Feature/234482 trust leaving (#63)

Author: FrostyApeOne

src/DfE.ExternalApplications.Infrastructure/Services/FieldFormattingService.cs

@@ -48,6 +48,9 @@ public string GetFormattedFieldValue(string fieldId, Dictionary<string, object>
         {
             var fieldValue = GetFieldValue(fieldId, formData);
 
+            // DEBUG: Log formatting attempts
+
+            
             if (string.IsNullOrEmpty(fieldValue))
             {
                 return string.Empty;
@@ -58,9 +61,11 @@ public string GetFormattedFieldValue(string fieldId, Dictionary<string, object>
             {
                 if (LooksLikeUploadData(fieldValue))
                 {
+
                     return FormatUploadValue(fieldValue);
                 }
 
+
                 return FormatAutocompleteValue(fieldValue);
             }
 
@@ -71,6 +76,9 @@ public List<string> GetFormattedFieldValues(string fieldId, Dictionary<string, o
         {
             var fieldValue = GetFieldValue(fieldId, formData);
 
+            // DEBUG: Log formatting attempts for list version
+
+            
             if (string.IsNullOrEmpty(fieldValue))
             {
                 return new List<string>();
@@ -80,9 +88,11 @@ public List<string> GetFormattedFieldValues(string fieldId, Dictionary<string, o
             {
                 if (LooksLikeUploadData(fieldValue))
                 {
+
                     return FormatUploadValuesList(fieldValue);
                 }
 
+
                 return FormatAutocompleteValuesList(fieldValue);
             }
 

src/DfE.ExternalApplications.Web/Authentication/TestAuthenticationHandler.cs

@@ -35,27 +35,25 @@ public TestAuthenticationHandler(
     protected override Task<AuthenticateResult> HandleAuthenticateAsync()
     {
         var requestPath = Context.Request.Path;
-        Logger.LogDebug(">>>>>>>>>> Authentication >>> TestAuthenticationHandler: HandleAuthenticateAsync called for path {Path}", requestPath);
+
 
         var email = Context.Session.GetString(SessionKeys.Email);
         var token = Context.Session.GetString(SessionKeys.Token);
 
         if (string.IsNullOrEmpty(email) || string.IsNullOrEmpty(token))
         {
-            Logger.LogDebug(">>>>>>>>>> Authentication >>> TestAuthenticationHandler: No email ({EmailExists}) or token ({TokenExists}) found in session for path {Path}", 
-                !string.IsNullOrEmpty(email), !string.IsNullOrEmpty(token), requestPath);
+
             return Task.FromResult(AuthenticateResult.NoResult());
         }
 
-        Logger.LogDebug(">>>>>>>>>> Authentication >>> TestAuthenticationHandler: Creating authentication ticket for user {Email} at path {Path}", email, requestPath);
+
 
         var claims = CreateUserClaims(email);
         var identity = new ClaimsIdentity(claims, SchemeName);
         var principal = new ClaimsPrincipal(identity);
         var ticket = new AuthenticationTicket(principal, CreateAuthenticationProperties(token), SchemeName);
 
-        Logger.LogDebug(">>>>>>>>>> Authentication >>> TestAuthenticationHandler: Authentication successful for user {Email} with {ClaimCount} claims", 
-            email, claims.Count());
+
 
         return Task.FromResult(AuthenticateResult.Success(ticket));
     }
@@ -67,8 +65,7 @@ protected override Task HandleChallengeAsync(AuthenticationProperties properties
             ? "/TestLogin" 
             : $"/TestLogin?returnUrl={Uri.EscapeDataString(returnUrl)}";
 
-        Logger.LogDebug(">>>>>>>>>> Authentication >>> TestAuthenticationHandler: HandleChallengeAsync triggered. Redirecting to {LoginUrl} (return URL: {ReturnUrl})", 
-            loginUrl, returnUrl ?? "None");
+
 
