add dbcontext authority

2025-01-02 17:53:38 -05:00 · 2025-01-02 17:53:38 -05:00 · 1de67205e0
commit 1de67205e0
parent f14ed04ce1
85 changed files with 75369 additions and 0 deletions
--- a/.gitignore
+++ b/.gitignore
@ -0,0 +1,54 @@
 # Build Folders
 bin/
 obj/
 publish/
 .vs/
 # Visual Studio Code
 .vscode/
 # User-Specific Files
 *.suo
 *.user
 *.userosscache
 *.sln.docstates
 # Logs
 *.log
 # NuGet
 *.nupkg
 *.snupkg
 packages/
 *.nuget.props
 project.lock.json
 project.fragment.lock.json
 # Rider
 .idea/
 # Configuration Files
 appsettings.Development.json
 appsettings.Local.json
 appsettings.Production.json
 appsettings.Staging.json
 # MacOS System Files
 .DS_Store
 # Windows System Files
 Thumbs.db
 ehthumbs.db
 Desktop.ini
 # Secrets
 secrets.json
 # Dependency Cache
 node_modules/
 .env
 # Auto-generated files
 *.generated.cs
 Generated_Code/
--- a/CH.Api/AppModule.cs
+++ b/CH.Api/AppModule.cs
@ -0,0 +1,21 @@
 using CH.Authority;
 using CH.CQRS;
 using PoweredSoft.Module.Abstractions;
 using CH.Dal;
 namespace CH.Api;
 public class AppModule : IModule
 {
  public IServiceCollection ConfigureServices(IServiceCollection services)
  {
    //services.AddModule<DalModule>();
    services.AddModule<SharedModule>();
    services.AddModule<CommandModule>();
    services.AddModule<QueryModule>();
    services.AddModule<AuthorityModule>();
    return services;
  }
 }
--- a/CH.Api/CH.Api.csproj
+++ b/CH.Api/CH.Api.csproj
@ -0,0 +1,40 @@
 <Project Sdk="Microsoft.NET.Sdk.Web">
  <PropertyGroup>
    <TargetFramework>net8.0</TargetFramework>
    <Nullable>enable</Nullable>
    <ImplicitUsings>enable</ImplicitUsings>
  </PropertyGroup>
  <ItemGroup>
    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="8.0.1" NoWarn="NU1605" />
    <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="8.0.1" NoWarn="NU1605" />
    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="8.0.8" />
    <PackageReference Include="Microsoft.EntityFrameworkCore" Version="8.0.11" />
    <PackageReference Include="Microsoft.EntityFrameworkCore.Relational" Version="8.0.11" />
    <PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="8.0.11">
      <PrivateAssets>all</PrivateAssets>
      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
    </PackageReference>
    <PackageReference Include="Microsoft.Identity.Web" Version="2.21.1" />
    <PackageReference Include="Microsoft.Identity.Web.DownstreamApi" Version="2.21.1" />
    <PackageReference Include="Npgsql.EntityFrameworkCore.PostgreSQL" Version="8.0.11" />
    <PackageReference Include="OpenHarbor.CQRS.DynamicQuery.AspNetCore" Version="8.0.0-preview.6" />
    <PackageReference Include="PoweredSoft.Data.EntityFrameworkCore" Version="3.0.0" />
    <PackageReference Include="Swashbuckle.AspNetCore" Version="6.4.0" />
    <PackageReference Include="FluentValidation.AspNetCore" Version="10.4.0" />
    <PackageReference Include="OpenHarbor.CQRS" Version="8.0.0-preview.6" />
    <PackageReference Include="OpenHarbor.CQRS.AspNetCore" Version="8.0.0-preview.6" />
    <PackageReference Include="OpenHarbor.CQRS.FluentValidation" Version="8.0.0-preview.6" />
    <PackageReference Include="PoweredSoft.Module.Abstractions" Version="2.0.0" />
  </ItemGroup>
  <ItemGroup>
    <Folder Include="Controllers\" />
  </ItemGroup>
  <ItemGroup>
    <ProjectReference Include="..\CH.Authority\CH.Authority.csproj" />
    <ProjectReference Include="..\CH.CQRS\CH.CQRS.csproj" />
    <ProjectReference Include="..\CH.Dal\CH.Dal.csproj" />
  </ItemGroup>
 </Project>
--- a/CH.Api/Program.cs
+++ b/CH.Api/Program.cs
@ -0,0 +1,168 @@
 using CH.Api;
 using CH.Dal;
 using FluentValidation.AspNetCore;
 using Microsoft.AspNetCore.Authentication.JwtBearer;
 using Microsoft.AspNetCore.HttpOverrides;
 using Microsoft.AspNetCore.Routing;
 using Microsoft.EntityFrameworkCore;
 using Microsoft.Extensions.DependencyInjection;
 using Microsoft.OpenApi.Models;
 using Npgsql;
 using OpenHarbor.CQRS;
 using OpenHarbor.CQRS.AspNetCore.Mvc;
 using OpenHarbor.CQRS.DynamicQuery.AspNetCore;
 using PoweredSoft.Data;
