Utilize identity in backend (#123)

Co-authored-by: Aug-8 <130132558+sol-wizard@users.noreply.github.com>
Ben0189 · Nov 8, 2024 · 754c0f9 · 754c0f9
1 parent 5f307cd
commit 754c0f9
Show file tree

Hide file tree

Showing 4 changed files with 48 additions and 5 deletions.
diff --git a/blotztask-api/Controllers/TaskController.cs b/blotztask-api/Controllers/TaskController.cs
@@ -19,7 +19,14 @@ public TaskController(ITaskService taskService)
         [HttpGet("alltask")]
         public async Task<IActionResult> GetAllTask()
         {
-            return Ok(await _taskService.GetTodoItems());
+            var userId = HttpContext.Items["UserId"] as string;
+
+            if (userId == null)
+            {
+                throw new UnauthorizedAccessException("Could not find user id from Http Context");
+            }
+
+            return Ok(await _taskService.GetTodoItemsByUser(userId));
         }
 
         [HttpGet("{id}")]

diff --git a/blotztask-api/Middleware/UserContextMiddleware.cs b/blotztask-api/Middleware/UserContextMiddleware.cs
@@ -0,0 +1,35 @@
+using System.Security.Claims;
+
+public class UserContextMiddleware
+{
+    private readonly RequestDelegate _next;
+    private readonly ILogger<UserContextMiddleware> _logger;
+
+    public UserContextMiddleware(RequestDelegate next, ILogger<UserContextMiddleware> logger)
+    {
+        _next = next;
+        _logger = logger;
+    }
+
+    public async Task InvokeAsync(HttpContext context)
+    {
+        // Check if the user is authenticated
+        if (context.User.Identity?.IsAuthenticated == true)
+        {
+            // Extract UserId from the claims
+            var userId = context.User.FindFirst(ClaimTypes.NameIdentifier)?.Value;
+
+            if (userId == null)
+            {
+                _logger.LogError("Unable to get user Id in UserContextMiddleware for an authenticated user.");
+                throw new UnauthorizedAccessException("Unable to get user Id in UserContextMiddleware.");
+            }
+
+            // Store UserId in HttpContext.Items
+            context.Items["UserId"] = userId;
+        }
+
+        // Pass request to the next middleware in the pipeline
+        await _next(context);
+    }
+}
diff --git a/blotztask-api/Program.cs b/blotztask-api/Program.cs
@@ -87,6 +87,7 @@
 
 var app = builder.Build();
 app.UseMiddleware<ErrorHandlingMiddleware>();
+app.UseMiddleware<UserContextMiddleware>();
 
 app.MapIdentityApi<User>();
 // Configure the HTTP request pipeline.

diff --git a/blotztask-api/Services/TaskService.cs b/blotztask-api/Services/TaskService.cs
@@ -3,13 +3,12 @@
 using Microsoft.EntityFrameworkCore;
 using BlotzTask.Data.Entities;
 using BlotzTask.Models.CustomError;
-using System.Threading.Tasks;
 
 namespace BlotzTask.Services;
 
 public interface ITaskService
 {
-    public Task<List<TaskItemDTO>> GetTodoItems();
+    public Task<List<TaskItemDTO>> GetTodoItemsByUser(string userId);
     public Task<TaskItemDTO> GetTaskByID(int Id);
     public Task<int> EditTask(int Id, EditTaskItemDTO editTaskItem);
     public Task<string> AddTask(AddTaskItemDTO addtaskItem);
@@ -26,11 +25,12 @@ public TaskService(BlotzTaskDbContext dbContext)
         _dbContext = dbContext;
     }
 
-    public async Task<List<TaskItemDTO>> GetTodoItems()
+    public async Task<List<TaskItemDTO>> GetTodoItemsByUser(string userId)
     {
         try
         {
             return await _dbContext.TaskItems
+                .Where(x => x.UserId == userId)
                 .Select(x => new TaskItemDTO
                 {
                     Id = x.Id,
@@ -40,7 +40,7 @@ public async Task<List<TaskItemDTO>> GetTodoItems()
         }
         catch (Exception ex)
         {
-            //TODO: Add some error log throw (havent create PBI)
+            //TODO: Add some error log throw 
             throw;
         }
     }