< Summary

Information

Class:	Program
Assembly:	LGDXRobotCloud.API
File(s):	/builds/yukaitung/lgdxrobot2-cloud/LGDXRobotCloud.API/Program.cs

Line coverage

Covered lines:	0
Uncovered lines:	175
Coverable lines:	175
Total lines:	290
Line coverage:	0%

Branch coverage

Covered branches:	0
Total branches:	18
Branch coverage:	0%

Method coverage

Feature is only available for sponsors

Upgrade to PRO version

Metrics

Method	Branch coverage	Crap Score	Cyclomatic complexity	Line coverage
<Main>$(...)	0%	342	18	0%

File(s)

/builds/yukaitung/lgdxrobot2-cloud/LGDXRobotCloud.API/Program.cs

#	Line	Line coverage
	`1`	`using LGDXRobotCloud.API.Authentication;`
	`2`	`using LGDXRobotCloud.API.Authorisation;`
	`3`	`using LGDXRobotCloud.API.Configurations;`
	`4`	`using LGDXRobotCloud.API.Middleware;`
	`5`	`using LGDXRobotCloud.API.Services;`
	`6`	`using LGDXRobotCloud.API.Services.Administration;`
	`7`	`using LGDXRobotCloud.API.Services.Automation;`
	`8`	`using LGDXRobotCloud.API.Services.Common;`
	`9`	`using LGDXRobotCloud.API.Services.Identity;`
	`10`	`using LGDXRobotCloud.API.Services.Navigation;`
	`11`	`using LGDXRobotCloud.Data.DbContexts;`
	`12`	`using LGDXRobotCloud.Data.Entities;`
	`13`	`using LGDXRobotCloud.Utilities.Constants;`
	`14`	`using MassTransit;`
	`15`	`using Microsoft.AspNetCore.Authentication;`
	`16`	`using Microsoft.AspNetCore.Authentication.Certificate;`
	`17`	`using Microsoft.AspNetCore.Authentication.JwtBearer;`
	`18`	`using Microsoft.AspNetCore.Authorization;`
	`19`	`using Microsoft.AspNetCore.Hosting.Server;`
	`20`	`using Microsoft.AspNetCore.Hosting.Server.Features;`
	`21`	`using Microsoft.AspNetCore.Identity;`
	`22`	`using Microsoft.AspNetCore.OpenApi;`
	`23`	`using Microsoft.AspNetCore.Server.Kestrel.Https;`
	`24`	`using Microsoft.EntityFrameworkCore;`
	`25`	`using Microsoft.IdentityModel.Tokens;`
	`26`	`using Microsoft.OpenApi.Models;`
	`27`	`using Scalar.AspNetCore;`
	`28`	`using System.Security.Claims;`
	`29`	`using System.Security.Cryptography.X509Certificates;`
	`30`	`using System.Text;`
	`31`
0	`32`	`var builder = WebApplication.CreateBuilder(args);`
0	`33`	`builder.WebHost.ConfigureKestrel(cfg =>`
0	`34`	`{`
0	`35`	`cfg.ConfigureHttpsDefaults(ctx => ctx.ClientCertificateMode = ClientCertificateMode.AllowCertificate);`
0	`36`	`cfg.AddServerHeader = false;`
0	`37`	`});`
	`38`
	`39`	`/*`
	`40`	`* Configuration`
	`41`	`*/`
0	`42`	`builder.Services.Configure<LgdxRobotCloudConfiguration>(`
0	`43`	`builder.Configuration.GetSection("LGDXRobotCloud")`
0	`44`	`);`
0	`45`	`builder.Services.Configure<LgdxRobotCloudSecretConfiguration>(`
0	`46`	`builder.Configuration.GetSection("LGDXRobotCloudSecret")`
0	`47`	`);`
	`48`
	`49`	`/*`
	`50`	`* Infrastructure`
	`51`	`*/`
0	`52`	`builder.Services.AddMassTransit(cfg =>`
0	`53`	`{`
0	`54`	`cfg.UsingRabbitMq((context, cfg) =>`
0	`55`	`{`
0	`56`	`cfg.Host(builder.Configuration["RabbitMq:Host"], builder.Configuration["RabbitMq:VirtualHost"], h =>`
0	`57`	`{`
0	`58`	`h.Username(builder.Configuration["RabbitMq:Username"] ?? string.Empty);`
0	`59`	`h.Password(builder.Configuration["RabbitMq:Password"] ?? string.Empty);`
0	`60`	`});`
0	`61`	`});`
0	`62`	`});`
0	`63`	`builder.Services.AddMemoryCache();`
0	`64`	`builder.Services.AddControllers();`
0	`65`	`builder.Services.AddOpenApi(options =>`
