Http-Interceptor hinzugefügt.

EnvelopeGenerator.GeneratorAPI/ClientApp/envelope-generator-ui/angular.json

@@ -45,8 +45,8 @@
               "budgets": [
                 {
                   "type": "initial",
-                  "maximumWarning": "500kb",
-                  "maximumError": "1mb"
+                  "maximumWarning": "1.5mb",
+                  "maximumError": "2mb"
                 },
                 {
                   "type": "anyComponentStyle",

EnvelopeGenerator.GeneratorAPI/ClientApp/envelope-generator-ui/src/app/app.config.ts

@@ -6,7 +6,8 @@ import { provideAnimationsAsync } from '@angular/platform-browser/animations/asy
 import { APP_BASE_HREF } from '@angular/common';
 import { UrlService } from './services/url.service';
 import { API_URL } from './tokens/index'
-import { provideHttpClient, withFetch } from '@angular/common/http';
+import { HTTP_INTERCEPTORS, provideHttpClient, withFetch } from '@angular/common/http';
+import { HttpRequestInterceptor } from './http.interceptor';
 
 export const appConfig: ApplicationConfig = {
   providers: [
@@ -23,6 +24,11 @@ export const appConfig: ApplicationConfig = {
       provide: API_URL,
       useFactory: (urlService: UrlService) => urlService.getApiUrl(),
       deps: [UrlService]
+    },
+    {
+      provide: HTTP_INTERCEPTORS,
+      useClass: HttpRequestInterceptor,
+      multi: true
     }
   ]
 };

EnvelopeGenerator.GeneratorAPI/ClientApp/envelope-generator-ui/src/app/guards/auth.guard.ts

@@ -3,11 +3,13 @@ import { inject } from '@angular/core';
 import { CanActivateFn, Router } from '@angular/router';
 import { AuthService } from '../services/auth.service';
 import { map } from 'rxjs/operators';
-import { Observable } from 'rxjs';
 
 export const authGuard: CanActivateFn = (route, state) => {
   const authService = inject(AuthService);
   const router = inject(Router);
+
+  authService.isAuthenticated().subscribe({next: res => console.log(res)})
+
   return authService.isAuthenticated().pipe(
     map(isAuthenticated => {
       if (!isAuthenticated) {

EnvelopeGenerator.GeneratorAPI/ClientApp/envelope-generator-ui/src/app/http.interceptor.spec.ts

@@ -0,0 +1,17 @@
+import { TestBed } from '@angular/core/testing';
+import { HttpInterceptorFn } from '@angular/common/http';
+
+import { httpInterceptor } from './http.interceptor';
+
+describe('httpInterceptor', () => {
+  const interceptor: HttpInterceptorFn = (req, next) => 
+    TestBed.runInInjectionContext(() => httpInterceptor(req, next));
+
+  beforeEach(() => {
+    TestBed.configureTestingModule({});
+  });
+
+  it('should be created', () => {
+    expect(interceptor).toBeTruthy();
+  });
+});

EnvelopeGenerator.GeneratorAPI/ClientApp/envelope-generator-ui/src/app/http.interceptor.ts

@@ -0,0 +1,21 @@
+import { Injectable } from '@angular/core';
+import { HttpEvent, HttpInterceptor, HttpHandler, HttpRequest } from '@angular/common/http';
+import { Observable } from 'rxjs';
+
+@Injectable()
+export class HttpRequestInterceptor implements HttpInterceptor {
+  intercept(req: HttpRequest<any>, next: HttpHandler): Observable<HttpEvent<any>> {
+    const secureReq = req.clone({
+      withCredentials: true,
+      setHeaders: {
+        'X-Insecure-Request': 'true',
+        'Content-Type': 'application/json',
+        ...req.headers.keys().reduce((headers, key) => {
+          headers[key] = req.headers.get(key) || '';
+          return headers;
+        }, {} as { [name: string]: string })
+      }
+    });
+    return next.handle(secureReq);
+  }
+}

EnvelopeGenerator.GeneratorAPI/ClientApp/envelope-generator-ui/src/app/services/envelope-receiver.service.ts

@@ -15,10 +15,6 @@ export class EnvelopeReceiverService {
   }
 
   getEnvelopeReceiver(): Observable<any> {
-    const headers = new HttpHeaders({
-      'Content-Type': 'application/json',
-    });
-
-    return this.http.get<any>(this.url, {  withCredentials: true , headers });
+    return this.http.get<any>(this.url);
   }
 }

EnvelopeGenerator.GeneratorAPI/Controllers/AuthController.cs

@@ -64,6 +64,7 @@ namespace EnvelopeGenerator.GeneratorAPI.Controllers
                 {
                     IsPersistent = true,
                     AllowRefresh = true,
+                    ExpiresUtc = DateTime.Now.AddMinutes(180)
                 };
 
                 // Sign in
@@ -72,8 +73,6 @@ namespace EnvelopeGenerator.GeneratorAPI.Controllers
                     new ClaimsPrincipal(claimsIdentity),
                     authProperties);
 
-                _dirSearchService.SetSearchRootCache(user.Username, login.Password);
-
                 return Ok();
             }
             catch(Exception ex)

EnvelopeGenerator.GeneratorAPI/Program.cs

@@ -44,7 +44,6 @@ builder.Services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationSc
     options.Cookie.SameSite = SameSiteMode.Strict; // Protects against CSRF attacks by restricting how cookies are sent with requests from external sites
     options.LoginPath = "/api/auth/login";
     options.LogoutPath = "/api/auth/logout";
-    options.ExpireTimeSpan = TimeSpan.FromMinutes(60);
     options.SlidingExpiration = true;
 });