Add a ClientSvc to front the Client aggregate (#124)

* Adds a ClientSvc to front the Client aggregate

* Update version info to 0.9.2

* Add methods to get commands/permissions from a msgs class

Author: joshkempner

src/ReactiveDomain.Debug.nuspec

@@ -2,7 +2,7 @@
 <package>
   <metadata>
     <id>ReactiveDomain</id>
-    <version>0.9.1.0</version>
+    <version>0.9.2.0</version>
     <authors>PerkinElmer,Linedata</authors>
     <requireLicenseAcceptance>false</requireLicenseAcceptance>
     <license type="expression">MIT</license>

src/ReactiveDomain.IdentityStorage/Domain/Client.cs

@@ -5,13 +5,12 @@
 
 namespace ReactiveDomain.IdentityStorage.Domain
 {
-
     public class Client : AggregateRoot
     {
         public string ClientName { get; private set; }
         public string[] RedirectUris { get; private set; }
         public string[] LogoutRedirectUris { get; private set; }
-        public string FrontChannlLogoutUri { get; private set; }
+        public string FrontChannelLogoutUri { get; private set; }
 
         private Client()
         {
@@ -26,7 +25,7 @@ private void RegisterEvents()
                 ClientName = @event.ClientName;
                 RedirectUris = @event.RedirectUris;
                 LogoutRedirectUris = @event.PostLogoutRedirectUris;
-                FrontChannlLogoutUri = @event.FrontChannelLogoutUri;
+                FrontChannelLogoutUri = @event.FrontChannelLogoutUri;
             });
             Register<ClientSecretAdded>(@event => { });
             Register<ClientSecretRemoved>(@event => { });
@@ -56,12 +55,12 @@ public Client(
             Raise(new ClientCreated(
                 id,
                 applicationId,
-                 clientName,
-                 new[] { "client_credentials", "password", "authorization_code" },
-                 new[] { "openid", "profile", "rd-policy", "enabled-policies" },
-                 redirectUris,
-                 postLogoutRedirectUris,
-                 frontChannelLogoutUri));
+                clientName,
+                new[] { "client_credentials", "password", "authorization_code" },
+                new[] { "openid", "profile", "rd-policy", "enabled-policies" },
+                redirectUris,
+                postLogoutRedirectUris,
+                frontChannelLogoutUri));
 
             Raise(new ClientSecretAdded(id, encryptedClientSecret));
         }

src/ReactiveDomain.IdentityStorage/Messages/ClientMsgs.cs

@@ -5,6 +5,35 @@ namespace ReactiveDomain.IdentityStorage.Messages
 {
     public class ClientMsgs
     {
+        public class CreateClient : Command
+        {
+            public readonly Guid ClientId;
+            public readonly Guid ApplicationId;
+            public readonly string ClientName;
+            public readonly string[] RedirectUris;
+            public readonly string[] PostLogoutRedirectUris;
+            public readonly string FrontChannelLogoutUri;
+            public readonly string EncryptedClientSecret;
+
+            public CreateClient(
+                Guid clientId,
+                Guid applicationId,
+                string clientName,
+                string[] redirectUris,
+                string[] postLogoutRedirectUris,
+                string frontChannelLogoutUri,
+                string encryptedClientSecret)
+            {
+                ClientId = clientId;
+                ApplicationId = applicationId;
+                ClientName = clientName;
+                RedirectUris = redirectUris;
+                PostLogoutRedirectUris = postLogoutRedirectUris;
+                FrontChannelLogoutUri = frontChannelLogoutUri;
+                EncryptedClientSecret = encryptedClientSecret;
+            }
+        }
+
         public class ClientCreated : Event
         {
             public readonly Guid ClientId;
@@ -36,9 +65,21 @@ public ClientCreated(
                 FrontChannelLogoutUri = frontChannelLogoutUri;
             }
         }
-        public class ClientSecretAdded : Event
+
+        public class AddClientSecret : Command
         {
+            public readonly Guid ClientId;
+            public readonly string EncryptedClientSecret;
+
+            public AddClientSecret(Guid clientId, string encryptedClientSecret)
+            {
+                ClientId = clientId;
+                EncryptedClientSecret = encryptedClientSecret;
+            }
+        }
 
+        public class ClientSecretAdded : Event
+        {
             public readonly Guid ClientId;
             public readonly string EncryptedClientSecret;
 
