add claims to validator, improve register methods, .net 9.0

Author: pwelter34

.github/workflows/dotnet.yml

@@ -33,10 +33,7 @@ jobs:
       - name: Install .NET Core
         uses: actions/setup-dotnet@v4
         with:
-          dotnet-version: |
-            6.0.x
-            7.0.x
-            8.0.x
+          dotnet-version: 9.x
 
       - name: Restore Dependencies
         run: dotnet restore

samples/Sample.Controllers/Sample.Controllers.csproj

@@ -1,7 +1,7 @@
 <Project Sdk="Microsoft.NET.Sdk.Web">
 
   <PropertyGroup>
-    <TargetFramework>net8.0</TargetFramework>
+    <TargetFramework>net9.0</TargetFramework>
     <Nullable>enable</Nullable>
     <ImplicitUsings>enable</ImplicitUsings>
   </PropertyGroup>

samples/Sample.Middleware/Sample.Middleware.csproj

@@ -1,13 +1,13 @@
 <Project Sdk="Microsoft.NET.Sdk.Web">
 
   <PropertyGroup>
-    <TargetFramework>net8.0</TargetFramework>
+    <TargetFramework>net9.0</TargetFramework>
     <Nullable>enable</Nullable>
     <ImplicitUsings>enable</ImplicitUsings>
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="8.0.11" />
+    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="9.0.0" />
     <PackageReference Include="Swashbuckle.AspNetCore" Version="7.2.0" />
   </ItemGroup>
 

samples/Sample.MinimalApi/MinimalApi.http

@@ -23,3 +23,9 @@ X-API-KEY: 01HSGVBSF99SK6XMJQJYF0X3WQ
 GET {{HostAddress}}/config-debugger/
 Accept: application/json
 X-API-KEY: 01HSGVBSF99SK6XMJQJYF0X3WQ
+
+###
+
+GET {{HostAddress}}/current/
+Accept: application/json
+X-API-KEY: 01HSGVBSF99SK6XMJQJYF0X3WQ

samples/Sample.MinimalApi/Program.cs

@@ -1,3 +1,5 @@
+using System.Security.Claims;
+
 using AspNetCore.SecurityKey;
 
 using Sample.Shared;
@@ -45,6 +47,14 @@ public static void Main(string[] args)
             .WithOpenApi()
             .RequireAuthorization();
 
+        app.MapGet("/current", (ClaimsPrincipal? principal) =>
+            {
+                var p = principal;
+                return WeatherFaker.Instance.Generate(5);
+            })
+            .WithName("GetCurrentUser")
+            .WithOpenApi();
+
         app.Run();
     }
 }

samples/Sample.MinimalApi/Sample.MinimalApi.csproj

@@ -1,13 +1,13 @@
 <Project Sdk="Microsoft.NET.Sdk.Web">
 
   <PropertyGroup>
-    <TargetFramework>net8.0</TargetFramework>
+    <TargetFramework>net9.0</TargetFramework>
     <Nullable>enable</Nullable>
     <ImplicitUsings>enable</ImplicitUsings>
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="8.0.11" />
+    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="9.0.0" />
     <PackageReference Include="Swashbuckle.AspNetCore" Version="7.2.0" />
   </ItemGroup>
 

samples/Sample.Shared/Sample.Shared.csproj

@@ -1,7 +1,7 @@
-<Project Sdk="Microsoft.NET.Sdk">
+<Project Sdk="Microsoft.NET.Sdk">
 
