Csharp-API-Template/Controllers/Default.cs

using System.ComponentModel.DataAnnotations;
using System.IdentityModel.Tokens.Jwt;
using System.Security.Claims;
using System.Text;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc;
using Microsoft.IdentityModel.Tokens;


namespace Simple_API.Controllers
{

    [Route("auth/")]
    [ApiController]
    public class Default(IConfiguration configuration) : ControllerBase
    {


        public class AuthPayload
        {
            [DataType(DataType.EmailAddress)]
            [EmailAddress(ErrorMessage = "Invalid Email Address.")]
            [Required(ErrorMessage = "Email address is required.")]
            public string? Email { get; init; } = string.Empty;


            [DataType(DataType.Password)]
            [Required(ErrorMessage = "Password is required.")]
            [RegularExpression(@"^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*[@$!%*?&])[A-Za-z\d@$!%*?&]{8,}$",
                ErrorMessage = "Password must be at least 8 characters long and contain at least one uppercase letter,"
                               + " one lowercase letter, one number, and one special character.")]
            public string? Password { get; init; } = string.Empty;
        }

        [HttpPut("register")]
        public IActionResult Register([FromBody] AuthPayload authPayload)
        {
            return Ok();
        }

        [HttpPost("login")]
        public IActionResult Login([FromBody] AuthPayload authPayload)
        {
            // Here, you would typically validate the user's credentials against a database.
            if (authPayload.Email == "test@example.com" && authPayload.Password == "Password123!")
            {
                var claims = new[]
                {
                    new Claim(ClaimTypes.Email, authPayload.Email),
                    new Claim(ClaimTypes.Role, "Admin"),
                    new Claim(ClaimTypes.GivenName, "Test_ID"),
                };

                var configKey = configuration["Jwt:Key"];

                if (string.IsNullOrEmpty(configKey))
                {
                    return StatusCode(500);
                }

                var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(configKey));
                var credentials = new SigningCredentials(key, SecurityAlgorithms.HmacSha256);

                var token = new JwtSecurityToken(
                    issuer: configuration["Jwt:Issuer"],
                    audience: configuration["Jwt:Audience"],
                    claims: claims,
                    expires: DateTime.Now.AddMinutes(190),
                    signingCredentials: credentials);

                return Ok(new { token = new JwtSecurityTokenHandler().WriteToken(token) });
            }

            return Unauthorized();
        }
    }

    [Route("test/")]
    [ApiController]
    public class Test : ControllerBase
    {
        public class TestPayload
        {
            [Required(ErrorMessage = "Data field is required.")]
            public string? Data { get; init; } = string.Empty;
        }
        
        private const string ProtocolOk = "Protocol tested successfully.";

        // GET: test/get
        [Authorize]
        [HttpGet("get")]
        public IActionResult TestGet()
        {
            return Ok($"GET: {ProtocolOk}");
        }

        // POST: test/post
        [HttpPost("post")]
        public IActionResult TestPost([FromBody] TestPayload testPayload)
        {
            return Ok($"POST: {ProtocolOk} Received: {testPayload.Data}");
        }

        // PUT: test/put
        [HttpPut("put")]
        public IActionResult TestPut([FromBody] TestPayload testPayload)
        {
            return Ok($"PUT: {ProtocolOk} Updated: {testPayload.Data}");
        }

        // DELETE: test/delete
        [HttpDelete("delete")]
        public IActionResult TestDelete([FromBody] TestPayload testPayload)
        {
            return Ok($"DELETE: {ProtocolOk} Deleted: {testPayload.Data}");
        }
    }
}
{V0.4} Added Authentication, easily settable for all routes. 2024-10-03 20:14:04 +00:00			`using System.ComponentModel.DataAnnotations;`
			`using System.IdentityModel.Tokens.Jwt;`
			`using System.Security.Claims;`
			`using System.Text;`
			`using Microsoft.AspNetCore.Authorization;`
			`using Microsoft.AspNetCore.Mvc;`
			`using Microsoft.IdentityModel.Tokens;`


