Merge pull request 'Build trigger' (#48 ) from mock-data into main

Reviewed-on: #48
Build trigger
2026-06-05 09:08:18 +02:00 · 2026-06-05 09:07:50 +02:00 · 2026-06-05 09:00:10 +02:00 · 2026-06-05 08:59:00 +02:00 · 2026-06-05 08:22:30 +02:00 · 2026-06-05 08:21:50 +02:00
8 changed files with 270 additions and 193 deletions
@@ -167,7 +167,7 @@
                            <path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2" />
                            <circle cx="12" cy="7" r="4" />
                        </svg>
-                        LogIn
+                        Account
                    </a>

                    <a href="/profile" class="btn btn-sm btn-dark rounded-circle d-inline-flex d-md-none align-items-center justify-content-center border-0 p-0 shadow-sm"
@@ -1,5 +1,10 @@
@page "/profile"
+@using Microsoft.AspNetCore.Components.Authorization
+@inject NavigationManager Navigation
+@rendermode InteractiveServer

+<AuthorizeView>
+    <Authorized>
        <div class="container py-5">
            <h2 class="fw-bold mb-5 tracking-tight">My Account</h2>
            <div class="row g-5">
@@ -9,7 +14,7 @@
                        <button class="nav-link text-start" data-bs-toggle="pill" data-bs-target="#shipping" role="tab">Shipping Address</button>
                        <button class="nav-link text-start" data-bs-toggle="pill" data-bs-target="#profile" role="tab">Profile Settings</button>
                        <hr />
-                <button class="nav-link text-danger text-start">Logout</button>
+                        <button class="nav-link text-danger text-start" @onclick="TriggerLogout">Logout</button>
                    </div>
                </div>

@@ -193,6 +198,12 @@
                </div>
            </div>
        </div>
+    </Authorized>
+    
+    <NotAuthorized>
+        <RedirectToLogin />
+    </NotAuthorized>
+</AuthorizeView>

@code {
    private bool showAddForm = false;
@@ -216,6 +227,8 @@
        new AddressItem { Id = 3, Name = "Midrand Books Warehouse", Street = "Unit 8, Corporate Park North", City = "Randjespark", PostalCode = "1683", IsBilling = false, IsShipping = true, IsPrimary = false }
    };

+    private void TriggerLogout() => Navigation.NavigateTo("/logout", forceLoad: true);
+
    private void DownloadInvoice(string orderId)
    {
        // Handle invoice downloading logic here
@@ -0,0 +1,10 @@
+@inject NavigationManager Navigation
+
+@code {
+    protected override void OnInitialized()
+    {
+        var returnUrl = Navigation.ToBaseRelativePath(Navigation.Uri);
+
+        Navigation.NavigateTo($"/login?redirectUri={Uri.EscapeDataString(returnUrl)}", forceLoad: true);
+    }
+}
@@ -1,7 +1,14 @@
-@using MidrandBookshop.Components.Pages
+@using Microsoft.AspNetCore.Components.Authorization
+@using MidrandBookshop.Components.Pages
+
+<CascadingAuthenticationState>
    <Router AppAssembly="@typeof(Program).Assembly">
        <Found Context="routeData">
-        <RouteView RouteData="@routeData" DefaultLayout="@typeof(MainLayout)" />
+            <AuthorizeRouteView RouteData="@routeData" DefaultLayout="@typeof(MainLayout)">
+                <NotAuthorized>                    
+                    <RedirectToLogin />
+                </NotAuthorized>
+            </AuthorizeRouteView>
            <FocusOnNavigate RouteData="@routeData" Selector="h1" />
        </Found>
        <NotFound>
@@ -10,3 +17,4 @@
            </LayoutView>
        </NotFound>
    </Router>
+</CascadingAuthenticationState>
@@ -18,13 +18,13 @@
  </ItemGroup>

  <ItemGroup>
-    <PackageReference Include="LiteCharms.Features" Version="1.59.0" />
+    <PackageReference Include="LiteCharms.Features" Version="1.87.0" />
  </ItemGroup>

  <!-- UI -->
  <ItemGroup>
    <PackageReference Include="ANM.Blazored.Toast" Version="0.1.1" />
-    <PackageReference Include="LiteCharms.Features.MidrandBooks" Version="1.59.0" />
+    <PackageReference Include="LiteCharms.Features.MidrandBooks" Version="1.87.0" />
    
