +1,22 @@
// ***********************************************************************
// <copyright file="ModuleAdapter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Enums;
using Core.Blueprint.Mongo;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Adapter for representing a module.
/// </summary>
public class ModuleAdapter
[CollectionAttributeName("Modules")]
public class ModuleAdapter : Document
{
/// <summary>
/// Gets or sets the ID of the module.
/// </summary>
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("id")]
public string Id { get; set; } = null!;
/// <summary>
/// Gets or sets the name of the module.
/// </summary>
@ -73,46 +65,5 @@ namespace Core.Cerberos.Adapters
[JsonPropertyName("application")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public ApplicationsEnum? Application { get; set; } = null!;
/// <summary>
/// Gets or sets the date and time when the module was created.
/// </summary>
[BsonElement("createdAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("createdAt")]
public DateTime CreatedAt { get; set; } = DateTime.UtcNow;
/// <summary>
/// Gets or sets the user who created the module.
/// </summary>
[BsonElement("createdBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("createdBy")]
public string? CreatedBy { get; set; }
/// <summary>
/// Gets or sets the date and time when the module was last updated.
/// </summary>
[BsonElement("updatedAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("updatedAt")]
public DateTime? UpdatedAt { get; set; } = null;
/// <summary>
/// Gets or sets the user who last updated the module.
/// </summary>
[BsonElement("updatedBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("updatedBy")]
public string? UpdatedBy { get; set; } = null;
/// <summary>
/// Gets or sets the status of the module.
/// </summary>
[BsonElement("status")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("status")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public StatusEnum Status { get; set; } = StatusEnum.Active;
}
}

45
Core.Thalos.BuildingBlocks/Adapters/PermissionAdapter.cs Normal file
View File

@ -0,0 +1,45 @@
// ***********************************************************************
// <copyright file="PermissionAdapter.cs">
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Blueprint.Mongo;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Adapter for representing a permission.
/// </summary>
[CollectionAttributeName("Permissions")]
public class PermissionAdapter : Document
{
/// <summary>
/// Gets or sets the name of the entity.
/// </summary>
[BsonElement("name")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("name")]
public string Name { get; set; } = null!;
/// <summary>
/// Gets or sets the description of the entity.
/// </summary>
[BsonElement("description")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("description")]
public string? Description { get; set; }
/// <summary>
/// Gets or sets the status of the entity object.
/// </summary>
[BsonElement("accessLevel")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("accessLevel")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public AccessLevelEnum? AccessLevel { get; set; } = null!;
}
}

2
Core.Cerberos.Adapters/Handlers/Adapters/PermissionsAuthorizationAdapter.cs → Core.Thalos.BuildingBlocks/Adapters/PermissionsAuthorizationAdapter.cs
View File

@ -1,6 +1,6 @@
using Microsoft.AspNetCore.Authorization;
namespace Core.Cerberos.Adapters.Handlers.Adapters
namespace Core.Thalos.BuildingBlocks
{
public class PermissionsAuthorizationAdapter : IAuthorizationRequirement
{

58
Core.Thalos.BuildingBlocks/Adapters/RoleAdapter.cs Normal file
View File

@ -0,0 +1,58 @@
// ***********************************************************************
// <copyright file="RoleAdapter.cs">
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Blueprint.Mongo;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Adapter representing a role.
/// </summary>
[CollectionAttributeName("Roles")]
public class RoleAdapter : Document
{
/// <summary>
/// Gets or sets the name of the role.
/// </summary>
[BsonElement("name")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("name")]
public string Name { get; set; } = null!;
/// <summary>
/// Gets or sets the description of the role.
/// </summary>
[BsonElement("description")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("description")]
public string? Description { get; set; }
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("applications")]
[JsonPropertyName("applications")]
[JsonConverter(typeof(EnumArrayJsonConverter<ApplicationsEnum>))]
public ApplicationsEnum[]? Applications { get; set; }
/// <summary>
/// Gets or sets the modules of the role.
/// </summary>
[BsonElement("modules")]
[JsonPropertyName("modules")]
public string[] Modules { get; set; } = null!;
/// <summary>
/// Gets or sets the permissions of the role.
/// </summary>
[BsonElement("permissions")]
[JsonPropertyName("permissions")]
public string[] Permissions { get; set; } = null!;
}
}

53
Core.Thalos.BuildingBlocks/Adapters/TenantAdapter.cs Normal file
View File

@ -0,0 +1,53 @@
using Core.Blueprint.Mongo;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
namespace Core.Thalos.BuildingBlocks
{
[CollectionAttributeName("Tenants")]
public class TenantAdapter : Document
{
[BsonElement("name")]
public string Name { get; set; } = null!;
[BsonElement("taxIdentifier")]
public string TaxIdentifier { get; set; } = null!;
[BsonElement("addressLine1")]
public string AddressLine1 { get; set; } = null!;
[BsonElement("addressLine2")]
[BsonIgnoreIfNull]
public string? AddressLine2 { get; set; }
[BsonElement("city")]
public string City { get; set; } = null!;
[BsonElement("state")]
public string State { get; set; } = null!;
[BsonElement("country")]
public string Country { get; set; } = null!;
[BsonElement("postalCode")]
public string PostalCode { get; set; } = null!;
[BsonElement("contactEmail")]
public string ContactEmail { get; set; } = null!;
[BsonElement("contactPhone")]
public string ContactPhone { get; set; } = null!;
[BsonElement("website")]
[BsonIgnoreIfNull]
public string? Website { get; set; }
[BsonElement("connectionString")]
[BsonIgnoreIfNull]
public string? ConnectionString { get; set; }
[BsonElement("isolated")]
public bool Isolated { get; set; }
}
}

7
Core.Cerberos.Adapters/Adapters/TokenAdapter.cs → Core.Thalos.BuildingBlocks/Adapters/TokenAdapter.cs
View File

@ -1,18 +1,19 @@
// ***********************************************************************
// <copyright file="TokenAdapter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters
namespace Core.Thalos.BuildingBlocks
{
public class TokenAdapter
{
public UserAdapter? User { get; set; }
public RoleAdapter? Role { get; set; }
public TenantAdapter? Tenant { get; set; }
public IEnumerable<PermissionAdapter>? Permissions { get; set; }
public IEnumerable<ModuleAdapter>? Modules { get; set; }
public IEnumerable<ModuleAdapter> Modules { get; set; } = null!;
}
}

