A document storage web API
- Users
- Groups
- Document storage
- Document access control
Users may be created and may sign in using their credentials to receive a session token. Groups may be created, and users may be given memberships to groups. Downloading documents requires permission per-document, and document access permits may be issued directly to users, or to groups. Users may be given roles of basic, manager, or admin. Users with the role of manager or admin may upload documents. Administrators may access all API endpoints so that they may manage users, groups, and documents, including user/group memberships/permits.
Endpoints are organized into CRUD operations by HTTP methods of GET, POST, PUT, and DELETE. Resources are named with plural nouns (e.g. groups).
Relationships are represented through nested endpoints. To GET all memberships of a specific group id, the format is GET /v1/groups/{id}/memberships.
Endpoints that retrieve many records will return simple objects. So, GET /v1/users will return an array of simple user objects with basic information for each user record, but no nested objects. Endpoints that retrieve a specific record may return complex objects. So, GET /v1/users/{id} will return a single complex user object including nested objects that may contain arrays of relational data such as the user's posted documents, group memberships, and document access permits.
You can review the Swagger/OpenApi style documentation on SwaggerHub.
Below is a simplified list of the available endpoints.
POST /v1/groups
GET /v1/groups
GET /v1/groups/{id}
PUT /v1/groups/{id}
DELETE /v1/groups/{id}
DELETE /v1/groups/{id}/memberships
POST /v1/groups/{id}/permits
DELETE /v1/groups/{id}/permits
DELETE /v1/groups/{id}/permits/{id}
POST /v1/keepers
GET /v1/keepers
GET /v1/keepers/{id}
PUT /v1/keepers/{id}
DELETE /v1/keepers/{id}
GET /v1/keepers/{id}/permits
DELETE /v1/keepers/{id}/permits
POST /v1/sessions
POST /v1/users
GET /v1/users
GET /v1/users/{id}
PUT /v1/users/{id}
DELETE /v1/users/{id}
PUT /v1/users/{id}/password
POST /v1/users/{id}/memberships
DELETE /v1/users/{id}/memberships
DELETE /v1/users/{id}/memberships/{id}
POST /v1/users/{id}/permits
DELETE /v1/users/{id}/permits
DELETE /v1/users/{id}/permits/{id}
Review the controller classes to find example requests in the comment blocks for every controller endpoint/method.
Here is one example, sending a POST request to /v1/groups:
curl --location --request POST 'https://api.trappykeepy.com/v1/groups' \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data-raw '{
"name": "foo",
"description": "bar"
}'Standard Http response status codes are used in responses, such as 200 OK, 400 Bad Reqeust, 401 Unauthorized, and 500 Internal Server Error. When responding with a status 400 there will be helpful information included so that the client may make corrections and try again.
Responses are formatted as JSend. The JSON response will include a status key that will hold a value of success, fail, or error. Responses may also include key/values of data (the requested data), message (user-readable message), or code (an application code corresponding to the error, distinct from the Http status code).
After deploying the API into a production environment, there are some things that will need to be setup.
The following development environment variables with development values provide an example of the environment variables required in production. Environment variable values may be set in the /etc/environment file on a Linux host system:
export TKDB_URL="jdbc:postgresql://localhost:15432/keepydb"
export TKDB_USER="dbuser"
export TKDB_OWNER="dbowner"
export TKDB_PASSWORD="dbpass"
export TKDB_MIGRATIONS="filesystem:./TrappyKeepy.Data/Migrations"
export TKDB_CONN_STRING="Host=localhost;Database=keepydb;Port=15432;Username=dbuser;Password=dbpass"
export TK_CRYPTO_KEY="MqSm0P5dMgFSZhEBKpCv4dVKgDrsgrmT"To create the first administrator user in the system, connect to the database as dbowner and insert the user by running the tk.users_create function. Here is an example using development values:
SELECT * FROM tk.users_create('foo', 'passwordfoo', 'foo@trappykeepy.com', 'admin');Written using .NET6 with the .NET CLI, C# 10, and PostgreSQL.