         Response.Redirect(loginUrl);
         return Task.CompletedTask;

src/DfE.ExternalApplications.Web/Filters/ExternalApiExceptionFilter.cs

@@ -4,44 +4,100 @@
 using Microsoft.AspNetCore.Mvc.RazorPages;
 using Microsoft.AspNetCore.Mvc;
 using System.Text.Json;
+using DfE.ExternalApplications.Web.Interfaces;
 
 namespace DfE.ExternalApplications.Web.Filters
 {
     public class ExternalApiPageExceptionFilter : IAsyncPageFilter
     {
+        
         public Task OnPageHandlerSelectionAsync(PageHandlerSelectedContext context)
             => Task.CompletedTask;
 
         public async Task OnPageHandlerExecutionAsync(
             PageHandlerExecutingContext context,
             PageHandlerExecutionDelegate next)
         {
+            
+            // DETECT UPLOAD REQUESTS BEFORE EXECUTION
+            var uploadInfo = DetectUploadRequest(context);
+            if (uploadInfo.isUpload)
+            {
+                
+                context.HttpContext.Items["UploadRequestInfo"] = uploadInfo;
+            }
+            
             var executedContext = await next();
 
+            
+
             if (executedContext.Exception is ExternalApplicationsException<ExceptionResponse> ex
                 && !executedContext.ExceptionHandled)
             {
+                
+                
                 var r = ex.Result;
                 var page = context.HandlerInstance as PageModel
                            ?? throw new InvalidOperationException("Page filter only for Razor Pages");
+                           
+                
 
                 // 1) Validation: attempt to map structured validation errors into ModelState
                 if (r.StatusCode is 400 or 422)
                 {
+                    
                     if (TryAddModelStateErrorsFromContext(page, r))
                     {
+                        
                         executedContext.Result = new PageResult();
                         executedContext.ExceptionHandled = true;
+                        
                         return;
                     }
                 }
 
                 if (r.StatusCode == 400 || r.StatusCode == 409)
                 {
+                    
                     AddNonFieldError(page, ex.Result.Message);
 
+                    // SPECIAL HANDLING FOR UPLOAD REQUESTS: Use stored upload info
+                    
+                    var storedUploadInfo = context.HttpContext.Items.TryGetValue("UploadRequestInfo", out var storedInfo) 
+                        ? ((bool isUpload, string fieldId))storedInfo 
+                        : (false, string.Empty);
+                    
+                    if (storedUploadInfo.Item1)
+                    {
+                        
+                        try 
+                        {
+                            var formErrorStore = context.HttpContext.RequestServices.GetService<DfE.ExternalApplications.Web.Interfaces.IFormErrorStore>();
+                            if (formErrorStore != null)
+                            {
+                                formErrorStore.Save(storedUploadInfo.Item2, page.ModelState);
+                                
+                                // Get the return URL from the request
+                                var returnUrl = context.HttpContext.Request.Form["ReturnUrl"].ToString();
+                                if (!string.IsNullOrEmpty(returnUrl))
+                                {
+                                    
+                                    executedContext.Result = new Microsoft.AspNetCore.Mvc.RedirectResult(returnUrl);
+                                    executedContext.ExceptionHandled = true;
+                                    return;
+                                }
+                            }
+                        }
+                        catch (Exception)
+                        {
+                            
+                        }
+                    }
+
+                    
                     executedContext.Result = new PageResult();
                     executedContext.ExceptionHandled = true;
+                    
                     return;
                 }
 