97
Core.Cerberos.Adapters/Adapters/UserAdapter.cs → Core.Thalos.BuildingBlocks/Adapters/UserAdapter.cs
View File

@ -1,37 +1,21 @@
// ***********************************************************************
// <copyright file="UserAdapter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Enums;
using Core.Blueprint.Mongo;
using MongoDB.Bson;
using MongoDB.Bson.Serialization.Attributes;
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Adapter representing a user.
/// </summary>
public class UserAdapter : BaseAdapterResponse
[CollectionAttributeName("Users")]
public class UserAdapter : Document
{
/// <summary>
/// Gets or sets the unique identifier of the user.
/// </summary>
[BsonId]
[BsonElement("_id")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("id")]
public string Id { get; set; } = null!;
/// <summary>
/// Gets or sets the guid of the user.
/// </summary>
[BsonElement("guid")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("guid")]
public string? Guid { get; set; }
/// <summary>
/// Gets or sets the email address of the user.
/// </summary>
@ -72,6 +56,14 @@ namespace Core.Cerberos.Adapters
[JsonPropertyName("displayName")]
public string? DisplayName { get; set; }
/// <summary>
/// Gets or sets the Tenand ID of the user.
/// </summary>
[BsonElement("tenantId")]
[BsonRepresentation(BsonType.ObjectId)]
[JsonPropertyName("tenantId")]
public string TenantId { get; set; } = null!;
/// <summary>
/// Gets or sets the role ID of the user.
/// </summary>
@ -80,28 +72,6 @@ namespace Core.Cerberos.Adapters
[JsonPropertyName("roleId")]
public string RoleId { get; set; } = null!;
/// <summary>
/// Gets or sets the array of companies associated with the user.
/// </summary>
[BsonElement("companies")]
[JsonPropertyName("companies")]
public string[] Companies { get; set; } = null!;
/// <summary>
/// Gets or sets the array of projects associated with the user.
/// </summary>
[BsonElement("projects")]
[JsonPropertyName("projects")]
public string[]? Projects { get; set; }
/// <summary>
/// Gets or sets the boolean of the consent form accepted by the user.
/// </summary>
[BsonElement("consentFormAccepted")]
[JsonPropertyName("consentFormAccepted")]
[BsonIgnoreIfNull]
public bool ConsentFormAccepted { get; set; }
/// <summary>
/// Gets or sets the timestamp of the last login of the user.
/// </summary>
@ -126,46 +96,5 @@ namespace Core.Cerberos.Adapters
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("token")]
public string? Token { get; set; } = null;
/// <summary>
/// Gets or sets the date and time when the entity was created.
/// </summary>
[BsonElement("createdAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("createdAt")]
public DateTime CreatedAt { get; set; } = DateTime.UtcNow;
/// <summary>
/// Gets or sets the user who created the entity.
/// </summary>
[BsonElement("createdBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("createdBy")]
public string? CreatedBy { get; set; }
/// <summary>
/// Gets or sets the date and time when the entity was last updated.
/// </summary>
[BsonElement("updatedAt")]
[BsonRepresentation(BsonType.DateTime)]
[JsonPropertyName("updatedAt")]
public DateTime? UpdatedAt { get; set; } = null;
/// <summary>
/// Gets or sets the user who last updated the entity.
/// </summary>
[BsonElement("updatedBy")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("updatedBy")]
public string? UpdatedBy { get; set; } = null;
/// <summary>
/// Gets or sets the status of the entity.
/// </summary>
[BsonElement("status")]
[BsonRepresentation(BsonType.String)]
[JsonPropertyName("status")]
[JsonConverter(typeof(JsonStringEnumConverter))]
public StatusEnum Status { get; set; } = StatusEnum.Active;
}
}

4
Core.Cerberos.Adapters/UserExistenceAdapter.cs → Core.Thalos.BuildingBlocks/Adapters/UserExistenceAdapter.cs
View File

@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="UserExistenceAdapter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Adapter representing a user.

2
Core.Cerberos.Adapters/Attributes/Permission.cs → Core.Thalos.BuildingBlocks/Attributes/Permission.cs
View File

@ -1,4 +1,4 @@
namespace Core.Cerberos.Adapters
namespace Core.Thalos.BuildingBlocks
{
public class Permission
{

2
Core.Cerberos.Adapters/Attributes/PermissionAttribute.cs → Core.Thalos.BuildingBlocks/Attributes/PermissionAttribute.cs
View File

@ -2,7 +2,7 @@
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Mvc.Filters;
namespace Core.Cerberos.Adapters.Attributes
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Custom authorization attribute that checks if the user has any of the required permissions.

37
Core.Thalos.BuildingBlocks/Authentication/Authorization/Google/GoogleAuthorization.cs Normal file
View File

@ -0,0 +1,37 @@
using Google.Apis.Auth.OAuth2;
using Google.Apis.Auth.OAuth2.Flows;
using Microsoft.Extensions.Configuration;
namespace Core.Thalos.BuildingBlocks
{
public class GoogleAuthorization(
IGoogleAuthHelper googleHelper, IConfiguration config, GoogleAuthSettings googlesettings) : IGoogleAuthorization
{
private string RedirectUrl = googlesettings.RedirectUri ?? string.Empty;
public async Task<UserCredential> ExchangeCodeForToken(string code)
{
var flow = new GoogleAuthorizationCodeFlow(
new GoogleAuthorizationCodeFlow.Initializer
{
ClientSecrets = googleHelper.GetClientSecrets(),
Scopes = googleHelper.GetScopes()
});
var token = await flow.ExchangeCodeForTokenAsync(
"user", code, RedirectUrl, CancellationToken.None);
return new UserCredential(flow, "user", token);
}
public string GetAuthorizationUrl() =>
new GoogleAuthorizationCodeFlow(
new GoogleAuthorizationCodeFlow.Initializer
{
ClientSecrets = googleHelper.GetClientSecrets(),
Scopes = googleHelper.GetScopes(),
Prompt = "consent"
}).CreateAuthorizationCodeRequest(RedirectUrl).Build().ToString();
}
}

10
Core.Thalos.BuildingBlocks/Authentication/Authorization/Google/IGoogleAuthorization.cs Normal file
View File

@ -0,0 +1,10 @@
using Google.Apis.Auth.OAuth2;
namespace Core.Thalos.BuildingBlocks
{
public interface IGoogleAuthorization
{
string GetAuthorizationUrl();
Task<UserCredential> ExchangeCodeForToken(string code);
}
}

4
Core.Cerberos.Adapters/Common/Constants/AccessLevelEnum.cs → Core.Thalos.BuildingBlocks/Common/Constants/AccessLevelEnum.cs
View File

@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="AccessLevelEnum.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Specifies different access level for a permission.

4
Core.Cerberos.Adapters/Common/Constants/AzureAd.cs → Core.Thalos.BuildingBlocks/Common/Constants/AzureAd.cs
View File

@ -1,9 +1,9 @@
// ***********************************************************************
// <copyright file="AzureAd.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants for Azure Active Directory.

18
Core.Cerberos.Adapters/Common/Constants/Claims.cs → Core.Thalos.BuildingBlocks/Common/Constants/Claims.cs
View File

@ -1,9 +1,9 @@
// ***********************************************************************
// <copyright file="Claims.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants for claims used in JWT tokens.
@ -23,10 +23,20 @@ namespace Core.Cerberos.Adapters.Common.Constants
/// <summary>
/// Claim name for user's ID.
/// </summary>
public const string Id = "id";
public const string Id = "_id";
/// <summary>
/// Claim name for user's role ID.
/// Claim name for user's tenant name.
/// </summary>
public const string Tenant = "tenant";
/// <summary>
/// Claim name for user's tenant identifier.
/// </summary>
public const string TenantId = "tenantId";
/// <summary>
/// Claim name for user's role name.
/// </summary>
public const string Role = "role";

2
Core.Cerberos.Adapters/Common/Constants/CollectionNames.cs → Core.Thalos.BuildingBlocks/Common/Constants/CollectionNames.cs
View File

@ -1,4 +1,4 @@
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
public static class CollectionNames
{

4
Core.Cerberos.Adapters/Common/Constants/EnvironmentVariables.cs → Core.Thalos.BuildingBlocks/Common/Constants/EnvironmentVariables.cs
View File

@ -1,10 +1,10 @@
// ***********************************************************************
// <copyright file="EnvironmentVariables.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants of the environment variables for this service.

4
Core.Cerberos.Adapters/Common/Constants/KeyVaultConfiguration.cs → Core.Thalos.BuildingBlocks/Common/Constants/KeyVaultConfiguration.cs
View File

@ -1,9 +1,9 @@
// ***********************************************************************
// <copyright file="KeyVaultConfiguration.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants for Key Vault configuration.

