updated claimsPrincipal to contain users first/last name. updated PostDTOs to contain more restricted data

Author: Stianforren

exercise.wwwapi/DTOs/Posts/CreatePostRequestDTO.cs

@@ -4,9 +4,6 @@ namespace exercise.wwwapi.DTOs.Posts
 {
     public class CreatePostRequestDTO
     {
-        [JsonPropertyName("author_id")]
-        public int AuthorId { get; set; }
-
         [JsonPropertyName("body")]
         public string Body { get; set; }
 

exercise.wwwapi/Endpoints/PostEndpoints.cs

@@ -65,18 +65,20 @@ public static async Task<IResult> CreatePost(
     postRepository.Insert(post);
     await postRepository.SaveAsync();
 
-    var response = new ResponseDTO<CreatePostSuccessDTO>
-    {
-        Status = "success",
-        Data = new CreatePostSuccessDTO
+        var response = new ResponseDTO<CreatePostSuccessDTO>
         {
-            Posts = new PostDTO
+            Status = "success",
+            Data = new CreatePostSuccessDTO
             {
-                Body = post.Body,
-                CreatedAt = post.CreatedAt
+                Posts = new PostDTO
+                {
+                    Body = post.Body,
+                    CreatedAt = post.CreatedAt,
+                    Firstname = claimsPrincipal.FirstName(),
+                    Lastname = claimsPrincipal.LastName()
+                }
             }
-        }
-    };
+        };
 
     return Results.Created($"/posts/{post.Id}", response);
 }
@@ -131,7 +133,7 @@ public static async Task<IResult> UpdatePost(IRepository<Post> postRepository, i
         {
             return Results.Unauthorized();
         }
-        var userClaimName = claimsPrincipal.Identity?.Name;
+        var userClaimName = $"{claimsPrincipal.FirstName()} {claimsPrincipal.LastName()}";
 
         var post = await postRepository.GetByIdWithIncludes(p => p.Include(a => a.Author)
                                                                     .Include(c => c.Comments)
@@ -224,8 +226,6 @@ public static async Task<IResult> DeletePost(IRepository<Post> postRepository, i
             Status = "success",
             Data = new PostDTO
             {
-                //Id = post.Id,
-                //AuthorId = post.AuthorId,
                 Body = post.Body,
                 CreatedAt = post.CreatedAt
             }

exercise.wwwapi/Endpoints/UserEndpoints.cs

@@ -374,7 +374,9 @@ private static string CreateToken(User user, IConfigurationSettings configuratio
             new(ClaimTypes.Sid, user.Id.ToString()),
             new(ClaimTypes.Name, user.Username),
             new(ClaimTypes.Email, user.Email),
-            new(ClaimTypes.Role, user.Role.ToString())
+            new(ClaimTypes.Role, user.Role.ToString()),
+            new("FirstName", user.FirstName),
+            new("LastName", user.LastName)
         };
 
         var tokenKey = Environment.GetEnvironmentVariable(Globals.EnvironmentEnvVariable) == "Staging" 

exercise.wwwapi/Helpers/ClaimsPrincipalHelper.cs

@@ -35,4 +35,15 @@ public static string UserId(this ClaimsPrincipal user)
         return int.Parse(claim?.Value);
     }
 
+    public static string? FirstName(this ClaimsPrincipal user)
+    {
+        Claim? claim = user.FindFirst("FirstName");
+        return claim?.Value;
+    }
+    public static string? LastName(this ClaimsPrincipal user)
+    {
+        Claim? claim = user.FindFirst("LastName");
+        return claim?.Value;
+    }
+
 }

exercise.wwwapi/Validators/PostValidators/CreatePostValidator.cs

@@ -7,10 +7,6 @@ public class CreatePostValidator :AbstractValidator<CreatePostRequestDTO>
     {
         public CreatePostValidator()
         {
-            RuleFor(x => x.AuthorId)
-                .GreaterThan(0)
-                .WithMessage("AuthorId must be a valid user id.");
-
             RuleFor(x => x.Body)
                 .NotEmpty().WithMessage("Post body cannot be empty.")
                 .MaximumLength(1000).WithMessage("Post body cannot exceed 1000 characters.")