    <!-- Global Usings -->
    <Using Include="Blazored.Toast.Services" />
@@ -1,9 +1,12 @@
 using LiteCharms.Features.Extensions;
 using LiteCharms.Features.Mediator;
 using LiteCharms.Features.MidrandBooks.Extensions;
+using Microsoft.AspNetCore.HttpOverrides;
 using MidrandBookshop.Components;
 using static LiteCharms.Features.Extensions.Quartz;

+AppContext.SetSwitch("Microsoft.IdentityModel.DisableTelemetry", true);
+
 var builder = WebApplication.CreateBuilder(args);

 builder.Services.AddRazorComponents()
@@ -13,6 +16,7 @@ builder.AddMonitoring();
 builder.Services.AddEndpointsApiExplorer();

 builder.Services.AddMediator();
+builder.Services.AddAuthentikUiSecurity(builder.Configuration);

 builder.Services.AddScoped(typeof(IPipelineBehavior<,>), typeof(TelemetryPipelineBehavior<,>));
 builder.Services.AddScoped(typeof(IPipelineBehavior<,>), typeof(LoggingPipelineBehavior<,>));
@@ -22,6 +26,7 @@ builder.Services.AddQuartzSchedulerClient(MidrandShopSchedulerName, builder.Conf
 builder.Services.AddEmailServices(builder.Configuration);
 builder.Services.AddEmailServiceBus();

+builder.Services.AddHttpClient();
 builder.Services.AddShopServices();
 builder.Services.AddHashServices(builder.Configuration);
 builder.Services.AddMidrandShopDatabase(builder.Configuration);
@@ -29,9 +34,19 @@ builder.Services.AddMidrandShopDatabase(builder.Configuration);
 builder.Services.AddMidrandShopPostgresHealthCheck();
 builder.Services.AddMidrandShopQuartzHealthCheck();
 builder.Services.AddHealthChecksSupport(builder.Configuration);
+builder.Services.AddCascadingAuthenticationState();
+
+builder.Services.Configure<ForwardedHeadersOptions>(options =>
+{
+    options.ForwardedHeaders = ForwardedHeaders.XForwardedFor | ForwardedHeaders.XForwardedProto;
+    options.KnownProxies.Clear();
+});

 var app = builder.Build();

+app.UseForwardedHeaders();
+app.AddSecurityEndpoints();
+
 var schedulerFactory = app.Services.GetRequiredService<ISchedulerFactory>();
 var scheduler = await schedulerFactory.GetScheduler(MidrandShopSchedulerName);