 using PoweredSoft.Data.EntityFrameworkCore;
 using PoweredSoft.DynamicQuery;
 using PoweredSoft.Module.Abstractions;
 using System.Text.Json.Serialization;
 var builder = WebApplication.CreateBuilder(args);
 builder.Services.Configure<ForwardedHeadersOptions>(options =>
 {
  options.ForwardedHeaders =
    ForwardedHeaders.XForwardedFor | ForwardedHeaders.XForwardedProto | ForwardedHeaders.XForwardedHost;
  options.KnownNetworks.Clear();
  options.KnownProxies.Clear();
  options.ForwardLimit = 2;
 });
 builder.Services.AddHttpContextAccessor();
 builder.Services.AddCors();
 builder.Services.AddPoweredSoftDataServices();
 builder.Services.AddPoweredSoftEntityFrameworkCoreDataServices();
 builder.Services.AddPoweredSoftDynamicQuery();
 builder.Services.AddDefaultCommandDiscovery();
 builder.Services.AddDefaultQueryDiscovery();
 builder.Services.AddFluentValidation();
 builder.Services.AddModule<AppModule>();
 builder.Services.AddDefaultCommandDiscovery();
 builder.Services.AddDefaultQueryDiscovery();
 if (builder.Configuration.GetValue<bool>("Swagger:Enable"))
 {
  builder.Services.AddEndpointsApiExplorer();
  builder.Services.AddSwaggerGen(options =>
  {
    options.SwaggerDoc("v1", new OpenApiInfo { Title = "Plan B Route Service Api", Version = "0.1.0" });
    options.AddSecurityDefinition("oauth2", new OpenApiSecurityScheme
    {
      Type = SecuritySchemeType.OAuth2,
      Flows = new OpenApiOAuthFlows
      {
        AuthorizationCode = new OpenApiOAuthFlow
        {
          AuthorizationUrl = new Uri(builder.Configuration["Swagger:AuthorizationUrl"]),
          TokenUrl = new Uri(builder.Configuration["Swagger:TokenUrl"]),
          Scopes = new Dictionary<string, string>
          {
            { "email", "Email" }
          }
        }
      }
    });
    options.AddSecurityRequirement(new OpenApiSecurityRequirement {
      {
        new OpenApiSecurityScheme {
            Reference = new OpenApiReference {
              Type = ReferenceType.SecurityScheme,
              Id = "oauth2"
            },
        },
        new[] { "email" }
      }
    });
  });
 }
 builder.Services
  .AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
  .AddJwtBearer(JwtBearerDefaults.AuthenticationScheme, options =>
  {
    options.Authority = builder.Configuration["JwtBearer:Authority"];
    // check how to set up AudienceValidator to whitelist sites using it
    options.TokenValidationParameters.ValidateAudience = false;
  });
 builder.Services.AddAuthorization();
 builder.Services.AddHttpClient();
 builder.Services.AddMemoryCache();
 var mvcBuilder = builder.Services
  .AddControllers()
  .AddJsonOptions(jsonOptions =>
  {
    jsonOptions.JsonSerializerOptions.Converters.Insert(0, new JsonStringEnumConverter());
  });
 mvcBuilder
  .AddOpenHarborCommands();
 mvcBuilder
  .AddOpenHarborQueries()
  .AddOpenHarborDynamicQueries();
 var connectionString = builder.Configuration.GetSection("Database").GetValue<string>("ConnectionString");
 var dataSourceBuilder = new NpgsqlDataSourceBuilder(connectionString);
 var dataSource = dataSourceBuilder.Build();
 builder.Services.AddDbContextPool<CHDbContext>(options =>
 {
  options.UseNpgsql(dataSource, o =>
  {
    // todo: ef 9.0+
    // o.MapEnum<RouteFileType>("route_file_type");
  });
  if (builder.Configuration.GetValue<bool>("Debug"))
  {
    AppContext.SetSwitch("Npgsql.EnableConnectionStringLogging", true);
    options
      .EnableSensitiveDataLogging()
      .EnableDetailedErrors();
  }
 });
 var app = builder.Build();
 app.UseForwardedHeaders();
 if (builder.Configuration.GetValue<bool>("Swagger:Enable"))
 {
  app.UseSwagger();
  app.UseSwaggerUI(options =>
  {
    options.OAuthClientId(builder.Configuration["Swagger:ClientId"]);
    options.OAuthClientSecret(builder.Configuration["Swagger:Secret"]);
    options.OAuthUsePkce();
  });
 }
 if (builder.Environment.IsDevelopment() == false)
 {
  app.UseHttpsRedirection();
 }
 app.UseCors(options =>
 {
  var origins = new List<string> { "capacitor://localhost", "https://hoppscotch.io" };