@@ -58,8 +114,7 @@ public async Task OnPageHandlerExecutionAsync(
                 {
                     var logger = context.HttpContext.RequestServices.GetService<ILogger<ExternalApiPageExceptionFilter>>();
                     var userId = context.HttpContext.User?.FindFirst(System.Security.Claims.ClaimTypes.NameIdentifier)?.Value ?? "Anonymous";
-                    logger?.LogWarning(">>>>>>>>>> Authentication >>> ExternalApiPageExceptionFilter: 401 Unauthorized error for user {UserId} at {Path}. Redirecting to forbidden page.", 
-                        userId, context.HttpContext.Request.Path);
+
 
                     page.TempData["ApiErrorId"] = r.ErrorId;
                     executedContext.Result = new RedirectToPageResult("/Error/Forbidden");
@@ -79,17 +134,13 @@ public async Task OnPageHandlerExecutionAsync(
                         r.Message?.Contains("expired", StringComparison.OrdinalIgnoreCase) == true ||
                         r.Message?.Contains("unauthorized", StringComparison.OrdinalIgnoreCase) == true)
                     {
-                        logger?.LogWarning(">>>>>>>>>> Authentication >>> ExternalApiPageExceptionFilter: 403 Forbidden with token-related error for user {UserId} at {Path}. " +
-                                          "Error message: {ErrorMessage}. User claims: {UserClaims}. Redirecting to logout.", 
-                            userId, context.HttpContext.Request.Path, r.Message, userClaims);
+
 
                         executedContext.Result = new RedirectToPageResult("/Logout", new { reason = "token_expired" });
                     }
                     else
                     {
-                        logger?.LogWarning(">>>>>>>>>> Authentication >>> ExternalApiPageExceptionFilter: 403 Forbidden error for user {UserId} at {Path}. " +
-                                          "User claims: {UserClaims}. Redirecting to forbidden page.", 
-                            userId, context.HttpContext.Request.Path, userClaims);
+                        
 
                         executedContext.Result = new RedirectToPageResult("/Error/Forbidden");
                     }
@@ -102,6 +153,7 @@ public async Task OnPageHandlerExecutionAsync(
                 executedContext.Result = new RedirectToPageResult("/Error/General");
                 executedContext.ExceptionHandled = true;
             }
+            
         }
 
         private static void AddNonFieldError(PageModel page, string message)
@@ -159,5 +211,33 @@ private static bool TryAddModelStateErrorsFromContext(PageModel page, ExceptionR
 
             return false;
         }
+        
+        private static (bool isUpload, string fieldId) DetectUploadRequest(PageHandlerExecutingContext context)
+        {
+            // Check if this is an upload handler
+            var handlerName = context.HandlerMethod?.Name;
+            
+            // Handle both possible handler name formats
+            var isUploadHandler = handlerName == "OnPostUploadFileAsync" || handlerName == "UploadFile";
+            if (!isUploadHandler)
+            {
+                
+                return (false, string.Empty);
+            }
+            
+            
+            
+            // Try to get FieldId from form data
+            if (context.HttpContext.Request.HasFormContentType)
+            {
+                var fieldId = context.HttpContext.Request.Form["FieldId"].ToString();
+                if (!string.IsNullOrEmpty(fieldId))
+                {
+                    return (true, fieldId);
+                }
+            }
+            
+            return (false, string.Empty);
+        }
     }
 }

src/DfE.ExternalApplications.Web/Filters/ExternalApiMvcExceptionFilter.cs

@@ -22,9 +22,7 @@ public void OnException(ExceptionContext context)
 
             if (r.StatusCode is 401)
             {
-                logger.LogWarning(">>>>>>>>>> Authentication >>> ExternalApiMvcExceptionFilter: 401 Unauthorized error for user {UserId} at {Path}. This may indicate an authentication issue.", 
-                    context.HttpContext.User?.FindFirst(System.Security.Claims.ClaimTypes.NameIdentifier)?.Value ?? "Anonymous",
-                    context.HttpContext.Request.Path);
+
 
                 context.Result = new UnauthorizedResult();
                 context.ExceptionHandled = true;
@@ -35,12 +33,7 @@ public void OnException(ExceptionContext context)
                 var userId = context.HttpContext.User?.FindFirst(System.Security.Claims.ClaimTypes.NameIdentifier)?.Value ?? "Anonymous";
                 var userClaims = string.Join(", ", context.HttpContext.User?.Claims?.Select(c => $"{c.Type}:{c.Value}") ?? Array.Empty<string>());
 
