Feature: Add token validation, basic confirmation workflow (#164)

2026-04-05 18:09:04 +00:00 · 2026-03-06 23:23:43 -05:00
parent 17eb04e20c
commit f1194d3da8
53 changed files with 2608 additions and 188 deletions
--- a/src/Core/API/API.Core/Program.cs
+++ b/src/Core/API/API.Core/Program.cs
@@ -1,4 +1,5 @@
 using API.Core;
+using API.Core.Authentication;
 using API.Core.Contracts.Common;
 using Domain.Exceptions;
 using FluentValidation;
@@ -11,11 +12,12 @@ using Infrastructure.PasswordHashing;
 using Infrastructure.Repository.Auth;
 using Infrastructure.Repository.Sql;
 using Infrastructure.Repository.UserAccount;
+using Microsoft.AspNetCore.Authentication;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.AspNetCore.Mvc.Filters;
 using Service.Auth;
-using Service.UserManagement.User;
 using Service.Emails;
+using Service.UserManagement.User;

 var builder = WebApplication.CreateBuilder(args);

@@ -64,10 +66,21 @@ builder.Services.AddScoped<IPasswordInfrastructure, Argon2Infrastructure>();
 builder.Services.AddScoped<IEmailProvider, SmtpEmailProvider>();
 builder.Services.AddScoped<IEmailTemplateProvider, EmailTemplateProvider>();
 builder.Services.AddScoped<IEmailService, EmailService>();
+builder.Services.AddScoped<IConfirmationService, ConfirmationService>();

 // Register the exception filter
 builder.Services.AddScoped<GlobalExceptionFilter>();

+// Configure JWT Authentication
+builder
+    .Services.AddAuthentication("JWT")
+    .AddScheme<JwtAuthenticationOptions, JwtAuthenticationHandler>(
+        "JWT",
+        options => { }
+    );
+
+builder.Services.AddAuthorization();
+
 var app = builder.Build();

 app.UseSwagger();
@@ -76,6 +89,9 @@ app.MapOpenApi();

 app.UseHttpsRedirection();

+app.UseAuthentication();
+app.UseAuthorization();
+
 // Health check endpoint (used by Docker health checks and orchestrators)
 app.MapHealthChecks("/health");