@@ -1,4 +1,12 @@
 {
+  "AuthentikSettings": { 
+    "Authority": "https://id.khongisa.co.za/application/o/midrand-books-uat/",
+    "MetadataEndpoint": "https://id.khongisa.co.za/application/o/midrand-books-uat/.well-known/openid-configuration",
+    "RevokationEndpoint": "https://id.khongisa.co.za/application/o/revoke/"
+  },
+  "HasherSettings": {
+    "MinHashLength": 11
+  },
  "BookshopS3Settings": {
    "ServiceUrl": "http://192.168.1.177:30900",
    "Region": "garage",
@@ -19,6 +19,17 @@ data:
  BookshopS3Settings__Region: "garage"
  BookshopS3Settings__BucketName: "bookshop"
  BookshopS3Settings__CdnBaseUrl: "https://bookshop.cdn.khongisa.co.za"
+  ValidPayfastHosts__0: "www.payfast.co.za"
+  ValidPayfastHosts__1: "sandbox.payfast.co.za"
+  ValidPayfastHosts__2: "w1w.payfast.co.za"
+  ValidPayfastHosts__3: "w2w.payfast.co.za"
+  ValidPayfastHosts__4: "ips.payfast.co.za"
+  ValidPayfastHosts__5: "api.payfast.co.za"
+  ValidPayfastHosts__6: "payment.payfast.io"
+  AuthentikSettings__Authority: "https://id.khongisa.co.za/application/o/midrand-books-api-uat/"
+  AuthentikSettings__MetadataEndpoint: "https://id.khongisa.co.za/application/o/midrand-books-uat/.well-known/openid-configuration"
+  AuthentikSettings__RevokationEndpoint: "https://id.khongisa.co.za/application/o/revoke/"
+  ASPNETCORE_FORWARDEDHEADERS_ENABLED: "true"
 ---
 apiVersion: v1
 kind: Secret
@@ -30,10 +41,12 @@ data:
  connection-string: SG9zdD0xOTIuMTY4LjEuMTcwO0RhdGFiYXNlPW1pZHJhbmRzaG9wLWRldjtVc2VybmFtZT1taWRyYW5kc2hvcC1kZXYtdXNlcjtQYXNzd29yZD1hUFh5a0tnM3RTOWNtRDtQZXJzaXN0IFNlY3VyaXR5IEluZm89VHJ1ZQ==
  connection-string-quartz: SG9zdD0xOTIuMTY4LjEuMTcwO0RhdGFiYXNlPXNjaGVkdWxlci1kZXY7VXNlcm5hbWU9c2NoZWR1bGVyLWRldi11c2VyO1Bhc3N3b3JkPWtWVm1vV0tKM3h6Z1FYO1BlcnNpc3QgU2VjdXJpdHkgSW5mbz1UcnVl
  aspire-apikey: bWMzRzYzSzJqNVpPRXNpMEFqTW9qTFRYbTFLRVpGY3R6SUlqU3dEaVRHdXQ4cUdTa1B1V3d4R1AxUmJzY0pVbw==
-  hasher-salt: TGlnaHQgQ2hhcm1zLCBNaWRyYW5kQm9va3MgbWFrZSBsb3RzIG9mIG1vbmV5IGFuZCBhcmUgYSBzdWNjZXNzZnVsIHZpcmFsIHN0b3J5IGluIFNvdXRoIEFmcmljYQ==
+  hasher-salt: VEdsbmFIUWdRMmhoY20xekxDQk5hV1J5WVc1a1FtOXZhM01nYldGclpTQnNiM1J6SUc5bUlHMXZibVY1SUdGdVpDQmhjbVVnWVNCemRXTmpaWE56Wm5Wc0lIWnBjbUZzSUhOMGIzSjVJR2x1SUZOdmRYUm9JRUZtY21sallRPT0=
  hasher-payfastpassphrase: OUdBSVIwdFdwaFgwcU8=
  bookshop-s3-accesskey: R0s1MTRkMmNlOGRjNjkyMzdhMDVjMDFlZWY=
  bookshop-s3-secretkey: ZWFhZmVkYTFhZWQ0MDllY2ZlNjA3MTRlY2RhNTQ5YjgyYmRmNWEzZGFmOWYxOGRkNjFmNjZiNDk3M2E2NDgyZQ==
+  authentik-clientid: Nm9oZk1lSndQNWR0YWY1RFMzZU9MY2NNSHF6WXlma1YzRTNGeE5Tbw==
+  authentik-clientsecret: TXV2a0FLQklHR3BkdEsyaFlabVU1dFRaUmNuM2FhRzhoMWhlVE1nazFYOGVwczYyMzNCS0REWGdpNXo0T01RalVzMGZEUEFmakpmVVRNN1h3ZjllMU01MTQyVGlvOXRycUdmZTM1THhPaExEUnp6N2gxSm5jVkNLYXZXUllndmQ=
 ---
 apiVersion: v1
 kind: PersistentVolumeClaim
@@ -86,26 +99,36 @@ spec:
            - configMapRef:
                name: midrandbooks-config
          env:
+            - name: AuthentikSettings__ClientId
+              valueFrom:
+                secretKeyRef:
+                  name: midrandbooks-secrets
+                  key: authentik-clientid
+            - name: AuthentikSettings__ClientSecret
+              valueFrom:
+                secretKeyRef:
+                  name: midrandbooks-secrets
+                  key: authentik-clientsecret
            - name: BookshopS3Settings__AccessKey
              valueFrom:
                secretKeyRef:
                  name: midrandbooks-secrets
-                  value: bookshop-s3-accesskey
+                  key: bookshop-s3-accesskey
            - name: BookshopS3Settings__SecretKey
              valueFrom:
                secretKeyRef:
                  name: midrandbooks-secrets
-                  value: bookshop-s3-secretkey
+                  key: bookshop-s3-secretkey
            - name: HasherSettings__Salt
              valueFrom:
                secretKeyRef:
                  name: midrandbooks-secrets
-                  value: hasher-salt
+                  key: hasher-salt
            - name: HasherSettings__PayfastPassphrase
              valueFrom:
                secretKeyRef:
                  name: midrandbooks-secrets
