Usermanagment Api Models, DbContext and Permission DTOs added along with Middlewares and serilog used as it is from the Centralized Logging - phase 2 api

Author: HasanJaved-Developer

CentralizedLoggingMonitoring.sln

@@ -1,10 +1,12 @@
 
 Microsoft Visual Studio Solution File, Format Version 12.00
 # Visual Studio Version 17
-VisualStudioVersion = 17.14.36310.24 d17.14
+VisualStudioVersion = 17.14.36310.24
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "CentralizedLoggingApi", "CentralizedLoggingApi\CentralizedLoggingApi.csproj", "{E4783310-16BC-401A-A1A7-1DB35C1311CC}"
 EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "UserManagementApi", "UserManagementApi\UserManagementApi.csproj", "{53EF3AAF-AE53-48F7-B081-50699EB501DA}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -15,6 +17,10 @@ Global
 		{E4783310-16BC-401A-A1A7-1DB35C1311CC}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{E4783310-16BC-401A-A1A7-1DB35C1311CC}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{E4783310-16BC-401A-A1A7-1DB35C1311CC}.Release|Any CPU.Build.0 = Release|Any CPU
+		{53EF3AAF-AE53-48F7-B081-50699EB501DA}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{53EF3AAF-AE53-48F7-B081-50699EB501DA}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{53EF3AAF-AE53-48F7-B081-50699EB501DA}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{53EF3AAF-AE53-48F7-B081-50699EB501DA}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE

UserManagementApi/Controllers/WeatherForecastController.cs

@@ -0,0 +1,33 @@
+using Microsoft.AspNetCore.Mvc;
+
+namespace UserManagementApi.Controllers
+{
+    [ApiController]
+    [Route("[controller]")]
+    public class WeatherForecastController : ControllerBase
+    {
+        private static readonly string[] Summaries = new[]
+        {
+            "Freezing", "Bracing", "Chilly", "Cool", "Mild", "Warm", "Balmy", "Hot", "Sweltering", "Scorching"
+        };
+
+        private readonly ILogger<WeatherForecastController> _logger;
+
+        public WeatherForecastController(ILogger<WeatherForecastController> logger)
+        {
+            _logger = logger;
+        }
+
+        [HttpGet(Name = "GetWeatherForecast")]
+        public IEnumerable<WeatherForecast> Get()
+        {
+            return Enumerable.Range(1, 5).Select(index => new WeatherForecast
+            {
+                Date = DateOnly.FromDateTime(DateTime.Now.AddDays(index)),
+                TemperatureC = Random.Shared.Next(-20, 55),
+                Summary = Summaries[Random.Shared.Next(Summaries.Length)]
+            })
+            .ToArray();
+        }
+    }
+}

UserManagementApi/DTO/PermissionDtos.cs

@@ -0,0 +1,7 @@
+namespace UserManagementApi.DTO
+{
+    public record FunctionDto(int Id, string Code, string DisplayName);
+    public record ModuleDto(int Id, string Name, string Area, string Controller, string Action, List<FunctionDto> Functions);
+    public record CategoryDto(int Id, string Name, List<ModuleDto> Modules);
+    public record UserPermissionsDto(int UserId, string UserName, List<CategoryDto> Categories);
+}

