Add tenant context interfaces for multi-tenant operations and user context management. Refactor logging in webhook endpoints and improve async method calls in repositories for better readability and performance.

2025-12-29 20:07:59 +02:00
parent 1b61c72c90
commit 7825a79083
6 changed files with 49 additions and 14 deletions
--- a/src/Scanner/StellaOps.Scanner.WebService/Endpoints/SourcesEndpoints.cs
+++ b/src/Scanner/StellaOps.Scanner.WebService/Endpoints/SourcesEndpoints.cs
@@ -3,12 +3,14 @@ using System.Text.Json.Serialization;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Routing;
 using StellaOps.Auth.Abstractions;
+using StellaOps.Scanner.Sources.Configuration;
 using StellaOps.Scanner.Sources.Contracts;
 using StellaOps.Scanner.Sources.Domain;
 using StellaOps.Scanner.Sources.Services;
 using StellaOps.Scanner.WebService.Constants;
 using StellaOps.Scanner.WebService.Infrastructure;
 using StellaOps.Scanner.WebService.Security;
+using StellaOps.Scanner.WebService.Tenancy;

 namespace StellaOps.Scanner.WebService.Endpoints;

--- a/src/Scanner/StellaOps.Scanner.WebService/Endpoints/WebhookEndpoints.cs
+++ b/src/Scanner/StellaOps.Scanner.WebService/Endpoints/WebhookEndpoints.cs
@@ -15,6 +15,11 @@ using StellaOps.Scanner.WebService.Infrastructure;

 namespace StellaOps.Scanner.WebService.Endpoints;