2
Core.Cerberos.Adapters/Common/Constants/MimeTypes.cs → Core.Thalos.BuildingBlocks/Common/Constants/MimeTypes.cs
View File

@ -6,7 +6,7 @@
using System.Globalization;
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants for the mime types.

24
Core.Thalos.BuildingBlocks/Common/Constants/Policies.cs Normal file
View File

@ -0,0 +1,24 @@
using System;
using System.Collections.Generic;
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants for policy.
/// </summary>
public class Policies
{
/// <summary>
/// Defines the access policy for reading mobile-related data.
/// This policy grants read-only permissions for retrieving mobile device information,
/// user mobile settings, or related data as per the application's authorization scope.
/// </summary>
public const string Read = "Read";
/// <summary>
/// Defines the access policy for writing mobile-related data.
/// This policy grants permissions to modify, update, or store mobile device information,
/// user mobile settings, or related data as per the application's authorization scope.
/// </summary>
public const string Write = "Write";
}
}

15
Core.Thalos.BuildingBlocks/Common/Constants/Roles.cs Normal file
View File

@ -0,0 +1,15 @@
namespace Core.Thalos.BuildingBlocks
{
public class Roles
{
/// <summary>
/// The role for Guest.
/// </summary>
public const string Guest = "684909c4826cd093b4f61c11";
/// <summary>
/// The role for Admin.
/// </summary>
public const string Admin = "68407642ec46a0e6fe1e8ec9";
}
}

8
Core.Cerberos.Adapters/Common/Constants/Routes.cs → Core.Thalos.BuildingBlocks/Common/Constants/Routes.cs
View File

@ -1,10 +1,10 @@
// ***********************************************************************
// <copyright file="Routes.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants of the routes of this service.
@ -24,7 +24,7 @@ namespace Core.Cerberos.Adapters.Common.Constants
/// <summary>
/// The identifier route.
/// </summary>
public const string Id = "{id}";
public const string Id = "{_id}";
/// <summary>
/// The Authentication route.
@ -74,7 +74,7 @@ namespace Core.Cerberos.Adapters.Common.Constants
/// <summary>
/// The ChangeStatus route.
/// </summary>
public const string ChangeStatus = "{id}/{newStatus}/ChangeStatus";
public const string ChangeStatus = "{_id}/{newStatus}/ChangeStatus";
/// <summary>
/// The AddCompany route.

11
Core.Cerberos.Adapters/Common/Constants/Schemes.cs → Core.Thalos.BuildingBlocks/Common/Constants/Schemes.cs
View File

@ -1,4 +1,4 @@
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants for schemes.
@ -6,13 +6,18 @@
public class Schemes
{
/// <summary>
/// The heath scheme.
/// The default scheme.
/// </summary>
public const string HeathScheme = "HeathScheme";
public const string DefaultScheme = "DefaultScheme";
/// <summary>
/// The azure scheme.
/// </summary>
public const string AzureScheme = "AzureScheme";
/// <summary>
/// The google scheme.
/// </summary>
public const string GoogleScheme = "GoogleScheme";
}
}

24
Core.Cerberos.Adapters/Common/Constants/Secrets.cs → Core.Thalos.BuildingBlocks/Common/Constants/Secrets.cs
View File

@ -1,9 +1,9 @@
// ***********************************************************************
// <copyright file="AppSettings.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Common.Constants
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Constants for secrets in azure key vault.
@ -23,12 +23,12 @@ namespace Core.Cerberos.Adapters.Common.Constants
/// <summary>
/// The Issuer parameter for JWT settings.
/// </summary>
public const string Issuer = "Issuer";
public const string Issuer = "JWTIssuer";
/// <summary>
/// The Audience parameter for JWT settings.
/// </summary>
public const string Audience = "Audience";
public const string Audience = "JWTAudience";
/// <summary>
/// The TokenExpirationInMinutes parameter for JWT settings.
@ -49,11 +49,15 @@ namespace Core.Cerberos.Adapters.Common.Constants
public const string AzureADTenantId = "B2C:TenantId";
public const string AzureADClientId = "B2C:ClientId";
public const string AzureADClientSecret = "B2C:ClientSecret";
public const string HeathCerberosAppAuthorizationUrl = "Swagger:AuthorizationUri";
public const string HeathCerberosAppTokenUrl = "Swagger:TokenUri";
public const string HeathCerberosAppClientId = "Swagger:ClientId";
public const string HeathCerberosAppScope = "Swagger:Scope";
public const string PrivateKey = "B2C:JwtIssuerOptions:TokenPrivateKey";
public const string PublicKey = "B2C:JwtIssuerOptions:TokenPublicKey";
public const string ThalosAppAuthorizationUrl = "Swagger:AuthorizationUri";
public const string ThalosAppTokenUrl = "Swagger:TokenUri";
public const string ThalosAppClientId = "Swagger:ClientId";
public const string ThalosAppScope = "Swagger:Scope";
public const string PrivateKey = "JwtTokenPrivateKey";
public const string PublicKey = "JwtTokenPublicKey";
public const string GoogleClientId = "GoogleClientId";
public const string GoogleClientSecret = "GoogleClientSecret";
public const string GoogleRedirectUri = "GoogleRedirectUri";
public const string GoogleLocalRedirectUri = "GoogleLocalRedirectUri";
}
}

27
Core.Cerberos.Adapters/Common/Enums/ApplicationsEnum.cs → Core.Thalos.BuildingBlocks/Common/Enums/ApplicationsEnum.cs
View File

@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="ApplicationsEnum.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters.Common.Enums
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Defines the applications associated with the role.
@ -15,28 +15,13 @@ namespace Core.Cerberos.Adapters.Common.Enums
public enum ApplicationsEnum
{
/// <summary>
/// LSA Web Portal application.
/// Thalos application.
/// </summary>
LSAWebPortal = 0,
Thalos = 0,
/// <summary>
/// Customer DashBoard application.
/// DreamViewer application.
/// </summary>
CustomerDashboard = 1,
/// <summary>
/// Discover application.
/// </summary>
Discover = 2,
/// <summary>
/// LSA Mobile application.
/// </summary>
LSAMobile = 3,
/// <summary>
/// BluePrint application.
/// </summary>
BluePrint = 4,
DreamViewer = 1,
}
}

4
Core.Cerberos.Adapters/Common/Enums/StatusEnum.cs → Core.Thalos.BuildingBlocks/Common/Enums/StatusEnum.cs
View File

@ -1,12 +1,12 @@
// ***********************************************************************
// <copyright file="StatusEnum.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using System.Text.Json.Serialization;
namespace Core.Cerberos.Adapters.Common.Enums
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Defines the status of an entity.

0
Core.Cerberos.Adapters/Common/SchemaFilters/EnumArrayJsonConverter.cs → Core.Thalos.BuildingBlocks/Common/SchemaFilters/EnumArrayJsonConverter.cs
View File

2
Core.Cerberos.Adapters/Common/SchemaFilters/EnumSchemaFilter.cs → Core.Thalos.BuildingBlocks/Common/SchemaFilters/EnumSchemaFilter.cs
View File

@ -1,6 +1,6 @@
// ***********************************************************************
// <copyright file="EnumSchemaFilter.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************

11
Core.Thalos.BuildingBlocks/Contracts/IGoogleAuthHelper.cs Normal file
View File

@ -0,0 +1,11 @@
using Google.Apis.Auth.OAuth2;
namespace Core.Thalos.BuildingBlocks
{
public interface IGoogleAuthHelper
{
string[] GetScopes();
string ScopeToString();
ClientSecrets GetClientSecrets();
}
}

4
Core.Cerberos.Adapters/Contracts/ITokenProvider.cs → Core.Thalos.BuildingBlocks/Contracts/ITokenProvider.cs
View File

@ -1,10 +1,10 @@
// ***********************************************************************
// <copyright file="ITokenProvider.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Cerberos.Adapters.Contracts
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Interface for token provider.

