From a69e13c2ab63b9e3d44cebd5509fb82853cc9126 Mon Sep 17 00:00:00 2001
From: Developer 02 <developer02@didaloghe.onmicrosoft.com>
Date: Mon, 10 Mar 2025 15:39:34 +0100
Subject: [PATCH] =?UTF-8?q?feat:=20Logging=20f=C3=BCr=20unerwartete=20Ausn?=
 =?UTF-8?q?ahmen=20hinzugef=C3=BCgt,=20um=20eine=20bessere=20Fehlerverfolg?=
 =?UTF-8?q?ung=20und=20Probleml=C3=B6sung=20zu=20gew=C3=A4hrleisten.?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/DigitalData.Auth.API/Program.cs | 166 +++++++++++++++-------------
 1 file changed, 87 insertions(+), 79 deletions(-)

diff --git a/src/DigitalData.Auth.API/Program.cs b/src/DigitalData.Auth.API/Program.cs
index afaf3d8..2896576 100644
--- a/src/DigitalData.Auth.API/Program.cs
+++ b/src/DigitalData.Auth.API/Program.cs
@@ -17,24 +17,26 @@ using NLog.Web;
 var logger = LogManager.Setup().LoadConfigurationFromAppSettings().GetCurrentClassLogger();
 logger.Info("Logging initialized.");
 
-var builder = WebApplication.CreateBuilder(args);
+try
+{
+    var builder = WebApplication.CreateBuilder(args);
 
-builder.Configuration.AddJsonFile("consumer-repository.json", true, true);
+    builder.Configuration.AddJsonFile("consumer-repository.json", true, true);
 
-var config = builder.Configuration;
+    var config = builder.Configuration;
 
-var apiParams = config.Get<AuthApiParams>() ?? throw new InvalidOperationException("AuthApiOptions is missing or invalid in appsettings.");
+    var apiParams = config.Get<AuthApiParams>() ?? throw new InvalidOperationException("AuthApiOptions is missing or invalid in appsettings.");
 
-// Add services to the container.
-builder.Services.Configure<AuthApiParams>(config);
-builder.Services.AddAuthService(config);
-builder.Services.AddCryptoFactory(config.GetSection("CryptParams"));
-builder.Services.AddJwtSignatureHandler<Consumer>(api => new Dictionary<string, object>
+    // Add services to the container.
+    builder.Services.Configure<AuthApiParams>(config);
+    builder.Services.AddAuthService(config);
+    builder.Services.AddCryptoFactory(config.GetSection("CryptParams"));
+    builder.Services.AddJwtSignatureHandler<Consumer>(api => new Dictionary<string, object>
 {
     { JwtRegisteredClaimNames.Sub, api.Id },
     { JwtRegisteredClaimNames.Iat, DateTimeOffset.UtcNow.ToUnixTimeSeconds() }
 });
-builder.Services.AddJwtSignatureHandler<UserReadDto>(user => new Dictionary<string, object>
+    builder.Services.AddJwtSignatureHandler<UserReadDto>(user => new Dictionary<string, object>
 {
     { JwtRegisteredClaimNames.Sub, user.Id },
     { JwtRegisteredClaimNames.UniqueName, user.Username },
@@ -43,29 +45,29 @@ builder.Services.AddJwtSignatureHandler<UserReadDto>(user => new Dictionary<stri
     { JwtRegisteredClaimNames.FamilyName, user.Name ?? string.Empty },
     { JwtRegisteredClaimNames.Iat, DateTimeOffset.UtcNow.ToUnixTimeSeconds() }
 });
-builder.Services.AddDirectorySearchService(config.GetSection("DirectorySearchOptions"));
-builder.Services.AddSignalR();
+    builder.Services.AddDirectorySearchService(config.GetSection("DirectorySearchOptions"));
+    builder.Services.AddSignalR();
 
-var cnn_str = builder.Configuration.GetConnectionString("Default") ?? throw new InvalidOperationException("Default connection string is not found.");
+    var cnn_str = builder.Configuration.GetConnectionString("Default") ?? throw new InvalidOperationException("Default connection string is not found.");
 
-builder.Services.AddUserManager(cnn_str);
+    builder.Services.AddUserManager(cnn_str);
 
-builder.Services.AddControllers();
+    builder.Services.AddControllers();
 
-builder.Services.AddEndpointsApiExplorer();
-builder.Services.AddSwaggerGen(options =>
-{
-    options.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme
+    builder.Services.AddEndpointsApiExplorer();
+    builder.Services.AddSwaggerGen(options =>
     {
-        Name = "Authorization",
-        Type = SecuritySchemeType.Http,
-        Scheme = "bearer",
-        BearerFormat = "JWT",
-        In = ParameterLocation.Header,
-        Description = "Enter 'Bearer' [space] and then your valid token."
-    });
-
-    options.AddSecurityRequirement(new OpenApiSecurityRequirement
+        options.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme
+        {
+            Name = "Authorization",
+            Type = SecuritySchemeType.Http,
+            Scheme = "bearer",
+            BearerFormat = "JWT",
+            In = ParameterLocation.Header,
+            Description = "Enter 'Bearer' [space] and then your valid token."
+        });
+
+        options.AddSecurityRequirement(new OpenApiSecurityRequirement
     {
         {
             new OpenApiSecurityScheme
@@ -82,69 +84,75 @@ builder.Services.AddSwaggerGen(options =>
             new List<string>()
         }
     });
-});
+    });
 
