feat: Refactor authentication and configuration options

Author: linkdotnet

src/LinkDotNet.Blog.Web/Authentication/OpenIdConnect/AuthExtensions.cs

@@ -1,21 +1,15 @@
-using System;
-using System.Threading.Tasks;
 using Microsoft.AspNetCore.Authentication.Cookies;
 using Microsoft.AspNetCore.Authentication.OpenIdConnect;
 using Microsoft.AspNetCore.Builder;
 using Microsoft.AspNetCore.Http;
 using Microsoft.Extensions.DependencyInjection;
-using Microsoft.Extensions.Options;
 
 namespace LinkDotNet.Blog.Web.Authentication.OpenIdConnect;
 
 public static class AuthExtensions
 {
     public static void UseAuthentication(this IServiceCollection services)
     {
-        using var provider = services.BuildServiceProvider();
-        var authInformation = provider.GetRequiredService<IOptions<AuthInformation>>();
-
         services.Configure<CookiePolicyOptions>(options =>
         {
             options.CheckConsentNeeded = _ => false;
@@ -29,52 +23,11 @@ public static void UseAuthentication(this IServiceCollection services)
             options.DefaultChallengeScheme = CookieAuthenticationDefaults.AuthenticationScheme;
         })
         .AddCookie()
-        .AddOpenIdConnect(authInformation.Value.Provider, options =>
-        {
-            options.Authority = $"https://{authInformation.Value.Domain}";
-            options.ClientId = authInformation.Value.ClientId;
-            options.ClientSecret = authInformation.Value.ClientSecret;
-
-            options.ResponseType = "code";
-
-            options.Scope.Clear();
-            options.Scope.Add("openid");
-            options.Scope.Add("profile");
+        .AddOpenIdConnect();
 
-            // Set the callback path, so Auth provider will call back to http://localhost:1234/callback
-            // Also ensure that you have added the URL as an Allowed Callback URL in your Auth provider dashboard
-            options.CallbackPath = new PathString("/callback");
-
-            // Configure the Claims Issuer to be Auth provider
-            options.ClaimsIssuer = authInformation.Value.Provider;
-
-            options.Events = new OpenIdConnectEvents
-            {
-                OnRedirectToIdentityProviderForSignOut = async context => await HandleRedirect(authInformation.Value, context),
-            };
-        });
+        services.ConfigureOptions<ConfigureOpenIdConnectOptions>();
 
         services.AddHttpContextAccessor();
         services.AddScoped<ILoginManager, AuthLoginManager>();
     }
-
-    private static Task HandleRedirect(AuthInformation auth, RedirectContext context)
-    {
-        var postLogoutUri = context.Properties.RedirectUri;
-        if (!string.IsNullOrEmpty(postLogoutUri))
-        {
-            if (postLogoutUri.StartsWith('/'))
-            {
-                var request = context.Request;
-                postLogoutUri = request.Scheme + "://" + request.Host + request.PathBase + postLogoutUri;
-            }
-
-            auth.LogoutUri += $"&returnTo={Uri.EscapeDataString(postLogoutUri)}";
-        }
-
-        context.Response.Redirect(auth.LogoutUri);
-        context.HandleResponse();
-
-        return Task.CompletedTask;
-    }
 }

src/LinkDotNet.Blog.Web/Authentication/OpenIdConnect/ConfigureOpenIdConnectOptions.cs

@@ -0,0 +1,76 @@
+using System;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Authentication.OpenIdConnect;
+using Microsoft.AspNetCore.Http;
+using Microsoft.Extensions.Options;
+
+namespace LinkDotNet.Blog.Web.Authentication.OpenIdConnect;
+
+public sealed class ConfigureOpenIdConnectOptions : IConfigureNamedOptions<OpenIdConnectOptions>
+{
+    private readonly AuthInformation authInformation;
+
+    public ConfigureOpenIdConnectOptions(IOptions<AuthInformation> authInformation)
+    {
+        ArgumentNullException.ThrowIfNull(authInformation);
+        this.authInformation = authInformation.Value;
+    }
+
+    public void Configure(string? name, OpenIdConnectOptions options)
+    {
+        if (name != authInformation.Provider)
+        {
+            return;
+        }
+
+        Configure(options);
+    }
+
+    public void Configure(OpenIdConnectOptions options)
+    {
+        ArgumentNullException.ThrowIfNull(options);
+        options.Authority = $"https://{authInformation.Domain}";
+        options.ClientId = authInformation.ClientId;
+        options.ClientSecret = authInformation.ClientSecret;
+
+        options.ResponseType = "code";
+
+        options.Scope.Clear();
+        options.Scope.Add("openid");
+        options.Scope.Add("profile");
+
+        // Set the callback path, so Auth provider will call back to http://localhost:1234/callback
+        // Also ensure that you have added the URL as an Allowed Callback URL in your Auth provider dashboard
+        options.CallbackPath = new PathString("/callback");
+
+        // Configure the Claims Issuer to be Auth provider
+        options.ClaimsIssuer = authInformation.Provider;
+
+        options.Events = new OpenIdConnectEvents
+        {
+            OnRedirectToIdentityProviderForSignOut = context => HandleRedirect(context),
+        };
+    }
+
+    private Task HandleRedirect(RedirectContext context)
+    {
+        var logoutUri = authInformation.LogoutUri;
+        var postLogoutUri = context.Properties.RedirectUri;
+
+        if (!string.IsNullOrEmpty(postLogoutUri))
+        {
+            if (postLogoutUri.StartsWith('/'))
+            {
+                var request = context.Request;
+                postLogoutUri = request.Scheme + "://" + request.Host + request.PathBase + postLogoutUri;
+            }
+
+            logoutUri += $"&returnTo={Uri.EscapeDataString(postLogoutUri)}";
+        }
+
+        context.Response.Redirect(logoutUri);
+        context.HandleResponse();
+
+        return Task.CompletedTask;
+    }
+}

