Merge pull request #2 from AJEETX/jwt

Jwt

Author: AJEETX

src/Api.Test/EndpointsTests/IntegrationTests/ProductControllerTest.cs

@@ -1,14 +1,18 @@
-using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
-using Xero.Demo.Api.Tests.Setup;
-using Newtonsoft.Json;
+using Newtonsoft.Json;
 using System;
 using System.Collections.Generic;
 using System.Linq;
+using System.Net.Http;
+using System.Net.Http.Headers;
 using System.Net.Http.Json;
 using System.Threading.Tasks;
-using Xunit;
 using Xero.Demo.Api.Domain;
 using Xero.Demo.Api.Domain.Models;
+using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
+using Xero.Demo.Api.Tests.Setup;
+using Xero.Demo.Api.Xero.Demo.Domain.Models;
+using Xunit;
+using static Xero.Demo.Api.Domain.Models.CONSTANTS;
 
 namespace Xero.Demo.Api.Tests.EndpointTests.IntegrationTests
 {
@@ -24,11 +28,13 @@ public ProductControllerTest()
 
         [Theory]
         [InlineData("en-US", "1")]
-        //[InlineData("en-US", "2")]
         public async Task GetAsync_Returns_200(string culture, string version)
         {
             // Given
             var client = factory.CreateClient();
+            var authResponse = await client.PostAsync(string.Format(SampleDataV1.readerLoginEndpoint, culture, version, Roles.Reader), null);
+            var authDetails = JsonConvert.DeserializeObject<AuthenticateResponse>(await authResponse.Content.ReadAsStringAsync());
+            client.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", authDetails.Token);
 
             // When
             var response = await client.GetAsync(string.Format(SampleDataV1.productEndpoint, culture, version));
@@ -39,11 +45,13 @@ public async Task GetAsync_Returns_200(string culture, string version)
 
         [Theory]
         [InlineData("en-US", "1")]
-        [InlineData("en-US", "2")]
         public async Task GetByIdAsync_Returns_200(string culture, string version)
         {
             // Given
             var client = factory.CreateClient();
+            var authResponse = await client.PostAsync(string.Format(SampleDataV1.readerLoginEndpoint, culture, version, Roles.Reader), null);
+            var authDetails = JsonConvert.DeserializeObject<AuthenticateResponse>(await authResponse.Content.ReadAsStringAsync());
+            client.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", authDetails.Token);
             var addProductResponse = await client.PostAsJsonAsync(string.Format(SampleDataV1.productEndpoint, culture, version), SampleDataV1.Product);
             var addedProduct = JsonConvert.DeserializeObject<Product>(await addProductResponse.Content.ReadAsStringAsync());
             var id = addedProduct.Id;
@@ -57,11 +65,10 @@ public async Task GetByIdAsync_Returns_200(string culture, string version)
 
         [Theory]
         [InlineData("en-US", "1")]
-        [InlineData("en-US", "2")]
         public async Task PostAsync_Returns_201(string culture, string version)
         {
             // Given
-            var client = factory.CreateClient();
+            var client = await SetupHttpClient(Roles.Admin, culture, version);
 
             // When
             var response = await client.PostAsJsonAsync(string.Format(SampleDataV1.productEndpoint, culture, version), SampleDataV1.Product);
@@ -72,15 +79,15 @@ public async Task PostAsync_Returns_201(string culture, string version)
 
         [Theory]
         [InlineData("en-US", "1")]
-        [InlineData("en-US", "2")]
         public async Task PutAsync_Returns_204(string culture, string version)
         {
             // Given
-            var client = factory.CreateClient();
-            var addResponse = await client.PostAsJsonAsync(string.Format(SampleDataV1.productEndpoint, culture, version), SampleDataV1.Product);
+            var client = await SetupHttpClient(Roles.Admin, culture, version);
+            await client.PostAsJsonAsync(string.Format(SampleDataV1.productEndpoint, culture, version), SampleDataV1.Product);
 
             var productResponse = await client.GetAsync(string.Format(SampleDataV1.productEndpoint, culture, version));
             var products = JsonConvert.DeserializeObject<List<ProductDTO>>(await productResponse.Content.ReadAsStringAsync());
+
             var id = products.FirstOrDefault().Id;
             var putRequestPayload = new Product
             {
@@ -91,13 +98,24 @@ public async Task PutAsync_Returns_204(string culture, string version)
                 Description = products.FirstOrDefault().Description
             };
 
+            client = await SetupHttpClient(Roles.Reader, culture, version);
+
             // When
             var response = await client.PutAsJsonAsync(string.Format(SampleDataV1.productEndpoint, culture, version) + $"/{id}", putRequestPayload);
 
             // Then
             Assert.Equal(System.Net.HttpStatusCode.NoContent, response.StatusCode);
         }
 