6
Core.Cerberos.Adapters/Contracts/ITokenService.cs → Core.Thalos.BuildingBlocks/Contracts/ITokenService.cs
View File

@ -1,13 +1,13 @@
// ***********************************************************************
// <copyright file="ITokenService.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
namespace Core.Cerberos.Adapters.Contracts
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Interface for authenticacion service.
@ -17,7 +17,7 @@ namespace Core.Cerberos.Adapters.Contracts
/// <summary>
/// Refreshes the access token.
/// </summary>
string GenerateAccessToken(TokenAdapter adapter);
(string, IEnumerable<ModuleAdapter>) GenerateAccessToken(TokenAdapter adapter);
/// <summary>
/// Refreshes the access token.

34
Core.Cerberos.Adapters/Core.Cerberos.Adapters.csproj → Core.Thalos.BuildingBlocks/Core.Thalos.BuildingBlocks.csproj
View File

@ -8,23 +8,35 @@
<TargetFramework>net8.0</TargetFramework>
<ImplicitUsings>enable</ImplicitUsings>
<Nullable>enable</Nullable>
<VersionPrefix>1.0.5</VersionPrefix>
<VersionSuffix>$(Date:yyyyMMddHHmm)</VersionSuffix>
</PropertyGroup>
<ItemGroup>
<PackageReference Include="Asp.Versioning.Mvc.ApiExplorer" Version="8.1.0" />
<PackageReference Include="Core.Blueprint.KeyVault" Version="1.0.3" />
<PackageReference Include="Core.Blueprint.Mongo" Version="1.0.0" />
<PackageReference Include="Google.Apis.Auth" Version="1.70.0" />
<PackageReference Include="Google.Apis.Oauth2.v2" Version="1.68.0.1869" />
<PackageReference Include="Microsoft.AspNetCore.Authentication.Google" Version="8.0.18" />
<PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="8.0.10" />
<PackageReference Include="Microsoft.Extensions.Configuration.AzureAppConfiguration" Version="8.0.0" />
<PackageReference Include="Microsoft.Identity.Web" Version="3.2.2" />
<PackageReference Include="Microsoft.Identity.Web.MicrosoftGraph" Version="3.2.2" />
<PackageReference Include="MongoDB.Bson" Version="3.0.0" />
<PackageReference Include="OpenTelemetry" Version="1.9.0" />
<PackageReference Include="OpenTelemetry.Exporter.Console" Version="1.9.0" />
<PackageReference Include="OpenTelemetry.Extensions.Hosting" Version="1.9.0" />
<PackageReference Include="OpenTelemetry.Instrumentation.AspNetCore" Version="1.9.0" />
<PackageReference Include="OpenTelemetry.Instrumentation.Http" Version="1.9.0" />
<PackageReference Include="Microsoft.Extensions.Configuration.AzureAppConfiguration" Version="8.2.0" />
<PackageReference Include="Microsoft.Extensions.Options" Version="9.0.7" />
<PackageReference Include="Microsoft.Identity.Web" Version="3.9.1" />
<PackageReference Include="Microsoft.Identity.Web.MicrosoftGraph" Version="3.9.1" />
<PackageReference Include="MongoDB.Bson" Version="3.4.0" />
<PackageReference Include="OpenTelemetry" Version="1.12.0" />
<PackageReference Include="OpenTelemetry.Exporter.Console" Version="1.12.0" />
<PackageReference Include="OpenTelemetry.Extensions.Hosting" Version="1.12.0" />
<PackageReference Include="OpenTelemetry.Instrumentation.AspNetCore" Version="1.12.0" />
<PackageReference Include="OpenTelemetry.Instrumentation.Http" Version="1.12.0" />
<PackageReference Include="Portable.BouncyCastle" Version="1.9.0" />
<PackageReference Include="Swashbuckle.AspNetCore" Version="6.9.0" />
<PackageReference Include="System.Text.Json" Version="8.0.5" />
<PackageReference Include="Swashbuckle.AspNetCore" Version="8.1.1" />
<PackageReference Include="System.Text.Json" Version="9.0.5" />
</ItemGroup>
<ItemGroup>
<Folder Include="Handlers\Adapters\" />
</ItemGroup>
</Project>

102
Core.Cerberos.Adapters/Extensions/AuthenticationExtension.cs → Core.Thalos.BuildingBlocks/Extensions/AuthenticationExtension.cs
View File

