Blog API

A RESTful API built with ASP.NET Core 10 and Entity Framework Core. Handles blog post management with JWT authentication and per-user post ownership.

Tech Stack

ASP.NET Core 10 Web API
Entity Framework Core + SQLite
JWT Authentication
BCrypt password hashing

Getting Started

Prerequisites

.NET 10 SDK
Visual Studio 2022 or VS Code

Installation

Clone the repo

git clone https://github.com/olajireyy/blog-api.git
cd blog-api

Install dependencies
```
dotnet restore
```

Add your JWT secret to appsettings.Development.json

{
  "Jwt": {
    "Key": "your-secret-key-minimum-32-characters-long",
    "Issuer": "BlogApi",
    "Audience": "BlogClient"
  }
}

Run migrations
```
dotnet ef database update
```
Run the API
```
dotnet run
```

API runs on http://localhost:7174 by default.

API Endpoints

Auth

Method	Endpoint	Access	Description
POST	`/api/auth/register`	Public	Register a new user, returns JWT token
POST	`/api/auth/login`	Public	Login, returns JWT token

Posts

Method	Endpoint	Access	Description
GET	`/api/posts`	Public	Get all posts, newest first
GET	`/api/posts/{id}`	Public	Get a single post by ID
GET	`/api/posts/me`	Auth	Get the logged in user's ID
POST	`/api/posts`	Auth	Create a new post
PUT	`/api/posts/{id}`	Owner	Update a post (owner only)
DELETE	`/api/posts/{id}`	Owner	Delete a post (owner only)

Authentication

This API uses JWT Bearer tokens. After registering or logging in, include the token in every protected request:

Authorization: Bearer your-token-here

Ownership Rules

Any authenticated user can create posts
Only the user who created a post can edit or delete it
Attempting to edit or delete another user's post returns 403 Forbidden

Project Structure

BlogApi/
├── Controllers/
│   ├── AuthController.cs     # Register and login endpoints
│   └── PostsController.cs    # CRUD endpoints for posts
├── Models/
│   ├── AppDbContext.cs        # EF Core database context
│   ├── AuthModels.cs          # Register, Login, AuthResponse models
│   ├── Post.cs                # Post model
│   └── User.cs                # User model
├── Migrations/                # EF Core migration files
├── appsettings.json           # App config (no secrets)
└── Program.cs                 # App setup, middleware, DI

Environment Variables

For production, set these as environment variables instead of appsettings:

Key	Description
`Jwt__Key`	Secret key for signing JWT tokens (min 32 chars)
`Jwt__Issuer`	JWT issuer (e.g. BlogApi)
`Jwt__Audience`	JWT audience (e.g. BlogClient)

Name		Name	Last commit message	Last commit date
Latest commit History 8 Commits
Controllers		Controllers
Migrations		Migrations
Models		Models
Properties		Properties
.gitattributes		.gitattributes
.gitignore		.gitignore
BlogApi.csproj		BlogApi.csproj
BlogApi.http		BlogApi.http
BlogApi.slnx		BlogApi.slnx
LICENSE.txt		LICENSE.txt
Program.cs		Program.cs
README.md		README.md
appsettings.json		appsettings.json
railway.json		railway.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Blog API

Tech Stack

Getting Started

Prerequisites

Installation

API Endpoints

Auth

Posts

Authentication

Ownership Rules

Project Structure

Environment Variables

Related

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Blog API

Tech Stack

Getting Started

Prerequisites

Installation

API Endpoints

Auth

Posts

Authentication

Ownership Rules

Project Structure

Environment Variables

Related

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages