Adds the ability to specify an appsettings file for user-jwts (#58605)

* Adds the ability to specify an appsettings file for user-jwts

Addresses #56169

* Move the validation logic into a central location

* Adds copilot suggestions to improve error messages

* Fix tests after changing error message when appsettings not found

Author: ChrisAnn

src/Tools/dotnet-user-jwts/src/Commands/ClearCommand.cs

@@ -19,21 +19,32 @@ public static void Register(ProjectCommandLineApplication app)
                 Resources.ClearCommand_ForceOption_Description,
                 CommandOptionType.NoValue);
 
+            var appsettingsFileOption = cmd.Option(
+                "--appsettings-file",
+                Resources.CreateCommand_appsettingsFileOption_Description,
+                CommandOptionType.SingleValue);
+
             cmd.HelpOption("-h|--help");
 
             cmd.OnExecute(() =>
             {
-                return Execute(cmd.Reporter, cmd.ProjectOption.Value(), forceOption.HasValue());
+                if (!DevJwtCliHelpers.GetProjectAndSecretsId(cmd.ProjectOption.Value(), cmd.Reporter, out var project, out var userSecretsId))
+                {
+                    return 1;
+                }
+
+                if (!DevJwtCliHelpers.GetAppSettingsFile(project, appsettingsFileOption.Value(), cmd.Reporter, out var appsettingsFile))
+                {
+                    return 1;
+                }
+
+                return Execute(cmd.Reporter, project, userSecretsId, forceOption.HasValue(), appsettingsFile);
             });
         });
     }
 
-    private static int Execute(IReporter reporter, string projectPath, bool force)
+    private static int Execute(IReporter reporter, string project, string userSecretsId, bool force, string appsettingsFile)
     {
-        if (!DevJwtCliHelpers.GetProjectAndSecretsId(projectPath, reporter, out var project, out var userSecretsId))
-        {
-            return 1;
-        }
         var jwtStore = new JwtStore(userSecretsId);
         var count = jwtStore.Jwts.Count;
 
@@ -54,7 +65,7 @@ private static int Execute(IReporter reporter, string projectPath, bool force)
             }
         }
 
-        var appsettingsFilePath = Path.Combine(Path.GetDirectoryName(project), "appsettings.Development.json");
+        var appsettingsFilePath = Path.Combine(Path.GetDirectoryName(project), appsettingsFile);
         foreach (var jwt in jwtStore.Jwts)
         {
             JwtAuthenticationSchemeSettings.RemoveScheme(appsettingsFilePath, jwt.Value.Scheme);

src/Tools/dotnet-user-jwts/src/Commands/CreateCommand.cs

@@ -77,24 +77,29 @@ public static void Register(ProjectCommandLineApplication app, Program program)
                 Resources.CreateCommand_ValidForOption_Description,
                 CommandOptionType.SingleValue);
 
+            var appsettingsFileOption = cmd.Option(
+                "--appsettings-file",
+                Resources.CreateCommand_appsettingsFileOption_Description,
+                CommandOptionType.SingleValue);
+
             cmd.HelpOption("-h|--help");
 
             cmd.OnExecute(() =>
             {
-                var (options, isValid, optionsString) = ValidateArguments(
-                    cmd.Reporter, cmd.ProjectOption, schemeNameOption, nameOption, audienceOption, issuerOption, notBeforeOption, expiresOnOption, validForOption, rolesOption, scopesOption, claimsOption);
+                var (options, isValid, optionsString, appsettingsFile) = ValidateArguments(
+                    cmd.Reporter, cmd.ProjectOption, schemeNameOption, nameOption, audienceOption, issuerOption, notBeforeOption, expiresOnOption, validForOption, rolesOption, scopesOption, claimsOption, appsettingsFileOption);
 
                 if (!isValid)
                 {
                     return 1;
                 }
 
-                return Execute(cmd.Reporter, cmd.ProjectOption.Value(), options, optionsString, cmd.OutputOption.Value(), program);
+                return Execute(cmd.Reporter, cmd.ProjectOption.Value(), options, optionsString, cmd.OutputOption.Value(), appsettingsFile, program);
             });
         });
     }
 
-    private static (JwtCreatorOptions, bool, string) ValidateArguments(
+    private static (JwtCreatorOptions, bool, string, string) ValidateArguments(
         IReporter reporter,
         CommandOption projectOption,
         CommandOption schemeNameOption,
@@ -106,7 +111,8 @@ private static (JwtCreatorOptions, bool, string) ValidateArguments(
         CommandOption validForOption,
         CommandOption rolesOption,
         CommandOption scopesOption,
-        CommandOption claimsOption)
+        CommandOption claimsOption,
+        CommandOption appsettingsFileOption)
     {
         var isValid = true;
         var finder = new MsBuildProjectFinder(Directory.GetCurrentDirectory());
@@ -121,6 +127,7 @@ private static (JwtCreatorOptions, bool, string) ValidateArguments(
             return (
                 null,
                 isValid,
+                string.Empty,
                 string.Empty
             );
         }
@@ -209,10 +216,19 @@ private static (JwtCreatorOptions, bool, string) ValidateArguments(
             optionsString += $"{Resources.JwtPrint_CustomClaims}: [{string.Join(", ", claims.Select(kvp => $"{kvp.Key}={kvp.Value}"))}]{Environment.NewLine}";
         }
 
