2025-08-25 00:06:43 -03:00
|
|
|
// Note: repository implementation removed for workshop exercise (TODOs in project files)
|
|
|
|
|
using Microsoft.AspNetCore.Diagnostics;
|
|
|
|
|
using Microsoft.AspNetCore.Mvc;
|
2025-08-27 18:15:12 -03:00
|
|
|
using CampusWorkshops.Api.Repositories;
|
2025-09-03 16:31:58 -03:00
|
|
|
using Microsoft.EntityFrameworkCore;
|
|
|
|
|
using CampusWorkshops.Api.Infrastructure.Data;
|
2025-09-24 15:32:10 -03:00
|
|
|
using System.Text;
|
|
|
|
|
using Microsoft.AspNetCore.Authentication.JwtBearer;
|
|
|
|
|
using Microsoft.IdentityModel.Tokens;
|
|
|
|
|
using Microsoft.OpenApi.Models;
|
2025-08-25 00:06:43 -03:00
|
|
|
|
2025-08-24 12:08:35 -03:00
|
|
|
var builder = WebApplication.CreateBuilder(args);
|
|
|
|
|
|
2025-09-24 15:32:10 -03:00
|
|
|
// JWT
|
|
|
|
|
var jwt = builder.Configuration.GetSection("Jwt");
|
|
|
|
|
var keyBytes = Encoding.UTF8.GetBytes(jwt["Key"]!);
|
|
|
|
|
|
|
|
|
|
builder.Services
|
|
|
|
|
.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
|
|
|
|
|
.AddJwtBearer(options =>
|
|
|
|
|
{
|
|
|
|
|
options.TokenValidationParameters = new()
|
|
|
|
|
{
|
|
|
|
|
ValidateIssuer = true,
|
|
|
|
|
ValidateAudience = true,
|
|
|
|
|
ValidateIssuerSigningKey = true,
|
|
|
|
|
ValidIssuer = jwt["Issuer"],
|
|
|
|
|
ValidAudience = jwt["Audience"],
|
|
|
|
|
IssuerSigningKey = new SymmetricSecurityKey(keyBytes),
|
|
|
|
|
ClockSkew = TimeSpan.FromMinutes(1) // previsível para testes
|
|
|
|
|
};
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
builder.Services.AddAuthorization();
|
|
|
|
|
|
|
|
|
|
builder.Services.AddAuthorization(options =>
|
|
|
|
|
{
|
|
|
|
|
options.AddPolicy("CanWriteWorkshops", p => p.RequireRole("Instructor","Admin"));
|
|
|
|
|
options.AddPolicy("CanDeleteWorkshops", p => p.RequireRole("Admin"));
|
|
|
|
|
options.AddPolicy("CanViewAnalytics", p => p.RequireRole("Admin"));
|
|
|
|
|
});
|
|
|
|
|
|
2025-08-25 00:06:43 -03:00
|
|
|
// Add services
|
2025-09-03 16:31:58 -03:00
|
|
|
builder.Services.AddDbContext<WorkshopsDbContext>(options =>
|
|
|
|
|
options.UseSqlite(builder.Configuration.GetConnectionString("WorkshopsDb")));
|
|
|
|
|
|
|
|
|
|
builder.Services.AddScoped<IWorkshopRepository, EfWorkshopRepository>();
|
2025-08-25 00:06:43 -03:00
|
|
|
builder.Services.AddControllers();
|
|
|
|
|
builder.Services.AddEndpointsApiExplorer();
|
|
|
|
|
builder.Services.AddSwaggerGen(o =>
|
|
|
|
|
{
|
|
|
|
|
o.SwaggerDoc("v1", new Microsoft.OpenApi.Models.OpenApiInfo
|
|
|
|
|
{
|
|
|
|
|
Title = "CampusWorkshops API",
|
|
|
|
|
Version = "v1",
|
|
|
|
|
Description = "API para gestão de workshops do campus (MVP in-memory)."
