Merge pull request #3 from leonhoppe/fix/cleanup

Fix/cleanup
2024-09-26 12:02:03 +02:00
parent af7385678f 0c4212049c
commit b702a10138
105 changed files with 549 additions and 144 deletions
--- a/FrontendTest/appsettings.Development.json
+++ b/FrontendTest/appsettings.Development.json
@@ -1,8 +0,0 @@
 {
  "Logging": {
    "LogLevel": {
      "Default": "Information",
      "Microsoft.AspNetCore": "Warning"
    }
  }
 }
--- a/HopFrame.Api/Extensions/ServiceCollectionExtensions.cs
+++ b/HopFrame.Api/Extensions/ServiceCollectionExtensions.cs
@@ -1,20 +0,0 @@
 using HopFrame.Api.Controller;
 using HopFrame.Database;
 using HopFrame.Security.Authentication;
 using Microsoft.Extensions.DependencyInjection;
 namespace HopFrame.Api.Extensions;
 public static class ServiceCollectionExtensions {
    /// <summary>
    /// Adds all HopFrame endpoints and the HopFrame security layer to the WebApplication
    /// </summary>
    /// <param name="services">The service provider to add the services to</param>
    /// <typeparam name="TDbContext">The data source for all HopFrame entities</typeparam>
    public static void AddHopFrame<TDbContext>(this IServiceCollection services) where TDbContext : HopDbContextBase {
        services.AddMvcCore().UseSpecificControllers(typeof(SecurityController<TDbContext>));
        services.AddHopFrameAuthentication<TDbContext>();
    }
 }
--- a/HopFrame.Api/README.md
+++ b/HopFrame.Api/README.md
@@ -1,30 +0,0 @@
 # HopFrame API module
 This module contains some useful endpoints for user login / register management.
 ## Ho to use the Web API version
 1. Add the HopFrame.Api library to your project:
   ```
   dotnet add package HopFrame.Api
   ```
 2. Create a DbContext that inherits the ``HopDbContext`` and add a data source
   ```csharp
   public class DatabaseContext : HopDbContextBase {
       protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder) {
           base.OnConfiguring(optionsBuilder);
           optionsBuilder.UseSqlite("...");
       }
   }
   ```
 3. Add the DbContext and HopFrame to your services
   ```csharp
   builder.Services.AddDbContext<DatabaseContext>();
   builder.Services.AddHopFrame<DatabaseContext>();
   ```
--- a/HopFrame.Security/README.md
+++ b/HopFrame.Security/README.md
@@ -1,2 +0,0 @@
 # HopFrame Security module
 this module contains all handlers for the login and register validation. It also checks the user permissions.
--- a/HopFrame.Web/AdminPermissions.cs
+++ b/HopFrame.Web/AdminPermissions.cs
@@ -1,16 +0,0 @@
 namespace HopFrame.Web;
 [Obsolete("Use HopFrame.Security.AdminPermissions instead")]
 public static class AdminPermissions {
    public const string IsAdmin = Security.AdminPermissions.IsAdmin;
    public const string ViewUsers = Security.AdminPermissions.ViewUsers;
    public const string EditUser = Security.AdminPermissions.EditUser;
    public const string DeleteUser = Security.AdminPermissions.DeleteUser;
    public const string AddUser = Security.AdminPermissions.AddUser;
    public const string ViewGroups = Security.AdminPermissions.ViewGroups;
    public const string EditGroup = Security.AdminPermissions.EditGroup;
    public const string DeleteGroup = Security.AdminPermissions.DeleteGroup;
    public const string AddGroup = Security.AdminPermissions.AddGroup;
 }
--- a/HopFrame.sln
+++ b/HopFrame.sln
@@ -1,18 +1,16 @@
 Microsoft Visual Studio Solution File, Format Version 12.00
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HopFrame.Database", "HopFrame.Database\HopFrame.Database.csproj", "{003120AE-F38B-4632-8497-BE4505189627}"
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HopFrame.Database", "src\HopFrame.Database\HopFrame.Database.csproj", "{003120AE-F38B-4632-8497-BE4505189627}"
 EndProject
-Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Testing", "Testing", "{58703056-8DAD-4221-BBE3-42425D2F4929}"
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "RestApiTest", "test\RestApiTest\RestApiTest.csproj", "{921159CE-AF75-44C3-A3F9-6B9B1A4E85CF}"
 EndProject
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "RestApiTest", "RestApiTest\RestApiTest.csproj", "{921159CE-AF75-44C3-A3F9-6B9B1A4E85CF}"
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HopFrame.Security", "src\HopFrame.Security\HopFrame.Security.csproj", "{7F82E1C6-4A42-4337-9E03-2EE6429D004F}"
 EndProject
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HopFrame.Security", "HopFrame.Security\HopFrame.Security.csproj", "{7F82E1C6-4A42-4337-9E03-2EE6429D004F}"
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HopFrame.Api", "src\HopFrame.Api\HopFrame.Api.csproj", "{1E821490-AEDC-4F55-B758-52F4FADAB53A}"
 EndProject
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HopFrame.Api", "HopFrame.Api\HopFrame.Api.csproj", "{1E821490-AEDC-4F55-B758-52F4FADAB53A}"
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HopFrame.Web", "src\HopFrame.Web\HopFrame.Web.csproj", "{3BE585BC-13A5-4BE4-A806-E9EC2D825956}"
 EndProject
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "HopFrame.Web", "HopFrame.Web\HopFrame.Web.csproj", "{3BE585BC-13A5-4BE4-A806-E9EC2D825956}"
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "FrontendTest", "test\FrontendTest\FrontendTest.csproj", "{8F983A37-63CF-48D5-988D-58B78EF8AECD}"