src/LinkDotNet.Blog.Web/ConfigurationExtension.cs

@@ -44,7 +44,9 @@ private static IServiceCollection AddApplicationConfiguration(this IServiceColle
                 settings.IsGiscusEnabled = giscusSection.Exists();
 
                 config.Bind(settings);
-            });
+            })
+            .ValidateDataAnnotations()
+            .ValidateOnStart();
         return services;
     }
 
@@ -53,10 +55,7 @@ private static IServiceCollection AddAuthenticationConfigurations(this IServiceC
         ArgumentNullException.ThrowIfNull(services);
 
         services.AddOptions<AuthInformation>()
-            .Configure<IConfiguration>((settings, config) =>
-            {
-                config.GetSection(AuthInformation.AuthInformationSection).Bind(settings);
-            });
+            .BindConfiguration(AuthInformation.AuthInformationSection);
         return services;
     }
 
@@ -65,10 +64,7 @@ private static IServiceCollection AddIntroductionConfigurations(this IServiceCol
         ArgumentNullException.ThrowIfNull(services);
 
         services.AddOptions<Introduction>()
-            .Configure<IConfiguration>((settings, config) =>
-            {
-                config.GetSection(Introduction.IntroductionSection).Bind(settings);
-            });
+            .BindConfiguration(Introduction.IntroductionSection);
         return services;
     }
 
@@ -77,10 +73,7 @@ private static IServiceCollection AddSocialConfigurations(this IServiceCollectio
         ArgumentNullException.ThrowIfNull(services);
 
         services.AddOptions<Social>()
-            .Configure<IConfiguration>((settings, config) =>
-            {
-                config.GetSection(Social.SocialSection).Bind(settings);
-            });
+            .BindConfiguration(Social.SocialSection);
         return services;
     }
 
@@ -89,10 +82,7 @@ private static IServiceCollection AddProfileInformationConfigurations(this IServ
         ArgumentNullException.ThrowIfNull(services);
 
         services.AddOptions<ProfileInformation>()
-            .Configure<IConfiguration>((settings, config) =>
-            {
-                config.GetSection(ProfileInformation.ProfileInformationSection).Bind(settings);
-            });
+            .BindConfiguration(ProfileInformation.ProfileInformationSection);
         return services;
     }
 
@@ -101,10 +91,7 @@ private static IServiceCollection AddGiscusConfiguration(this IServiceCollection
         ArgumentNullException.ThrowIfNull(services);
 
         services.AddOptions<GiscusConfiguration>()
-            .Configure<IConfiguration>((settings, config) =>
-            {
-                config.GetSection(GiscusConfiguration.GiscusConfigurationSection).Bind(settings);
-            });
+            .BindConfiguration(GiscusConfiguration.GiscusConfigurationSection);
         return services;
     }
 
@@ -113,10 +100,7 @@ private static IServiceCollection AddDisqusConfiguration(this IServiceCollection
         ArgumentNullException.ThrowIfNull(services);
 
         services.AddOptions<DisqusConfiguration>()
-            .Configure<IConfiguration>((settings, config) =>
-            {
-                config.GetSection(DisqusConfiguration.DisqusConfigurationSection).Bind(settings);
-            });
+            .BindConfiguration(DisqusConfiguration.DisqusConfigurationSection);
         return services;
     }
 
@@ -125,10 +109,7 @@ private static IServiceCollection AddSupportMeConfiguration(this IServiceCollect
         ArgumentNullException.ThrowIfNull(services);
 
         services.AddOptions<SupportMeConfiguration>()
-            .Configure<IConfiguration>((settings, config) =>
-            {
-                config.GetSection(SupportMeConfiguration.SupportMeConfigurationSection).Bind(settings);
-            });
+            .BindConfiguration(SupportMeConfiguration.SupportMeConfigurationSection);
         return services;
     }
 
