Merge pull request #23 from THC-Software/kubernetes

Kubernetes

Author: CengoleFHV

Application/Controllers/PlayOfferController.cs

@@ -28,7 +28,7 @@ public PlayOfferController(IMediator mediator)
     /// <response code="200">Returns a list of Play offers matching the query params</response>
     /// <response code="204">No Play offer with matching properties was found</response>
     [HttpGet]
-    [Authorize]
+    [Authorize(Roles = "MEMBER,ADMIN")]
     [Route("club")]
     [ProducesResponseType(typeof(IEnumerable<PlayOfferDto>), StatusCodes.Status200OK)]
     [ProducesResponseType(typeof(ActionResult), StatusCodes.Status204NoContent)]
@@ -52,15 +52,15 @@ public async Task<ActionResult<IEnumerable<PlayOfferDto>>> GetByClubIdAsync()
     ///<response code="200">Returns a list of Play offers matching the query params</response>
     ///<response code="204">No Play offer with matching properties was found</response>
     [HttpGet]
-    [Authorize]
+    [Authorize(Roles = "MEMBER,ADMIN")]
     [Route("participant")]
     [ProducesResponseType(typeof(IEnumerable<PlayOffer>), StatusCodes.Status200OK)]
     [ProducesResponseType(typeof(ActionResult), StatusCodes.Status204NoContent)]
     [Consumes("application/json")]
     [Produces("application/json")]
     public async Task<ActionResult<IEnumerable<PlayOfferDto>>> GetByParticipantIdAsync()
     {
-        var participantId = Guid.Parse(User.FindFirst(ClaimTypes.NameIdentifier).Value);
+        var participantId = Guid.Parse(User.FindFirst("sub")!.Value);
         var result = await _mediator.Send(new GetPlayOffersByParticipantIdQuery(participantId));
 
         if (result.Count() == 0)
@@ -77,7 +77,7 @@ public async Task<ActionResult<IEnumerable<PlayOfferDto>>> GetByParticipantIdAsy
     ///<response code="200">Returns a List of Play offers with creator matching the query params</response>
     ///<response code="204">No Play offers with matching creator was found</response>
     [HttpGet]
-    [Authorize]
+    [Authorize(Roles = "MEMBER,ADMIN")]
     [Route("search")]
     [ProducesResponseType(typeof(IEnumerable<PlayOffer>), StatusCodes.Status200OK)]
     [ProducesResponseType(typeof(ActionResult), StatusCodes.Status204NoContent)]
@@ -112,17 +112,14 @@ public async Task<ActionResult<IEnumerable<PlayOfferDto>>> GetByCreatorNameAsync
     ///<response code="400">Invalid Play Offer structure</response>
     ///<response code="401">Only members can create Play Offers</response>
     [HttpPost]
-    [Authorize]
+    [Authorize(Roles = "MEMBER")]
     [ProducesResponseType(typeof(PlayOffer), StatusCodes.Status201Created)]
     [ProducesResponseType(typeof(ActionResult), StatusCodes.Status400BadRequest)]
     [Consumes("application/json")]
     [Produces("application/json")]
     public async Task<ActionResult<PlayOffer>> Create(CreatePlayOfferDto createPlayOfferDto)
     {
-        if (User.Claims.First(c => c.Type == "groups").Value != "MEMBER")
-            return Unauthorized("Only members can create Play Offers!");
-        
-        var creatorId = Guid.Parse(User.FindFirst(ClaimTypes.NameIdentifier)!.Value);
+        var creatorId = Guid.Parse(User.FindFirst("sub")!.Value);
         var clubId = Guid.Parse(User.FindFirst("tennisClubId")!.Value);
 
