RabbitLabs/droplet-next

Fork 0

Refactor authentication and database code into Burrow.Auth project #74

Merged

Vylpes merged 104 commits from feature/17-story-11-user-sign-up into main

2026-03-01 19:22:14 +00:00

Vylpes commented

2026-02-28 12:04:29 +00:00

Owner

#12

Vylpes added the

type

story

label

2026-02-28 12:04:29 +00:00

Vylpes added 100 commits

2026-02-28 12:04:29 +00:00

Initial plan d24e65c331

Create base project: Blazor Server + PostgreSQL + EF Core + CsvHelper + Tailwind + Docker c590d3817b

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Move @code blocks to .razor.cs code-behind partial classes for all components 6cf53d6a5c

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Rename project from DropletNext to Droplet 9c6e4f4673

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Fix .gitignore path for generated CSS after project rename dfe86ef32f

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Fix styling: add Bootstrap 5 CSS and ensure wwwroot directory exists f1f4d462b8

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #34 from Vylpes/copilot/create-base-project 805fd8c681

Create base project: Blazor Server + PostgreSQL + EF Core + Tailwind + Bootstrap + Docker

Initial plan 3da4e0de83

Add ASPNETCORE_ENVIRONMENT to .env.example and use it in docker-compose.yml 444b977819

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Initial plan ad21ce0d55

Merge pull request #37 from Vylpes/copilot/add-development-mode-switch 7f4f1a2d0c

Allow ASPNETCORE_ENVIRONMENT to be configured via .env file

Initial plan 2f6905221c

Configure Data Protection key persistence to fix antiforgery token decryption error 5ee91d77b6

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Create card-based layout design with navbar, home card, and login card 9a94c39a75

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #40 from Vylpes/copilot/fix-antiforgery-token-decryption 1630dd27cb

Persist Data Protection keys to fix antiforgery token decryption on container restart

Apply card-based layout to all remaining pages 1b6ac79495

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Update links ffb20532d8

Merge pull request #38 from Vylpes/copilot/create-card-based-layout ea9b96ac69

Implement card-based layout with auth-aware navbar

Initial plan af9424119c

Implement auto migrations on app startup 9e9f2a861a

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Initial plan cd7600fba8

Configure email sending with SMTP and file-based senders 2bb0f542ef

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Initial plan f515f0ab19

Only run dependent services in docker 5826de3a1d

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #43 from Vylpes/copilot/implement-auto-migrations 2cf865bab9

Implement auto migrations on startup

Update keys location f080872cba

Merge pull request #47 from Vylpes/copilot/run-dependent-services-in-docker ae50fc0476

Only run dependent services in Docker

Handle IsNotAllowed sign-in result with clear email confirmation message 030e2b9564

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Fix HTML-encoded confirmation link breaking query params in email href 1e4ba1fc21

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge branch 'feature/17-story-11-user-sign-up' into copilot/configure-email-sending dc5cc962ac

Update temp folder 952c6e6809

Merge pull request #45 from Vylpes/copilot/configure-email-sending 4846b8282b

Configure email sending: SMTP and file-based senders

Initial plan b48ab40191

Fix logout redirect: trim leading slash from returnUrl to prevent ~// URL ddc4acf247

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #49 from Vylpes/copilot/fix-logout-error 71b40512a4

Fix logout crash: invalid redirect URL when ReturnUrl is "/"

Initial plan 4afbf08b4a

Refactor: move auth code from Droplet.Web to new Burrow.Auth RCL 1e3f496b87

Create src/Burrow/Burrow.Auth/ as a Razor Class Library containing:
- Authentication data models and DB context (ApplicationUser, ApplicationDbContext)
- EF Core migrations
- Email services (EmailSettings, FileEmailSender, SmtpEmailSender)
- All Blazor Account components (login, register, manage, etc.)
- CSS source and tailwind build configuration

Update Droplet.Web to reference Burrow.Auth via ProjectReference, register
components with AddAdditionalAssemblies(), and serve CSS from _content/Burrow.Auth/.

