Update packages, enhance JWT options, and refactor configs

GioemaNocco · GioemaNocco · commit ded3efb09cdb · 2024-11-03T16:26:07.000+01:00
Updated Roslynator.Analyzers to 4.12.9 and Scrutor to 5.0.1.
Enhanced JwtOptions with XML docs and new default values.
Refactored RabbitMQ config in ServiceCollectionExtensions.
Added JWT settings to appsettings.json and disabled azureKeyVault.
Updated various Microsoft.Extensions packages in Genocs.Core.csproj.
Tested to use auth with simmetric key.
diff --git a/Directory.Build.props b/Directory.Build.props
@@ -13,7 +13,7 @@
     </PropertyGroup>
 
     <ItemGroup>
-        <PackageReference Include="Roslynator.Analyzers" Version="4.12.4">
+        <PackageReference Include="Roslynator.Analyzers" Version="4.12.9">
             <PrivateAssets>all</PrivateAssets>
             <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
         </PackageReference>
diff --git a/src/Genocs.Auth/Configurations/JwtOptions.cs b/src/Genocs.Auth/Configurations/JwtOptions.cs
@@ -38,16 +38,41 @@ public class JwtOptions
     public string? ValidIssuer { get; set; }
     public IEnumerable<string>? ValidIssuers { get; set; }
     public bool ValidateActor { get; set; }
+
+    /// <summary>
+    /// It defines whether the audience should be validated.
+    /// Defaults to true.
+    /// </summary>
     public bool ValidateAudience { get; set; } = true;
+
+    /// <summary>
+    /// It defines whether the issuer should be validated.
+    /// Defaults to true.
+    /// </summary>
     public bool ValidateIssuer { get; set; } = true;
     public bool ValidateLifetime { get; set; } = true;
     public bool ValidateTokenReplay { get; set; }
     public bool ValidateIssuerSigningKey { get; set; }
+
+    /// <summary>
+    /// It defines whether the token should be refreshed when the issuer key is not found.
+    /// Defaults to true.
+    /// </summary>
     public bool RefreshOnIssuerKeyNotFound { get; set; } = true;
+
+    /// <summary>
+    /// It defines whether the error details should be included in the response.
+    /// Defaults to true.
+    /// </summary>
     public bool IncludeErrorDetails { get; set; } = true;
     public string? AuthenticationType { get; set; }
     public string? NameClaimType { get; set; }
-    public string? RoleClaimType { get; set; }
+
+    /// <summary>
+    /// The claim type that will be used to determine the user's roles.
+    /// Defaults to "Role".
+    /// </summary>
+    public string RoleClaimType { get; set; } = "Role";
 
     public class CertificateOptions
     {
diff --git a/src/Genocs.Auth/Extensions.cs b/src/Genocs.Auth/Extensions.cs
@@ -70,6 +70,7 @@ private static IGenocsBuilder AddJwt(
             SaveSigninToken = options.SaveSigninToken,
             RequireExpirationTime = options.RequireExpirationTime,
             RequireSignedTokens = options.RequireSignedTokens,
+            RoleClaimType = options.RoleClaimType,
             ClockSkew = TimeSpan.Zero
         };
 
@@ -117,6 +118,7 @@ private static IGenocsBuilder AddJwt(
             }
         }
 
+        // If no certificate is provided, use symmetric encryption.
         if (!string.IsNullOrWhiteSpace(options.IssuerSigningKey) && !hasCertificate)
         {
             if (string.IsNullOrWhiteSpace(options.Algorithm) || hasCertificate)
diff --git a/src/Genocs.Core.Demo.WebApi/Infrastructure/Extensions/ServiceCollectionExtensions.cs b/src/Genocs.Core.Demo.WebApi/Infrastructure/Extensions/ServiceCollectionExtensions.cs
@@ -65,14 +65,16 @@ public static IServiceCollection AddCustomMassTransit(this IServiceCollection se
             x.UsingRabbitMq((context, cfg) =>
             {
                 cfg.ConfigureEndpoints(context);
-                //cfg.UseHealthCheck(context);
-                cfg.Host(rabbitMQSettings.HostName, rabbitMQSettings.VirtualHost,
-                    h =>
-                    {
-                        h.Username(rabbitMQSettings.UserName);
-                        h.Password(rabbitMQSettings.Password);
-                    }
-                );
+
+                // cfg.UseHealthCheck(context);
+                cfg.Host(
+                            rabbitMQSettings.HostName,
+                            rabbitMQSettings.VirtualHost,
+                            h =>
+                            {
+                                h.Username(rabbitMQSettings.UserName);
+                                h.Password(rabbitMQSettings.Password);
+                            });
             });
         });
 
diff --git a/src/Genocs.Core.Demo.WebApi/Program.cs b/src/Genocs.Core.Demo.WebApi/Program.cs
@@ -8,6 +8,7 @@
 using Genocs.Tracing;
 using Microsoft.Extensions.Diagnostics.HealthChecks;
 using Serilog;
+using Genocs.Auth;
 using System.Reflection;
 using System.Text.Json.Serialization;
 