0	`66`	`{`
0	`67`	`options.AddDocumentTransformer<BearerSecuritySchemeTransformer>();`
0	`68`	`});`
0	`69`	`builder.Services.AddGrpc(cfg => cfg.EnableDetailedErrors = true);`
0	`70`	`builder.Services.AddDbContextPool<LgdxContext>(cfg =>`
0	`71`	`cfg.UseNpgsql(builder.Configuration["PGSQLConnectionString"])`
0	`72`	`.LogTo(Console.WriteLine, LogLevel.Information)`
0	`73`	`.EnableSensitiveDataLogging()`
0	`74`	`.EnableDetailedErrors()`
0	`75`	`);`
0	`76`	`builder.Services.AddHttpContextAccessor();`
	`77`
	`78`	`/*`
	`79`	`* Authentication`
	`80`	`*/`
0	`81`	`builder.Services.AddIdentity<LgdxUser, LgdxRole>()`
0	`82`	`.AddEntityFrameworkStores<LgdxContext>()`
0	`83`	`.AddTokenProvider<AuthenticatorTokenProvider<LgdxUser>>(TokenOptions.DefaultAuthenticatorProvider)`
0	`84`	`.AddTokenProvider<DataProtectorTokenProvider<LgdxUser>>(TokenOptions.DefaultProvider);`
0	`85`	`builder.Services.AddAuthentication(LgdxRobotCloudAuthenticationSchemes.CertificationScheme)`
0	`86`	`.AddCertificate(LgdxRobotCloudAuthenticationSchemes.CertificationScheme, cfg =>`
0	`87`	`{`
0	`88`	`cfg.AllowedCertificateTypes = CertificateTypes.All;`
0	`89`	`cfg.RevocationMode = X509RevocationMode.NoCheck;`
0	`90`	`cfg.Events = new CertificateAuthenticationEvents()`
0	`91`	`{`
0	`92`	`OnCertificateValidated = ctx =>`
0	`93`	`{`
0	`94`	`if (ctx.ClientCertificate.Thumbprint != builder.Configuration["LGDXRobotCloud:InternalCertificateThumbprint"])`
0	`95`	`{`
0	`96`	`ctx.Fail("Invalid certificate.");`
0	`97`	`return Task.CompletedTask;`
0	`98`	`}`
0	`99`	`ctx.Success();`
0	`100`	`return Task.CompletedTask;`
0	`101`	`}`
0	`102`	`};`
0	`103`	`}`
0	`104`	`);`
0	`105`	`builder.Services.AddAuthentication(LgdxRobotCloudAuthenticationSchemes.ApiKeyScheme)`
0	`106`	`.AddScheme<ApiKeyAuthenticationSchemeOptions, ApiKeyAuthenticationSchemeHandler>(`
0	`107`	`LgdxRobotCloudAuthenticationSchemes.ApiKeyScheme,`
0	`108`	`options => {}`
0	`109`	`);`
0	`110`	`builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)`
0	`111`	`.AddJwtBearer(cfg =>`
0	`112`	`{`
0	`113`	`cfg.TokenValidationParameters = new TokenValidationParameters`
0	`114`	`{`
0	`115`	`ValidateIssuer = true,`
0	`116`	`ValidateAudience = true,`
0	`117`	`ValidateLifetime = true,`
0	`118`	`ValidateIssuerSigningKey = true,`
0	`119`	`ValidIssuer = builder.Configuration["LGDXRobotCloudSecret:LgdxUserJwtIssuer"],`
0	`120`	`ValidAudience = builder.Configuration["LGDXRobotCloudSecret:LgdxUserJwtIssuer"],`
0	`121`	`IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(builder.Configuration["LGDXRobotCloudSecret:Lgd`
0	`122`	`ClockSkew = TimeSpan.Zero`
0	`123`	`};`
0	`124`	`});`
0	`125`	`builder.Services.AddTransient<ValidateRobotClientsCertificate>();`
0	`126`	`builder.Services.AddAuthentication(LgdxRobotCloudAuthenticationSchemes.RobotClientsCertificateScheme)`
0	`127`	`.AddCertificate(LgdxRobotCloudAuthenticationSchemes.RobotClientsCertificateScheme, cfg =>`
0	`128`	`{`
0	`129`	`cfg.AllowedCertificateTypes = CertificateTypes.All;`
0	`130`	`cfg.RevocationMode = X509RevocationMode.NoCheck;`
0	`131`	`cfg.Events = new CertificateAuthenticationEvents()`
0	`132`	`{`
0	`133`	`OnCertificateValidated = async ctx =>`
0	`134`	`{`
0	`135`	`string subject = ctx.ClientCertificate.Subject;`