@ -1,14 +1,10 @@
// ***********************************************************************
// <copyright file="AuthExtension.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Constants;
using Core.Cerberos.Adapters.Contracts;
using Core.Cerberos.Adapters.Handlers;
using Core.Cerberos.Adapters.Options;
using Core.Cerberos.Adapters.Services;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.AspNetCore.Authorization;
using Microsoft.Extensions.Configuration;
@ -17,7 +13,7 @@ using Microsoft.Identity.Web;
using Microsoft.IdentityModel.Tokens;
using System.Security.Cryptography;
namespace Core.Cerberos.Adapters.Extensions
namespace Core.Thalos.BuildingBlocks.Configuration
{
/// <summary>
/// Extension methods for configuring authentication with various Azure AD setups.
@ -33,42 +29,44 @@ namespace Core.Cerberos.Adapters.Extensions
{
var environment = Environment.GetEnvironmentVariable("ASPNETCORE_ENVIRONMENT") ?? string.Empty;
var azureAdInMemorySettings = new Dictionary<string, string?>
{
{ "AzureAdB2C:Instance", authSettings.AzureADInstance ?? string.Empty },
{ "AzureAdB2C:TenantId", authSettings.AzureADTenantId ?? string.Empty },
{ "AzureAdB2C:ClientId", authSettings.AzureADClientId ?? string.Empty },
{ "AzureAdB2C:ClientSecret", authSettings.AzureADClientSecret ?? string.Empty }
};
var identityProviders = new IdentityProviders();
configuration.GetSection("IdentityProviders").Bind(identityProviders);
var configurationBuilder = new ConfigurationBuilder()
.AddConfiguration(configuration)
.AddInMemoryCollection(azureAdInMemorySettings);
AddCustomAuthentication(services, authSettings.Token);
var combinedConfiguration = configurationBuilder.Build();
if (identityProviders.Azure)
AddAzureAuthentication(authSettings, configuration, services);
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddMicrosoftIdentityWebApi(combinedConfiguration.GetSection("AzureAdB2C"), Schemes.AzureScheme)
.EnableTokenAcquisitionToCallDownstreamApi()
.AddMicrosoftGraph(configuration.GetSection("MicrosoftGraph"))
.AddInMemoryTokenCaches();
if (identityProviders.Google)
AddGoogleAuthentication(services, authSettings.Google);
services.AddAuthorization();
services.AddTransient<IAuthorizationHandler, PermissionsAuthorizationHandler>();
services.AddTransient<ITokenService, TokenService>();
}
public static void AddCustomAuthentication(IServiceCollection services, TokenAuthSettings tokenAuthSettings)
{
var rsa = RSA.Create();
rsa.ImportFromPem(authSettings.PrivateKey?.ToCharArray());
rsa.ImportFromPem(tokenAuthSettings.PrivateKey?.ToCharArray());
var rsaPrivateKey = new RsaSecurityKey(rsa);
var rsaPublic = RSA.Create();
rsaPublic.ImportFromPem(authSettings.PublicKey?.ToCharArray());
rsaPublic.ImportFromPem(tokenAuthSettings.PublicKey?.ToCharArray());
var rsaPublicKey = new RsaSecurityKey(rsaPublic);
var jwtAppSettingOptions = configuration.GetSection("B2C:JwtIssuerOptions");
var jwtIssuerOptions = jwtAppSettingOptions.Get<JwtIssuerOptions>();
var jwtIssuerOptions = new JwtIssuerOptions
{
Audience = tokenAuthSettings.Audience,
Issuer = tokenAuthSettings.Issuer,
};
if (string.IsNullOrEmpty(jwtIssuerOptions?.Issuer) || string.IsNullOrEmpty(jwtIssuerOptions.Audience))
throw new InvalidOperationException("JwtIssuerOptions are not configured correctly.");
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddJwtBearer(Schemes.HeathScheme, x =>
.AddJwtBearer(Schemes.DefaultScheme, x =>
{
x.TokenValidationParameters = new TokenValidationParameters
{
@ -88,10 +86,52 @@ namespace Core.Cerberos.Adapters.Extensions
options.Audience = jwtIssuerOptions?.Audience;
options.SigningCredentials = new SigningCredentials(rsaPrivateKey, SecurityAlgorithms.RsaSha256);
});
}
services.AddSingleton(jwtAppSettingOptions);
services.AddTransient<IAuthorizationHandler, PermissionsAuthorizationHandler>();
services.AddTransient<ITokenService, TokenService>();
public static void AddAzureAuthentication(AuthSettings authSettings, IConfiguration configuration, IServiceCollection services)
{
var azureAdInMemorySettings = new Dictionary<string, string?>
{
{ "AzureAdB2C:Instance", authSettings.Azure.Instance ?? string.Empty },
{ "AzureAdB2C:TenantId", authSettings.Azure.TenantId ?? string.Empty },
{ "AzureAdB2C:ClientId", authSettings.Azure.ClientId ?? string.Empty },
{ "AzureAdB2C:ClientSecret", authSettings.Azure.ClientSecret ?? string.Empty }
};
var configurationBuilder = new ConfigurationBuilder()
.AddConfiguration(configuration)
.AddInMemoryCollection(azureAdInMemorySettings);
var combinedConfiguration = configurationBuilder.Build();
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddMicrosoftIdentityWebApi(combinedConfiguration.GetSection("AzureAdB2C"), Schemes.AzureScheme)
.EnableTokenAcquisitionToCallDownstreamApi()
.AddMicrosoftGraph(configuration.GetSection("MicrosoftGraph"))
.AddInMemoryTokenCaches();
}
public static void AddGoogleAuthentication(IServiceCollection services, GoogleAuthSettings googleAuthSettings)
{
services.AddSingleton<GoogleAuthSettings>(googleAuthSettings);
services.AddAuthentication(options =>
{
options.DefaultAuthenticateScheme = Schemes.GoogleScheme;
options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
})
.AddScheme<AuthenticationSchemeOptions,
GoogleAccessTokenAuthenticationHandler>(Schemes.GoogleScheme, null)
.AddGoogle(options =>
{
options.ClientId = googleAuthSettings.ClientId!;
options.ClientSecret = googleAuthSettings.ClientSecret!;
//options.SaveTokens = true;
options.CallbackPath = $"/{googleAuthSettings.RedirectUri}";
});
services.AddScoped<IGoogleAuthHelper, GoogleAuthHelper>();
services.AddScoped<IGoogleAuthorization, GoogleAuthorization>();
}
}
}

164
Core.Cerberos.Adapters/Extensions/SwaggerExtensions.cs → Core.Thalos.BuildingBlocks/Extensions/SwaggerExtensions.cs
View File

@ -1,22 +1,21 @@
// ***********************************************************************
// <copyright file="SwaggerExtensions.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Asp.Versioning.ApiExplorer;
using Core.Cerberos.Adapters.Common.Constants;
using Core.Cerberos.Adapters.Extensions;
using Microsoft.AspNetCore.Builder;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Options;
using Microsoft.OpenApi.Any;
using Microsoft.OpenApi.Interfaces;
using Microsoft.OpenApi.Models;
using Swashbuckle.AspNetCore.SwaggerGen;
using Swashbuckle.AspNetCore.SwaggerUI;
namespace Core.Cerberos.Adapters.Extensions
namespace Core.Thalos.BuildingBlocks.Configuration
{
/// <summary>
/// Extension methods for configuring Swagger documentation and UI.
@ -40,71 +39,121 @@ namespace Core.Cerberos.Adapters.Extensions
/// </summary>
/// <param name="services">The <see cref="IServiceCollection"/> to add the services to.</param>
/// <param name="configuration">The <see cref="IConfiguration"/> containing Swagger and OAuth2 configuration settings.</param>
public static void AddSwaggerGen(this IServiceCollection services, IConfiguration configuration, string DocumentationFile, AuthSettings authSettings)
public static void AddSwaggerGen(
this IServiceCollection services,
IConfiguration configuration,
string documentationFile,
AuthSettings authSettings)
{
var identityProviders = new IdentityProviders();
configuration.GetSection("IdentityProviders").Bind(identityProviders);
services.AddSwaggerGen(c =>
{
c.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme
{
c.AddSecurityDefinition("oauth2", new OpenApiSecurityScheme
Description = "JWT Authorization header using the Bearer scheme",
Name = "Authorization",
In = ParameterLocation.Header,
Type = SecuritySchemeType.Http,
Scheme = "bearer",
BearerFormat = "JWT"
});
c.AddSecurityRequirement(new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme
{
Reference = new OpenApiReference
{
Description = "OAuth2.0 Authorization Code flow",
Name = "oauth2.0",
Type = ReferenceType.SecurityScheme,
Id = "Bearer"
}
},
Array.Empty<string>()
}
});
if (identityProviders.Azure)
{
const string azureScheme = "oauth2-Azure";
c.AddSecurityDefinition(azureScheme, new OpenApiSecurityScheme
{
Description = "Azure OAuth2 Authorization Code flow",
Type = SecuritySchemeType.OAuth2,
Flows = new OpenApiOAuthFlows
{
AuthorizationCode = new OpenApiOAuthFlow
{
AuthorizationUrl = new Uri(authSettings.HeathCerberosAppAuthorizationUrl ?? string.Empty),
TokenUrl = new Uri(authSettings.HeathCerberosAppTokenUrl ?? string.Empty),
AuthorizationUrl = new Uri(authSettings.Azure?.ThalosAppAuthorizationUrl ??
"https://login.microsoftonline.com/common/oauth2/v2.0/authorize"),
TokenUrl = new Uri(authSettings.Azure?.ThalosAppTokenUrl ??
"https://login.microsoftonline.com/common/oauth2/v2.0/token"),
Scopes = new Dictionary<string, string>
{
{ authSettings.HeathCerberosAppScope ?? string.Empty, "Access API as User" }
}
{
{ authSettings.Azure?.ThalosAppScope ?? "access_as_user", "Access API as User" }
}
}
}
});
c.AddSecurityRequirement(new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme
[new OpenApiSecurityScheme
{
Reference = new OpenApiReference { Type = ReferenceType.SecurityScheme, Id = "oauth2" }
},
new[] { authSettings.HeathCerberosAppScope }
}
Reference = new OpenApiReference { Type = ReferenceType.SecurityScheme, Id = azureScheme }
}] = new[] { authSettings.Azure?.ThalosAppScope ?? "access_as_user" }
});
}
c.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme
if (identityProviders.Google)
{
const string googleScheme = "oauth2-Google";
c.AddSecurityDefinition(googleScheme, new OpenApiSecurityScheme
{
Description = "JWT Authorization header using the Bearer scheme",
Name = "Authorization",
In = ParameterLocation.Header,
Type = SecuritySchemeType.Http,
Scheme = "bearer",
BearerFormat = "JWT"
Type = SecuritySchemeType.OAuth2,
Extensions = new Dictionary<string, IOpenApiExtension>
{
["x-tokenName"] = new OpenApiString("id_token")
},
Flows = new OpenApiOAuthFlows
{
AuthorizationCode = new OpenApiOAuthFlow
{
AuthorizationUrl = new Uri("https://accounts.google.com/o/oauth2/v2/auth"),
TokenUrl = new Uri("https://oauth2.googleapis.com/token"),
Scopes = new Dictionary<string, string>
{
{ "openid", "OpenID Connect" },
{ "email", "Access email" },
{ "profile", "Access profile" }
}
}
}
});
c.AddSecurityRequirement(new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme
[new OpenApiSecurityScheme
{
Reference = new OpenApiReference
{
Type = ReferenceType.SecurityScheme,
Id = "Bearer"
}
},
Array.Empty<string>()
}
Reference = new OpenApiReference { Type = ReferenceType.SecurityScheme, Id = googleScheme }
}] = new[] { "openid", "email", "profile" }
});
}
var filePath = Path.Combine(AppContext.BaseDirectory, DocumentationFile);
c.IncludeXmlComments(filePath);
c.SchemaFilter<EnumSchemaFilter>();
});
// ✅ XML Comments
var filePath = Path.Combine(AppContext.BaseDirectory, documentationFile);
c.IncludeXmlComments(filePath);
c.SchemaFilter<EnumSchemaFilter>();
});
}
/// <summary>
/// Configures Swagger and Swagger UI for the application.
/// </summary>
@ -129,15 +178,36 @@ namespace Core.Cerberos.Adapters.Extensions
/// </summary>
/// <param name="app">The <see cref="WebApplication"/> instance.</param>
/// <param name="configuration">The <see cref="IConfiguration"/> containing Swagger UI and OAuth2 configuration settings.</param>
public static void UseSwaggerUI(this WebApplication app, IConfiguration configuration, AuthSettings authSettings)
public static void UseSwaggerUI(
this WebApplication app,
IConfiguration configuration,
AuthSettings authSettings)
{
app.UseSwaggerUI(options =>
var identityProviders = new IdentityProviders();
configuration.GetSection("IdentityProviders").Bind(identityProviders);
app.UseSwagger();
if (identityProviders.Google)
{
options.SwaggerEndpoint("/swagger/v1/swagger.json", "Custom Auth API with Azure AD v1");
options.OAuthClientId(authSettings.HeathCerberosAppClientId);
options.OAuthUsePkce();
options.OAuthScopeSeparator(" ");
});
app.UseSwaggerUI(options =>
{
options.OAuthUsePkce();
options.OAuthScopeSeparator(" ");
options.OAuthClientId(authSettings.Google?.ClientId);
options.OAuthClientSecret(authSettings.Google?.ClientSecret);
});
}
if (identityProviders.Azure)
{
app.UseSwaggerUI(options =>
{
options.OAuthUsePkce();
options.OAuthScopeSeparator(" ");
options.OAuthClientId(authSettings.Azure?.ThalosAppClientId);
});
}
}
/// <summary>

