Feature/55 integrate auth (#57)

* feat(55): Adds basic implementation of Clerk auth to the frontend.

* feat(55): Got backend working correctly with Clerk.

* feat(55): Makes a lot of small changes. Adds more Clerk support.

Author: seannkelleyy

.DS_Store

@@ -23,24 +23,28 @@ public BudgetController(IConfiguration config, ILogger<BudgetController> logger,
         }
 
         [HttpGet("{year}-{month}")]
+        [Authorize]
         public IActionResult GetBudget([FromRoute] int year, [FromRoute] int month)
         {
-
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
                 }
-                return Ok(budgets.GetBudgetByDate(userId, new DateOnly(year, month, 1)));
+
+                var budget = budgets.GetBudgetByDate(userId, new DateOnly(year, month, 1));
+                return Ok(budget);
             }
             catch (Exception ex)
             {
-                _logger.LogError(ex.Message);
-                return BadRequest();
+                _logger.LogError(ex, "Failed to get budget");
+                return BadRequest("Something went wrong.");
             }
         }
+
     }
 }

Breeze.Api/Budget/BudgetController.cs

@@ -32,8 +32,9 @@ public IActionResult GetCategoriesByBudgetId([FromRoute] int budgetId)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -52,8 +53,9 @@ public IActionResult PostCategory(CategoryRequest categoryRequest)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -80,8 +82,9 @@ public IActionResult PatchCategory(CategoryRequest categoryRequest)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -108,8 +111,9 @@ public async Task<IActionResult> DeleteCategory([FromRoute] int categoryId)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();

Breeze.Api/Categories/CategoryController.cs

@@ -29,8 +29,9 @@ public IActionResult GetExpensesForCategory([FromRoute] int CategoryId)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -49,8 +50,9 @@ public IActionResult GetAllExpensesForUser([FromRoute] int BudgetID)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -69,8 +71,9 @@ public IActionResult PostExpsense(ExpenseRequest expenseRequest)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -96,8 +99,9 @@ public IActionResult PatchExpsense([FromBody] ExpenseRequest expenseRequest)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -122,8 +126,9 @@ public IActionResult DeleteExpsense([FromRoute] int id)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();

Breeze.Api/Expenses/ExpenseController.cs

@@ -1,9 +1,9 @@
 using Breeze.Api.Expenses;
 using Breeze.Api.Goals.RequestResponseObjects;
 using Breeze.Data;
+using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.Identity.Web;
-using Microsoft.AspNetCore.Authorization;
 
 namespace Breeze.Api.Goals
 {
@@ -26,8 +26,9 @@ public IActionResult GetGoalsForUser()
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -46,8 +47,9 @@ public IActionResult PostGoal(GoalRequest goalRequest)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -66,8 +68,9 @@ public IActionResult PatchGoal([FromBody] GoalRequest goalRequest)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -86,8 +89,9 @@ public IActionResult DeleteGoal([FromRoute] int id)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();

Breeze.Api/Goals/GoalController.cs

@@ -28,8 +28,9 @@ public IActionResult GetIncomes([FromRoute] int budgetId)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -48,8 +49,9 @@ public IActionResult PostIncome(IncomeRequest incomeRequest)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -79,8 +81,9 @@ public IActionResult PatchIncome([FromBody] IncomeRequest incomeRequest)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();
@@ -109,8 +112,9 @@ public IActionResult DeleteIncome([FromRoute] int id)
         {
             try
             {
-                var userId = User.GetObjectId();
-                if (userId == null)
+                var userId = User.FindFirst("sub")?.Value;
+
+                if (string.IsNullOrWhiteSpace(userId))
                 {
                     _logger.LogError(User.ToString());
                     return Unauthorized();

Breeze.Api/Incomes/IncomeController.cs

@@ -1,23 +1,31 @@
+using System.IdentityModel.Tokens.Jwt;
 using Breeze.Data;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.Identity.Web;
+using Microsoft.IdentityModel.JsonWebTokens;
+using Microsoft.IdentityModel.Tokens;
 using Microsoft.OpenApi.Models;
 
+JsonWebTokenHandler.DefaultInboundClaimTypeMap.Clear();
+
 var builder = WebApplication.CreateBuilder(args);
-// Docs: https://learn.microsoft.com/en-us/azure/active-directory-b2c/enable-authentication-web-api?tabs=csharpclient
 builder.Services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
-    .AddMicrosoftIdentityWebApi(options =>
-    {
-        builder.Configuration.Bind("AzureAdB2C", options);
-
-        options.TokenValidationParameters.NameClaimType = "name";
-    },
-    options =>
+    .AddJwtBearer(options =>
     {
-        builder.Configuration.Bind("AzureAdB2C", options);
+        options.Authority = "https://apt-monkfish-71.clerk.accounts.dev";
+        options.TokenValidationParameters = new TokenValidationParameters
+        {
+            ValidateIssuer = true,
+            ValidIssuer = "https://apt-monkfish-71.clerk.accounts.dev",
+            ValidateAudience = false, // Set to true if you're using custom audience
+            ValidateLifetime = true,
+            NameClaimType = "sub" // This is Clerk's user ID
+        };
     });
 
+
+
 builder.Services.AddAuthorization();
 
 builder.Services.AddControllers();

Breeze.Api/Program.cs

@@ -4,4 +4,5 @@ VITE_BASE_LOCAL_LOGIN_URL: 'http://localhost:5173/login'
 VITE_BASE_HOSTED_LOGIN_URL: 'https://wwww.breeze.seannkelleyy.com/login'
 VITE_BASE_LOCAL_API: 'https://localhost:7284'
 VITE_BASE_HOSTED_API: 'https://breeze-api.azurewebsites.net'
-VITE_APP_VERSION: '1.1.0'
+VITE_APP_VERSION: '1.1.0'
+VITE_CLERK_PUBLISHABLE_KEY: 'pk_test_YXB0LW1vbmtmaXNoLTcxLmNsZXJrLmFjY291bnRzLmRldiQ'

Breeze.Web/.env

@@ -11,7 +11,7 @@
 			name="viewport"
 			content="width=device-width, initial-scale=1.0"
 		/>
-		<title>Breeze Budgeting</title>
+		<title>Breeze Budgets By Seannkelleyy</title>
 	</head>
 	<body>
 		<div id="root"></div>

Breeze.Web/index.html

@@ -10,6 +10,7 @@
 		"preview": "vite preview"
 	},
 	"dependencies": {
+		"@clerk/clerk-react": "^5.31.4",
 		"@hookform/resolvers": "^3.9.1",
 		"@radix-ui/react-checkbox": "^1.1.3",
 		"@radix-ui/react-dialog": "^1.1.4",
@@ -51,6 +52,6 @@
 		"tailwindcss": "^3.4.17",
 		"typescript": "^5.5.3",
 		"typescript-eslint": "^8.7.0",
-		"vite": "^6.2.1"
+		"vite": "^6.3.5"
 	}
 }