 EndProject
 Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "FrontendTest", "FrontendTest\FrontendTest.csproj", "{8F983A37-63CF-48D5-988D-58B78EF8AECD}"
 EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
@@ -46,7 +44,5 @@ Global
 		{8F983A37-63CF-48D5-988D-58B78EF8AECD}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(NestedProjects) = preSolution
 		{921159CE-AF75-44C3-A3F9-6B9B1A4E85CF} = {58703056-8DAD-4221-BBE3-42425D2F4929}
 		{8F983A37-63CF-48D5-988D-58B78EF8AECD} = {58703056-8DAD-4221-BBE3-42425D2F4929}
 	EndGlobalSection
 EndGlobal
--- a/docs/Diagrams/Models/ApiModels.puml
+++ b/docs/Diagrams/Models/ApiModels.puml
@@ -13,12 +13,6 @@ namespace HopFrame.Security {
    }
 }
 namespace HopFrame.Web {
    class RegisterData {
        +RepeatedPassword: string
    }
 }
 namespace HopFrame.Api {
    class SingleValueResult<TValue> {
        +Value: TValue
@@ -29,6 +23,4 @@ namespace HopFrame.Api {
    }
 }
 UserRegister <|-- RegisterData
@enduml
--- a/docs/Diagrams/Models/DatabaseModels.puml
+++ b/docs/Diagrams/Models/DatabaseModels.puml
@@ -11,9 +11,6 @@ namespace HopFrame.Database {
    }
    class TokenEntry {
        {static} +RefreshTokenType: int = 0
        {static} +AccessTokenType: int = 1
        +Type: int
        +Token: string
        +UserId: string
--- a/docs/Diagrams/Models/img/ApiModels.svg
+++ b/docs/Diagrams/Models/img/ApiModels.svg
--- a/docs/Diagrams/Models/img/DatabaseModels.svg
+++ b/docs/Diagrams/Models/img/DatabaseModels.svg
--- a/docs/README.md
+++ b/docs/README.md
@@ -0,0 +1,13 @@
 # HopFrame documentation
 These sides contain all documentation available for the HopFrame modules
 ## Content
 | Topic    | Description                                    | Document              |
 |----------|------------------------------------------------|-----------------------|
 | Models   | All models used by the HopFrame                | [link](./models.md)   |
 | Services | All services provided by the HopFrame          | [link](./services.md) |
 | Usage    | How to properly implement the HopFrame modules | [link](./usage.md)    |
 ## Dependencies
 Both the HopFrame.Api and HopFrame.Web modules are dependent on the HopFrame.Database and HopFrame.Security modules.
 So all models and services provided by these modules are available in the other modules as well.
--- a/docs/Models/README.md
+++ b/docs/Models/README.md
@@ -6,16 +6,16 @@ This page shows all models that HopFrame uses.
 ## Base Models
 These are the models used by the various database services.
-![](../Diagrams/Models/img/BaseModels.svg)
+![](./Diagrams/Models/img/BaseModels.svg)
 ## API Models
 These are the models used by the REST API and the Blazor API.
-![](../Diagrams/Models/img/ApiModels.svg)
+![](./Diagrams/Models/img/ApiModels.svg)
 ## Database Models
 These are the models that correspond to the scheme in the Database
-![](../Diagrams/Models/img/DatabaseModels.svg)
+![](./Diagrams/Models/img/DatabaseModels.svg)
--- a/docs/services.md
+++ b/docs/services.md
@@ -0,0 +1,145 @@
 # HopFrame Services
 This page describes all services provided by the HopFrame.
 You can use these services by specifying them as a dependency. All of them are scoped dependencies.
 ## HopFrame.Security
 ### ITokenContext
 This service provides the information given by the current request
 ```csharp
 public interface ITokenContext {
    bool IsAuthenticated { get; }
    User User { get; }
    Guid AccessToken { get; }
 }
 ```
 ### IUserService
 This service simplifies the data access of the user table in the database.
 ```csharp
 public interface IUserService {
    Task<IList<User>> GetUsers();
    Task<User> GetUser(Guid userId);
    Task<User> GetUserByEmail(string email);
    Task<User> GetUserByUsername(string username);
    Task<User> AddUser(UserRegister user);
    Task UpdateUser(User user);
    Task DeleteUser(User user);
    Task<bool> CheckUserPassword(User user, string password);
    Task ChangePassword(User user, string password);
 }
 ```
 ### IPermissionService
 This service handles all permission and group interactions with the data source.
 ```csharp
 public interface IPermissionService {
    Task<bool> HasPermission(string permission, Guid user);
    Task<IList<PermissionGroup>> GetPermissionGroups();
    Task<PermissionGroup> GetPermissionGroup(string name);
    Task EditPermissionGroup(PermissionGroup group);
    Task<IList<PermissionGroup>> GetUserPermissionGroups(User user);
    Task RemoveGroupFromUser(User user, PermissionGroup group);
    Task<PermissionGroup> CreatePermissionGroup(string name, bool isDefault = false, string description = null);
    Task DeletePermissionGroup(PermissionGroup group);
    Task<Permission> GetPermission(string name, IPermissionOwner owner);
    Task AddPermission(IPermissionOwner owner, string permission);
    Task RemovePermission(Permission permission);
    Task<string[]> GetFullPermissions(string user);
 }
 ```
 ## HopFrame.Api
 ### LogicResult
 Logic result is an extension of the ActionResult for an ApiController. It provides simple Http status results with either a message or data by specifying the generic type.