UserManagementApi/Data/AppDbContext.cs

@@ -0,0 +1,115 @@
+using Microsoft.EntityFrameworkCore;
+using UserManagementApi.Models;
+
+namespace UserManagementApi.Data
+{
+    public class AppDbContext : DbContext
+    {
+        public AppDbContext(DbContextOptions<AppDbContext> options) : base(options) { }
+
+        public DbSet<Category> Categories => Set<Category>();
+        public DbSet<Module> Modules => Set<Module>();
+        public DbSet<Function> Functions => Set<Function>();
+        public DbSet<Role> Roles => Set<Role>();
+        public DbSet<AppUser> Users => Set<AppUser>();
+        public DbSet<UserRole> UserRoles => Set<UserRole>();
+        public DbSet<RoleFunction> RoleFunctions => Set<RoleFunction>();
+
+        protected override void OnModelCreating(ModelBuilder b)
+        {
+            base.OnModelCreating(b);
+
+            // Keys for join entities
+            b.Entity<UserRole>().HasKey(x => new { x.UserId, x.RoleId });
+            b.Entity<RoleFunction>().HasKey(x => new { x.RoleId, x.FunctionId });
+
+            // Relationships
+            b.Entity<Module>()
+                .HasOne(m => m.Category)
+                .WithMany(c => c.Modules)
+                .HasForeignKey(m => m.CategoryId)
+                .OnDelete(DeleteBehavior.Cascade);
+
+            b.Entity<Function>()
+                .HasOne(f => f.Module)
+                .WithMany(m => m.Functions)
+                .HasForeignKey(f => f.ModuleId)
+                .OnDelete(DeleteBehavior.Cascade);
+
+            b.Entity<UserRole>()
+                .HasOne(ur => ur.User)
+                .WithMany(u => u.UserRoles)
+                .HasForeignKey(ur => ur.UserId);
+
+            b.Entity<UserRole>()
+                .HasOne(ur => ur.Role)
+                .WithMany(r => r.UserRoles)
+                .HasForeignKey(ur => ur.RoleId);
+
+            b.Entity<RoleFunction>()
+                .HasOne(rf => rf.Role)
+                .WithMany(r => r.RoleFunctions)
+                .HasForeignKey(rf => rf.RoleId);
+
+            b.Entity<RoleFunction>()
+                .HasOne(rf => rf.Function)
+                .WithMany(f => f.RoleFunctions)
+                .HasForeignKey(rf => rf.FunctionId);
+
+            // ---------- Seed Data ----------
+            // Categories
+            b.Entity<Category>().HasData(
+                new Category { Id = 1, Name = "Administration" },
+                new Category { Id = 2, Name = "Operations" }
+            );
+
+            // Modules
+            b.Entity<Module>().HasData(
+                new Module { Id = 1, Name = "User Management", Area = "Admin", Controller = "Users", Action = "Index", CategoryId = 1 },
+                new Module { Id = 2, Name = "Role Management", Area = "Admin", Controller = "Roles", Action = "Index", CategoryId = 1 },
+                new Module { Id = 3, Name = "Payments", Area = "Ops", Controller = "Payments", Action = "Index", CategoryId = 2 }
+            );
+
+            // Functions
+            b.Entity<Function>().HasData(
+                new Function { Id = 1, ModuleId = 1, Code = "Users.View", DisplayName = "View Users" },
+                new Function { Id = 2, ModuleId = 1, Code = "Users.Edit", DisplayName = "Edit Users" },
+                new Function { Id = 3, ModuleId = 2, Code = "Roles.View", DisplayName = "View Roles" },
+                new Function { Id = 4, ModuleId = 2, Code = "Roles.Assign", DisplayName = "Assign Roles" },
+                new Function { Id = 5, ModuleId = 3, Code = "Payments.View", DisplayName = "View Payments" }
+            );
+
+            // Roles
+            b.Entity<Role>().HasData(
+                new Role { Id = 1, Name = "Admin" },
+                new Role { Id = 2, Name = "Operator" }
+            );
+
+            // Users
+            b.Entity<AppUser>().HasData(
+                new AppUser { Id = 1, UserName = "alice" },
+                new AppUser { Id = 2, UserName = "bob" }
+            );
+
+            // User ↔ Role
+            b.Entity<UserRole>().HasData(
+                new UserRole { UserId = 1, RoleId = 1 }, // alice → Admin
+                new UserRole { UserId = 2, RoleId = 2 }  // bob → Operator
+            );
+
+            // Role ↔ Function
+            b.Entity<RoleFunction>().HasData(
+                // Admin gets everything
+                new RoleFunction { RoleId = 1, FunctionId = 1 },
+                new RoleFunction { RoleId = 1, FunctionId = 2 },
+                new RoleFunction { RoleId = 1, FunctionId = 3 },
+                new RoleFunction { RoleId = 1, FunctionId = 4 },
+                new RoleFunction { RoleId = 1, FunctionId = 5 },
+
+                // Operator gets limited
+                new RoleFunction { RoleId = 2, FunctionId = 1 }, // Users.View
+                new RoleFunction { RoleId = 2, FunctionId = 5 }  // Payments.View
+            );
+        }
+    }
+}

UserManagementApi/Middlewares/ExceptionHandlingMiddleware.cs

@@ -0,0 +1,73 @@
+using System.Net.Mime;
+
+namespace UserManagementApi.Middlewares
+{
+    public class ExceptionHandlingMiddleware
+    {
+        private readonly RequestDelegate _next;
+        private readonly ILogger<ExceptionHandlingMiddleware> _logger;
+
+        public ExceptionHandlingMiddleware(RequestDelegate next, ILogger<ExceptionHandlingMiddleware> logger)
+        {
+            _next = next;
+            _logger = logger;
+        }
+
+        public async Task Invoke(HttpContext context)
+        {
+            try
+            {
+                await _next(context); // continue pipeline
+            }
+            catch (OperationCanceledException oce) when (context.RequestAborted.IsCancellationRequested)
+            {
+                // Client aborted; don’t try to write a response body.
+                _logger.LogWarning(oce, "Request aborted by client {Path} ({TraceId})",
+                    context.Request.Path, context.TraceIdentifier);
+                // Let it bubble or just return; here we just return.
+            }
+            catch (Exception ex)
+            {
+                // Log using Serilog (through ILogger)
+                _logger.LogError(ex, "Unhandled exception occurred while processing request {Path}", context.Request.Path);
+
+                // If the server already committed headers/body, we can't change it.
+                if (context.Response.HasStarted)
+                {
+                    _logger.LogWarning("The response has already started; cannot write error body. Rethrowing.");
+                    throw; // Let server infrastructure terminate the connection appropriately.
+                }
+
+                // Clear headers/status that may have been set
+                context.Response.Clear();
+                context.Response.ContentType = "application/json";
+                context.Response.StatusCode = StatusCodes.Status500InternalServerError;
+
+                // If a previous component wrote to the (buffered) body, wipe it safely.
+                try
+                {
+                    if (context.Response.Body.CanSeek)
+                    {
+                        context.Response.Body.SetLength(0);
+                        context.Response.Body.Position = 0;
+                    }
+                }
+                catch
+                {
+                    // If the body stream isn't seekable/writable (rare with your buffer), ignore.
+                }
+                // Let the server recalc Content-Length
+                context.Response.Headers.ContentLength = null;
+    
+
+                var result = new
+                {
+                    error = "An unexpected error occurred",
+                    details = ex.Message // optional, avoid exposing internals in production
+                };
+
+                await context.Response.WriteAsJsonAsync(result);
+            }
+        }
+    }
+}

