what da

api/Program.cs

@@ -21,13 +21,15 @@ builder.Services.AddDbContext<AppDbContext>(options =>
 builder.Services.AddControllers();
 
 // services
+builder.Services.AddScoped<UserService>();
 builder.Services.AddScoped<ItemService>();
 builder.Services.AddScoped<JwtService>();
 
 // configuration for jwt authentication
 builder.Services.AddIdentity<User, IdentityRole>()
     .AddEntityFrameworkStores<AppDbContext>()
-    .AddDefaultTokenProviders();
+    .AddDefaultTokenProviders()
+    .AddRoles<IdentityRole>();
 builder.Services.AddAuthentication(options => {
     options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
     options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;

api/src/Controllers/UsersController.cs

@@ -0,0 +1,50 @@
+
+// this is basically a demo on roles
+// level 0 can't access the users endpoint at all
+// level 1 has read permissions
+// level 2 has modify permissions
+
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Authorization;
+
+using agologumApi.Models;
+using agologumApi.Services;
+
+[ApiController]
+[Route("api/[controller]")]
+public class UsersController : ControllerBase {
+
+    private readonly UserService service_;
+
+    public UsersController(UserService service) {
+        service_ = service;
+    }
+
+    [Authorize(Roles = "Admin, Superuser")]
+    [HttpGet]
+    public async Task<ActionResult<List<User>>> getUsers() {
+        return Ok(await service_.GetAll());
+    }
+
+    [Authorize(Roles = "Admin, Superuser")]
+    [HttpGet("{id:int}")]
+    public async Task<ActionResult<User>> getUser(int id) {
+
+        var user = await service_.Get(id);
+
+        if (user == null) return NotFound();
+
+        return Ok(user);
+    }
+
+    [Authorize(Roles = "Superuser")]
+    [HttpDelete("{id}")]
+    public async Task<ActionResult> deleteUser(int id) {
+
+        var success = await service_.Delete(id);
+
+        if (!success) return NotFound();
+
+        return NoContent();
+    }
+}

api/src/Data/AppDbContext.cs

@@ -10,7 +10,7 @@ public class AppDbContext : IdentityDbContext<User> {
 
     }
 
-    // Db set for each model besides Users (DbSet<template> is already defined in IdenityDbContext<template>)
+    // Db set for each model besides Users (DbSet<User> is already defined in IdentityDbContext<User>)
     public DbSet<Item> Items { get; set; }
     public DbSet<RefreshToken> RefreshTokens { get; set; }
 

api/src/Services/UserService.cs

@@ -0,0 +1,39 @@
+
+using Microsoft.EntityFrameworkCore;
+
+using agologumApi.Models;
+
+namespace agologumApi.Services;
+
+public class UserService {
+
+    private readonly AppDbContext db_;
+
+    public UserService(AppDbContext db) {
+        db_ = db;
+    }
+
+    public async Task<List<User>> GetAll() {
+        return await db_.Users.ToListAsync();
+    }
+
+    public async Task<User?> Get(int id) {
+        return await db_.Users.FindAsync(id);
+    }
+
+    public async Task<User?> Get(string name) {
+        return await db_.Users.FirstOrDefaultAsync(u => u.UserName == name);
+    }
+
+    public async Task<bool> Delete(int id) {
+        User? User = await db_.Users.FindAsync(id);
+        if(User != null) {
+            db_.Users.Remove(User);
+            await db_.SaveChangesAsync();
+            return true;
+        } else {
+            return false;
+        }
+    }
+
+}