 ```csharp
 public class LogicResult : ILogicResult {
    public static LogicResult Ok();
    public static LogicResult BadRequest();
    public static LogicResult BadRequest(string message);
    public static LogicResult Forbidden();
    public static LogicResult Forbidden(string message);
    public static LogicResult NotFound();
    public static LogicResult NotFound(string message);
    public static LogicResult Conflict();
    public static LogicResult Conflict(string message);
    public static LogicResult Forward(LogicResult result);
    public static LogicResult Forward<T>(ILogicResult<T> result);
    public static implicit operator ActionResult(LogicResult v);
 }
 public class LogicResult<T> : ILogicResult<T> {
    public static LogicResult<T> Ok();
    public static LogicResult<T> Ok(T result);
    ...
 }
 ```
 ### IAuthLogic
 This service handles all logic needed to provide the authentication endpoints by using the LogicResults.
 ```csharp
 public interface IAuthLogic {
    Task<LogicResult<SingleValueResult<string>>> Login(UserLogin login);
    Task<LogicResult<SingleValueResult<string>>> Register(UserRegister register);
    Task<LogicResult<SingleValueResult<string>>> Authenticate();
    Task<LogicResult> Logout();
    Task<LogicResult> Delete(UserPasswordValidation validation);
 }
 ```
 ## HopFrame.Web
 ### IAuthService
 This service handles all the authentication like login or register. It properly creates all tokens so the user can be identified
 ```csharp
 public interface IAuthService {
    Task Register(UserRegister register);
    Task<bool> Login(UserLogin login);
    Task Logout();
    Task<TokenEntry> RefreshLogin();
    Task<bool> IsLoggedIn();
 }
 ```
--- a/docs/usage.md
+++ b/docs/usage.md
@@ -0,0 +1,70 @@
 # HopFrame Usage
 There are two different versions of HopFrame, either the Web API version or the full Blazor web version.
 ## Ho to use the Web API version
 1. Add the HopFrame.Api library to your project:
   ```
   dotnet add package HopFrame.Api
   ```
 2. Create a DbContext that inherits the ``HopDbContext`` and add a data source
   ```csharp
   public class DatabaseContext : HopDbContextBase {
       protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder) {
           base.OnConfiguring(optionsBuilder);
           optionsBuilder.UseSqlite("...");
       }
   }
   ```
 3. Add the DbContext and HopFrame to your services
   ```csharp
   builder.Services.AddDbContext<DatabaseContext>();
   builder.Services.AddHopFrame<DatabaseContext>();
   ```
 ## How to use the Blazor API
 1. Add the HopFrame.Web library to your project
   ```
   dotnet add package HopFrame.Web
   ```
 2. Create a DbContext that inherits the ``HopDbContext`` and add a data source
   ```csharp
   public class DatabaseContext : HopDbContextBase {
       protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder) {
           base.OnConfiguring(optionsBuilder);
           optionsBuilder.UseSqlite("...");
       }
   }
   ```
 3. Add the DbContext and HopFrame to your services
   ```csharp
   builder.Services.AddDbContext<DatabaseContext>();
   builder.Services.AddHopFrame<DatabaseContext>();
   ```
 4. Add the authentication middleware to your app
   ```csharp
   app.UseMiddleware<AuthMiddleware>();
   ```
 5. Add the HopFrame pages to your Razor components
   ```csharp
   app.MapRazorComponents<App>()
    .AddHopFrameAdminPages()
    .AddInteractiveServerRenderMode();
   ```
--- a/src/HopFrame.Api/Controller/SecurityController.cs
+++ b/src/HopFrame.Api/Controller/SecurityController.cs
@@ -0,0 +1,38 @@
 using HopFrame.Api.Logic;
 using HopFrame.Api.Models;
 using HopFrame.Security.Authorization;
 using HopFrame.Security.Models;
 using Microsoft.AspNetCore.Mvc;
 namespace HopFrame.Api.Controller;
 [ApiController]
 [Route("api/v1/authentication")]
 public class SecurityController(IAuthLogic auth) : ControllerBase {
    [HttpPut("login")]
    public async Task<ActionResult<SingleValueResult<string>>> Login([FromBody] UserLogin login) {
        return await auth.Login(login);
    }
    [HttpPost("register")]
    public async Task<ActionResult<SingleValueResult<string>>> Register([FromBody] UserRegister register) {
        return await auth.Register(register);
    }
    [HttpGet("authenticate")]
    public async Task<ActionResult<SingleValueResult<string>>> Authenticate() {
        return await auth.Authenticate();
    }
    [HttpDelete("logout"), Authorized]
    public async Task<ActionResult> Logout() {
        return await auth.Logout();
    }
    [HttpDelete("delete"), Authorized]
    public async Task<ActionResult> Delete([FromBody] UserPasswordValidation validation) {
        return await auth.Delete(validation);
    }
 }
--- a/src/HopFrame.Api/Extensions/MvcExtensions.cs
+++ b/src/HopFrame.Api/Extensions/MvcExtensions.cs
--- a/src/HopFrame.Api/Extensions/ServiceCollectionExtensions.cs
+++ b/src/HopFrame.Api/Extensions/ServiceCollectionExtensions.cs
@@ -0,0 +1,36 @@
 using HopFrame.Api.Controller;
 using HopFrame.Api.Logic;
 using HopFrame.Api.Logic.Implementation;
 using HopFrame.Database;
 using HopFrame.Security.Authentication;
 using Microsoft.AspNetCore.Http;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.Extensions.DependencyInjection.Extensions;
 namespace HopFrame.Api.Extensions;
 public static class ServiceCollectionExtensions {
    /// <summary>
