Restructure solution layout by module

src/Excititor/StellaOps.Excititor.Worker/Program.cs

@@ -0,0 +1,93 @@
+using System.IO;
+using System.Linq;
+using Microsoft.Extensions.DependencyInjection;
+using Microsoft.Extensions.Hosting;
+using Microsoft.Extensions.Logging;
+using Microsoft.Extensions.Options;
+using StellaOps.Plugin;
+using StellaOps.Excititor.Connectors.RedHat.CSAF.DependencyInjection;
+using StellaOps.Excititor.Core;
+using StellaOps.Excititor.Core.Aoc;
+using StellaOps.Excititor.Formats.CSAF;
+using StellaOps.Excititor.Formats.CycloneDX;
+using StellaOps.Excititor.Formats.OpenVEX;
+using StellaOps.Excititor.Storage.Mongo;
+using StellaOps.Excititor.Worker.Options;
+using StellaOps.Excititor.Worker.Scheduling;
+using StellaOps.Excititor.Worker.Signature;
+using StellaOps.Excititor.Attestation.Extensions;
+using StellaOps.Excititor.Attestation.Verification;
+
+var builder = Host.CreateApplicationBuilder(args);
+var services = builder.Services;
+var configuration = builder.Configuration;
+services.AddOptions<VexWorkerOptions>()
+    .Bind(configuration.GetSection("Excititor:Worker"))
+    .ValidateOnStart();
+
+services.Configure<VexWorkerPluginOptions>(configuration.GetSection("Excititor:Worker:Plugins"));
+services.AddRedHatCsafConnector();
+
+services.AddOptions<VexMongoStorageOptions>()
+    .Bind(configuration.GetSection("Excititor:Storage:Mongo"))
+    .ValidateOnStart();
+
+services.AddExcititorMongoStorage();
+services.AddCsafNormalizer();
+services.AddCycloneDxNormalizer();
+services.AddOpenVexNormalizer();
+services.AddSingleton<IVexSignatureVerifier, WorkerSignatureVerifier>();
+services.AddVexAttestation();
+services.Configure<VexAttestationVerificationOptions>(configuration.GetSection("Excititor:Attestation:Verification"));
+services.PostConfigure<VexAttestationVerificationOptions>(options =>
+{
+    // Workers operate in offline-first environments; allow verification to succeed without Rekor.
+    options.AllowOfflineTransparency = true;
+    if (!configuration.GetSection("Excititor:Attestation:Verification").Exists())
+    {
+        options.RequireTransparencyLog = false;
+    }
+});
+services.AddExcititorAocGuards();
+
+services.AddSingleton<IValidateOptions<VexWorkerOptions>, VexWorkerOptionsValidator>();
+services.AddSingleton(TimeProvider.System);
+services.PostConfigure<VexWorkerOptions>(options =>
+{
+    if (!options.Providers.Any(provider => string.Equals(provider.ProviderId, "excititor:redhat", StringComparison.OrdinalIgnoreCase)))
+    {
+        options.Providers.Add(new VexWorkerProviderOptions
+        {
+            ProviderId = "excititor:redhat",
+        });
+    }
+});
+services.AddSingleton<PluginCatalog>(provider =>
+{
+    var pluginOptions = provider.GetRequiredService<IOptions<VexWorkerPluginOptions>>().Value;
+    var catalog = new PluginCatalog();
+
+    var directory = pluginOptions.ResolveDirectory();
+    if (Directory.Exists(directory))
+    {
+        catalog.AddFromDirectory(directory, pluginOptions.ResolveSearchPattern());
+    }
+    else
+    {
+        var logger = provider.GetRequiredService<ILogger<Program>>();
+        logger.LogWarning("Excititor worker plugin directory '{Directory}' does not exist; proceeding without external connectors.", directory);
+    }
+
+    return catalog;
+});
+
+services.AddSingleton<IVexProviderRunner, DefaultVexProviderRunner>();
+services.AddSingleton<VexConsensusRefreshService>();
+services.AddSingleton<IVexConsensusRefreshScheduler>(static provider => provider.GetRequiredService<VexConsensusRefreshService>());
+services.AddHostedService<VexWorkerHostedService>();
+services.AddHostedService(static provider => provider.GetRequiredService<VexConsensusRefreshService>());
+
+var host = builder.Build();
+await host.RunAsync();
+
+public partial class Program;