   <PropertyGroup>
-    <TargetFramework>net8.0</TargetFramework>
+    <TargetFramework>net9.0</TargetFramework>
     <ImplicitUsings>enable</ImplicitUsings>
     <Nullable>enable</Nullable>
   </PropertyGroup>

src/AspNetCore.SecurityKey/AspNetCore.SecurityKey.csproj

@@ -1,7 +1,7 @@
 <Project Sdk="Microsoft.NET.Sdk">
 
   <PropertyGroup>
-    <TargetFrameworks>net6.0;net7.0;net8.0</TargetFrameworks>
+    <TargetFrameworks>net6.0;net7.0;net8.0;net9.0</TargetFrameworks>
     <ImplicitUsings>enable</ImplicitUsings>
     <Nullable>enable</Nullable>
   </PropertyGroup>

src/AspNetCore.SecurityKey/DependencyInjectionExtensions.cs

@@ -18,15 +18,47 @@ public static class DependencyInjectionExtensions
     /// The <see cref="IServiceCollection"/> so that additional calls can be chained.
     /// </returns>
     public static IServiceCollection AddSecurityKey(this IServiceCollection services, Action<SecurityKeyOptions>? configure = null)
+    {
+        return AddSecurityKey<SecurityKeyValidator, SecurityKeyExtractor>(services, configure);
+    }
+
+    /// <summary>
+    /// Adds the security API key services to the specified <see cref="IServiceCollection" />.
+    /// </summary>
+    /// <typeparam name="TValidator">The type for validating the security API key.</typeparam>
+    /// <param name="services">The <see cref="IServiceCollection" /> to add services.</param>
+    /// <param name="configure">An action delegate to configure the provided <see cref="SecurityKeyOptions" />.</param>
+    /// <returns>
+    /// The <see cref="IServiceCollection" /> so that additional calls can be chained.
+    /// </returns>
+    public static IServiceCollection AddSecurityKey<TValidator>(this IServiceCollection services, Action<SecurityKeyOptions>? configure = null)
+        where TValidator : class, ISecurityKeyValidator
+    {
+        return AddSecurityKey<TValidator, SecurityKeyExtractor>(services, configure);
+    }
+
+    /// <summary>
+    /// Adds the security API key services to the specified <see cref="IServiceCollection" />.
+    /// </summary>
+    /// <typeparam name="TValidator">The type for validating the security API key.</typeparam>
+    /// <typeparam name="TExtractor">The type for extracting the security API key.</typeparam>
+    /// <param name="services">The <see cref="IServiceCollection" /> to add services.</param>
+    /// <param name="configure">An action delegate to configure the provided <see cref="SecurityKeyOptions" />.</param>
+    /// <returns>
+    /// The <see cref="IServiceCollection" /> so that additional calls can be chained.
+    /// </returns>
+    public static IServiceCollection AddSecurityKey<TValidator, TExtractor>(this IServiceCollection services, Action<SecurityKeyOptions>? configure = null)
+        where TValidator : class, ISecurityKeyValidator
+        where TExtractor : class, ISecurityKeyExtractor
     {
         services.AddHttpContextAccessor();
 
         services.AddOptions<SecurityKeyOptions>();
         if (configure != null)
             services.Configure(configure);
 
-        services.TryAddSingleton<ISecurityKeyExtractor, SecurityKeyExtractor>();
-        services.TryAddSingleton<ISecurityKeyValidator, SecurityKeyValidator>();
+        services.TryAddSingleton<ISecurityKeyExtractor, TExtractor>();
+        services.TryAddSingleton<ISecurityKeyValidator, TValidator>();
 
         // used by SecurityKeyAttribute
         services.TryAddSingleton<SecurityKeyAuthorizationFilter>();

src/AspNetCore.SecurityKey/ISecurityKeyValidator.cs

@@ -1,3 +1,5 @@
+using System.Security.Claims;
+
 namespace AspNetCore.SecurityKey;
 
 /// <summary>
@@ -11,4 +13,14 @@ public interface ISecurityKeyValidator
     /// <param name="value">The security API key to validate.</param>
     /// <returns>true if security API key is valid; otherwise false</returns>
     bool Validate(string? value);
+
+    /// <summary>
+    /// Validates the specified security API key.
+    /// </summary>
+    /// <param name="value">The security API key to validate.</param>
+    /// <param name="claims">The claims associated with the security API key.</param>
+    /// <returns>
+    /// true if security API key is valid; otherwise false
+    /// </returns>
+    bool Validate(string? value, out Claim[] claims);
 }