    /// Adds all HopFrame endpoints and services to the application
    /// </summary>
    /// <param name="services">The service provider to add the services to</param>
    /// <typeparam name="TDbContext">The data source for all HopFrame entities</typeparam>
    public static void AddHopFrame<TDbContext>(this IServiceCollection services) where TDbContext : HopDbContextBase {
        services.AddMvcCore().UseSpecificControllers(typeof(SecurityController));
        AddHopFrameNoEndpoints<TDbContext>(services);
    }
    /// <summary>
    /// Adds all HopFrame services to the application
    /// </summary>
    /// <param name="services">The service provider to add the services to</param>
    /// <typeparam name="TDbContext">The data source for all HopFrame entities</typeparam>
    public static void AddHopFrameNoEndpoints<TDbContext>(this IServiceCollection services) where TDbContext : HopDbContextBase {
        services.TryAddSingleton<IHttpContextAccessor, HttpContextAccessor>();
        services.AddScoped<IAuthLogic, AuthLogic<TDbContext>>();
        services.AddHopFrameAuthentication<TDbContext>();
    }
 }
--- a/src/HopFrame.Api/HopFrame.Api.csproj
+++ b/src/HopFrame.Api/HopFrame.Api.csproj
--- a/src/HopFrame.Api/Logic/IAuthLogic.cs
+++ b/src/HopFrame.Api/Logic/IAuthLogic.cs
@@ -0,0 +1,16 @@
 using HopFrame.Api.Models;
 using HopFrame.Security.Models;
 namespace HopFrame.Api.Logic;
 public interface IAuthLogic {
    Task<LogicResult<SingleValueResult<string>>> Login(UserLogin login);
    Task<LogicResult<SingleValueResult<string>>> Register(UserRegister register);
    Task<LogicResult<SingleValueResult<string>>> Authenticate();
    Task<LogicResult> Logout();
    Task<LogicResult> Delete(UserPasswordValidation validation);
 }
--- a/src/HopFrame.Api/Logic/ILogicResult.cs
+++ b/src/HopFrame.Api/Logic/ILogicResult.cs
--- a/src/HopFrame.Api/Logic/Implementation/AuthLogic.cs
+++ b/src/HopFrame.Api/Logic/Implementation/AuthLogic.cs
@@ -1,30 +1,24 @@
 using HopFrame.Api.Logic;
 using HopFrame.Api.Models;
 using HopFrame.Database;
 using HopFrame.Database.Models.Entries;
 using HopFrame.Security.Authentication;
 using HopFrame.Security.Authorization;
 using HopFrame.Security.Claims;
 using HopFrame.Security.Models;
 using HopFrame.Security.Services;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
-namespace HopFrame.Api.Controller;
+namespace HopFrame.Api.Logic.Implementation;
-[ApiController]
+public class AuthLogic<TDbContext>(TDbContext context, IUserService users, ITokenContext tokenContext, IHttpContextAccessor accessor) : IAuthLogic where TDbContext : HopDbContextBase {
 [Route("authentication")]
 public class SecurityController<TDbContext>(TDbContext context, IUserService users, ITokenContext tokenContext) : ControllerBase where TDbContext : HopDbContextBase {
-    [HttpPut("login")]
+    public async Task<LogicResult<SingleValueResult<string>>> Login(UserLogin login) {
    public async Task<ActionResult<SingleValueResult<string>>> Login([FromBody] UserLogin login) {
        var user = await users.GetUserByEmail(login.Email);
        if (user is null)
            return LogicResult<SingleValueResult<string>>.NotFound("The provided email address was not found");
-        if (await users.CheckUserPassword(user, login.Password))
+        if (!await users.CheckUserPassword(user, login.Password))
            return LogicResult<SingleValueResult<string>>.Forbidden("The provided password is not correct");
        var refreshToken = new TokenEntry {
@@ -40,12 +34,12 @@ public class SecurityController<TDbContext>(TDbContext context, IUserService use
            UserId = user.Id.ToString()
        };
-        HttpContext.Response.Cookies.Append(ITokenContext.RefreshTokenType, refreshToken.Token, new CookieOptions {
+        accessor.HttpContext?.Response.Cookies.Append(ITokenContext.RefreshTokenType, refreshToken.Token, new CookieOptions {
            MaxAge = HopFrameAuthentication<TDbContext>.RefreshTokenTime,
            HttpOnly = true,
            Secure = true
        });
-        HttpContext.Response.Cookies.Append(ITokenContext.AccessTokenType, accessToken.Token, new CookieOptions {
+        accessor.HttpContext?.Response.Cookies.Append(ITokenContext.AccessTokenType, accessToken.Token, new CookieOptions {
            MaxAge = HopFrameAuthentication<TDbContext>.AccessTokenTime,
            HttpOnly = true,
            Secure = true
@@ -57,8 +51,7 @@ public class SecurityController<TDbContext>(TDbContext context, IUserService use
        return LogicResult<SingleValueResult<string>>.Ok(accessToken.Token);
    }
-    [HttpPost("register")]
+    public async Task<LogicResult<SingleValueResult<string>>> Register(UserRegister register) {
    public async Task<ActionResult<SingleValueResult<string>>> Register([FromBody] UserRegister register) {
        if (register.Password.Length < 8)
            return LogicResult<SingleValueResult<string>>.Conflict("Password needs to be at least 8 characters long");
@@ -84,12 +77,12 @@ public class SecurityController<TDbContext>(TDbContext context, IUserService use
        await context.Tokens.AddRangeAsync(refreshToken, accessToken);
        await context.SaveChangesAsync();
-        HttpContext.Response.Cookies.Append(ITokenContext.RefreshTokenType, refreshToken.Token, new CookieOptions {