0	`136`	`string guid = subject.Substring(subject.IndexOf("OID.0.9.2342.19200300.100.1.1=") + 30, 36);`
0	`137`	`if (guid == string.Empty)`
0	`138`	`{`
0	`139`	`ctx.Fail("Robot ID not found.");`
0	`140`	`return;`
0	`141`	`}`
0	`142`	`var validatior = ctx.HttpContext.RequestServices.GetService<ValidateRobotClientsCertificate>();`
0	`143`	`if (!await validatior!.Validate(ctx.ClientCertificate, Guid.Parse(guid)))`
0	`144`	`{`
0	`145`	`ctx.Fail("Invalid certificate / Robot not found.");`
0	`146`	`return;`
0	`147`	`}`
0	`148`	`var claims = new[] {`
0	`149`	`new Claim(ClaimTypes.NameIdentifier, guid)`
0	`150`	`};`
0	`151`	`ctx.Principal = new ClaimsPrincipal(new ClaimsIdentity(claims, ctx.Scheme.Name));`
0	`152`	`ctx.Success();`
0	`153`	`}`
0	`154`	`};`
0	`155`	`});`
0	`156`	`builder.Services.AddAuthentication(LgdxRobotCloudAuthenticationSchemes.RobotClientsJwtScheme)`
0	`157`	`.AddJwtBearer(LgdxRobotCloudAuthenticationSchemes.RobotClientsJwtScheme, cfg =>`
0	`158`	`{`
0	`159`	`cfg.TokenValidationParameters = new TokenValidationParameters`
0	`160`	`{`
0	`161`	`ValidateIssuer = true,`
0	`162`	`ValidateAudience = true,`
0	`163`	`ValidateLifetime = true,`
0	`164`	`ValidateIssuerSigningKey = true,`
0	`165`	`ValidIssuer = builder.Configuration["LGDXRobotCloudSecret:RobotClientsJwtIssuer"],`
0	`166`	`ValidAudience = builder.Configuration["LGDXRobotCloudSecret:RobotClientsJwtIssuer"],`
0	`167`	`IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(builder.Configuration["LGDXRobotCloudSecret:Rob`
0	`168`	`ClockSkew = TimeSpan.Zero`
0	`169`	`};`
0	`170`	`});`
0	`171`	`builder.Services.AddScoped<IAuthorizationHandler, ValidateLgdxUserAccessHandler>();`
0	`172`	`builder.Services.AddAuthorizationBuilder()`
0	`173`	`.AddPolicy("ValidateLgdxUserAccess", policyBuilder =>`
0	`174`	`{`
0	`175`	`policyBuilder.RequireAuthenticatedUser();`
0	`176`	`policyBuilder.AddRequirements(new ValidateLgdxUserAccessRequirement());`
0	`177`	`});`
0	`178`	`builder.Services.AddScoped<IAuthorizationHandler, RobotClientShouldOnlineHandler>();`
0	`179`	`builder.Services.AddAuthorizationBuilder()`
0	`180`	`.AddPolicy("RobotClientShouldOnline", policyBuilder =>`
0	`181`	`{`
0	`182`	`policyBuilder.RequireAuthenticatedUser();`
0	`183`	`policyBuilder.AddRequirements(new RobotClientShouldOnlineRequirement());`
0	`184`	`});`
	`185`
	`186`	`/*`
	`187`	`* LGDX Depency Injection`
	`188`	`*/`
	`189`	`// Administrator`
0	`190`	`builder.Services.AddScoped<IApiKeyService, ApiKeyService>();`
0	`191`	`builder.Services.AddScoped<IRobotCertificateService, RobotCertificateService>();`
0	`192`	`builder.Services.AddScoped<IRoleService, RoleService>();`
0	`193`	`builder.Services.AddScoped<IUserService, UserService>();`
	`194`
	`195`	`// Automation`
0	`196`	`builder.Services.AddScoped<IAutoTaskService, AutoTaskService>();`
0	`197`	`builder.Services.AddScoped<IFlowService, FlowService>();`
0	`198`	`builder.Services.AddScoped<IProgressService, ProgressService>();`
	`199`
	`200`	`// Identity`
0	`201`	`builder.Services.AddScoped<IAuthService, AuthService>();`
0	`202`	`builder.Services.AddScoped<ICurrentUserService, CurrentUserService>();`
	`203`
	`204`	`// Automation`
0	`205`	`builder.Services.AddScoped<IRealmService, RealmService>();`
0	`206`	`builder.Services.AddScoped<IWaypointService, WaypointService>();`