@@ -48,6 +89,19 @@ public ClientSecretAdded(Guid clientId, string encryptedClientSecret)
                 EncryptedClientSecret = encryptedClientSecret;
             }
         }
+
+        public class RemoveClientSecret : Command
+        {
+            public readonly Guid ClientId;
+            public readonly string EncryptedClientSecret;
+
+            public RemoveClientSecret(Guid clientId, string encryptedClientSecret)
+            {
+                ClientId = clientId;
+                EncryptedClientSecret = encryptedClientSecret;
+            }
+        }
+
         public class ClientSecretRemoved : Event
         {
             public readonly Guid ClientId;

src/ReactiveDomain.IdentityStorage/Services/ClientSvc.cs

@@ -0,0 +1,63 @@
+using ReactiveDomain.Foundation;
+using ReactiveDomain.IdentityStorage.Domain;
+using ReactiveDomain.IdentityStorage.Messages;
+using ReactiveDomain.Messaging;
+using ReactiveDomain.Messaging.Bus;
+
+namespace ReactiveDomain.IdentityStorage.Services
+{
+    public class ClientSvc :
+        TransientSubscriber,
+        IHandleCommand<ClientMsgs.CreateClient>,
+        IHandleCommand<ClientMsgs.AddClientSecret>,
+        IHandleCommand<ClientMsgs.RemoveClientSecret>
+    {
+        private readonly CorrelatedStreamStoreRepository _repo;
+
+        public ClientSvc(IRepository repo, IDispatcher bus) : base(bus)
+        {
+            _repo = new CorrelatedStreamStoreRepository(repo);
+            Subscribe<ClientMsgs.CreateClient>(this);
+            Subscribe<ClientMsgs.AddClientSecret>(this);
+            Subscribe<ClientMsgs.RemoveClientSecret>(this);
+        }
+
+        public CommandResponse Handle(ClientMsgs.CreateClient command)
+        {
+            var client = new Client(
+                                command.ClientId,
+                                command.ApplicationId,
+                                command.ClientName,
+                                command.EncryptedClientSecret,
+                                command.RedirectUris,
+                                command.PostLogoutRedirectUris,
+                                command.FrontChannelLogoutUri,
+                                command);
+            try
+            {
+                _repo.Save(client);
+            }
+            catch (WrongExpectedVersionException)
+            {
+                throw new DuplicateClientException(command.ClientId, command.ClientName);
+            }
+            return command.Succeed();
+        }
+
+        public CommandResponse Handle(ClientMsgs.AddClientSecret command)
+        {
+            var client = _repo.GetById<Client>(command.ClientId, command);
+            client.AddClientSecret(command.EncryptedClientSecret);
+            _repo.Save(client);
+            return command.Succeed();
+        }
+
+        public CommandResponse Handle(ClientMsgs.RemoveClientSecret command)
+        {
+            var client = _repo.GetById<Client>(command.ClientId, command);
+            client.RemoveClientSecret(command.EncryptedClientSecret);
+            _repo.Save(client);
+            return command.Succeed();
+        }
+    }
+}

src/ReactiveDomain.IdentityStorage/UserExceptions.cs

@@ -14,9 +14,7 @@ public DuplicateUserException(Guid id, string fullName, string email)
             : base($"User {id}: {fullName}\\{email} already exists.")
         { }
     }
-
 
-   
     /// <summary>
     /// Throw this exception when a user lookup returns no results.
     /// </summary>
@@ -44,4 +42,11 @@ public UserDeactivatedException(string message)
         {
         }
     }
+
+    public class DuplicateClientException : Exception
+    {
+        public DuplicateClientException(Guid id, string name)
+            : base($"Client {name} with ID {id} already exists.")
+        { }
+    }
 }

src/ReactiveDomain.Policy.Debug.nuspec

@@ -2,14 +2,14 @@
 <package>
   <metadata>
     <id>ReactiveDomain.Policy</id>
-    <version>0.9.1.0</version>
+    <version>0.9.2.0</version>
     <authors>PerkinElmer,Linedata</authors>
     <requireLicenseAcceptance>false</requireLicenseAcceptance>
     <license type="expression">MIT</license>
     <description>Package includes all ReactiveDomain Identity and Policy assemblies</description>       
     <dependencies>
       <group targetFramework="netstandard2.0">
-        <dependency id="ReactiveDomain" version="0.9.1" exclude="Build,Analyzers" />
+        <dependency id="ReactiveDomain" version="0.9.2" exclude="Build,Analyzers" />
         <dependency id="DynamicData" version="7.1.17" exclude="Build,Analyzers" />
         <dependency id="IdentityModel" version="4.6.0" exclude="Build,Analyzers" />
         <dependency id="IdentityServer4.Storage" version="4.1.2" exclude="Build,Analyzers"/>