6
Core.Cerberos.Adapters/Extensions/TelemetryExtensions.cs → Core.Thalos.BuildingBlocks/Extensions/TelemetryExtensions.cs
View File

@ -4,15 +4,15 @@ using OpenTelemetry.Metrics;
using OpenTelemetry.Resources;
using OpenTelemetry.Trace;
namespace Core.Cerberos.Adapters.Extensions
namespace Core.Thalos.BuildingBlocks.Configuration
{
public static class TelemetryExtensions
{
public static void AddTelemetry(this IServiceCollection services)
public static void AddTelemetry(this IServiceCollection services, string apiName)
{
// Add OpenTelemetry Tracing
services.AddOpenTelemetry()
.ConfigureResource(resource => resource.AddService("lsa.dashboard.bff.api"))
.ConfigureResource(resource => resource.AddService($"{apiName}"))
.WithTracing(tracing => tracing.AddAspNetCoreInstrumentation().AddConsoleExporter())
.WithMetrics(metrics => metrics.AddAspNetCoreInstrumentation().AddConsoleExporter()).
WithLogging(logs => logs.AddConsoleExporter());

2
Core.Cerberos.Adapters/Extensions/TrackingMechanismExtension.cs → Core.Thalos.BuildingBlocks/Extensions/TrackingMechanismExtension.cs
View File

@ -1,6 +1,6 @@
using Microsoft.AspNetCore.Http;
namespace Core.Cerberos.Adapters.Extensions
namespace Core.Thalos.BuildingBlocks.Extensions
{
public sealed class TrackingMechanismExtension : DelegatingHandler
{

5
Core.Cerberos.Adapters/Handlers/AuthenticatedHttpClientHandler.cs → Core.Thalos.BuildingBlocks/Handlers/AuthenticatedHttpClientHandler.cs
View File

@ -1,12 +1,11 @@
// ***********************************************************************
// <copyright file="AuthenticatedHttpClientHandler.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Contracts;
namespace Core.Cerberos.Adapters.Handlers
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Class to inject the token in all requests.

65
Core.Thalos.BuildingBlocks/Handlers/GoogleAccessTokenAuthenticationHandler.cs Normal file
View File

@ -0,0 +1,65 @@
using Google.Apis.Auth;
using Microsoft.AspNetCore.Authentication;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Options;
using System.Security.Claims;
using System.Text.Encodings.Web;
namespace Core.Thalos.BuildingBlocks
{
public class GoogleAccessTokenAuthenticationHandler(IOptionsMonitor<AuthenticationSchemeOptions> options,
ILoggerFactory logger,
UrlEncoder encoder,
IConfiguration config,
GoogleAuthSettings googleSettings
) : AuthenticationHandler<AuthenticationSchemeOptions>(options, logger, encoder)
{
protected override async Task<AuthenticateResult> HandleAuthenticateAsync()
{
if (!Request.Headers.ContainsKey("Authorization"))
return AuthenticateResult.Fail("Missing Authorization header");
var authHeader = Request.Headers.Authorization.ToString();
if (!authHeader.StartsWith("Bearer ", StringComparison.OrdinalIgnoreCase))
return AuthenticateResult.Fail("Invalid Authorization header");
var idToken = authHeader["Bearer ".Length..].Trim();
GoogleJsonWebSignature.Payload payload;
try
{
payload = await GoogleJsonWebSignature.ValidateAsync(
idToken,
new GoogleJsonWebSignature.ValidationSettings
{
Audience = new[] { googleSettings.ClientId! }
});
}
catch (InvalidJwtException)
{
return AuthenticateResult.Fail("Invalid Google token");
}
var claims = new List<Claim>
{
new Claim(ClaimTypes.NameIdentifier, payload.Subject),
new Claim(ClaimTypes.Email, payload.Email),
new Claim(ClaimTypes.Name, payload.Name ?? "")
};
var identity = new ClaimsIdentity(claims, Schemes.GoogleScheme);
var principal = new ClaimsPrincipal(identity);
var userEmail = principal.FindFirst(ClaimTypes.Email)?.Value;
if (string.IsNullOrEmpty(userEmail) ||
!userEmail.EndsWith("@agilewebs.com", StringComparison.OrdinalIgnoreCase))
return AuthenticateResult.Fail("Unauthorized Access");
var ticket = new AuthenticationTicket(principal, Schemes.GoogleScheme);
return AuthenticateResult.Success(ticket);
}
}
}