+        accessor.HttpContext?.Response.Cookies.Append(ITokenContext.RefreshTokenType, refreshToken.Token, new CookieOptions {
            MaxAge = HopFrameAuthentication<TDbContext>.RefreshTokenTime,
            HttpOnly = true,
            Secure = true
        });
-        HttpContext.Response.Cookies.Append(ITokenContext.AccessTokenType, accessToken.Token, new CookieOptions {
+        accessor.HttpContext?.Response.Cookies.Append(ITokenContext.AccessTokenType, accessToken.Token, new CookieOptions {
            MaxAge = HopFrameAuthentication<TDbContext>.AccessTokenTime,
            HttpOnly = false,
            Secure = true
@@ -98,9 +91,8 @@ public class SecurityController<TDbContext>(TDbContext context, IUserService use
        return LogicResult<SingleValueResult<string>>.Ok(accessToken.Token);
    }
-    [HttpGet("authenticate")]
+    public async Task<LogicResult<SingleValueResult<string>>> Authenticate() {
-    public async Task<ActionResult<SingleValueResult<string>>> Authenticate() {
+        var refreshToken = accessor.HttpContext?.Request.Cookies[ITokenContext.RefreshTokenType];
        var refreshToken = HttpContext.Request.Cookies[ITokenContext.RefreshTokenType];
        if (string.IsNullOrEmpty(refreshToken))
            return LogicResult<SingleValueResult<string>>.Conflict("Refresh token not provided");
@@ -123,7 +115,7 @@ public class SecurityController<TDbContext>(TDbContext context, IUserService use
        await context.Tokens.AddAsync(accessToken);
        await context.SaveChangesAsync();
-        HttpContext.Response.Cookies.Append(ITokenContext.AccessTokenType, accessToken.Token, new CookieOptions {
+        accessor.HttpContext?.Response.Cookies.Append(ITokenContext.AccessTokenType, accessToken.Token, new CookieOptions {
            MaxAge = HopFrameAuthentication<TDbContext>.AccessTokenTime,
            HttpOnly = false,
            Secure = true
@@ -132,10 +124,9 @@ public class SecurityController<TDbContext>(TDbContext context, IUserService use
        return LogicResult<SingleValueResult<string>>.Ok(accessToken.Token);
    }
-    [HttpDelete("logout"), Authorized]
+    public async Task<LogicResult> Logout() {
-    public async Task<ActionResult> Logout() {
+        var accessToken = accessor.HttpContext?.User.GetAccessTokenId();
-        var accessToken = HttpContext.User.GetAccessTokenId();
+        var refreshToken = accessor.HttpContext?.Request.Cookies[ITokenContext.RefreshTokenType];
        var refreshToken = HttpContext.Request.Cookies[ITokenContext.RefreshTokenType];
        if (string.IsNullOrEmpty(accessToken) || string.IsNullOrEmpty(refreshToken))
            return LogicResult.Conflict("access or refresh token not provided");
@@ -152,22 +143,22 @@ public class SecurityController<TDbContext>(TDbContext context, IUserService use
        context.Tokens.Remove(tokenEntries[1]);
        await context.SaveChangesAsync();
-        HttpContext.Response.Cookies.Delete(ITokenContext.RefreshTokenType);
+        accessor.HttpContext?.Response.Cookies.Delete(ITokenContext.RefreshTokenType);
-        HttpContext.Response.Cookies.Delete(ITokenContext.AccessTokenType);
+        accessor.HttpContext?.Response.Cookies.Delete(ITokenContext.AccessTokenType);
        return LogicResult.Ok();
    }
-    [HttpDelete("delete"), Authorized]
+    public async Task<LogicResult> Delete(UserPasswordValidation validation) {
    public async Task<ActionResult> Delete([FromBody] UserPasswordValidation validation) {
        var user = tokenContext.User;
-        if (await users.CheckUserPassword(user, validation.Password))
+        if (!await users.CheckUserPassword(user, validation.Password))
            return LogicResult.Forbidden("The provided password is not correct");
        await users.DeleteUser(user);
-        HttpContext.Response.Cookies.Delete(ITokenContext.RefreshTokenType);
+        accessor.HttpContext?.Response.Cookies.Delete(ITokenContext.RefreshTokenType);
        accessor.HttpContext?.Response.Cookies.Delete(ITokenContext.AccessTokenType);
        return LogicResult.Ok();
    }
--- a/src/HopFrame.Api/Logic/LogicResult.cs
+++ b/src/HopFrame.Api/Logic/LogicResult.cs
--- a/src/HopFrame.Api/Models/SingleValueResult.cs
+++ b/src/HopFrame.Api/Models/SingleValueResult.cs
--- a/src/HopFrame.Api/Models/UserPasswordValidation.cs
+++ b/src/HopFrame.Api/Models/UserPasswordValidation.cs
--- a/src/HopFrame.Api/README.md
+++ b/src/HopFrame.Api/README.md
@@ -0,0 +1,100 @@
 # HopFrame API module
 This module contains some useful endpoints for user login / register management.
 ## Ho to use the Web API version
 1. Add the HopFrame.Api library to your project:
   ```
   dotnet add package HopFrame.Api
   ```
 2. Create a DbContext that inherits the ``HopDbContext`` and add a data source
   ```csharp
   public class DatabaseContext : HopDbContextBase {
       protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder) {
           base.OnConfiguring(optionsBuilder);
           optionsBuilder.UseSqlite("...");
       }
   }
   ```
 3. Add the DbContext and HopFrame to your services
   ```csharp
   builder.Services.AddDbContext<DatabaseContext>();
   builder.Services.AddHopFrame<DatabaseContext>();
   ```
 # Endpoints
 By default, the module provides a controller for handling authentication based requests by the user.
 You can explore the contoller by the build in swagger site from ASP .NET.