         Guid result;
@@ -147,17 +144,14 @@ public async Task<ActionResult<PlayOffer>> Create(CreatePlayOfferDto createPlayO
     ///<response code="400">No Play Offer with matching id found</response>
     ///<response code="401">Only creator can cancel Play Offers</response>
     [HttpDelete]
-    [Authorize]
+    [Authorize(Roles = "MEMBER")]
     [ProducesResponseType(typeof(ActionResult), StatusCodes.Status200OK)]
     [ProducesResponseType(typeof(ActionResult), StatusCodes.Status400BadRequest)]
     [Consumes("application/json")]
     [Produces("application/json")]
     public async Task<ActionResult> Delete(Guid playOfferId)
     {
-        if (User.Claims.First(c => c.Type == "groups").Value != "MEMBER")
-            return Unauthorized("Only members can cancel Play Offers!");
-        
-        var memberId = Guid.Parse(User.FindFirst(ClaimTypes.NameIdentifier)!.Value);
+        var memberId = Guid.Parse(User.FindFirst("sub")!.Value);
 
         try
         {
@@ -184,18 +178,15 @@ public async Task<ActionResult> Delete(Guid playOfferId)
     ///<response code="400">No playOffer with a matching playOfferId found</response>
     ///<response code="401">Only members can join Play Offers</response>
     [HttpPost]
-    [Authorize]
+    [Authorize(Roles = "MEMBER")]
     [Route("join")]
     [ProducesResponseType(typeof(ActionResult), StatusCodes.Status200OK)]
     [ProducesResponseType(typeof(ActionResult), StatusCodes.Status400BadRequest)]
     [Consumes("application/json")]
     [Produces("application/json")]
     public async Task<ActionResult> Join(JoinPlayOfferDto joinPlayOfferDto)
     {
-        if (User.Claims.First(c => c.Type == "groups").Value != "MEMBER")
-            return Unauthorized("Only members can join Play Offers!");
-        
-        var memberId = Guid.Parse(User.FindFirst(ClaimTypes.NameIdentifier)!.Value);
+        var memberId = Guid.Parse(User.FindFirst("sub")!.Value);
         try
         {
             await _mediator.Send(new JoinPlayOfferCommand(joinPlayOfferDto, memberId));

BasicAuthenticationHandler.cs

@@ -0,0 +1,24 @@
+using System.Security.Claims;
+using System.Text.Encodings.Web;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.Extensions.Options;
+
+namespace PlayOfferService;
+
+public class BasicAuthenticationHandler(
+    IOptionsMonitor<AuthenticationSchemeOptions> options,
+    ILoggerFactory logger,
+    UrlEncoder encoder,
+    ISystemClock clock)
+    : AuthenticationHandler<AuthenticationSchemeOptions>(options, logger, encoder, clock)
+{
+    protected override Task<AuthenticateResult> HandleAuthenticateAsync()
+    {
+        var claims = new[] { new Claim(ClaimTypes.Name, "DummyUser") };
+        var identity = new ClaimsIdentity(claims, Scheme.Name);
+        var principal = new ClaimsPrincipal(identity);
+        var ticket = new AuthenticationTicket(principal, Scheme.Name);
+
+        return Task.FromResult(AuthenticateResult.Success(ticket));
+    }
+}

Deployment/pos-debezium.yml

@@ -0,0 +1,68 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: pos-debezium
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: pos-debezium
+  template:
+    metadata:
+      labels:
+        app: pos-debezium
+    spec:
+      containers:
+        - name: pos-debezium
+          image: debezium/server
+          ports:
+            - containerPort: 8080
+          volumeMounts:
+            - name: debezium-configmap
+              mountPath: /debezium/conf
+          imagePullPolicy: IfNotPresent
+      volumes:
+        - name: debezium-configmap
+          configMap:
+            name: debezium-configmap
+    restartPolicy: Always
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: pos-debezium
+spec:
+  selector:
+    app: pos-debezium
+  ports:
+    - protocol: TCP
+      port: 8080
+      targetPort: 8080
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: debezium-configmap
+data:
+  application.properties: |
+    # source config (postgres)
+    debezium.source.connector.class=io.debezium.connector.postgresql.PostgresConnector
+    debezium.source.offset.storage.file.filename=data/offsets.dat
+    debezium.source.offset.flush.interval.ms=0
+    debezium.source.database.hostname=pos-postgres-write
+    debezium.source.database.port=5432
+    debezium.source.database.user=pos_user
+    debezium.source.database.password=pos_password
+    debezium.source.database.dbname=pos_write_db
+    debezium.source.plugin.name=pgoutput
+    debezium.source.topic.prefix=pos
+    debezium.source.schema.include.list=public
+    
+    # sink config (redis)
+    debezium.sink.type=redis
+    debezium.sink.redis.address=redis:6379
+    #debezium.sink.redis.user=WE HAVE NO USER CONFIGURED SO WE COMMENT THIS
+    #debezium.sink.redis.password=WE HAVE NO PASSWORD CONFIGURED SO WE COMMENT THIS
+    
+    # disable logging in json, so we are actually able to read something
+    quarkus.log.console.json=false