Add GlobalUsings.cs to Burrow.Auth to provide ASP.NET Core implicit usings
that were previously available via Microsoft.NET.Sdk.Web.

Make identity service classes public so they can be registered from Droplet.Web.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

Fix migration files: update entity type strings from Droplet.Web.Data to Burrow.Auth.Data 1b0cf70501

EF Core migration files use fully-qualified type names as string literals for
entity discriminators. These needed updating to match the new namespace after
moving ApplicationUser to Burrow.Auth.Data.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

Move ApplicationDbContext and migrations to Burrow.Core project a3abe438b3

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Add DropletDbContext and prefix Burrow Identity tables with burrow schema 570e837cd5

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Add AddBurrowCore/AddBurrowAuth/UseBurrow extension methods and auto yarn install aebb25b393

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Move ApplicationDbContext and migrations from Burrow.Core.Data to Burrow.Auth.Data ced570fe2d

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Rename ApplicationDbContext to BurrowAuthDbContext f47f554689

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Remove Burrow.Core project; move extensions into Burrow.Auth.Extensions ab2cb4a961

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Remove BurrowCoreExtensions.cs; inline DbContext setup in Program.cs af3e2552be

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Remove Tier field from ApplicationUser and migrations 99540d9dea

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #50 from Vylpes/copilot/split-core-functionality-project 351c79f6bb

Split auth and database code into Burrow.Auth project

Migrate in BurrowAuth b552a8a910

Fix migrations efda7e24d2

Update fe61786aa7

Add back to home button 4497e5cf02

Initial plan b832f7b9be

Add xUnit test projects for Burrow.Auth and Droplet.Web 961572942e

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #51 from Vylpes/copilot/create-automated-testing-projects 7e4d2c65f8

Add xUnit automated tests for Burrow.Auth and Droplet.Web

Remove burrowauthdbcontext dependency 13c0ffe959

Initial plan 119d17730a

docs: add email-providers and unit-testing docs, update README 20837a655a

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #52 from Vylpes/copilot/update-documentation-repo af3c86523e

docs: add email provider and unit testing documentation, update README

Remove Dockerfile 234c4d2908

Initial plan cf2e1c9f26

Initial plan 1d8e6ee035

Update docs/email-providers.md d0daec9fa5

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

Initial plan 1c6786e52c

Add services.AddAuthorization() to AddBurrowAuth d30ce1c429

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Initial plan 21271d8604

fix: replace dismiss <a> with accessible <button> in MainLayout a006f87feb

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Update src/Burrow/Burrow.Auth/Burrow.Auth.csproj cd7da818ca

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

Add GUID suffix to FileEmailSender file names to prevent collisions 153ecd9717

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Initial plan 4ba580f065

Fix invalid HTML: move Back to Home link outside ul in ManageNavMenu fa53666573

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Initial plan 92c90804d0

Fix HTML injection risk in SmtpEmailSender and FileEmailSender 6c508e93a0

Remove HtmlDecode + manual quote replacement from href generation.
All callers already pass HtmlEncoder.Default.Encode(callbackUrl), so
decoding it was reintroducing unencoded & characters. Use the
already-encoded URL directly in the href attribute.

Add tests to verify HTML-encoded URLs are preserved verbatim.

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Initial plan c79a239eb3

Initial plan 747c58dbf0

Update src/Burrow/Burrow.Auth/Components/Account/Pages/ConfirmEmailChange.razor.cs db0f36183a

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

Remove generated app.css from source control and add to .gitignore f88050ccd9

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Initial plan 839981a286

Initial plan 6683b380db

Initial plan 41c9e9e30a

Make DataProtection keys directory configurable via config 53cd8789d5

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Remove unused AuthenticationStateProvider parameter from DownloadPersonalData endpoint 3e72fd8f67

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Fix README yarn/CSS paths to point to src/Burrow/Burrow.Auth 7ee3c291ab