 ## Disable the Endpoints
 ```csharp
 builder.Services.AddDbContext<DatabaseContext>();
 //builder.Services.AddHopFrame<DatabaseContext>();
 services.AddHopFrameNoEndpoints<TDbContext>();
 ```
 # Services added in this module
 You can use these services by specifying them as a dependency. All of them are scoped dependencies.
 ## LogicResult
 Logic result is an extension of the ActionResult for an ApiController. It provides simple Http status results with either a message or data by specifying the generic type.
 ```csharp
 public class LogicResult : ILogicResult {
    public static LogicResult Ok();
    public static LogicResult BadRequest();
    public static LogicResult BadRequest(string message);
    public static LogicResult Forbidden();
    public static LogicResult Forbidden(string message);
    public static LogicResult NotFound();
    public static LogicResult NotFound(string message);
    public static LogicResult Conflict();
    public static LogicResult Conflict(string message);
    public static LogicResult Forward(LogicResult result);
    public static LogicResult Forward<T>(ILogicResult<T> result);
    public static implicit operator ActionResult(LogicResult v);
 }
 public class LogicResult<T> : ILogicResult<T> {
    public static LogicResult<T> Ok();
    public static LogicResult<T> Ok(T result);
    ...
 }
 ```
 ## IAuthLogic
 This service handles all logic needed to provide the authentication endpoints by using the LogicResults.
 ```csharp
 public interface IAuthLogic {
    Task<LogicResult<SingleValueResult<string>>> Login(UserLogin login);
    Task<LogicResult<SingleValueResult<string>>> Register(UserRegister register);
    Task<LogicResult<SingleValueResult<string>>> Authenticate();
    Task<LogicResult> Logout();
    Task<LogicResult> Delete(UserPasswordValidation validation);
 }
 ```
--- a/src/HopFrame.Database/HopDbContextBase.cs
+++ b/src/HopFrame.Database/HopDbContextBase.cs
--- a/src/HopFrame.Database/HopFrame.Database.csproj
+++ b/src/HopFrame.Database/HopFrame.Database.csproj
--- a/src/HopFrame.Database/Models/Entries/GroupEntry.cs
+++ b/src/HopFrame.Database/Models/Entries/GroupEntry.cs
--- a/src/HopFrame.Database/Models/Entries/PermissionEntry.cs
+++ b/src/HopFrame.Database/Models/Entries/PermissionEntry.cs
--- a/src/HopFrame.Database/Models/Entries/TokenEntry.cs
+++ b/src/HopFrame.Database/Models/Entries/TokenEntry.cs
--- a/src/HopFrame.Database/Models/Entries/UserEntry.cs
+++ b/src/HopFrame.Database/Models/Entries/UserEntry.cs
--- a/src/HopFrame.Database/Models/ModelExtensions.cs
+++ b/src/HopFrame.Database/Models/ModelExtensions.cs
--- a/src/HopFrame.Database/Models/Permission.cs
+++ b/src/HopFrame.Database/Models/Permission.cs
--- a/src/HopFrame.Database/Models/PermissionGroup.cs
+++ b/src/HopFrame.Database/Models/PermissionGroup.cs
--- a/src/HopFrame.Database/Models/User.cs
+++ b/src/HopFrame.Database/Models/User.cs
--- a/src/HopFrame.Database/README.md
+++ b/src/HopFrame.Database/README.md
--- a/src/HopFrame.Security/AdminPermissions.cs
+++ b/src/HopFrame.Security/AdminPermissions.cs
--- a/src/HopFrame.Security/Authentication/HopFrameAuthentication.cs
+++ b/src/HopFrame.Security/Authentication/HopFrameAuthentication.cs
--- a/src/HopFrame.Security/Authentication/HopFrameAuthenticationExtensions.cs
+++ b/src/HopFrame.Security/Authentication/HopFrameAuthenticationExtensions.cs
--- a/src/HopFrame.Security/Authorization/AuthorizedAttribute.cs
+++ b/src/HopFrame.Security/Authorization/AuthorizedAttribute.cs
--- a/src/HopFrame.Security/Authorization/AuthorizedFilter.cs
+++ b/src/HopFrame.Security/Authorization/AuthorizedFilter.cs
--- a/src/HopFrame.Security/Authorization/PermissionValidator.cs
+++ b/src/HopFrame.Security/Authorization/PermissionValidator.cs
--- a/src/HopFrame.Security/Claims/HopFrameClaimTypes.cs
+++ b/src/HopFrame.Security/Claims/HopFrameClaimTypes.cs
--- a/src/HopFrame.Security/Claims/ITokenContext.cs
+++ b/src/HopFrame.Security/Claims/ITokenContext.cs
--- a/src/HopFrame.Security/Claims/TokenContextImplementor.cs
+++ b/src/HopFrame.Security/Claims/TokenContextImplementor.cs
--- a/src/HopFrame.Security/EncryptionManager.cs
+++ b/src/HopFrame.Security/EncryptionManager.cs
--- a/src/HopFrame.Security/HopFrame.Security.csproj
+++ b/src/HopFrame.Security/HopFrame.Security.csproj
--- a/src/HopFrame.Security/Models/UserLogin.cs
+++ b/src/HopFrame.Security/Models/UserLogin.cs
--- a/src/HopFrame.Security/Models/UserRegister.cs
+++ b/src/HopFrame.Security/Models/UserRegister.cs
--- a/src/HopFrame.Security/README.md
+++ b/src/HopFrame.Security/README.md
@@ -0,0 +1,74 @@
 # HopFrame Security module
 this module contains all handlers for the login and register validation. It also checks the user permissions.
 # Services added in this module
 You can use these services by specifying them as a dependency. All of them are scoped dependencies.