			`namespace Simple_API.Controllers`
			`{`

			`[Route("auth/")]`
			`[ApiController]`
			`public class Default(IConfiguration configuration) : ControllerBase`
			`{`


			`public class AuthPayload`
			`{`
			`[DataType(DataType.EmailAddress)]`
			`[EmailAddress(ErrorMessage = "Invalid Email Address.")]`
			`[Required(ErrorMessage = "Email address is required.")]`
			`public string? Email { get; init; } = string.Empty;`


			`[DataType(DataType.Password)]`
			`[Required(ErrorMessage = "Password is required.")]`
			`[RegularExpression(@"^(?=.[a-z])(?=.[A-Z])(?=.\d)(?=.[@$!%?&])[A-Za-z\d@$!%?&]{8,}$",`
			`ErrorMessage = "Password must be at least 8 characters long and contain at least one uppercase letter,"`
			`+ " one lowercase letter, one number, and one special character.")]`
			`public string? Password { get; init; } = string.Empty;`
			`}`

			`[HttpPut("register")]`
			`public IActionResult Register([FromBody] AuthPayload authPayload)`
			`{`
			`return Ok();`
			`}`

			`[HttpPost("login")]`
			`public IActionResult Login([FromBody] AuthPayload authPayload)`
			`{`
			`// Here, you would typically validate the user's credentials against a database.`
			`if (authPayload.Email == "test@example.com" && authPayload.Password == "Password123!")`
			`{`
			`var claims = new[]`
			`{`
			`new Claim(ClaimTypes.Email, authPayload.Email),`
			`new Claim(ClaimTypes.Role, "Admin"),`
			`new Claim(ClaimTypes.GivenName, "Test_ID"),`
			`};`

			`var configKey = configuration["Jwt:Key"];`

			`if (string.IsNullOrEmpty(configKey))`
			`{`
			`return StatusCode(500);`
			`}`

			`var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(configKey));`
			`var credentials = new SigningCredentials(key, SecurityAlgorithms.HmacSha256);`

			`var token = new JwtSecurityToken(`
			`issuer: configuration["Jwt:Issuer"],`
			`audience: configuration["Jwt:Audience"],`
			`claims: claims,`
			`expires: DateTime.Now.AddMinutes(190),`
			`signingCredentials: credentials);`

			`return Ok(new { token = new JwtSecurityTokenHandler().WriteToken(token) });`
			`}`

			`return Unauthorized();`
			`}`
			`}`

			`[Route("test/")]`
			`[ApiController]`
			`public class Test : ControllerBase`
			`{`
			`public class TestPayload`
			`{`
			`[Required(ErrorMessage = "Data field is required.")]`
			`public string? Data { get; init; } = string.Empty;`
			`}`

			`private const string ProtocolOk = "Protocol tested successfully.";`

			`// GET: test/get`
			`[Authorize]`
			`[HttpGet("get")]`
			`public IActionResult TestGet()`
			`{`
			`return Ok($"GET: {ProtocolOk}");`
			`}`

			`// POST: test/post`
			`[HttpPost("post")]`
			`public IActionResult TestPost([FromBody] TestPayload testPayload)`
			`{`
			`return Ok($"POST: {ProtocolOk} Received: {testPayload.Data}");`
			`}`

			`// PUT: test/put`
			`[HttpPut("put")]`
			`public IActionResult TestPut([FromBody] TestPayload testPayload)`
			`{`
			`return Ok($"PUT: {ProtocolOk} Updated: {testPayload.Data}");`
			`}`

			`// DELETE: test/delete`
			`[HttpDelete("delete")]`
			`public IActionResult TestDelete([FromBody] TestPayload testPayload)`
			`{`
			`return Ok($"DELETE: {ProtocolOk} Deleted: {testPayload.Data}");`
			`}`
			`}`
			`}`