src/ReactiveDomain.Policy.nuspec

@@ -2,15 +2,15 @@
 <package>
   <metadata>
     <id>ReactiveDomain.Policy</id>
-    <version>0.9.1.0</version>
+    <version>0.9.2.0</version>
     <authors>PerkinElmer,Linedata</authors>
     <requireLicenseAcceptance>false</requireLicenseAcceptance>
     <license type="expression">MIT</license>
     <description>Package includes all ReactiveDomain Core assemblies</description>
     <copyright>Copyright © 2014-2022 PerkinElmer Inc., Linedata Inc.</copyright>
     <dependencies>     
       <group targetFramework="netstandard2.0">
-        <dependency id="ReactiveDomain" version="0.9.1" exclude="Build,Analyzers" />
+        <dependency id="ReactiveDomain" version="0.9.2" exclude="Build,Analyzers" />
         <dependency id="DynamicData" version="7.1.17" exclude="Build,Analyzers" />
         <dependency id="IdentityModel" version="4.6.0" exclude="Build,Analyzers" />
         <dependency id="IdentityServer4.Storage" version="4.1.2" exclude="Build,Analyzers"/>

src/ReactiveDomain.Policy/Permissions.cs

@@ -0,0 +1,22 @@
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using ReactiveDomain.Messaging;
+
+namespace ReactiveDomain.Policy
+{
+    public static class Permissions
+    {
+        private static readonly Type CommandType = typeof(Command);
+
+        public static Permission[] GetCommandPermissions(Type type)
+        {
+            return GetCommands(type).Select(t => new Permission(t)).ToArray();
+        }
+
+        public static IEnumerable<Type> GetCommands(Type type)
+        {
+            return type.GetNestedTypes().Where(t => CommandType.IsAssignableFrom(t));
+        }
+    }
+}

src/ReactiveDomain.PolicyTool/Program.cs

@@ -51,7 +51,7 @@ static int Main(string[] args)
             //Root CMD w/ global required AppName
             var appName = new Option<string>(
                         name: "--app-name",
-                        description: "Taget Application name.")
+                        description: "Target Application name.")
             {
                 IsRequired = true
             };
@@ -135,6 +135,7 @@ static int Main(string[] args)
             var userRm = new UsersRm(EsConnection);
             var subjectsRm = new SubjectsRm(EsConnection);
             var userSvc = new UserSvc(EsConnection.GetRepository(), mainBus);
+            var clientSvc = new ClientSvc(EsConnection.GetRepository(), mainBus);
             var clientStore = new ClientStore(EsConnection);
             addApp.SetHandler(
                 (string name, string secret, Guid id, string uri) =>
@@ -148,19 +149,18 @@ static int Main(string[] args)
                               false));
                     if (mainBus.TrySend(cmd, out _))
                     {
-                        //todo: wrap this in a service
-                        //todo: look at making this a correlated message
-                        var client = new ReactiveDomain.IdentityStorage.Domain.Client(
-                            Guid.NewGuid(),
-                            id,
-                            name,
-                            secret,
-                            new[] { uri },
-                            new[] { uri },
-                            uri,
-                            new CorrelatedRoot());
-                        var repo = EsConnection.GetRepository();
-                        repo.Save(client);
+                        mainBus.TrySend(
+                            RDMsg.MessageBuilder
+                                .From(cmd)
+                                .Build(() => new ClientMsgs.CreateClient(
+                                                    Guid.NewGuid(),
+                                                    id,
+                                                    name,
+                                                    new[] { uri },
+                                                    new[] { uri },
+                                                    uri,
+                                                    secret)),
+                            out _);
                     }
 
                 }, appName, clientSecret, appId, appUri);

src/ReactiveDomain.Testing.Debug.nuspec

@@ -2,7 +2,7 @@
 <package>
   <metadata>
     <id>ReactiveDomain.Testing</id>
-    <version>0.9.1.0</version>
+    <version>0.9.2.0</version>
     <authors>PerkinElmer,Linedata</authors>
     <owners>PerkinElmer,Linedata</owners>
     <requireLicenseAcceptance>false</requireLicenseAcceptance>
@@ -14,7 +14,7 @@
         <dependency id="Microsoft.NET.Test.Sdk" version="16.11.0" exclude="Build,Analyzers" />
         <dependency id="xunit" version="2.4.1" exclude="Build,Analyzers" />
         <dependency id="xunit.runner.console" version="2.4.1" exclude="Build,Analyzers" />
-        <dependency id="ReactiveDomain" version="0.9.1.0" exclude="Build,Analyzers" />
+        <dependency id="ReactiveDomain" version="0.9.2.0" exclude="Build,Analyzers" />
       </group>
     </dependencies>
     <references>