-// Add authentication
-Lazy<SecurityKey>? issuerSigningKeyInitiator = null;
+    // Add authentication
+    Lazy<SecurityKey>? issuerSigningKeyInitiator = null;
 
-builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
-    .AddJwtBearer(options =>
-    {
-        options.RequireHttpsMetadata = apiParams!.RequireHttpsMetadata;
-        options.ClaimsIssuer = apiParams!.Issuer;
-        options.Audience = apiParams.LocalConsumer.Audience;
-        options.TokenValidationParameters = new()
+    builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
+        .AddJwtBearer(options =>
         {
-            ValidateIssuer = true,
-            ValidIssuer = apiParams!.Issuer,
-            ValidateAudience = true,
-            ValidAudience = apiParams.LocalConsumer.Audience,
-            ValidateLifetime = true,
-            IssuerSigningKey = issuerSigningKeyInitiator?.Value
-        };
-
-        options.Events = new JwtBearerEvents
-        {
-            OnMessageReceived = context =>
+            options.RequireHttpsMetadata = apiParams!.RequireHttpsMetadata;
+            options.ClaimsIssuer = apiParams!.Issuer;
+            options.Audience = apiParams.LocalConsumer.Audience;
+            options.TokenValidationParameters = new()
+            {
+                ValidateIssuer = true,
+                ValidIssuer = apiParams!.Issuer,
+                ValidateAudience = true,
+                ValidAudience = apiParams.LocalConsumer.Audience,
+                ValidateLifetime = true,
+                IssuerSigningKey = issuerSigningKeyInitiator?.Value
+            };
+
+            options.Events = new JwtBearerEvents
             {
-                // if there is no token read related cookie or query string
-                if (context.Token is null)   // if there is no token
+                OnMessageReceived = context =>
                 {
-                    if (context.Request.Cookies.TryGetValue(apiParams!.DefaultCookieName, out var cookieToken) && cookieToken is not null)
-                        context.Token = cookieToken;
-                    else if (context.Request.Query.TryGetValue(apiParams.DefaultQueryStringKey, out var queryStrToken))
-                        context.Token = queryStrToken;
+                    // if there is no token read related cookie or query string
+                    if (context.Token is null)   // if there is no token
+                    {
+                        if (context.Request.Cookies.TryGetValue(apiParams!.DefaultCookieName, out var cookieToken) && cookieToken is not null)
+                            context.Token = cookieToken;
+                        else if (context.Request.Query.TryGetValue(apiParams.DefaultQueryStringKey, out var queryStrToken))
+                            context.Token = queryStrToken;
+                    }
+                    return Task.CompletedTask;
                 }
-                return Task.CompletedTask;
-            }
-        };
-    });
+            };
+        });
 
-var app = builder.Build();
+    var app = builder.Build();
 
-issuerSigningKeyInitiator = new Lazy<SecurityKey>(() =>
-{
-    var factory = app.Services.GetRequiredService<ICryptoFactory>();
-    var desc = factory.TokenDescriptors.Get(apiParams.Issuer, apiParams.LocalConsumer.Audience);
-    return desc.Validator.SecurityKey;
-});
+    issuerSigningKeyInitiator = new Lazy<SecurityKey>(() =>
+    {
+        var factory = app.Services.GetRequiredService<ICryptoFactory>();
+        var desc = factory.TokenDescriptors.Get(apiParams.Issuer, apiParams.LocalConsumer.Audience);
+        return desc.Validator.SecurityKey;
+    });
 
-// Configure the HTTP request pipeline.
-var use_swagger = config.GetValue<bool>("UseSwagger");
-if (app.Environment.IsDevelopment() || use_swagger)
-{
-    app.UseSwagger();
-    app.UseSwaggerUI();
-}
+    // Configure the HTTP request pipeline.
+    var use_swagger = config.GetValue<bool>("UseSwagger");
+    if (app.Environment.IsDevelopment() || use_swagger)
+    {
+        app.UseSwagger();
+        app.UseSwaggerUI();
+    }
 
-app.UseHttpsRedirection();
+    app.UseHttpsRedirection();
 
-app.UseAuthentication();
+    app.UseAuthentication();
 
-app.UseAuthorization();
+    app.UseAuthorization();
 
-app.MapControllers();
+    app.MapControllers();
 
-app.MapHub<AuthHub>("/auth-hub");
+    app.MapHub<AuthHub>("/auth-hub");
 
-app.Run();
\ No newline at end of file
+    app.Run();
+}
+catch(Exception ex)
+{
+    logger.Error(ex, "Stopped program because of exception.");
+    throw;
+}
\ No newline at end of file