5
Core.Cerberos.Adapters/Handlers/PermissionsAuthorizationHandler.cs → Core.Thalos.BuildingBlocks/Handlers/PermissionsAuthorizationHandler.cs
View File

@ -1,7 +1,6 @@
using Core.Cerberos.Adapters.Handlers.Adapters;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Authorization;
namespace Core.Cerberos.Adapters.Handlers
namespace Core.Thalos.BuildingBlocks
{
public class PermissionsAuthorizationHandler : AuthorizationHandler<PermissionsAuthorizationAdapter>
{

128
Core.Thalos.BuildingBlocks/Helpers/AuthHelper.cs Normal file
View File

@ -0,0 +1,128 @@
using Azure.Identity;
using Core.Blueprint.KeyVault;
using Microsoft.AspNetCore.Builder;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.Configuration.AzureAppConfiguration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging;
namespace Core.Thalos.BuildingBlocks
{
public static class AuthHelper
{
private static readonly ILogger logger = LoggerFactory.Create(builder =>
{
builder.AddConsole();
}).CreateLogger("AuthHelper");
public static async Task<AuthSettings> GetAuthSettings(this IServiceCollection services, WebApplicationBuilder builder, string appConfigLabel)
{
var environment = Environment.GetEnvironmentVariable("ASPNETCORE_ENVIRONMENT") ?? string.Empty;
var authSettings = new AuthSettings();
var identityProviders = new IdentityProviders();
builder.Configuration.GetSection("IdentityProviders").Bind(identityProviders);
using var serviceProvider = services.BuildServiceProvider();
var keyVaultProvider = serviceProvider.GetRequiredService<IKeyVaultProvider>();
if (environment != "Local")
{
builder.Configuration.AddAzureAppConfiguration(options =>
{
var endpoint = builder.Configuration.GetSection("Endpoints:AppConfigurationURI").Value;
if (string.IsNullOrEmpty(endpoint))
throw new ArgumentException("The app configuration is missing");
options.Connect(new Uri(endpoint), new DefaultAzureCredential())
.Select(KeyFilter.Any, "thalos_common")
.Select(KeyFilter.Any, appConfigLabel);
options.ConfigureKeyVault(keyVaultOptions =>
{
keyVaultOptions.SetCredential(new DefaultAzureCredential());
});
});
}
if (identityProviders.Google)
authSettings.Google = await GetGoogleSettings(keyVaultProvider, builder);
if (identityProviders.Azure)
authSettings.Azure = GetAzureSettings(builder);
authSettings.Token = await GetTokenSettings(keyVaultProvider, builder);
return authSettings;
}
private async static ValueTask<TokenAuthSettings> GetTokenSettings(IKeyVaultProvider keyVaultProvider, WebApplicationBuilder builder)
{
var environment = Environment.GetEnvironmentVariable("ASPNETCORE_ENVIRONMENT") ?? string.Empty;
var tokenSettings = new TokenAuthSettings();
if (environment == "Local")
{
tokenSettings.PublicKey = (await keyVaultProvider.GetSecretAsync(Secrets.PublicKey, new CancellationToken { })).Secret.Value;
tokenSettings.PrivateKey = (await keyVaultProvider.GetSecretAsync(Secrets.PrivateKey, new CancellationToken { })).Secret.Value;
tokenSettings.Issuer = (await keyVaultProvider.GetSecretAsync(Secrets.Issuer, new CancellationToken { })).Secret.Value;
tokenSettings.Audience = (await keyVaultProvider.GetSecretAsync(Secrets.Audience, new CancellationToken { })).Secret.Value;
}
else
{
tokenSettings.PrivateKey = builder.Configuration.GetSection(Secrets.PrivateKey).Value;
tokenSettings.PublicKey = builder.Configuration.GetSection(Secrets.PublicKey).Value;
tokenSettings.Issuer = builder.Configuration.GetSection(Secrets.Issuer).Value;
tokenSettings.Audience = builder.Configuration.GetSection(Secrets.Audience).Value;
}
if (string.IsNullOrEmpty(tokenSettings.PrivateKey) || string.IsNullOrEmpty(tokenSettings.PublicKey))
{
logger.LogError("Settings for token creation are missing or incorrectly formatted.");
throw new InvalidOperationException("Invalid public or private key.");
}
return tokenSettings;
}
private static AzureAuthSettings GetAzureSettings(WebApplicationBuilder builder)
{
return new AzureAuthSettings
{
Instance = builder.Configuration.GetSection(Secrets.AzureADInstance).Value,
TenantId = builder.Configuration.GetSection(Secrets.AzureADTenantId).Value,
ClientId = builder.Configuration.GetSection(Secrets.AzureADClientId).Value,
ClientSecret = builder.Configuration.GetSection(Secrets.AzureADClientSecret).Value,
ThalosAppAuthorizationUrl = builder.Configuration.GetSection(Secrets.ThalosAppAuthorizationUrl).Value,
ThalosAppTokenUrl = builder.Configuration.GetSection(Secrets.ThalosAppTokenUrl).Value,
ThalosAppClientId = builder.Configuration.GetSection(Secrets.ThalosAppClientId).Value,
ThalosAppScope = builder.Configuration.GetSection(Secrets.ThalosAppScope).Value,
};
}
private static async ValueTask<GoogleAuthSettings> GetGoogleSettings(IKeyVaultProvider keyVaultProvider, WebApplicationBuilder builder)
{
var environment = Environment.GetEnvironmentVariable("ASPNETCORE_ENVIRONMENT");
var googleSettings = new GoogleAuthSettings();
if (environment == "Local")
{
googleSettings.ClientId = (await keyVaultProvider.GetSecretAsync(Secrets.GoogleClientId, new CancellationToken { })).Secret.Value; ;
googleSettings.ClientSecret = (await keyVaultProvider.GetSecretAsync(Secrets.GoogleClientSecret, new CancellationToken { })).Secret.Value;
googleSettings.RedirectUri = builder.Configuration.GetSection(Secrets.GoogleLocalRedirectUri).Value;
}
else
{
googleSettings.ClientId = builder.Configuration.GetSection(Secrets.GoogleClientId).Value;
googleSettings.ClientSecret = builder.Configuration.GetSection(Secrets.GoogleClientSecret).Value;
googleSettings.RedirectUri = builder.Configuration.GetSection(Secrets.GoogleRedirectUri).Value;
}
return googleSettings;
}
}
}

31
Core.Thalos.BuildingBlocks/Helpers/GoogleAuthHelper.cs Normal file
View File

@ -0,0 +1,31 @@
using Google.Apis.Auth.OAuth2;
using Google.Apis.Oauth2.v2;
using Microsoft.Extensions.Configuration;
namespace Core.Thalos.BuildingBlocks
{
public class GoogleAuthHelper(IConfiguration config, GoogleAuthSettings googleSettings) : IGoogleAuthHelper
{
public ClientSecrets GetClientSecrets()
{
string clientId = googleSettings.ClientId ?? string.Empty;
string clientSecret = googleSettings.ClientSecret ?? string.Empty;
return new() { ClientId = clientId, ClientSecret = clientSecret };
}
public string[] GetScopes()
{
var scopes = new[]
{
Oauth2Service.Scope.Openid,
Oauth2Service.Scope.UserinfoEmail,
Oauth2Service.Scope.UserinfoProfile
};
return scopes;
}
public string ScopeToString() => string.Join(", ", GetScopes());
}
}