UserManagementApi/Middlewares/RequestAudibilityMiddleware.cs

@@ -0,0 +1,52 @@
+namespace UserManagementApi.Middlewares
+{
+    public class RequestAudibilityMiddleware
+    {
+        private readonly RequestDelegate _next;
+        private readonly ILogger<RequestAudibilityMiddleware> _logger;
+
+        public RequestAudibilityMiddleware(RequestDelegate next, ILogger<RequestAudibilityMiddleware> logger)
+        {
+            _next = next;
+            _logger = logger;
+        }
+
+        public async Task InvokeAsync(HttpContext context)
+        {
+            var requestId = context.TraceIdentifier;
+
+            // Log request info
+            _logger.LogInformation("Incoming request {RequestId} {Method} {Path} from {RemoteIp}",
+                requestId,
+                context.Request.Method,
+                context.Request.Path,
+                context.Connection.RemoteIpAddress?.ToString());
+
+
+            var originalBodyStream = context.Response.Body; // Save original response stream
+
+            await using var responseBody = new MemoryStream();
+            context.Response.Body = responseBody;
+
+            try
+            {
+                await _next(context); // continue pipeline
+            }
+            finally
+            {
+                // Capture response
+                context.Response.Body.Seek(0, SeekOrigin.Begin);
+                var responseText = await new StreamReader(context.Response.Body).ReadToEndAsync();
+                context.Response.Body.Seek(0, SeekOrigin.Begin);
+
+                _logger.LogInformation("Outgoing response {RequestId} with status {StatusCode}, length {Length}",
+                    requestId,
+                    context.Response.StatusCode,
+                    responseText?.Length);
+
+                // Copy back to original response body
+                await responseBody.CopyToAsync(originalBodyStream);
+            }
+        }
+    }
+}

UserManagementApi/Models/AppUser.cs

@@ -0,0 +1,11 @@
+using System.ComponentModel.DataAnnotations;
+
+namespace UserManagementApi.Models
+{
+    public class AppUser
+    {
+        public int Id { get; set; }
+        [MaxLength(120)] public string UserName { get; set; } = null!;
+        public ICollection<UserRole> UserRoles { get; set; } = new List<UserRole>();
+    }
+}

UserManagementApi/Models/Category.cs

@@ -0,0 +1,11 @@
+using System.ComponentModel.DataAnnotations;
+
+namespace UserManagementApi.Models
+{
+    public class Category
+    {
+        public int Id { get; set; }
+        [MaxLength(100)] public string Name { get; set; } = null!;
+        public ICollection<Module> Modules { get; set; } = new List<Module>();
+    }
+}

UserManagementApi/Models/Function.cs

@@ -0,0 +1,16 @@
+using System.ComponentModel.DataAnnotations;
+
+namespace UserManagementApi.Models
+{
+    public class Function
+    {
+        public int Id { get; set; }
+        [MaxLength(120)] public string Code { get; set; } = null!;
+        [MaxLength(200)] public string DisplayName { get; set; } = null!;
+
+        public int ModuleId { get; set; }
+        public Module Module { get; set; } = null!;
+
+        public ICollection<RoleFunction> RoleFunctions { get; set; } = new List<RoleFunction>();
+    }
+}

UserManagementApi/Models/Module.cs

@@ -0,0 +1,17 @@
+using System.ComponentModel.DataAnnotations;
+
+namespace UserManagementApi.Models
+{
+    public class Module
+    {
+        public int Id { get; set; }
+        [MaxLength(100)] public string Name { get; set; } = null!;
+        [MaxLength(100)] public string Area { get; set; } = null!;
+        [MaxLength(100)] public string Controller { get; set; } = null!;
+        [MaxLength(100)] public string Action { get; set; } = null!;
+
+        public int CategoryId { get; set; }
+        public Category Category { get; set; } = null!;
+        public ICollection<Function> Functions { get; set; } = new List<Function>();
+    }
+}