 ## ITokenContext
 This service provides the information given by the current request
 ```csharp
 public interface ITokenContext {
    bool IsAuthenticated { get; }
    User User { get; }
    Guid AccessToken { get; }
 }
 ```
 ## IUserService
 This service simplifies the data access of the user table in the database.
 ```csharp
 public interface IUserService {
    Task<IList<User>> GetUsers();
    Task<User> GetUser(Guid userId);
    Task<User> GetUserByEmail(string email);
    Task<User> GetUserByUsername(string username);
    Task<User> AddUser(UserRegister user);
    Task UpdateUser(User user);
    Task DeleteUser(User user);
    Task<bool> CheckUserPassword(User user, string password);
    Task ChangePassword(User user, string password);
 }
 ```
 ## IPermissionService
 This service handles all permission and group interactions with the data source.
 ```csharp
 public interface IPermissionService {
    Task<bool> HasPermission(string permission, Guid user);
    Task<IList<PermissionGroup>> GetPermissionGroups();
    Task<PermissionGroup> GetPermissionGroup(string name);
    Task EditPermissionGroup(PermissionGroup group);
    Task<IList<PermissionGroup>> GetUserPermissionGroups(User user);
    Task RemoveGroupFromUser(User user, PermissionGroup group);
    Task<PermissionGroup> CreatePermissionGroup(string name, bool isDefault = false, string description = null);
    Task DeletePermissionGroup(PermissionGroup group);
    Task<Permission> GetPermission(string name, IPermissionOwner owner);
    Task AddPermission(IPermissionOwner owner, string permission);
    Task RemovePermission(Permission permission);
    Task<string[]> GetFullPermissions(string user);
 }
 ```
--- a/src/HopFrame.Security/Services/IPermissionService.cs
+++ b/src/HopFrame.Security/Services/IPermissionService.cs
--- a/src/HopFrame.Security/Services/IUserService.cs
+++ b/src/HopFrame.Security/Services/IUserService.cs
--- a/src/HopFrame.Security/Services/Implementation/PermissionService.cs
+++ b/src/HopFrame.Security/Services/Implementation/PermissionService.cs
--- a/src/HopFrame.Security/Services/Implementation/UserService.cs
+++ b/src/HopFrame.Security/Services/Implementation/UserService.cs
--- a/src/HopFrame.Web/AuthMiddleware.cs
+++ b/src/HopFrame.Web/AuthMiddleware.cs
--- a/src/HopFrame.Web/Components/Administration/GroupAddModal.razor
+++ b/src/HopFrame.Web/Components/Administration/GroupAddModal.razor
--- a/src/HopFrame.Web/Components/Administration/HopIconDisplay.razor
+++ b/src/HopFrame.Web/Components/Administration/HopIconDisplay.razor
--- a/src/HopFrame.Web/Components/Administration/UserAddModal.razor
+++ b/src/HopFrame.Web/Components/Administration/UserAddModal.razor
--- a/src/HopFrame.Web/Components/Administration/UserEditModal.razor
+++ b/src/HopFrame.Web/Components/Administration/UserEditModal.razor
--- a/src/HopFrame.Web/Components/AuthorizedView.razor
+++ b/src/HopFrame.Web/Components/AuthorizedView.razor
--- a/src/HopFrame.Web/HopFrame.Web.csproj
+++ b/src/HopFrame.Web/HopFrame.Web.csproj
--- a/src/HopFrame.Web/Model/NavigationItem.cs
+++ b/src/HopFrame.Web/Model/NavigationItem.cs
--- a/src/HopFrame.Web/Model/PermissionGroupAdd.cs
+++ b/src/HopFrame.Web/Model/PermissionGroupAdd.cs
--- a/src/HopFrame.Web/Model/RegisterData.cs
+++ b/src/HopFrame.Web/Model/RegisterData.cs
--- a/src/HopFrame.Web/Model/UserAdd.cs
+++ b/src/HopFrame.Web/Model/UserAdd.cs
--- a/src/HopFrame.Web/Pages/Administration/AdminDashboard.razor
+++ b/src/HopFrame.Web/Pages/Administration/AdminDashboard.razor
--- a/src/HopFrame.Web/Pages/Administration/AdminLogin.razor
+++ b/src/HopFrame.Web/Pages/Administration/AdminLogin.razor
--- a/src/HopFrame.Web/Pages/Administration/AdminLogin.razor.css
+++ b/src/HopFrame.Web/Pages/Administration/AdminLogin.razor.css
--- a/src/HopFrame.Web/Pages/Administration/GroupsPage.razor
+++ b/src/HopFrame.Web/Pages/Administration/GroupsPage.razor
--- a/src/HopFrame.Web/Pages/Administration/GroupsPage.razor.css
+++ b/src/HopFrame.Web/Pages/Administration/GroupsPage.razor.css
--- a/src/HopFrame.Web/Pages/Administration/Layout/AdminLayout.razor
+++ b/src/HopFrame.Web/Pages/Administration/Layout/AdminLayout.razor
--- a/src/HopFrame.Web/Pages/Administration/Layout/AdminMenu.razor
+++ b/src/HopFrame.Web/Pages/Administration/Layout/AdminMenu.razor
--- a/src/HopFrame.Web/Pages/Administration/Layout/EmptyLayout.razor
+++ b/src/HopFrame.Web/Pages/Administration/Layout/EmptyLayout.razor
--- a/src/HopFrame.Web/Pages/Administration/UsersPage.razor
+++ b/src/HopFrame.Web/Pages/Administration/UsersPage.razor
--- a/src/HopFrame.Web/Pages/Administration/UsersPage.razor.css
+++ b/src/HopFrame.Web/Pages/Administration/UsersPage.razor.css
--- a/src/HopFrame.Web/README.md
+++ b/src/HopFrame.Web/README.md
@@ -41,3 +41,20 @@ This module contains useful helpers for Blazor Apps and an Admin Dashboard.