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #54 from Vylpes/copilot/sub-pr-53 615d10bbc2

Register authorization services in AddBurrowAuth

Replace hard-coded DB credentials in appsettings.json with placeholders b5b1c3f6df

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Give each DbContext its own migrations history table 1656acf916

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #55 from Vylpes/copilot/sub-pr-53-again b74924cd8a

Fix FileEmailSender file name collisions under concurrent sends

Merge pull request #56 from Vylpes/copilot/sub-pr-53-another-one f12e3ba601

fix(a11y): replace non-focusable dismiss `<a>` with accessible `<button>` in MainLayout

Merge pull request #57 from Vylpes/copilot/sub-pr-53-yet-again 8f2651b433

Remove HtmlDecode from email sender href generation

Merge pull request #58 from Vylpes/copilot/sub-pr-53-one-more-time 82bdb3b187

Fix invalid HTML: separate "Back to Home" button from nav tabs in ManageNavMenu

Merge pull request #59 from Vylpes/copilot/sub-pr-53-please-work b420dcb44a

Make DataProtection keys directory configurable

Merge pull request #61 from Vylpes/copilot/sub-pr-53-eaab5027-d3d9-4ceb-9d2b-d8da18a9eb89 e7c76380ac

Fix README: yarn/CSS setup steps point to wrong directory

Merge pull request #62 from Vylpes/copilot/sub-pr-53-94774c45-9667-42f9-938a-d44a3c7e59e7 d92d5fc90b

Remove unused AuthenticationStateProvider parameter from DownloadPersonalData endpoint

Merge pull request #63 from Vylpes/copilot/sub-pr-53-47afc191-7433-4019-9877-d7c228bc4de6 c8dc2d4412

Give DropletDbContext and BurrowAuthDbContext separate migrations history tables

Merge base branch changes to resolve conflicts a37d13a415

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Add ConnectionStrings__DefaultConnection to .env.example 2e9f6c43b6

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge branch 'feature/17-story-11-user-sign-up' into copilot/sub-pr-53-5a894c78-e100-4282-bbb4-fbca9e534d94 f7a75a14e9

Merge pull request #60 from Vylpes/copilot/sub-pr-53-5a894c78-e100-4282-bbb4-fbca9e534d94 882a92618f

Remove generated Tailwind CSS from source control

Merge pull request #64 from Vylpes/copilot/sub-pr-53-a762b793-e662-4721-a312-4c4409bda2e8 a105f87183

Remove hard-coded DB credentials from appsettings.json

Add vscode launch c65fb6514c

Revert "Fix HTML injection risk in SmtpEmailSender and FileEmailSender" 1986f1cf4f

This reverts commit 6c508e93a0.

Vylpes requested review from Copilot

2026-02-28 12:04:32 +00:00

Copilot was assigned by Vylpes

2026-02-28 12:04:36 +00:00

Vylpes added 4 commits

2026-02-28 18:18:52 +00:00

Initial plan 0c6fabd531

Update docs/email-providers.md 46aef0db0f

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

Add SmtpEmailSender unit tests with BuildMailMessage refactor c86d2535b7

Co-authored-by: Vylpes <8274970+Vylpes@users.noreply.github.com>

Merge pull request #65 from Vylpes/copilot/sub-pr-53 183015b16b

Add SmtpEmailSender unit tests via BuildMailMessage refactor

Vylpes changed target branch from release/0.1.0 to main

2026-03-01 19:21:51 +00:00

Vylpes merged commit 57ee23944e into main

2026-03-01 19:22:14 +00:00

Vylpes deleted branch feature/17-story-11-user-sign-up

2026-03-01 19:22:14 +00:00

Vylpes referenced this pull request from a commit

2026-03-01 19:22:15 +00:00

Refactor authentication and database code into Burrow.Auth project (#74)

No reviewers

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

RabbitLabs/droplet-next!74

No description provided.

Rows
Columns