+        private async Task<HttpClient> SetupHttpClient(string role, string culture, string version)
+        {
+            var client = factory.CreateClient();
+            var authResponse = await client.PostAsync(string.Format(SampleDataV1.readerLoginEndpoint, culture, version, Roles.Reader), null);
+            var authDetails = JsonConvert.DeserializeObject<AuthenticateResponse>(await authResponse.Content.ReadAsStringAsync());
+            client.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", authDetails.Token);
+            return client;
+        }
+
         public void Dispose()
         {
             factory = null;

src/Api.Test/EndpointsTests/UnitTests/V1/Products/CreateTest.cs

@@ -1,15 +1,13 @@
-using Xero.Demo.Api.Endpoints.V1.Products;
-using Xero.Demo.Api.Domain.Models;
-using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
-using Microsoft.Extensions.Logging;
-using Moq;
 using System;
 using System.Threading.Tasks;
-using Xunit;
-using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
 using Xero.Demo.Api.Datastore;
+using Xero.Demo.Api.Domain.Models;
+using Xero.Demo.Api.Endpoints.V1.Products;
+using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
+using Xunit;
 
 namespace Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.Products
 {

src/Api.Test/EndpointsTests/UnitTests/V1/Products/DeleteTest.cs

@@ -1,15 +1,12 @@
-using Xero.Demo.Api.Endpoints.V1.Products;
-using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
-using Xero.Demo.Api.Domain;
-using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
-using Microsoft.Extensions.Logging;
-using Moq;
 using System;
 using System.Threading.Tasks;
-using Xunit;
 using Xero.Demo.Api.Datastore;
+using Xero.Demo.Api.Endpoints.V1.Products;
+using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
+using Xunit;
 
 namespace Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.Products
 {

src/Api.Test/EndpointsTests/UnitTests/V1/Products/ReadTest.cs

@@ -1,16 +1,14 @@
-using Xero.Demo.Api.Endpoints.V1.Products;
-using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
-using Microsoft.Extensions.Logging;
-using Moq;
 using System;
 using System.Collections.Generic;
 using System.Threading.Tasks;
-using Xunit;
+using Xero.Demo.Api.Datastore;
 using Xero.Demo.Api.Domain.Models;
+using Xero.Demo.Api.Endpoints.V1.Products;
 using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
-using Xero.Demo.Api.Datastore;
+using Xunit;
 
 namespace Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.Products
 {

src/Api.Test/EndpointsTests/UnitTests/V1/Products/UpdateTest.cs

@@ -1,15 +1,12 @@
-using Xero.Demo.Api.Endpoints.V1.Products;
-using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
-using Xero.Demo.Api.Domain;
-using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
-using Microsoft.Extensions.Logging;
-using Moq;
 using System;
 using System.Threading.Tasks;
-using Xunit;
 using Xero.Demo.Api.Datastore;
+using Xero.Demo.Api.Endpoints.V1.Products;
+using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
+using Xunit;
 
 namespace Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.Products
 {

src/Api.Test/EndpointsTests/UnitTests/V1/TestData/SampleData.cs

@@ -1,21 +1,21 @@
-using Xero.Demo.Api.Domain.Models;
-using System;
+using System;
 using System.Collections.Generic;
+using Xero.Demo.Api.Domain.Models;
 
 namespace Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData
 {
     internal class SampleDataV1
     {
         public static string productEndpoint = "/api/{0}/v{1}/products", DatabaseString = "Filename=Product.db", TraceIdentifier = "TraceIdentifier", Database = "Database", NewDescription = "NewDescription";
         public static Guid ProductId = Guid.NewGuid();
+        public static string readerLoginEndpoint = "/api/{0}/v{1}/login/{2}";
 
         public static Product Product
         {
             get
             {
                 return new Product
                 {
-                    //Id = ProductId,
                     Name = "product1",
                     Description = "Description",
                     Price = 11,
@@ -31,13 +31,5 @@ public static IReadOnlyList<Product> Products
                 return new List<Product> { Product };
             }
         }
-
-        public static Dictionary<string, string> Traits
-        {
-            get
-            {
-                return new Dictionary<string, string> { { "Test1", "Unit" }, { "Test2", "Integration" } };
-            }
-        }
     }
 }

src/Api.Test/EndpointsTests/UnitTests/V2/Products/CreateTest.cs

@@ -1,15 +1,13 @@
-using Xero.Demo.Api.Endpoints.V2.Products;
-using Xero.Demo.Api.Domain.Models;
-using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
-using Microsoft.Extensions.Logging;
-using Moq;
 using System;
 using System.Threading.Tasks;
-using Xunit;
-using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V2.TestData;
 using Xero.Demo.Api.Datastore;
+using Xero.Demo.Api.Domain.Models;
+using Xero.Demo.Api.Endpoints.V2.Products;
+using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V2.TestData;
+using Xunit;
 