    .AddHopFrameAdminPages()
    .AddInteractiveServerRenderMode();
   ```
 # Services added in this module
 You can use these services by specifying them as a dependency. All of them are scoped dependencies.
 ## IAuthService
 This service handles all the authentication like login or register. It properly creates all tokens so the user can be identified
 ```csharp
 public interface IAuthService {
    Task Register(UserRegister register);
    Task<bool> Login(UserLogin login);
    Task Logout();
    Task<TokenEntry> RefreshLogin();
    Task<bool> IsLoggedIn();
 }
 ```
--- a/src/HopFrame.Web/ServiceCollectionExtensions.cs
+++ b/src/HopFrame.Web/ServiceCollectionExtensions.cs
@@ -19,8 +19,6 @@ public static class ServiceCollectionExtensions {
        services.AddSweetAlert2();
        services.AddBlazorStrap();
        //TODO: Use https://blazorstrap.io/V5/V5
        services.AddHopFrameAuthentication<TDbContext>();
        return services;
--- a/src/HopFrame.Web/Services/IAuthService.cs
+++ b/src/HopFrame.Web/Services/IAuthService.cs
--- a/src/HopFrame.Web/Services/Implementation/AuthService.cs
+++ b/src/HopFrame.Web/Services/Implementation/AuthService.cs
--- a/test/FrontendTest/.gitignore
+++ b/test/FrontendTest/.gitignore
--- a/test/FrontendTest/Components/App.razor
+++ b/test/FrontendTest/Components/App.razor
--- a/test/FrontendTest/Components/Layout/MainLayout.razor
+++ b/test/FrontendTest/Components/Layout/MainLayout.razor
--- a/test/FrontendTest/Components/Layout/MainLayout.razor.css
+++ b/test/FrontendTest/Components/Layout/MainLayout.razor.css
--- a/test/FrontendTest/Components/Layout/NavMenu.razor
+++ b/test/FrontendTest/Components/Layout/NavMenu.razor
--- a/test/FrontendTest/Components/Layout/NavMenu.razor.css
+++ b/test/FrontendTest/Components/Layout/NavMenu.razor.css
--- a/test/FrontendTest/Components/Pages/Counter.razor
+++ b/test/FrontendTest/Components/Pages/Counter.razor
--- a/test/FrontendTest/Components/Pages/Error.razor
+++ b/test/FrontendTest/Components/Pages/Error.razor
--- a/test/FrontendTest/Components/Pages/Home.razor
+++ b/test/FrontendTest/Components/Pages/Home.razor
--- a/test/FrontendTest/Components/Pages/Weather.razor
+++ b/test/FrontendTest/Components/Pages/Weather.razor
--- a/test/FrontendTest/Components/Routes.razor
+++ b/test/FrontendTest/Components/Routes.razor
--- a/test/FrontendTest/Components/_Imports.razor
+++ b/test/FrontendTest/Components/_Imports.razor
--- a/test/FrontendTest/DatabaseContext.cs
+++ b/test/FrontendTest/DatabaseContext.cs
@@ -7,6 +7,6 @@ public class DatabaseContext : HopDbContextBase {
    protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder) {
        base.OnConfiguring(optionsBuilder);
-        optionsBuilder.UseSqlite("Data Source=C:\\Users\\Remote\\Documents\\Projekte\\HopFrame\\RestApiTest\\bin\\Debug\\net8.0\\test.db;Mode=ReadWrite;");
+        optionsBuilder.UseSqlite("Data Source=C:\\Users\\Remote\\Documents\\Projekte\\HopFrame\\test\\RestApiTest\\bin\\Debug\\net8.0\\test.db;Mode=ReadWrite;");
    }
 }
--- a/test/FrontendTest/FrontendTest.csproj
+++ b/test/FrontendTest/FrontendTest.csproj
@@ -6,10 +6,6 @@
        <ImplicitUsings>enable</ImplicitUsings>
    </PropertyGroup>
    <ItemGroup>
      <ProjectReference Include="..\HopFrame.Web\HopFrame.Web.csproj" />
    </ItemGroup>
    <ItemGroup>
      <PackageReference Include="Microsoft.EntityFrameworkCore.Sqlite" Version="8.0.7" />
    </ItemGroup>
@@ -19,4 +15,8 @@
      <_ContentIncludedByDefault Remove="wwwroot\bootstrap\bootstrap.min.css.map" />
    </ItemGroup>
    <ItemGroup>
      <ProjectReference Include="..\..\src\HopFrame.Web\HopFrame.Web.csproj" />
    </ItemGroup>
 </Project>
--- a/test/FrontendTest/Program.cs
+++ b/test/FrontendTest/Program.cs
--- a/test/FrontendTest/Properties/launchSettings.json
+++ b/test/FrontendTest/Properties/launchSettings.json
--- a/test/FrontendTest/appsettings.json
+++ b/test/FrontendTest/appsettings.json
--- a/test/FrontendTest/wwwroot/app.css
+++ b/test/FrontendTest/wwwroot/app.css
--- a/test/FrontendTest/wwwroot/favicon.png
+++ b/test/FrontendTest/wwwroot/favicon.png
--- a/test/RestApiTest/.gitignore
+++ b/test/RestApiTest/.gitignore
--- a/test/RestApiTest/Controllers/TestController.cs
+++ b/test/RestApiTest/Controllers/TestController.cs
--- a/Show More
+++ b/Show More
		`@@ -1,2 +0,0 @@`
			`# HopFrame Security module`
			`this module contains all handlers for the login and register validation. It also checks the user permissions.`