pwt-0x01-ng/Startup.cs

using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.CookiePolicy;
using Microsoft.AspNetCore.Hosting;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.HttpsPolicy;
using Microsoft.AspNetCore.Identity;
using Microsoft.AspNetCore.Identity.EntityFrameworkCore;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using pwt_0x01_ng.Models.Identity;
using pwt_0x01_ng.Models.Database;
using Microsoft.EntityFrameworkCore;

namespace pwt_0x01_ng
{
	public class Startup
	{
		public Startup(IConfiguration configuration)
		{
			Configuration = configuration;
		}

		public IConfiguration Configuration { get; }

		// This method gets called by the runtime. Use this method to add services to the container.
		public void ConfigureServices(IServiceCollection services)
		{
			services.Configure<CookiePolicyOptions>(options =>
			{
				// This lambda determines whether user consent for non-essential cookies is needed for a given request.
				options.CheckConsentNeeded = context => false;
				options.MinimumSameSitePolicy = SameSiteMode.Lax;
				options.HttpOnly = HttpOnlyPolicy.Always;
				options.Secure = CookieSecurePolicy.Always;
			});

			services.AddControllersWithViews();
			services.AddRazorPages();

			var connectionString = Environment.GetEnvironmentVariable("DB_CONNECTION_STRING");
			services.AddDbContext<DBContext>(options =>
				options.UseNpgsql(
					connectionString
				)
			);


			services.AddIdentity<User, Role>().AddEntityFrameworkStores<DBContext>().AddDefaultTokenProviders();
			services.Configure<IdentityOptions>(o =>
			{
				/* dev fun settings */
				o.Password.RequireDigit = false;
				o.Password.RequireUppercase = false;
				o.Password.RequireLowercase = false;
				o.Password.RequireNonAlphanumeric = false;
				o.Password.RequiredLength = 2;
				o.Password.RequiredUniqueChars = 1;
				o.Lockout.DefaultLockoutTimeSpan = TimeSpan.FromMinutes(1);
				o.Lockout.MaxFailedAccessAttempts = 3;
				o.Lockout.AllowedForNewUsers = false;
				o.User.RequireUniqueEmail = true;
				/* FIXME
				 * o.Password.RequireDigit = true;
				 * o.Password.RequiredLength = 18;
				 * o.Password.RequiredUniqueChars = 10;
				 * o.Lockout.DefaultLockoutTimeSpan = TimeSpan.FromMinutes(15);
				 * o.Lockout.MaxFailedAccessAttempts = 3;
				 * o.Lockout.AllowedForNewUsers = true;
				 * o.User.RequireUniqueEmail = true;
				 */
			});
			services.ConfigureApplicationCookie(o => {
				o.Cookie.HttpOnly = true;
				o.ExpireTimeSpan = TimeSpan.FromDays(2);
				o.SlidingExpiration = true;
				o.LoginPath = "/Security/Account/Login";
				o.LogoutPath = "/Security/Account/Logout";
			});
			services.AddMvc().SetCompatibilityVersion(CompatibilityVersion.Version_3_0);
			services.AddResponseCompression();
		}

		// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
		public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
		{
			if (env.EnvironmentName.Equals("Development"))
			{
				app.UseDeveloperExceptionPage();
			}
			else
			{
				app.UseExceptionHandler("/Home/Error");
			}
			app.UseStatusCodePages();
			app.UseStatusCodePagesWithReExecute("/Home/HandleError/{0}");

			app.UseRouting();
			app.UseAuthentication();
			app.UseAuthorization();
			app.UseEndpoints(endpoints =>
			{
				endpoints.MapRazorPages();
				endpoints.MapControllerRoute(
					name: "areas",
					pattern: "{area:exists}/{controller=Home}/{action=Index}/{id?}"
				);
				endpoints.MapControllerRoute(
					name: "default",
					pattern: "{controller=Home}/{action=Index}/{id?}"
				);
				endpoints.MapControllerRoute(
					name: "default",
					pattern: "{controller=Products}/{action=Details}/{id?}"
				);
			});

			app.UseStaticFiles();
			app.UseCookiePolicy();

		}
	}
}