mirror of
https://github.com/ncblakely/GiantsTools
synced 2024-11-21 21:55:38 +01:00
124 lines
4.1 KiB
C#
124 lines
4.1 KiB
C#
namespace Giants.Web
|
|
{
|
|
using AutoMapper;
|
|
using Giants.Services;
|
|
using Microsoft.AspNetCore.Authentication.JwtBearer;
|
|
using Microsoft.AspNetCore.Builder;
|
|
using Microsoft.AspNetCore.Hosting;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.AspNetCore.Mvc.Infrastructure;
|
|
using Microsoft.Extensions.Configuration;
|
|
using Microsoft.Extensions.DependencyInjection;
|
|
using Microsoft.Extensions.DependencyInjection.Extensions;
|
|
using Microsoft.Extensions.Hosting;
|
|
using Microsoft.Extensions.Logging;
|
|
using Microsoft.Identity.Web;
|
|
using Microsoft.IdentityModel.Logging;
|
|
using System;
|
|
using System.Linq;
|
|
using System.Threading.Tasks;
|
|
|
|
public class Program
|
|
{
|
|
public static void Main(string[] args)
|
|
{
|
|
var builder = WebApplication.CreateBuilder(args);
|
|
|
|
ConfigureServices(builder);
|
|
|
|
var app = builder.Build();
|
|
ConfigureApplication(app, app.Environment);
|
|
|
|
app.Run();
|
|
}
|
|
|
|
private static void ConfigureServices(WebApplicationBuilder builder)
|
|
{
|
|
var services = builder.Services;
|
|
|
|
services.AddControllers();
|
|
services.AddApiVersioning(config =>
|
|
{
|
|
config.DefaultApiVersion = new ApiVersion(1, 0);
|
|
config.AssumeDefaultVersionWhenUnspecified = true;
|
|
});
|
|
|
|
services.AddOpenApiDocument();
|
|
|
|
services.AddApplicationInsightsTelemetry();
|
|
|
|
IdentityModelEventSource.ShowPII = true;
|
|
|
|
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
|
|
.AddMicrosoftIdentityWebApi(options =>
|
|
{
|
|
builder.Configuration.Bind("AzureAd", options);
|
|
options.Events = new JwtBearerEvents();
|
|
options.Events.OnAuthenticationFailed = async context =>
|
|
{
|
|
await Task.CompletedTask;
|
|
};
|
|
options.Events.OnForbidden = async context =>
|
|
{
|
|
await Task.CompletedTask;
|
|
};
|
|
options.Events.OnChallenge = async context =>
|
|
{
|
|
await Task.CompletedTask;
|
|
};
|
|
options.Events.OnTokenValidated = async context =>
|
|
{
|
|
string[] allowedClientApps = builder.Configuration.GetValue<string>("AllowedClientIds").Split(',', StringSplitOptions.TrimEntries | StringSplitOptions.RemoveEmptyEntries);
|
|
|
|
string clientAppId = context?.Principal?.Claims
|
|
.FirstOrDefault(x => x.Type == "azp" || x.Type == "appid")?.Value;
|
|
|
|
if (clientAppId == null || !allowedClientApps.Contains(clientAppId))
|
|
{
|
|
throw new UnauthorizedAccessException("The client app is not permitted to access this API");
|
|
}
|
|
|
|
await Task.CompletedTask;
|
|
};
|
|
|
|
}, options =>
|
|
{
|
|
builder.Configuration.Bind("AzureAd", options);
|
|
});
|
|
|
|
services.AddHttpContextAccessor();
|
|
services.TryAddSingleton<IActionContextAccessor, ActionContextAccessor>();
|
|
|
|
ServicesModule.RegisterServices(services, builder.Configuration);
|
|
|
|
IMapper mapper = Services.Mapper.GetMapper();
|
|
services.AddSingleton(mapper);
|
|
|
|
builder.Logging.AddEventSourceLogger();
|
|
}
|
|
|
|
private static void ConfigureApplication(WebApplication app, IWebHostEnvironment env)
|
|
{
|
|
if (env.IsDevelopment())
|
|
{
|
|
Microsoft.IdentityModel.Logging.IdentityModelEventSource.ShowPII = true;
|
|
app.UseDeveloperExceptionPage();
|
|
app.UseOpenApi();
|
|
}
|
|
|
|
app.UseHttpsRedirection();
|
|
|
|
app.UseRouting();
|
|
|
|
app.UseAuthentication();
|
|
app.UseAuthorization();
|
|
|
|
|
|
app.UseEndpoints(endpoints =>
|
|
{
|
|
endpoints.MapControllers();
|
|
});
|
|
}
|
|
}
|
|
}
|