0	`207`	`builder.Services.AddScoped<IRobotService, RobotService>();`
	`208`
	`209`	`// Custom Services`
0	`210`	`builder.Services.AddScoped<ITriggerRetryService, TriggerRetryService>();`
0	`211`	`builder.Services.AddScoped<ITriggerService, TriggerService>();`
0	`212`	`builder.Services.AddScoped<IEmailService, EmailService>();`
0	`213`	`builder.Services.AddSingleton<IEventService, EventService>();`
0	`214`	`builder.Services.AddScoped<IAutoTaskSchedulerService, AutoTaskSchedulerService>();`
0	`215`	`builder.Services.AddScoped<IOnlineRobotsService, OnlineRobotsService>();`
0	`216`	`builder.Services.AddScoped<IAuthenticationService, AuthenticationService>();`
	`217`
0	`218`	`var app = builder.Build();`
	`219`
	`220`	`// Configure the HTTP request pipeline.`
0	`221`	`if (app.Environment.IsDevelopment())`
0	`222`	`{`
0	`223`	`app.MapOpenApi();`
0	`224`	`app.MapScalarApiReference();`
0	`225`	`}`
	`226`
0	`227`	`app.UseHttpsRedirection();`
	`228`
0	`229`	`app.UseAuthentication();`
0	`230`	`app.UseAuthorization();`
	`231`
0	`232`	`app.MapControllerRoute(`
0	`233`	`name: "Area",`
0	`234`	`pattern: "{area:exists}/{controller=Home}/{action=Index}/{id?}");`
0	`235`	`app.MapGrpcService<RobotClientsService>();`
0	`236`	`app.UseLgdxExpectionHandling();`
	`237`
0	`238`	`app.Run();`
	`239`
	`240`	`internal sealed class BearerSecuritySchemeTransformer(`
	`241`	`IAuthenticationSchemeProvider authenticationSchemeProvider,`
	`242`	`IServer server`
	`243`	`) : IOpenApiDocumentTransformer`
	`244`	`{`
	`245`	`public async Task TransformAsync(OpenApiDocument document, OpenApiDocumentTransformerContext context, CancellationToke`
	`246`	`{`
	`247`	`var authenticationSchemes = await authenticationSchemeProvider.GetAllSchemesAsync();`
	`248`	`if (authenticationSchemes.Any(authScheme => authScheme.Name == JwtBearerDefaults.AuthenticationScheme))`
	`249`	`{`
	`250`	`var requirements = new Dictionary<string, OpenApiSecurityScheme>`
	`251`	`{`
	`252`	`["Bearer"] = new OpenApiSecurityScheme`
	`253`	`{`
	`254`	`Type = SecuritySchemeType.Http,`
	`255`	`Scheme = "bearer", // "bearer" refers to the header name here`
	`256`	`In = ParameterLocation.Header,`
	`257`	`BearerFormat = "Json Web Token"`
	`258`	`}`
	`259`	`};`
	`260`	`document.Components ??= new OpenApiComponents();`
	`261`	`document.Components.SecuritySchemes = requirements;`
	`262`	`}`
	`263`	`document.Info = new()`
	`264`	`{`
	`265`	`Title = "LGDXRobot Cloud API",`
	`266`	`Version = "v1",`
	`267`	`Description = "Core API for the LGDXRobot Cloud.",`
	`268`	`Contact = new OpenApiContact`
	`269`	`{`
	`270`	`Name = "LGDXRobot",`
	`271`	`Url = new Uri("https://lgdxrobot.bristolgram.uk"),`
	`272`	`},`
	`273`	`License = new OpenApiLicense`
	`274`	`{`
	`275`	`Name = "The MIT License",`
	`276`	`Url = new Uri("https://opensource.org/license/MIT")`
	`277`	`}`
	`278`	`};`
	`279`	`var address = server.Features.Get<IServerAddressesFeature>()!.Addresses.LastOrDefault(); // HTTPS port must higher`
	`280`	`address = address!.Replace("[::]", "localhost");`
	`281`	`document.Servers =`
	`282`	`[`
	`283`	`new()`
	`284`	`{`
	`285`	`Url = address,`
	`286`	`Description = "Default Server"`
	`287`	`}`
	`288`	`];`
	`289`	`}`
	`290`	`}`

< Summary

Metrics

File(s)

/builds/yukaitung/lgdxrobot2-cloud/LGDXRobotCloud.API/Program.cs

Methods/Properties