 namespace Xero.Demo.Api.Tests.EndpointTests.UnitTests.V2.Products
 {

src/Api.Test/EndpointsTests/UnitTests/V2/TestData/SampleData.cs

@@ -1,5 +1,5 @@
-using Xero.Demo.Api.Domain.Models;
-using System.Collections.Generic;
+using System.Collections.Generic;
+using Xero.Demo.Api.Domain.Models;
 
 namespace Xero.Demo.Api.Tests.EndpointTests.UnitTests.V2.TestData
 {

src/Api.Test/Setup/SetupStartup.cs

@@ -1,4 +1,4 @@
-using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
+using Microsoft.AspNetCore.Authentication;
 using Microsoft.AspNetCore.Hosting;
 using Microsoft.AspNetCore.Mvc.Testing;
 using Microsoft.EntityFrameworkCore;
@@ -8,11 +8,15 @@
 using System.Linq;
 using System.Threading.Tasks;
 using Xero.Demo.Api.Datastore;
+using Xero.Demo.Api.Tests.EndpointTests.IntegrationTests;
+using Xero.Demo.Api.Tests.EndpointTests.UnitTests.V1.TestData;
 
 namespace Xero.Demo.Api.Tests.Setup
 {
     public class CustomWebApplicationFactory<TStartup> : WebApplicationFactory<TStartup> where TStartup : class
     {
+        public Database db;
+
         protected override void ConfigureWebHost(IWebHostBuilder builder)
         {
             builder.ConfigureServices(services =>
@@ -22,13 +26,11 @@ protected override void ConfigureWebHost(IWebHostBuilder builder)
                 services.Remove(descriptor);
 
                 services.AddDbContext<Database>(options => options.UseInMemoryDatabase("TestDB"));
-                //services.AddSingleton<IDatabase>(provider => provider.GetService<Database>());
-
                 var sp = services.BuildServiceProvider();
 
                 using var scope = sp.CreateScope();
                 var scopedServices = scope.ServiceProvider;
-                var db = scopedServices.GetRequiredService<Database>();
+                db = scopedServices.GetRequiredService<Database>();
                 var logger = scopedServices.GetRequiredService<ILogger<CustomWebApplicationFactory<TStartup>>>();
 
                 try

src/Api/Endpoints/Common/LoginController.cs

@@ -0,0 +1,65 @@
+using Microsoft.AspNetCore.Mvc;
+using Xero.Demo.Api.Domain;
+using Xero.Demo.Api.Domain.Extension;
+using Xero.Demo.Api.Xero.Demo.Domain.Services;
+using static Xero.Demo.Api.Domain.Models.CONSTANTS;
+
+namespace Xero.Demo.Api.Endpoints.Common
+{
+    [ApiVersion(ApiVersionNumbers.V1)]
+    [ApiVersion(ApiVersionNumbers.V2)]
+    public class LoginController : BaseApiController
+    {
+        private readonly IUserService _userService;
+
+        public LoginController(IUserService userService)
+        {
+            _userService = userService;
+        }
+
+        /// <summary>
+        /// Creates jwt token for all [GET POST PUT DELETE] request for Products
+        /// </summary>
+        /// <param name="culture">Enter the culture</param>
+        /// <returns>Create jwt token for POST and DELETE request for Products</returns>
+        [HttpPost(Roles.Admin)]
+        public IActionResult AuthenticateAdmin(string culture = "en-US")
+        {
+            var response = _userService.Authenticate(Roles.Admin);
+
+            if (response == null) return BadRequest(ModelState.GetErrorMessages());
+
+            return Ok(response);
+        }
+
+        /// <summary>
+        /// Creates jwt token for GET and PUT request for Products
+        /// </summary>
+        /// <param name="culture">Enter the culture</param>
+        /// <returns>Create jwt token for PUT request for Products</returns>
+        [HttpPost(Roles.Editor)]
+        public IActionResult AuthenticateEditor(string culture = "en-US")
+        {
+            var response = _userService.Authenticate(Roles.Editor);
+
+            if (response == null) return BadRequest(ModelState.GetErrorMessages());
+
+            return Ok(response);
+        }
+
+        /// <summary>
+        /// Creates jwt token for only GET request for Products
+        /// </summary>
+        /// <param name="culture">Enter the culture</param>
+        /// <returns>Create jwt token for only GET request for Products</returns>
+        [HttpPost(Roles.Reader)]
+        public IActionResult AuthenticateReader(string culture = "en-US")
+        {
+            var response = _userService.Authenticate(Roles.Reader);
+
+            if (response == null) return BadRequest(ModelState.GetErrorMessages());
+
+            return Ok(response);
+        }
+    }
+}