litecharms/components
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 114 Wiki Activity

Refactored authentication
continuous-integration/drone/pr Build is passing
Details

Browse Source
This commit is contained in:
Khwezi Mngoma
2026-06-04 08:47:18 +02:00
parent 652ca82a57
commit 8f97d7cf38
5 changed files with 11 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files
LiteCharms.Features.MidrandBooks.Seed/appsettings.json
+1 -1
View File
@@ -1,6 +1,6 @@
{ {
"FeatureManagement": { "FeatureManagement": {
"CategorySeederService": true, "CategorySeederService": false,
"CustomerSeederService": false, "CustomerSeederService": false,
"ProductsSeederService": false "ProductsSeederService": false
}, },
LiteCharms.Features.Tests/http/authentik/app.http
+2 -2
View File
@@ -1,6 +1,6 @@
## Authentik Token Request ### Authentik Token Request (Service Account Explicit)
POST {{authority}} POST {{authority}}
Content-Type: application/x-www-form-urlencoded Content-Type: application/x-www-form-urlencoded
Accept-Encoding: identity Accept-Encoding: identity
grant_type={{grantType}}&client_id={{clientId}}&client_secret={{clientSecret}}&username={{username}}&password={{password}}&scope={{scope}} grant_type={{grantType}}&client_id={{clientId}}&username={{username}}&password={{password}}&scope={{scope}}
LiteCharms.Features/Api/Configuration/AuthentikSettings.cs
+2
View File
@@ -4,6 +4,8 @@ public sealed class AuthentikSettings
{ {
public string? Authority { get; set; } public string? Authority { get; set; }
public string? IntrospectionUrl { get; set; }
public string? ApiResourceName { get; set; } public string? ApiResourceName { get; set; }
public string? ApiResourceSecret { get; set; } public string? ApiResourceSecret { get; set; }
LiteCharms.Features/Extensions/Api.cs
+3 -8
View File
@@ -22,21 +22,16 @@ public static class Api
.AddOAuth2Introspection(OAuth2IntrospectionDefaults.AuthenticationScheme, options => .AddOAuth2Introspection(OAuth2IntrospectionDefaults.AuthenticationScheme, options =>
{ {
options.Authority = authOptions.Authority; options.Authority = authOptions.Authority;
options.IntrospectionEndpoint = authOptions.IntrospectionUrl;
options.ClientId = authOptions.ApiResourceName; options.ClientId = authOptions.ApiResourceName;
options.ClientSecret = authOptions.ApiResourceSecret; options.ClientSecret = authOptions.ApiResourceSecret;
options.NameClaimType = "sub";
options.DiscoveryPolicy.RequireHttps = authOptions.RequireHttpsMetadata; options.DiscoveryPolicy.RequireHttps = authOptions.RequireHttpsMetadata;
options.DiscoveryPolicy.ValidateEndpoints = false;
options.EnableCaching = false; options.EnableCaching = false;
options.CacheDuration = TimeSpan.FromMinutes(10);
}); });
if (!string.IsNullOrWhiteSpace(authOptions.RequiredClaimName) && !string.IsNullOrWhiteSpace(authOptions.RequiredClaimNameValue))
{
services.AddAuthorizationBuilder()
.AddPolicy("ApiScope", policy =>
policy.RequireClaim(authOptions.RequiredClaimName, authOptions.RequiredClaimNameValue));
}
else
services.AddAuthorization(); services.AddAuthorization();
return services; return services;
LiteCharms.Features/Hasher/HashService.cs
+1 -1
View File
@@ -4,7 +4,7 @@ namespace LiteCharms.Features.Hasher;
public sealed partial class HashService(IHashids hasher) : IService public sealed partial class HashService(IHashids hasher) : IService
{ {
[GeneratedRegex(@"\A\b[0-9a-fA-F]+\b\Z")] [GeneratedRegex(@"\A\b[0-9a-fA-F]+\b\Z", RegexOptions.None, matchTimeoutMilliseconds: 100)]
private static partial Regex HexHashRegex { get; } private static partial Regex HexHashRegex { get; }
[GeneratedRegex(@"\A[0-9a-fA-F]{32}\Z", RegexOptions.None, matchTimeoutMilliseconds: 100)] [GeneratedRegex(@"\A[0-9a-fA-F]{32}\Z", RegexOptions.None, matchTimeoutMilliseconds: 100)]