|
|
|
|
|
});
|
2025-09-24 15:32:10 -03:00
|
|
|
var bearerScheme = new OpenApiSecurityScheme
|
|
|
|
|
{
|
|
|
|
|
Name = "Authorization",
|
|
|
|
|
Description = "Cole apenas o JWT (sem 'Bearer ').",
|
|
|
|
|
In = ParameterLocation.Header,
|
|
|
|
|
Type = SecuritySchemeType.Http, // <- IMPORTANTE
|
|
|
|
|
Scheme = "bearer", // <- minúsculo
|
|
|
|
|
BearerFormat = "JWT",
|
|
|
|
|
Reference = new OpenApiReference // <- garante que o requirement aponte para esta definição
|
|
|
|
|
{
|
|
|
|
|
Type = ReferenceType.SecurityScheme,
|
|
|
|
|
Id = "Bearer"
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
o.AddSecurityDefinition("Bearer", bearerScheme);
|
|
|
|
|
|
|
|
|
|
o.AddSecurityRequirement(new OpenApiSecurityRequirement
|
|
|
|
|
{
|
|
|
|
|
{
|
|
|
|
|
new OpenApiSecurityScheme
|
|
|
|
|
{
|
|
|
|
|
Reference = new OpenApiReference
|
|
|
|
|
{
|
|
|
|
|
Type = ReferenceType.SecurityScheme,
|
|
|
|
|
Id = "Bearer"
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
Array.Empty<string>()
|
|
|
|
|
}
|
|
|
|
|
});
|
2025-08-25 00:06:43 -03:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// DI
|
2025-08-24 12:08:35 -03:00
|
|
|
|
|
|
|
|
var app = builder.Build();
|
|
|
|
|
|
2025-08-25 00:06:43 -03:00
|
|
|
// Exception handler that returns RFC7807 ProblemDetails for unhandled errors
|
|
|
|
|
app.UseExceptionHandler(errApp =>
|
2025-08-24 12:08:35 -03:00
|
|
|
{
|
2025-08-25 00:06:43 -03:00
|
|
|
errApp.Run(async context =>
|
|
|
|
|
{
|
|
|
|
|
var feature = context.Features.Get<IExceptionHandlerFeature>();
|
|
|
|
|
var ex = feature?.Error;
|
|
|
|
|
|
|
|
|
|
var pd = new ProblemDetails
|
|
|
|
|
{
|
|
|
|
|
Title = "An unexpected error occurred.",
|
|
|
|
|
Status = StatusCodes.Status500InternalServerError,
|
|
|
|
|
Detail = app.Environment.IsDevelopment() ? ex?.Message : null
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
context.Response.StatusCode = pd.Status.Value;
|
|
|
|
|
context.Response.ContentType = "application/problem+json";
|
|
|
|
|
await context.Response.WriteAsJsonAsync(pd);
|
|
|
|
|
});
|
|
|
|
|
});
|
2025-08-24 12:08:35 -03:00
|
|
|
|
|
|
|
|
app.UseHttpsRedirection();
|
|
|
|
|
|
2025-09-24 15:32:10 -03:00
|
|
|
app.UseAuthentication(); // <-- antes
|
|
|
|
|
app.UseAuthorization(); // <-- depois
|
|
|
|
|
|
2025-08-25 00:06:43 -03:00
|
|
|
app.UseSwagger();
|
|
|
|
|
app.UseSwaggerUI(c =>
|
2025-08-24 12:08:35 -03:00
|
|
|
{
|
2025-08-25 00:06:43 -03:00
|
|
|
c.SwaggerEndpoint("/swagger/v1/swagger.json", "CampusWorkshops API v1");
|
|
|
|
|
c.RoutePrefix = "swagger"; // serve at /swagger
|
|
|
|
|
});
|
2025-08-24 12:08:35 -03:00
|
|
|
|
2025-08-25 00:06:43 -03:00
|
|
|
app.MapControllers();
|
2025-08-24 12:08:35 -03:00
|
|
|
|
|
|
|
|
app.Run();
|
