src/Api/Utilities/ServiceCollectionExtensions.cs

using System;
using System.Collections.Generic;
using System.IO;
using Bit.Core.Settings;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.OpenApi.Models;

namespace Bit.Api.Utilities
{
    public static class ServiceCollectionExtensions
    {
        public static void AddSwagger(this IServiceCollection services, GlobalSettings globalSettings)
        {
            services.AddSwaggerGen(config =>
            {
                config.SwaggerDoc("public", new OpenApiInfo
                {
                    Title = "Bitwarden Public API",
                    Version = "latest",
                    Contact = new OpenApiContact
                    {
                        Name = "Bitwarden Support",
                        Url = new Uri("https://bitwarden.com"),
                        Email = "support@bitwarden.com"
                    },
                    Description = "The Bitwarden public APIs.",
                    License = new OpenApiLicense
                    {
                        Name = "GNU Affero General Public License v3.0",
                        Url = new Uri("https://github.com/bitwarden/server/blob/master/LICENSE.txt")
                    }
                });
                config.SwaggerDoc("internal", new OpenApiInfo { Title = "Bitwarden Internal API", Version = "latest" });

                config.AddSecurityDefinition("OAuth2 Client Credentials", new OpenApiSecurityScheme
                {
                    Type = SecuritySchemeType.OAuth2,
                    Flows = new OpenApiOAuthFlows
                    {
                        ClientCredentials = new OpenApiOAuthFlow
                        {
                            TokenUrl = new Uri($"{globalSettings.BaseServiceUri.Identity}/connect/token"),
                            Scopes = new Dictionary<string, string>
                            {
                                { "api.organization", "Organization APIs" },
                            },
                        }
                    },
                });

                config.AddSecurityRequirement(new OpenApiSecurityRequirement
                {
                    {
                        new OpenApiSecurityScheme
                        {
                            Reference = new OpenApiReference
                            {
                                Type = ReferenceType.SecurityScheme,
                                Id = "OAuth2 Client Credentials"
                            },
                        },
                        new[] { "api.organization" }
                    }
                });

                config.DescribeAllParametersInCamelCase();
                // config.UseReferencedDefinitionsForEnums();

                var apiFilePath = Path.Combine(AppContext.BaseDirectory, "Api.xml");
                config.IncludeXmlComments(apiFilePath, true);
                var coreFilePath = Path.Combine(AppContext.BaseDirectory, "Core.xml");
                config.IncludeXmlComments(coreFilePath);
            });
        }
    }
}
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								using System;
 								using System.Collections.Generic;
-												xml documentation for swaggergen

											
										
										
											2019-03-01 09:34:07 -05:00
+								using System.IO;
-												Use sas token for attachment downloads (#1153)

* Get limited life attachment download URL

This change limits url download to a 1min lifetime.
This requires moving to a new container to allow for non-public blob
access.

Clients will have to call GetAttachmentData api function to receive the download
URL. For backwards compatibility, attachment URLs are still present, but will not
work for attachments stored in non-public access blobs.

* Make GlobalSettings interface for testing

* Test LocalAttachmentStorageService equivalence

* Remove comment

* Add missing globalSettings using

* Simplify default attachment container

* Default to attachments containe for existing methods

A new upload method will be made for uploading to attachments-v2.
For compatibility for clients which don't use these new methods, we need
to still use the old container. The new container will be used only for
new uploads

* Remove Default MetaData fixture.

* Keep attachments container blob-level security for all instances

* Close unclosed FileStream

* Favor default value for noop services
											
										
										
											2021-02-22 15:35:16 -06:00
+								using Bit.Core.Settings;
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
+								using Microsoft.Extensions.DependencyInjection;
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								using Microsoft.OpenApi.Models;
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
 								namespace Bit.Api.Utilities
 								{
 								    public static class ServiceCollectionExtensions
 								    {
 								        public static void AddSwagger(this IServiceCollection services, GlobalSettings globalSettings)
 								        {
 								            services.AddSwaggerGen(config =>
 								            {
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                config.SwaggerDoc("public", new OpenApiInfo
-												add more metadata to swaggergen

											
										
										
											2019-03-07 14:06:02 -05:00
+								                {
 								                    Title = "Bitwarden Public API",
 								                    Version = "latest",
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                    Contact = new OpenApiContact
-												add more metadata to swaggergen

											
										
										
											2019-03-07 14:06:02 -05:00
+								                    {
 								                        Name = "Bitwarden Support",
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                        Url = new Uri("https://bitwarden.com"),
-												add more metadata to swaggergen

											
										
										
											2019-03-07 14:06:02 -05:00
+								                        Email = "support@bitwarden.com"
 								                    },
 								                    Description = "The Bitwarden public APIs.",
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                    License = new OpenApiLicense
-												add more metadata to swaggergen

											
										
										
											2019-03-07 14:06:02 -05:00
+								                    {
 								                        Name = "GNU Affero General Public License v3.0",
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                        Url = new Uri("https://github.com/bitwarden/server/blob/master/LICENSE.txt")
-												add more metadata to swaggergen

											
										
										
											2019-03-07 14:06:02 -05:00
+								                    }
 								                });
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                config.SwaggerDoc("internal", new OpenApiInfo { Title = "Bitwarden Internal API", Version = "latest" });
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                config.AddSecurityDefinition("OAuth2 Client Credentials", new OpenApiSecurityScheme
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
+								                {
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                    Type = SecuritySchemeType.OAuth2,
 								                    Flows = new OpenApiOAuthFlows
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
+								                    {
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                        ClientCredentials = new OpenApiOAuthFlow
 								                        {
 								                            TokenUrl = new Uri($"{globalSettings.BaseServiceUri.Identity}/connect/token"),
 								                            Scopes = new Dictionary<string, string>
 								                            {
 								                                { "api.organization", "Organization APIs" },
 								                            },
 								                        }
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
+								                    },
 								                });
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                config.AddSecurityRequirement(new OpenApiSecurityRequirement
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
+								                {
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                    {
 								                        new OpenApiSecurityScheme
 								                        {
 								                            Reference = new OpenApiReference
 								                            {
 								                                Type = ReferenceType.SecurityScheme,
 								                                Id = "OAuth2 Client Credentials"
 								                            },
 								                        },
 								                        new[] { "api.organization" }
 								                    }
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
+								                });
-												camelcase swagger/public apis

											
										
										
											2019-02-28 20:50:40 -05:00
 								                config.DescribeAllParametersInCamelCase();
 								                // config.UseReferencedDefinitionsForEnums();
-												xml documentation for swaggergen

											
										
										
											2019-03-01 09:34:07 -05:00
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                var apiFilePath = Path.Combine(AppContext.BaseDirectory, "Api.xml");
-												xml documentation for swaggergen

											
										
										
											2019-03-01 09:34:07 -05:00
+								                config.IncludeXmlComments(apiFilePath, true);
-												upgrade swagger

											
										
										
											2020-01-10 09:36:12 -05:00
+								                var coreFilePath = Path.Combine(AppContext.BaseDirectory, "Core.xml");
-												xml documentation for swaggergen

											
										
										
											2019-03-01 09:34:07 -05:00
+								                config.IncludeXmlComments(coreFilePath);
-												swagger specs for public api

											
										
										
											2019-02-28 14:20:14 -05:00
+								            });
 								        }
 								    }
 								}