-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathProgram.cs
More file actions
119 lines (87 loc) · 3.33 KB
/
Copy pathProgram.cs
File metadata and controls
119 lines (87 loc) · 3.33 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
using AdminAuth.Middleware;
using Microsoft.AspNetCore.Authentication.Cookies;
using dotenv.net;
using Microsoft.EntityFrameworkCore;
using Portfolio.Data;
using Amazon.S3;
DotEnv.Load();
var builder = WebApplication.CreateBuilder(args);
builder.Configuration.AddEnvironmentVariables();
var BucketRootUser = builder.Configuration["MINIO_ROOT_USER"];
var BucketRootPassword = builder.Configuration["MINIO_ROOT_PASSWORD"];
var BucketLocation = builder.Configuration["DROPLET_PIP"];
builder.Services.Configure<EmailSettings>(
builder.Configuration.GetSection("EmailSettings"));
builder.Services.AddDbContext<PortfolioDbContext>(options =>
options.UseMySql(
builder.Configuration["CONNECTION_STRING"], new MySqlServerVersion(new Version(8, 0, 34))
)
);
var s3Config = new AmazonS3Config
{
ServiceURL = $"http://{BucketLocation}:9000",
ForcePathStyle = true // Essential for MinIO
};
builder.Services.AddSingleton(s3Config);
builder.Services.AddSingleton<IAmazonS3>(sp =>
new AmazonS3Client(BucketRootUser, BucketRootPassword, s3Config));
builder.Services.AddSingleton<BucketService>()
;
builder.Services.AddControllersWithViews();
builder.Services.AddScoped<ICaseStudyRepository, CaseStudyRepository>();
builder.Services.AddScoped<IExperienceRepository, ExperienceRepository>();
builder.Services.AddScoped<ITestimonialRepository, TestimonialRepository>();
builder.Services.AddScoped<ICertificationRepository, CertificationRepository>();
builder.Services.AddScoped<ISkillDomainReposirtory, SkillDomainRepository>();
builder.Services.AddScoped<IProjectBriefRepository, ProjectBriefRepository>();
builder.Services.AddHttpClient<IEmailService, EmailService>();
builder.Services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme)
.AddCookie(options =>
{
options.LoginPath = "/auth/login";
options.LogoutPath = "/auth/logout";
options.AccessDeniedPath = "/auth/denied";
options.ExpireTimeSpan = TimeSpan.FromHours(8);
options.SlidingExpiration = true;
// Harden the cookie
options.Cookie.HttpOnly = true;
options.Cookie.SameSite = SameSiteMode.Strict;
options.Cookie.Name = "__admin_session";
});
builder.Services.AddAuthorization(options =>
{
options.AddPolicy("AdminOnly", policy =>
policy.RequireRole("Admin"));
});
var app = builder.Build();
if (args.Contains("--apply-migrations"))
{
using var scope = app.Services.CreateScope();
var db = scope.ServiceProvider.GetRequiredService<PortfolioDbContext>();
db.Database.Migrate();
Console.WriteLine("Migrations applied successfully.");
}
app.UseForwardedHeaders();
using (var scope = app.Services.CreateScope())
{
var services = scope.ServiceProvider;
//BUCKET SETUP
var bucketService = services.GetRequiredService<BucketService>();
await bucketService.CreateBucketAsync();
}
if (!app.Environment.IsDevelopment())
{
app.UseExceptionHandler("/Home/Error");
app.UseHsts();
}
app.UseHttpsRedirection();
app.UseStaticFiles();
app.UseRouting();
// Rate limiting middleware on /auth/login to block brute force
app.UseMiddleware<LoginRateLimitMiddleware>();
app.UseAuthentication();
app.UseAuthorization();
app.MapControllerRoute(
name: "default",
pattern: "{controller=Home}/{action=Index}/{id?}");
app.Run();