-                  value: hasher-payfastpassphrase
+                  key: hasher-payfastpassphrase
            - name: ConnectionStrings__PostgresScheduler
              valueFrom:
                secretKeyRef:
Author	SHA1	Message	Date
khwezi	4fe801583e	Merge pull request 'Build trigger' (#48 ) from mock-data into main Reviewed-on: #48	2026-06-05 09:08:18 +02:00
Khwezi Mngoma	de714d2271	Build trigger continuous-integration/drone/pr Build is passing Details	2026-06-05 09:07:50 +02:00
khwezi	af3d40531b	Merge pull request 'Removd proto handling from login process' (#47 ) from mock-data into main Reviewed-on: #47	2026-06-05 09:00:10 +02:00
Khwezi Mngoma	64b46865cf	Removd proto handling from login process	2026-06-05 08:59:00 +02:00
khwezi	bc2b9f81e0	Merge pull request 'Simplified logn and logout process' (#46 ) from mock-data into main Reviewed-on: #46	2026-06-05 08:22:30 +02:00
Khwezi Mngoma	db74ffbebe	Simplified logn and logout process continuous-integration/drone/pr Build is passing Details	2026-06-05 08:21:50 +02:00
khwezi	49279c0cec	Merge pull request 'Added port stripping' (#45 ) from mock-data into main Reviewed-on: #45	2026-06-05 07:40:24 +02:00
Khwezi Mngoma	8f68d8c60e	Added port stripping continuous-integration/drone/pr Build is passing Details	2026-06-05 07:39:58 +02:00
khwezi	edabe266e5	Merge pull request 'Refactored https logni proto handling' (#44 ) from mock-data into main Reviewed-on: #44	2026-06-05 06:44:12 +02:00
Khwezi Mngoma	58dc67e680	Refactored https logni proto handling continuous-integration/drone/pr Build is passing Details	2026-06-05 06:43:36 +02:00
khwezi	248dd32b1b	Merge pull request 'Added support for forwarded headers' (#43 ) from mock-data into main Reviewed-on: #43	2026-06-05 06:30:37 +02:00
Khwezi Mngoma	5123a4d3ac	Added support for forwarded headers continuous-integration/drone/pr Build is passing Details	2026-06-05 06:29:55 +02:00
khwezi	1645b6bbae	Merge pull request 'Fixed secrets mappings' (#42 ) from mock-data into main Reviewed-on: #42	2026-06-05 06:17:30 +02:00
Khwezi Mngoma	ae51a3a864	Fixed secrets mappings continuous-integration/drone/pr Build is passing Details	2026-06-05 06:16:42 +02:00
khwezi	72725a302a	Merge pull request 'mock-data' (#41 ) from mock-data into main Reviewed-on: #41	2026-06-05 05:58:44 +02:00
Khwezi Mngoma	31a640d672	Stable security continuous-integration/drone/pr Build is passing Details	2026-06-05 05:58:05 +02:00
Khwezi Mngoma	097ecd6421	Configured security	2026-06-04 14:45:33 +02:00
khwezi	f3d79174be	Merge pull request 'Upgraded quartz' (#40 ) from mock-data into main Reviewed-on: #40	2026-06-03 11:54:17 +02:00
Khwezi Mngoma	9b3e889d89	Upgraded quartz continuous-integration/drone/pr Build is passing Details	2026-06-03 11:53:31 +02:00
khwezi	c086aa60e4	Merge pull request 'Updated backend' (#39 ) from mock-data into main Reviewed-on: #39	2026-06-02 00:31:16 +02:00
Khwezi Mngoma	e35a68f7e8	Updated backend continuous-integration/drone/pr Build is passing Details	2026-06-02 00:30:47 +02:00
khwezi	66b377bf69	Merge pull request 'Fixed event service discovery issue' (#38 ) from mock-data into main Reviewed-on: #38	2026-06-01 23:39:37 +02:00
Khwezi Mngoma	b70ecab9ea	Fixed event service discovery issue continuous-integration/drone/pr Build is passing Details	2026-06-01 23:39:05 +02:00
khwezi	82389a9304	Merge pull request 'Updated backend' (#37 ) from mock-data into main Reviewed-on: #37	2026-06-01 22:58:55 +02:00
Khwezi Mngoma	209947d70f	Updated backend continuous-integration/drone/pr Build is passing Details	2026-06-01 22:58:10 +02:00
khwezi	4bf1d2e77a	Merge pull request 'Ensured appsettings aligns with k8s config' (#36 ) from mock-data into main Reviewed-on: #36	2026-06-01 16:37:57 +02:00
Khwezi Mngoma	edb9c281ef	Ensured appsettings aligns with k8s config continuous-integration/drone/pr Build is passing Details	2026-06-01 11:57:44 +02:00
khwezi	2b6576de85	Merge pull request 'Refactored app k8s manifest' (#35 ) from mock-data into main Reviewed-on: #35	2026-06-01 11:16:54 +02:00
Khwezi Mngoma	b189b26b62	Refactored app k8s manifest continuous-integration/drone/pr Build is passing Details	2026-06-01 11:15:54 +02:00