Deployment/pos-postgres-read.yml

@@ -0,0 +1,40 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: pos-postgres-read
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: pos-postgres-read
+  template:
+    metadata:
+      labels:
+        app: pos-postgres-read
+    spec:
+      containers:
+        - name: pos-postgres-read
+          image: debezium/postgres:16-alpine
+          env:
+            - name: POSTGRES_USER
+              value: pos_user
+            - name: POSTGRES_PASSWORD
+              value: pos_password
+            - name: POSTGRES_DB
+              value: pos_read_db
+          ports:
+            - containerPort: 5432
+          imagePullPolicy: IfNotPresent
+      restartPolicy: Always
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: pos-postgres-read
+spec:
+  selector:
+    app: pos-postgres-read
+  ports:
+    - protocol: TCP
+      port: 5432
+      targetPort: 5432

Deployment/pos-postgres-write.yml

@@ -0,0 +1,40 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: pos-postgres-write
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: pos-postgres-write
+  template:
+    metadata:
+      labels:
+        app: pos-postgres-write
+    spec:
+      containers:
+        - name: pos-postgres-write
+          image: debezium/postgres:16-alpine
+          env:
+            - name: POSTGRES_USER
+              value: pos_user
+            - name: POSTGRES_PASSWORD
+              value: pos_password
+            - name: POSTGRES_DB
+              value: pos_write_db
+          ports:
+            - containerPort: 5432
+          imagePullPolicy: IfNotPresent
+      restartPolicy: Always
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: pos-postgres-write
+spec:
+  selector:
+    app: pos-postgres-write
+  ports:
+    - protocol: TCP
+      port: 5432
+      targetPort: 5432

Deployment/pos-service.yml

@@ -0,0 +1,41 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: pos-service
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: pos-service
+  template:
+    metadata:
+      labels:
+        app: pos-service
+    spec:
+      containers:
+        - name: pos-service
+          image: lolgame99/webarch_playofferservice
+          ports:
+          - containerPort: 8080
+            name: http
+          - containerPort: 8081
+            name: https
+          imagePullPolicy: Always
+      restartPolicy: Always
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: pos-service
+spec:
+  selector:
+    app: pos-service
+  ports:
+    - protocol: TCP
+      port: 8080
+      targetPort: 8080
+      name: http
+    - protocol: TCP
+      port: 8082
+      targetPort: 8081
+      name: https

Deployment/redis.yml

@@ -0,0 +1,33 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: redis
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: redis
+  template:
+    metadata:
+      labels:
+        app: redis
+    spec:
+      containers:
+        - name: redis
+          image: redis:7.0-alpine
+          imagePullPolicy: IfNotPresent
+          ports:
+            - containerPort: 6379
+      restartPolicy: Always
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: redis
+spec:
+  selector:
+    app: redis
+  ports:
+    - protocol: TCP
+      port: 6379
+      targetPort: 6379

Domain/DbReadContext.cs

@@ -24,6 +24,7 @@ protected override void OnModelCreating(ModelBuilder modelBuilder)
         modelBuilder.ApplyConfiguration(new BaseEventConfiguration());
 
         // TODO: Remove before coop testing
+        /*
         var testClub = new Club { Id = Guid.Parse("1fc64a89-9e63-4e9f-96f7-e2120f0ca6c3"), Name = "Test Club", Status = Status.ACTIVE };
         var testMemberIds = new List<Guid> { Guid.Parse("0033506d-2d59-40d3-b996-74a251091027"), Guid.Parse("ccc1c8fc-89b5-4026-b190-9d9e7e7bc18d") };
 
@@ -49,5 +50,6 @@ protected override void OnModelCreating(ModelBuilder modelBuilder)
             modelBuilder.Entity<Member>().HasData(testMember);
         }
         modelBuilder.Entity<PlayOffer>().HasData(testPlayOffer);
+        */
     }
 }