@@ -137,11 +118,7 @@ private static IServiceCollection AddImageUploadConfiguration(this IServiceColle
         ArgumentNullException.ThrowIfNull(services);
 
         services.AddOptions<UploadConfiguration>()
-            .Configure<IConfiguration>((settings, config) =>
-            {
-                config.GetSection(UploadConfiguration.ConfigurationSection)
-                    .Bind(settings);
-            });
+            .BindConfiguration(UploadConfiguration.ConfigurationSection);
         return services;
     }
 }

src/LinkDotNet.Blog.Web/Features/BlogPostPublisher.cs

@@ -15,11 +15,17 @@ public sealed partial class BlogPostPublisher : IJob
     private readonly ILogger<BlogPostPublisher> logger;
     private readonly IRepository<BlogPost> repository;
     private readonly ICacheInvalidator cacheInvalidator;
+    private readonly TimeProvider timeProvider;
 
-    public BlogPostPublisher(IRepository<BlogPost> repository, ICacheInvalidator cacheInvalidator, ILogger<BlogPostPublisher> logger)
+    public BlogPostPublisher(
+        IRepository<BlogPost> repository,
+        ICacheInvalidator cacheInvalidator,
+        TimeProvider timeProvider,
+        ILogger<BlogPostPublisher> logger)
     {
         this.repository = repository;
         this.cacheInvalidator = cacheInvalidator;
+        this.timeProvider = timeProvider;
         this.logger = logger;
     }
 
@@ -55,7 +61,7 @@ private async Task<int> PublishScheduledBlogPostsAsync()
 
     private async Task<IPagedList<BlogPost>> GetScheduledBlogPostsAsync()
     {
-        var now = DateTime.UtcNow;
+        var now = timeProvider.GetUtcNow().DateTime;
         var scheduledBlogPosts = await repository.GetAllAsync(
             filter: b => b.ScheduledPublishDate != null && b.ScheduledPublishDate <= now);
 

src/LinkDotNet.Blog.Web/Features/Services/UserRecordService.cs

@@ -13,17 +13,20 @@ public sealed partial class UserRecordService : IUserRecordService
     private readonly IRepository<UserRecord> userRecordRepository;
     private readonly NavigationManager navigationManager;
     private readonly AuthenticationStateProvider authenticationStateProvider;
+    private readonly TimeProvider timeProvider;
     private readonly ILogger<UserRecordService> logger;
 
     public UserRecordService(
         IRepository<UserRecord> userRecordRepository,
         NavigationManager navigationManager,
         AuthenticationStateProvider authenticationStateProvider,
+        TimeProvider timeProvider,
         ILogger<UserRecordService> logger)
     {
         this.userRecordRepository = userRecordRepository;
         this.navigationManager = navigationManager;
         this.authenticationStateProvider = authenticationStateProvider;
+        this.timeProvider = timeProvider;
         this.logger = logger;
     }
 
@@ -51,7 +54,7 @@ private async ValueTask GetAndStoreUserRecordAsync()
 
         var record = new UserRecord
         {
-            DateClicked = DateOnly.FromDateTime(DateTime.UtcNow),
+            DateClicked = DateOnly.FromDateTime(timeProvider.GetUtcNow().DateTime),
             UrlClicked = url,
         };
 

src/LinkDotNet.Blog.Web/ServiceExtensions.cs

@@ -17,6 +17,7 @@ public static class ServiceExtensions
 {
     public static IServiceCollection AddApplicationServices(this IServiceCollection services)
     {
+        services.AddSingleton(TimeProvider.System);
         services.AddScoped<ILocalStorageService, LocalStorageService>();
         services.AddScoped<ISortOrderCalculator, SortOrderCalculator>();
         services.AddScoped<IUserRecordService, UserRecordService>();

tests/LinkDotNet.Blog.IntegrationTests/Web/Features/BlogPostPublisherTests.cs

@@ -19,7 +19,7 @@ public BlogPostPublisherTests()
     {
         cacheInvalidator = Substitute.For<ICacheInvalidator>();
 
-        sut = new BlogPostPublisher(Repository, cacheInvalidator, Substitute.For<ILogger<BlogPostPublisher>>());
+        sut = new BlogPostPublisher(Repository, cacheInvalidator, TimeProvider.System, Substitute.For<ILogger<BlogPostPublisher>>());
     }
 
     [Fact]

tests/LinkDotNet.Blog.UnitTests/Web/Features/Services/UserRecordServiceTests.cs

@@ -23,6 +23,7 @@ public UserRecordServiceTests()
             repositoryMock,
             fakeNavigationManager,
             fakeAuthenticationStateProvider,
+            TimeProvider.System,
             Substitute.For<ILogger<UserRecordService>>());
     }