Recreated solution with web app template. Improved theme. Switched to ShadcnBlazor library

2025-12-25 19:16:53 +01:00
parent 0cc35300f1
commit a2d4edc0e5
272 changed files with 2441 additions and 14449 deletions
--- a/Moonlight.Api/Startup/Startup.Auth.cs
+++ b/Moonlight.Api/Startup/Startup.Auth.cs
@@ -0,0 +1,91 @@
+using System.Security.Claims;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Http;
+using Microsoft.Extensions.Configuration;
+using Microsoft.Extensions.DependencyInjection;
+using Moonlight.Api.Configuration;
+using Moonlight.Api.Services;
+
+namespace Moonlight.Api.Startup;
+
+public partial class Startup
+{
+    private static void AddAuth(WebApplicationBuilder builder)
+    {
+        var oidcOptions = new OidcOptions();
+        builder.Configuration.GetSection("WebApp:Oidc").Bind(oidcOptions);
+
+        builder.Services.AddScoped<UserAuthService>();
+
+        builder.Services.AddAuthentication("Session")
+            .AddCookie("Session", null, options =>
+            {
+                options.Events.OnSigningIn += async context =>
+                {
+                    var authService = context
+                        .HttpContext
+                        .RequestServices
+                        .GetRequiredService<UserAuthService>();
+
+                    var result = await authService.SyncAsync(context.Principal);
+
+                    if (result)
+                        context.Properties.IsPersistent = true;
+                    else
+                        context.Principal = new ClaimsPrincipal();
+                };
+
+                options.Events.OnValidatePrincipal += async context =>
+                {
+                    var authService = context
+                        .HttpContext
+                        .RequestServices
+                        .GetRequiredService<UserAuthService>();
+
+                    var result = await authService.ValidateAsync(context.Principal);
+
+                    if (!result)
+                        context.RejectPrincipal();
+                };
+
+                options.Cookie = new CookieBuilder()
+                {
+                    Name = "token",
+                    Path = "/",
+                    IsEssential = true,
+                    SecurePolicy = CookieSecurePolicy.SameAsRequest
+                };
+            })
+            .AddOpenIdConnect("OIDC", "OpenID Connect", options =>
+            {
+                options.Authority = oidcOptions.Authority;
+                options.RequireHttpsMetadata = oidcOptions.RequireHttpsMetadata;
+
+                var scopes = oidcOptions.Scopes ?? ["openid", "email", "profile"];
+
+                options.Scope.Clear();
+                
+                foreach (var scope in scopes)
+                    options.Scope.Add(scope);
+
+                options.ResponseType = oidcOptions.ResponseType;
+                options.ClientId = oidcOptions.ClientId;
+                options.ClientSecret = oidcOptions.ClientSecret;
+
+                options.ClaimActions.MapJsonKey(ClaimTypes.Name, "name");
+                options.ClaimActions.MapJsonKey(ClaimTypes.Name, "preferred_username");
+                options.ClaimActions.MapJsonKey(ClaimTypes.Email, "email");
+
+                options.GetClaimsFromUserInfoEndpoint = true;
+            });
+
+        builder.Services.AddAuthorization();
+    }
+
+    private static void UseAuth(WebApplication application)
+    {
+        application.UseAuthentication();
+        application.UseAuthorization();
+    }
+}