+/// <summary>
+/// Marker class for webhook endpoint logging.
+/// </summary>
+internal sealed class WebhookEndpointLogger;
+
 /// <summary>
 /// Endpoints for receiving webhooks from container registries and Git providers.
 /// </summary>
@@ -98,7 +103,7 @@ internal static class WebhookEndpoints
        IEnumerable<ISourceTypeHandler> handlers,
        ISourceTriggerDispatcher dispatcher,
        ICredentialResolver credentialResolver,
-        ILogger<WebhookEndpoints> logger,
+        ILogger<WebhookEndpointLogger> logger,
        HttpContext context,
        CancellationToken ct)
    {
@@ -140,7 +145,7 @@ internal static class WebhookEndpoints
                logger.LogWarning("Webhook received without signature for source {SourceId}", sourceId);
                return ProblemResultFactory.Create(
                    context,
-                    ProblemTypes.Unauthorized,
+                    ProblemTypes.Authentication,
                    "Missing webhook signature",
                    StatusCodes.Status401Unauthorized);
            }
@@ -164,7 +169,7 @@ internal static class WebhookEndpoints
                logger.LogWarning("Invalid webhook signature for source {SourceId}", sourceId);
                return ProblemResultFactory.Create(
                    context,
-                    ProblemTypes.Unauthorized,
+                    ProblemTypes.Authentication,
                    "Invalid webhook signature",
                    StatusCodes.Status401Unauthorized);
            }
@@ -252,7 +257,7 @@ internal static class WebhookEndpoints
        IEnumerable<ISourceTypeHandler> handlers,
        ISourceTriggerDispatcher dispatcher,
        ICredentialResolver credentialResolver,
-        ILogger<WebhookEndpoints> logger,
+        ILogger<WebhookEndpointLogger> logger,
        HttpContext context,
        CancellationToken ct)
    {
@@ -290,7 +295,7 @@ internal static class WebhookEndpoints
        IEnumerable<ISourceTypeHandler> handlers,
        ISourceTriggerDispatcher dispatcher,
        ICredentialResolver credentialResolver,
-        ILogger<WebhookEndpoints> logger,
+        ILogger<WebhookEndpointLogger> logger,
        HttpContext context,
        CancellationToken ct)
    {
@@ -337,7 +342,7 @@ internal static class WebhookEndpoints
        IEnumerable<ISourceTypeHandler> handlers,
        ISourceTriggerDispatcher dispatcher,
        ICredentialResolver credentialResolver,
-        ILogger<WebhookEndpoints> logger,
+        ILogger<WebhookEndpointLogger> logger,
        HttpContext context,
        CancellationToken ct)
    {
@@ -377,7 +382,7 @@ internal static class WebhookEndpoints
        IEnumerable<ISourceTypeHandler> handlers,
        ISourceTriggerDispatcher dispatcher,
        ICredentialResolver credentialResolver,
-        ILogger<WebhookEndpoints> logger,
+        ILogger<WebhookEndpointLogger> logger,
        HttpContext context,
        CancellationToken ct)
    {
@@ -420,7 +425,7 @@ internal static class WebhookEndpoints
        IEnumerable<ISourceTypeHandler> handlers,
        ISourceTriggerDispatcher dispatcher,
        ICredentialResolver credentialResolver,
-        ILogger<WebhookEndpoints> logger,
+        ILogger<WebhookEndpointLogger> logger,
        HttpContext context,
        string signatureHeader,
        CancellationToken ct)
@@ -459,7 +464,7 @@ internal static class WebhookEndpoints
                logger.LogWarning("Webhook received without signature for source {SourceId}", source.SourceId);
                return ProblemResultFactory.Create(
                    context,
-                    ProblemTypes.Unauthorized,
+                    ProblemTypes.Authentication,
                    "Missing webhook signature",
                    StatusCodes.Status401Unauthorized);
            }
@@ -483,7 +488,7 @@ internal static class WebhookEndpoints
                logger.LogWarning("Invalid webhook signature for source {SourceId}", source.SourceId);
                return ProblemResultFactory.Create(
                    context,
-                    ProblemTypes.Unauthorized,
+                    ProblemTypes.Authentication,
                    "Invalid webhook signature",
                    StatusCodes.Status401Unauthorized);
            }
--- a/src/Scanner/StellaOps.Scanner.WebService/Tenancy/ITenantContext.cs
+++ b/src/Scanner/StellaOps.Scanner.WebService/Tenancy/ITenantContext.cs
@@ -0,0 +1,12 @@
+namespace StellaOps.Scanner.WebService.Tenancy;
+
+/// <summary>
+/// Provides the current tenant context for multi-tenant operations.
+/// </summary>
+public interface ITenantContext
+{
+    /// <summary>
+    /// Gets the current tenant ID.
+    /// </summary>
+    string TenantId { get; }
+}
--- a/src/Scanner/StellaOps.Scanner.WebService/Tenancy/IUserContext.cs
+++ b/src/Scanner/StellaOps.Scanner.WebService/Tenancy/IUserContext.cs
@@ -0,0 +1,17 @@
+namespace StellaOps.Scanner.WebService.Tenancy;
+
+/// <summary>
+/// Provides the current user context for audit and authorization.
+/// </summary>
+public interface IUserContext
+{
+    /// <summary>
+    /// Gets the current user ID.
+    /// </summary>
+    string UserId { get; }
+
+    /// <summary>
+    /// Gets the current user's display name.
+    /// </summary>
+    string? DisplayName { get; }
+}
--- a/src/Scanner/__Libraries/StellaOps.Scanner.Sources/Persistence/SbomSourceRepository.cs
+++ b/src/Scanner/__Libraries/StellaOps.Scanner.Sources/Persistence/SbomSourceRepository.cs
@@ -122,11 +122,11 @@ public sealed class SbomSourceRepository : RepositoryBase<ScannerSourcesDataSour
            MapSource,
            ct);

-        var totalCount = (await ExecuteScalarAsync<long>(
+        var totalCount = await ExecuteScalarAsync<long>(
            tenantId,
            countSb.ToString(),
            AddFilters,
-            ct)).Value;
+            ct);

        string? nextCursor = null;
        if (items.Count > request.Limit)
--- a/src/Scanner/__Libraries/StellaOps.Scanner.Sources/Persistence/SbomSourceRunRepository.cs
+++ b/src/Scanner/__Libraries/StellaOps.Scanner.Sources/Persistence/SbomSourceRunRepository.cs
@@ -98,12 +98,11 @@ public sealed class SbomSourceRunRepository : RepositoryBase<ScannerSourcesDataS
            MapRun,
            ct);

-        var totalCountResult = await ExecuteScalarAsync<long>(
+        var totalCount = await ExecuteScalarAsync<long>(
            "__system__",
            countSb.ToString(),
            AddFilters,
            ct);
-        var totalCount = totalCountResult.GetValueOrDefault();

        string? nextCursor = null;
        if (items.Count > request.Limit)