Adding Endpoints with Authorization in separate PublicApi project (#413)

* Adding tests for GetById endpoint * Updating tests and messages * Adding paged endpoint and also AutoMapper * Authenticate endpoint works as bool with tests * Got JWT token security working with Create and Delete endpoints and Swashbuckle. * Working on getting cookie and jwt token auth working in the same app All tests are passing * Creating new project and moving APIs Build succeeds; tests need updated. * all tests passing after moving services to PublicApi project * Fix authorize attributes * Uncomment and update ApiCatalogControllerLists tests Co-authored-by: Eric Fleming <eric-fleming18@hotmail.com>
2020-06-30 11:36:28 -04:00
parent e5e9868003
commit dd5a435cb4
49 changed files with 1024 additions and 75 deletions
--- a/src/PublicApi/CatalogItemEndpoints/Delete.cs
+++ b/src/PublicApi/CatalogItemEndpoints/Delete.cs
@@ -0,0 +1,42 @@
+using Ardalis.ApiEndpoints;
+using Microsoft.AspNetCore.Authentication.JwtBearer;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.eShopWeb.ApplicationCore.Constants;
+using Microsoft.eShopWeb.ApplicationCore.Entities;
+using Microsoft.eShopWeb.ApplicationCore.Interfaces;
+using Swashbuckle.AspNetCore.Annotations;
+using System.Threading.Tasks;
+
+namespace Microsoft.eShopWeb.PublicApi.CatalogItemEndpoints
+{
+    [Authorize(Roles = AuthorizationConstants.Roles.ADMINISTRATORS, AuthenticationSchemes = JwtBearerDefaults.AuthenticationScheme)]
+    public class Delete : BaseAsyncEndpoint<DeleteCatalogItemRequest, DeleteCatalogItemResponse>
+    {
+        private readonly IAsyncRepository<CatalogItem> _itemRepository;
+
+        public Delete(IAsyncRepository<CatalogItem> itemRepository)
+        {
+            _itemRepository = itemRepository;
+        }
+
+        [HttpDelete("api/catalog-items/{CatalogItemId}")]
+        [SwaggerOperation(
+            Summary = "Deletes a Catalog Item",
+            Description = "Deletes a Catalog Item",
+            OperationId = "catalog-items.Delete",
+            Tags = new[] { "CatalogItemEndpoints" })
+        ]
+        public override async Task<ActionResult<DeleteCatalogItemResponse>> HandleAsync([FromRoute]DeleteCatalogItemRequest request)
+        {
+            var response = new DeleteCatalogItemResponse(request.CorrelationId());
+
+            var itemToDelete = await _itemRepository.GetByIdAsync(request.CatalogItemId);
+            if (itemToDelete is null) return NotFound();
+
+            await _itemRepository.DeleteAsync(itemToDelete);
+
+            return Ok(response);
+        }
+    }
+}