For common actions like clean, restore, migrate, build, and run, a Makefile exists in the source code root directory so these could be easily organized as Makefile recipes. You can run any of the following commands from the root directory of the project's source code.
| Makefile Recipe | Explanation |
|---|---|
make all |
Run a combination of a clean, restore, migrate, build, and run. |
make flyway |
Download and extract the Flyway application. This is used for the database migrations, so this command must be run prior to running the make migrate command for the first time. |
make clean |
Clean the outputs (both the intermediate (obj) and final output (bin) folders) bu running the dotnet clean command for all projects. |
make restore |
Restore the dependencies and tools by running the dotnet restore command for all projects. |
make migrate |
Migrate the database using the SQL migration scripts located in the TrappyKeepy.Data/Migrations directory, using the Flyway application to apply and track the migrations. For more information such as the file naming patterns used by Flyway, see their SQL-based migrations documentation page. |
make dbscaffold |
Reverse-engineer the database context and model classes from the PostgreSQL database into .NET, overwriting existing classes with the current database structure, by running the dotnet ef dbcontext scaffold command with proper arguments. This command reads the database connection string from the Microsoft Secrets Manager (see the Secrets Manager section below). |
make format |
Format the source code of all projects to match the .editorconfig file settings by running the dotnet format command. |
make build |
Build the project by running dotnet build command for the TrappyKeepy.Api project. |
make test |
Execute the unit tests, by running the dotnet test command for the TrappyKeepy.Test project. Generates a test coverage report. When run during the GitHub Action CI workflow the test coverage report is uploaded to Codecov. |
make run |
Start the TrappyKeepy application by running the dotnet run --project TrappyKeepy.Api command. |
For development, a Vagrant box is setup to create a fresh PostgreSQL database instance that is ready to go. Read about installing Vagrant if needed. Once installed, run vagrant up from the root directory of this code repository where the Vagrantfile is located, which will create and configure the guest machine using the Vagrant-setup/bootstrap.sh shell script. Some helpful details for accessing this database are available in Vagrant-setup/access.md.
Tests are written using xUnit.
When running make test it will run the command dotnet test --verbosity quiet /p:CollectCoverage=true /p:CoverletOutputFormat=opencover. This includes the end-to-end tests which require a live development database to be present, and generates a code coverage report. Code coverage is uploaded to Codecov.io manually using their Uploader application.
When tests run during the GitHub Action CI workflow the end-to-end tests are skipped because there is no PostgreSQL database present.
This only applies to the Database-first reverse-engineering / scaffolding to turn the PostgreSQL table types into .NET model types. This is only done in a development environment after making changes to the database.
When running the make dbscaffold command, the dotnet ef tool reads the database connection string from the Microsoft Secret Manager tool. Before running the make dbscaffold command for the first time, the Secret Manager tool must be initialized and the development database connection string must be saved to the secret storage.
WARNING: The Secret Manager tool doesn't encrypt the stored secrets and shouldn't be treated as a trusted store. It's for development purposes only. The keys and values are stored in a JSON configuration file in the user profile directory (~/.microsoft/usersecrets/).
To enable secret storage for the project, and add the secret storage ID to the project's csproj file, run the following command:
dotnet user-secrets init --project TrappyKeepy.ApiThe development database connection string for development is stored as a secret by running the following command.
dotnet user-secrets set ConnectionStrings:TKDB_CONN_STRING "Host=localhost;Database=keepydb;Port=15432;Username=dbuser;Password=dbpass" --project TrappyKeepy.ApiTo view all currently stored development secrets, run the following command:
dotnet user-secrets list --project TrappyKeepy.ApiWhy did I do it this way? Here are some of the project constraints:
Schema, types, tables, and functions are all written in SQL or PL/pgSQL first. In this project I wrote this into SQL migration files and applied those migrations to the database using Flyway. After the database had been migrated, I used dotnet ef dbcontext scaffold with the Npgsql.EntityFrameworkCore.PostgreSQL package to reverse engineer the .NET domain models from the database.
Every database interaction happens through a stored function in PostgreSQL. Using the Npgsql package, connections and transactions are managed from the UnitOfWork class, which manages the repository classes. The Repository classes create Npgsql commands to query the stored functions. User input it handled through paramertized queries in the stored procedures.
There is a DbContext file (KeepyDbContext.cs) only because that has to be generated while reverse engineering the domain models, but it doesn't get used. Some methods provided by DbContext, such as .FromSqlRaw(), create a LINQ query based on that raw SQL. To guarantee there was absolutely no LINQ query magic happening, DbContext was not used.
Thanks for taking a look at this project.