+        var appsettingsFile = DevJwtCliHelpers.DefaultAppSettingsFile;
+        if (appsettingsFileOption.HasValue())
+        {
+            isValid = DevJwtCliHelpers.GetAppSettingsFile(project, appsettingsFileOption.Value(), reporter, out appsettingsFile);
+
+            optionsString += appsettingsFileOption.HasValue() ? $"{Resources.JwtPrint_appsettingsFile}: {appsettingsFile}{Environment.NewLine}" : string.Empty;
+        }
+
         return (
             new JwtCreatorOptions(scheme, name, audience, issuer, notBefore, expiresOn, roles, scopes, claims),
             isValid,
-            optionsString);
+            optionsString,
+            appsettingsFile);
 
         static bool ParseDate(string datetime, out DateTime parsedDateTime) =>
             DateTime.TryParseExact(datetime, _dateTimeFormats, CultureInfo.InvariantCulture, DateTimeStyles.AssumeUniversal | DateTimeStyles.AdjustToUniversal, out parsedDateTime);
@@ -224,6 +240,7 @@ private static int Execute(
         JwtCreatorOptions options,
         string optionsString,
         string outputFormat,
+        string appsettingsFile,
         Program program)
     {
         if (!DevJwtCliHelpers.GetProjectAndSecretsId(projectPath, reporter, out var project, out var userSecretsId))
@@ -244,7 +261,7 @@ private static int Execute(
         jwtStore.Jwts.Add(jwtToken.Id, jwt);
         jwtStore.Save();
 
-        var appsettingsFilePath = Path.Combine(Path.GetDirectoryName(project), "appsettings.Development.json");
+        var appsettingsFilePath = Path.Combine(Path.GetDirectoryName(project), appsettingsFile);
         var settingsToWrite = new JwtAuthenticationSchemeSettings(options.Scheme, options.Audiences, options.Issuer);
         settingsToWrite.Save(appsettingsFilePath);
 

src/Tools/dotnet-user-jwts/src/Commands/RemoveCommand.cs

@@ -15,6 +15,12 @@ public static void Register(ProjectCommandLineApplication app)
             cmd.Description = Resources.RemoveCommand_Description;
 
             var idArgument = cmd.Argument("[id]", Resources.RemoveCommand_IdArgument_Description);
+
+            var appsettingsFileOption = cmd.Option(
+                "--appsettings-file",
+                Resources.CreateCommand_appsettingsFileOption_Description,
+                CommandOptionType.SingleValue);
+
             cmd.HelpOption("-h|--help");
 
             cmd.OnExecute(() =>
@@ -24,17 +30,24 @@ public static void Register(ProjectCommandLineApplication app)
                     cmd.ShowHelp();
                     return 0;
                 }
-                return Execute(cmd.Reporter, cmd.ProjectOption.Value(), idArgument.Value);
+
+                if (!DevJwtCliHelpers.GetProjectAndSecretsId(cmd.ProjectOption.Value(), cmd.Reporter, out var project, out var userSecretsId))
+                {
+                    return 1;
+                }
+
+                if (!DevJwtCliHelpers.GetAppSettingsFile(project, appsettingsFileOption.Value(), cmd.Reporter, out var appsettingsFile))
+                {
+                    return 1;
+                }
+
+                return Execute(cmd.Reporter, project, userSecretsId, idArgument.Value, appsettingsFile);
             });
         });
     }
 
-    private static int Execute(IReporter reporter, string projectPath, string id)
+    private static int Execute(IReporter reporter, string project, string userSecretsId, string id, string appsettingsFile)
     {
-        if (!DevJwtCliHelpers.GetProjectAndSecretsId(projectPath, reporter, out var project, out var userSecretsId))
-        {
-            return 1;
-        }
         var jwtStore = new JwtStore(userSecretsId);
 
         if (!jwtStore.Jwts.TryGetValue(id, out var jwt))
@@ -43,7 +56,7 @@ private static int Execute(IReporter reporter, string projectPath, string id)
             return 1;
         }
 
-        var appsettingsFilePath = Path.Combine(Path.GetDirectoryName(project), "appsettings.Development.json");
+        var appsettingsFilePath = Path.Combine(Path.GetDirectoryName(project), appsettingsFile);
         JwtAuthenticationSchemeSettings.RemoveScheme(appsettingsFilePath, jwt.Scheme);
         jwtStore.Jwts.Remove(id);
         jwtStore.Save();

src/Tools/dotnet-user-jwts/src/Helpers/DevJwtCliHelpers.cs

@@ -11,6 +11,8 @@ namespace Microsoft.AspNetCore.Authentication.JwtBearer.Tools;
 
 internal static class DevJwtCliHelpers
 {
+    public const string DefaultAppSettingsFile = "appsettings.Development.json";
+
     public static string GetOrSetUserSecretsId(string projectFilePath)
     {
         var resolver = new ProjectIdResolver(NullReporter.Singleton, projectFilePath);
@@ -42,6 +44,27 @@ public static bool GetProjectAndSecretsId(string projectPath, IReporter reporter
         return true;
     }
 
+    public static bool GetAppSettingsFile(string projectPath, string appsettingsFileOption, IReporter reporter, out string appsettingsFile)
+    {
+        appsettingsFile = DevJwtCliHelpers.DefaultAppSettingsFile;
+        if (appsettingsFileOption is not null)
+        {
+            appsettingsFile = appsettingsFileOption;
+            if (!appsettingsFile.EndsWith(".json", StringComparison.OrdinalIgnoreCase))
+            {
+                reporter.Error(Resources.RemoveCommand_InvalidAppsettingsFile_Error);
+                return false;
+            }
+            else if (!File.Exists(Path.Combine(Path.GetDirectoryName(projectPath), appsettingsFile)))
+            {
+                reporter.Error(Resources.FormatRemoveCommand_AppsettingsFileNotFound_Error(Path.Combine(Path.GetDirectoryName(projectPath), appsettingsFile)));
+                return false;
+            }
+        }
+
+        return true;
+    }
+
     public static List<string> GetAudienceCandidatesFromLaunchSettings(string project)
     {
         if (string.IsNullOrEmpty(project))
@@ -213,4 +236,5 @@ public static bool IsNullOrEmpty<T>(this IEnumerable<T> enumerable)
     {
         return enumerable == null || !enumerable.Any();
     }
+
 }

src/Tools/dotnet-user-jwts/src/Resources.resx

@@ -150,6 +150,12 @@
   <data name="CreateCommand_ExpiresOnOption_Description" xml:space="preserve">
     <value>The UTC date &amp; time the JWT should expire in the format 'yyyy-MM-dd [[[[HH:mm]]:ss]]'. Defaults to 3 months after the --not-before date. Do not use this option in conjunction with the --valid-for option.</value>
   </data>
+  <data name="CreateCommand_InvalidAppsettingsFile_Error" xml:space="preserve">
+    <value>Invalid Appsettings file extension. Ensure file extension is .json.</value>
+  </data>
+  <data name="CreateCommand_AppsettingsFileNotFound_Error" xml:space="preserve">
+    <value>Could not find Appsettings file in '{0}'. Check the filename and that the file exists.</value>
+  </data>
   <data name="CreateCommand_InvalidClaims_Error" xml:space="preserve">
     <value>Malformed claims supplied. Ensure each claim is in the format "name=value".</value>
   </data>
@@ -189,6 +195,9 @@
   <data name="CreateCommand_ValidForOption_Description" xml:space="preserve">
     <value>The period the JWT should expire after. Specify using a number followed by a duration type like 'd' for days, 'h' for hours, 'm' for minutes, and 's' for seconds, e.g. '365d'. Do not use this option in conjunction with the --expires-on option.</value>
   </data>
+  <data name="CreateCommand_appsettingsFileOption_Description" xml:space="preserve">
+    <value>The appSettings configuration file to add the test scheme to.</value>
+  </data>
   <data name="JwtPrint_Audiences" xml:space="preserve">
     <value>Audience(s)</value>
   </data>
@@ -225,6 +234,9 @@
   <data name="JwtPrint_Scopes" xml:space="preserve">
     <value>Scopes</value>
   </data>
+  <data name="JwtPrint_appsettingsFile" xml:space="preserve">
+    <value>Appsettings File</value>
+  </data>
   <data name="JwtPrint_Token" xml:space="preserve">
     <value>Token</value>
   </data>
@@ -312,6 +324,12 @@
   <data name="RemoveCommand_NoJwtFound" xml:space="preserve">
     <value>No JWT with ID '{0}' found.</value>
   </data>
+  <data name="RemoveCommand_InvalidAppsettingsFile_Error" xml:space="preserve">
+    <value>The specified appsettings file is invalid. Please provide a valid JSON file.</value>
+  </data>
+  <data name="RemoveCommand_AppsettingsFileNotFound_Error" xml:space="preserve">
+    <value>Could not find Appsettings file '{0}'. Check the filename and that the file exists.</value>
+  </data>
   <data name="KeyCommand_IssuerOption_Description" xml:space="preserve">
     <value>The issuer associated with the signing key to be reset or displayed. Defaults to 'dotnet-user-jwts'.</value>
   </data>

src/Tools/dotnet-user-jwts/test/UserJwtsTestFixture.cs

@@ -81,6 +81,10 @@ public string CreateProject(bool hasSecret = true)
             Path.Combine(projectPath.FullName, "appsettings.Development.json"),
             "{}");
 
+        File.WriteAllText(
+            Path.Combine(projectPath.FullName, "appsettings.Local.json"),
+            "{}");
+
         if (hasSecret)
         {
             _disposables.Push(() =>