8
Core.Cerberos.Adapters/Helpers/RsaHelper.cs → Core.Thalos.BuildingBlocks/Helpers/RsaHelper.cs
View File

@ -1,6 +1,6 @@
// ***********************************************************************
// <copyright file="RsaHelper.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Org.BouncyCastle.Crypto;
@ -10,7 +10,7 @@ using Org.BouncyCastle.Security;
using System.Security.Cryptography;
using System.Text;
namespace Core.Cerberos.Adapters.Helpers
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Handles all methods related to RSA encryption"/>.
@ -62,7 +62,7 @@ namespace Core.Cerberos.Adapters.Helpers
/// <returns>The private key.</returns>
private RSACryptoServiceProvider GetPrivateKeyFromPemFile()
{
using (TextReader privateKeyTextReader = new StringReader(File.ReadAllText(Path.Combine(exeDirectory, "HeathPrivateKey.pem"))))
using (TextReader privateKeyTextReader = new StringReader(File.ReadAllText(Path.Combine(exeDirectory, "PrivateKey.pem"))))
{
AsymmetricCipherKeyPair readKeyPair = (AsymmetricCipherKeyPair)new PemReader(privateKeyTextReader).ReadObject();
@ -79,7 +79,7 @@ namespace Core.Cerberos.Adapters.Helpers
/// <returns>The public key.</returns>
public RSACryptoServiceProvider GetPublicKeyFromPemFile()
{
using (TextReader publicKeyTextReader = new StringReader(File.ReadAllText(Path.Combine(exeDirectory, "HeathPublicKey.pem"))))
using (TextReader publicKeyTextReader = new StringReader(File.ReadAllText(Path.Combine(exeDirectory, "PublicKey.pem"))))
{
RsaKeyParameters publicKeyParam = (RsaKeyParameters)new PemReader(publicKeyTextReader).ReadObject();

2
Core.Cerberos.Adapters/Options/JwtIssuerOptions.cs → Core.Thalos.BuildingBlocks/Options/JwtIssuerOptions.cs
View File

@ -1,6 +1,6 @@
using Microsoft.IdentityModel.Tokens;
namespace Core.Cerberos.Adapters.Options
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// JWT token Issuer options (used for JWT Factory)

20
Core.Cerberos.Adapters/Services/TokenService.cs → Core.Thalos.BuildingBlocks/Services/TokenService.cs
View File

@ -1,11 +1,8 @@
// ***********************************************************************
// <copyright file="T5okenService.cs">
// Heath
// <copyright file="TokenService.cs">
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Common.Constants;
using Core.Cerberos.Adapters.Contracts;
using Core.Cerberos.Adapters.Options;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Configuration;
@ -16,7 +13,7 @@ using System.IdentityModel.Tokens.Jwt;
using System.Security.Claims;
using System.Text.Json;
namespace Core.Cerberos.Adapters.Services
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Service responsible for manage authenticacion.
@ -74,7 +71,7 @@ namespace Core.Cerberos.Adapters.Services
/// </summary>
/// <param name="user">The user data.</param>
/// <returns>The user DTO with the generated token.</returns>
public string GenerateAccessToken(TokenAdapter adapter)
public (string, IEnumerable<ModuleAdapter>) GenerateAccessToken(TokenAdapter adapter)
{
@ -90,14 +87,13 @@ namespace Core.Cerberos.Adapters.Services
{
new Claim(Claims.Name, adapter?.User?.DisplayName ?? string.Empty),
new Claim(Claims.GUID, adapter?.User?.Guid ?? string.Empty),
new Claim(Claims.Id, adapter?.User?.Id ?? string.Empty),
new Claim(Claims.Email, adapter?.User?.Email ?? string.Empty),
new Claim(Claims.Tenant, adapter?.Tenant?.Name ?? string.Empty),
new Claim(Claims.Tenant, adapter?.Tenant?.Id ?? string.Empty),
new Claim(Claims.Role, adapter?.Role?.Name ?? string.Empty),
new Claim(Claims.RoleId, adapter?.Role?.Id ?? string.Empty),
new Claim(Claims.Applications, JsonSerializer.Serialize(adapter?.Role?.Applications), JsonClaimValueTypes.JsonArray),
new Claim(Claims.Modules, JsonSerializer.Serialize(adapter?.Modules?.Select(m => new { m.Name, m.Application, m.Route, m.Icon, m.Order }), jsonOptions), JsonClaimValueTypes.JsonArray),
new Claim(Claims.Companies, JsonSerializer.Serialize(adapter?.User?.Companies), JsonClaimValueTypes.JsonArray),
new Claim(Claims.Projects, JsonSerializer.Serialize(adapter?.User?.Projects), JsonClaimValueTypes.JsonArray),
new Claim(Claims.Permissions, JsonSerializer.Serialize(adapter?.Permissions?.Select(p => $"{p.Name}.{p.AccessLevel}".Replace(" ", "")).ToArray()), JsonClaimValueTypes.JsonArray),
}),
@ -109,7 +105,7 @@ namespace Core.Cerberos.Adapters.Services
var token = tokenHandler.CreateEncodedJwt(tokenDescriptor);
return token;
return (token, adapter.Modules);
}
public ActionResult<TimeSpan> ValidateTokenExpiration(string tokenExpiration)

42
Core.Thalos.BuildingBlocks/Settings/AuthSettings.cs Normal file
View File

@ -0,0 +1,42 @@
// ***********************************************************************
// <copyright file="AuthSettings.cs">
// AgileWebs
// </copyright>
// ***********************************************************************
namespace Core.Thalos.BuildingBlocks;
public class AuthSettings
{
public AzureAuthSettings? Azure { get; set; }
public TokenAuthSettings Token { get; set; } = null!;
public GoogleAuthSettings? Google { get; set; }
}
public class AzureAuthSettings
{
public string? Instance { get; set; }
public string? TenantId { get; set; }
public string? ClientId { get; set; }
public string? ClientSecret { get; set; }
public string? ThalosAppAuthorizationUrl { get; set; }
public string? ThalosAppTokenUrl { get; set; }
public string? ThalosAppClientId { get; set; }
public string? ThalosAppScope { get; set; }
}
public class GoogleAuthSettings
{
public string? ClientId { get; set; }
public string? ClientSecret { get; set; }
public string? RedirectUri { get; set; }
}
public class TokenAuthSettings
{
public string? PrivateKey { get; set; }
public string? PublicKey { get; set; }
public string? Audience { get; set; }
public string? Issuer { get; set; }
}

8
Core.Thalos.BuildingBlocks/Settings/IdentityProviders.cs Normal file
View File

@ -0,0 +1,8 @@
namespace Core.Thalos.BuildingBlocks
{
public class IdentityProviders
{
public bool Google { get; set; }
public bool Azure { get; set; }
}
}

5
Core.Cerberos.Adapters/TokenProvider/HttpContextTokenProvider.cs → Core.Thalos.BuildingBlocks/TokenProvider/HttpContextTokenProvider.cs
View File

@ -1,13 +1,12 @@
// ***********************************************************************
// <copyright file="HttpContextTokenProvider.cs">
// Heath
// AgileWebs
// </copyright>
// ***********************************************************************
using Core.Cerberos.Adapters.Contracts;
using Microsoft.AspNetCore.Http;
namespace Core.Cerberos.Adapters.TokenProvider
namespace Core.Thalos.BuildingBlocks
{
/// <summary>
/// Class to return the access token to controllers.