-                logger.LogWarning(">>>>>>>>>> Authentication >>> ExternalApiMvcExceptionFilter: 403 Forbidden error for user {UserId} at {Path}. " +
-                                 "User claims: {UserClaims}. " +
-                                 "This may indicate insufficient permissions or an expired/invalid token.", 
-                    userId, 
-                    context.HttpContext.Request.Path,
-                    userClaims);
+
 
                 context.Result = new ForbidResult();
                 context.ExceptionHandled = true;

src/DfE.ExternalApplications.Web/Middleware/PermissionsCacheMiddleware.cs

@@ -22,42 +22,37 @@ public async Task InvokeAsync(HttpContext context)
         var user = context.User;
         var requestPath = context.Request.Path;
 
-        logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Processing request at path {Path}", requestPath);
+
 
         if (user.Identity?.IsAuthenticated == true)
         {
             var userId = user.FindFirstValue(ClaimTypes.NameIdentifier);
-            logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: User {UserId} is authenticated", userId ?? "Unknown");
+
 
             if (!string.IsNullOrEmpty(userId))
             {
                 var cacheKey = $"{PermissionsCacheKeyPrefix}{userId}";
                 if (!cache.TryGetValue(cacheKey, out _))
                 {
-                    logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: No cached permissions found for user {UserId}, fetching from API", userId);
+
 
                     try
                     {
-                        logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Calling API to get permissions for user {UserId}", userId);
                         var permissions = await usersClient.GetMyPermissionsAsync();
-                        logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Successfully received {PermissionCount} permissions for user {UserId}", 
-                            permissions?.Permissions?.Count() ?? 0, userId);
                         cache.Set(cacheKey, permissions, TimeSpan.FromMinutes(5));
-                        logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Cached permissions for user {UserId}", userId);
+
                     }
                     catch (HttpRequestException ex) when (ex.Message.Contains("403") || ex.Message.Contains("Forbidden"))
                     {
-                        logger?.LogWarning(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Received 403/Forbidden from API for user {UserId}: {Error}. Token likely invalid/expired, redirecting to logout.", 
-                            userId, ex.Message);
+
 
                         // Token is invalid/expired - force re-authentication
                         context.Response.Redirect("/Logout?reason=token_expired");
                         return;
                     }
                     catch (HttpRequestException ex) when (ex.Message.Contains("401") || ex.Message.Contains("Unauthorized"))
                     {
-                        logger?.LogWarning(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Received 401/Unauthorized from API for user {UserId}: {Error}. Authentication failed, redirecting to logout.", 
-                            userId, ex.Message);
+
 
                         // Authentication failed - force re-authentication
                         context.Response.Redirect("/Logout?reason=auth_failed");
@@ -66,33 +61,33 @@ public async Task InvokeAsync(HttpContext context)
                     catch (Exception ex)
                     {
                         // Cache empty auth data on other errors but log the issue
-                        logger?.LogWarning(ex, ">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Failed to load user permissions for user {UserId}. Error: {Error}", userId, ex.Message);
+
 
                         var emptyAuthData = new UserAuthorizationDto
                         {
                             Permissions = Enumerable.Empty<UserPermissionDto>(),
                             Roles = Enumerable.Empty<string>()
                         };
                         cache.Set(cacheKey, emptyAuthData, TimeSpan.FromMinutes(1));
-                        logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Cached empty permissions for user {UserId} due to error", userId);
+
                     }
                 }
                 else
                 {
-                    logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Using cached permissions for user {UserId}", userId);
+
                 }
             }
             else
             {
-                logger?.LogWarning(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: User is authenticated but has no NameIdentifier claim");
+
             }
         }
         else
         {
-            logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: User is not authenticated");
+
         }
 
-        logger?.LogDebug(">>>>>>>>>> Authentication >>> PermissionsCacheMiddleware: Proceeding to next middleware");
+
         await next(context);
     }
 }