@@ -23,6 +24,7 @@
 
 services
     .AddGenocs(builder.Configuration)
+    .AddJwt()
 //    .AddOpenIdJwt()
     .AddOpenTelemetry()
     .AddMongoFast()
diff --git a/src/Genocs.Core.Demo.WebApi/appsettings.json b/src/Genocs.Core.Demo.WebApi/appsettings.json
@@ -32,6 +32,16 @@
     "ValidAudience": "https://localhost:5000",
     "Secret": ""
   },
+  "_simmetric_jwt": {
+    "issuerSigningKey": "This is my custom Secret key for authentication S0M3RAN0MS3CR3T!1!MAG1C!1!",
+    "requireHttpsMetadata": false,
+    "saveToken": true,
+    "validateIssuerSigningKey": true,
+    "validateIssuer": false,
+    "validateLifetime": true,
+    "validateAudience": false,
+    "roleClaimType": "Role"
+  },
   "rabbitMQ": {
     "HostName": "localhost",
     "VirtualHost": "/",
@@ -53,7 +63,7 @@
     "enableTracing": true
   },
   "azureKeyVault": {
-    "enabled": true,
+    "enabled": false,
     "name": "kv-genocs"
   },
   "secrets": {
diff --git a/src/Genocs.Core/Genocs.Core.csproj b/src/Genocs.Core/Genocs.Core.csproj
@@ -51,7 +51,7 @@
 
     <ItemGroup>
         <PackageReference Include="Figgle" Version="0.5.1" />
-        <PackageReference Include="Scrutor" Version="4.2.2" />
+        <PackageReference Include="Scrutor" Version="5.0.1" />
     </ItemGroup>
 
     <ItemGroup Condition="'$(TargetFramework)' == 'net8.0'">
@@ -68,11 +68,11 @@
 
     <ItemGroup Condition="'$(TargetFramework)' == 'netstandard2.1'">
         <PackageReference Include="Microsoft.AspNetCore.Http.Abstractions" Version="2.2.0" />
-        <PackageReference Include="Microsoft.Extensions.Caching.Memory" Version="8.0.0" />
+        <PackageReference Include="Microsoft.Extensions.Caching.Memory" Version="8.0.1" />
         <PackageReference Include="Microsoft.Extensions.Configuration.Abstractions" Version="8.0.0" />
         <PackageReference Include="Microsoft.Extensions.Configuration.Binder" Version="8.0.2" />
-        <PackageReference Include="Microsoft.Extensions.DependencyInjection" Version="7.0.0" />
+        <PackageReference Include="Microsoft.Extensions.DependencyInjection" Version="8.0.1" />
         <PackageReference Include="System.ComponentModel.Annotations" Version="5.0.0" />
-        <PackageReference Include="System.Text.Json" Version="8.0.4" />
+        <PackageReference Include="System.Text.Json" Version="8.0.5" />
     </ItemGroup>
 </Project>

Original file line number	Diff line number	Diff line change
`@@ -70,6 +70,7 @@ private static IGenocsBuilder AddJwt(`
`70`	`70`	`SaveSigninToken = options.SaveSigninToken,`
`71`	`71`	`RequireExpirationTime = options.RequireExpirationTime,`
`72`	`72`	`RequireSignedTokens = options.RequireSignedTokens,`
	`73`	`+ RoleClaimType = options.RoleClaimType,`
`73`	`74`	`ClockSkew = TimeSpan.Zero`
`74`	`75`	`};`
`75`	`76`
`@@ -117,6 +118,7 @@ private static IGenocsBuilder AddJwt(`
`117`	`118`	`}`
`118`	`119`	`}`
`119`	`120`
	`121`	`+ // If no certificate is provided, use symmetric encryption.`
`120`	`122`	`if (!string.IsNullOrWhiteSpace(options.IssuerSigningKey) && !hasCertificate)`
`121`	`123`	`{`
`122`	`124`	`if (string.IsNullOrWhiteSpace(options.Algorithm) \|\| hasCertificate)`