  if (builder.Environment.IsDevelopment())
  {
    origins.Add("http://localhost:8100");
  }
  options.WithOrigins(origins.ToArray());
  options.AllowCredentials();
  options.AllowAnyHeader();
  options.AllowAnyMethod();
 });
 app.UseAuthentication();
 app.UseAuthorization();
 app.MapControllers();
 app.Run();
--- a/CH.Api/Properties/launchSettings.json
+++ b/CH.Api/Properties/launchSettings.json
@ -0,0 +1,31 @@
 {
  "$schema": "http://json.schemastore.org/launchsettings.json",
  "iisSettings": {
    "windowsAuthentication": false,
    "anonymousAuthentication": true,
    "iisExpress": {
      "applicationUrl": "http://localhost:37059",
      "sslPort": 44393
    }
  },
  "profiles": {
    "http": {
      "commandName": "Project",
      "dotnetRunMessages": true,
      "launchBrowser": true,
      "applicationUrl": "http://localhost:5274",
      "environmentVariables": {
        "ASPNETCORE_ENVIRONMENT": "Development"
      }
    },
    "https": {
      "commandName": "Project",
      "dotnetRunMessages": true,
      "launchBrowser": true,
      "applicationUrl": "https://localhost:7184;http://localhost:5274",
      "environmentVariables": {
        "ASPNETCORE_ENVIRONMENT": "Development"
      }
    }
  }
 }
--- a/CH.Api/appsettings.json
+++ b/CH.Api/appsettings.json
@ -0,0 +1,22 @@
 {
  "Logging": {
    "LogLevel": {
      "Default": "Information",
      "Microsoft.AspNetCore": "Warning"
    }
  },
  "AllowedHosts": "*",
  "Database": {
    "ConnectionString": ""
  },
  "JwtBearer": {
    "Authority": ""
  },
  "Swagger": {
    "Enable": false,
    "AuthorizationUrl": "",
    "TokenUrl": "",
    "ClientId": "",
    "ClientSecret": ""
  }
 }
--- a/CH.Api/wwwroot/css/site.css
+++ b/CH.Api/wwwroot/css/site.css
@ -0,0 +1,22 @@
 html {
  font-size: 14px;
 }
@media (min-width: 768px) {
  html {
    font-size: 16px;
  }
 }
 .btn:focus, .btn:active:focus, .btn-link.nav-link:focus, .form-control:focus, .form-check-input:focus {
  box-shadow: 0 0 0 0.1rem white, 0 0 0 0.25rem #258cfb;
 }
 html {
  position: relative;
  min-height: 100%;
 }
 body {
  margin-bottom: 60px;
 }
--- a/CH.Api/wwwroot/favicon.ico
+++ b/CH.Api/wwwroot/favicon.ico
--- a/CH.Api/wwwroot/js/site.js
+++ b/CH.Api/wwwroot/js/site.js
@ -0,0 +1,4 @@
 // Please see documentation at https://learn.microsoft.com/aspnet/core/client-side/bundling-and-minification
 // for details on configuring this project to bundle and minify static web assets.
 // Write your JavaScript code.
--- a/CH.Api/wwwroot/lib/bootstrap/LICENSE
+++ b/CH.Api/wwwroot/lib/bootstrap/LICENSE
@ -0,0 +1,22 @@
 The MIT License (MIT)
 Copyright (c) 2011-2021 Twitter, Inc.
 Copyright (c) 2011-2021 The Bootstrap Authors
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 in the Software without restriction, including without limitation the rights
 to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 copies of the Software, and to permit persons to whom the Software is
 furnished to do so, subject to the following conditions:
 The above copyright notice and this permission notice shall be included in
 all copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
 THE SOFTWARE.
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.min.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.min.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.min.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.min.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.rtl.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.rtl.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.rtl.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.rtl.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.rtl.min.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.rtl.min.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.rtl.min.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-grid.rtl.min.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.css
@ -0,0 +1,427 @@
 /*!
 * Bootstrap Reboot v5.1.0 (https://getbootstrap.com/)
 * Copyright 2011-2021 The Bootstrap Authors
 * Copyright 2011-2021 Twitter, Inc.
 * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
 * Forked from Normalize.css, licensed MIT (https://github.com/necolas/normalize.css/blob/master/LICENSE.md)
 */
 *,
 *::before,
 *::after {
  box-sizing: border-box;
 }
@media (prefers-reduced-motion: no-preference) {
  :root {
    scroll-behavior: smooth;
  }
 }
 body {
  margin: 0;
  font-family: var(--bs-body-font-family);
  font-size: var(--bs-body-font-size);
  font-weight: var(--bs-body-font-weight);
  line-height: var(--bs-body-line-height);
  color: var(--bs-body-color);
  text-align: var(--bs-body-text-align);
  background-color: var(--bs-body-bg);
  -webkit-text-size-adjust: 100%;
  -webkit-tap-highlight-color: rgba(0, 0, 0, 0);
 }
 hr {
  margin: 1rem 0;
  color: inherit;
  background-color: currentColor;
  border: 0;
  opacity: 0.25;
 }
 hr:not([size]) {
  height: 1px;
 }
 h6, h5, h4, h3, h2, h1 {
  margin-top: 0;
  margin-bottom: 0.5rem;
  font-weight: 500;
  line-height: 1.2;
 }
 h1 {
  font-size: calc(1.375rem + 1.5vw);
 }
@media (min-width: 1200px) {
  h1 {
    font-size: 2.5rem;
  }
 }
 h2 {
  font-size: calc(1.325rem + 0.9vw);
 }
@media (min-width: 1200px) {
  h2 {
    font-size: 2rem;
  }
 }
 h3 {
  font-size: calc(1.3rem + 0.6vw);
 }
@media (min-width: 1200px) {
  h3 {
    font-size: 1.75rem;
  }
 }
 h4 {
  font-size: calc(1.275rem + 0.3vw);
 }
@media (min-width: 1200px) {
  h4 {
    font-size: 1.5rem;
  }
 }
 h5 {
  font-size: 1.25rem;
 }
 h6 {
  font-size: 1rem;
 }
 p {
  margin-top: 0;
  margin-bottom: 1rem;
 }
 abbr[title],
 abbr[data-bs-original-title] {
  -webkit-text-decoration: underline dotted;
  text-decoration: underline dotted;
  cursor: help;
  -webkit-text-decoration-skip-ink: none;
  text-decoration-skip-ink: none;
 }
 address {
  margin-bottom: 1rem;
  font-style: normal;
  line-height: inherit;
 }
 ol,
 ul {
  padding-left: 2rem;
 }
 ol,
 ul,
 dl {
  margin-top: 0;
  margin-bottom: 1rem;
 }
 ol ol,
 ul ul,
 ol ul,
 ul ol {
  margin-bottom: 0;
 }
 dt {
  font-weight: 700;
 }
 dd {
  margin-bottom: 0.5rem;
  margin-left: 0;
 }
 blockquote {
  margin: 0 0 1rem;
 }
 b,
 strong {
  font-weight: bolder;
 }
 small {
  font-size: 0.875em;
 }
 mark {
  padding: 0.2em;
  background-color: #fcf8e3;
 }
 sub,
 sup {
  position: relative;
  font-size: 0.75em;
  line-height: 0;
  vertical-align: baseline;
 }
 sub {
  bottom: -0.25em;
 }
 sup {
  top: -0.5em;
 }
 a {
  color: #0d6efd;
  text-decoration: underline;
 }
 a:hover {
  color: #0a58ca;
 }
 a:not([href]):not([class]), a:not([href]):not([class]):hover {
  color: inherit;
  text-decoration: none;
 }
 pre,
 code,
 kbd,
 samp {
  font-family: SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace;
  font-size: 1em;
  direction: ltr /* rtl:ignore */;
  unicode-bidi: bidi-override;
 }
 pre {
  display: block;
  margin-top: 0;
  margin-bottom: 1rem;
  overflow: auto;
  font-size: 0.875em;
 }
 pre code {
  font-size: inherit;
  color: inherit;
  word-break: normal;
 }
 code {
  font-size: 0.875em;
  color: #d63384;
  word-wrap: break-word;
 }
 a > code {
  color: inherit;
 }
 kbd {
  padding: 0.2rem 0.4rem;
  font-size: 0.875em;
  color: #fff;
  background-color: #212529;
  border-radius: 0.2rem;
 }
 kbd kbd {
  padding: 0;
  font-size: 1em;
  font-weight: 700;
 }
 figure {
  margin: 0 0 1rem;
 }
 img,
 svg {
  vertical-align: middle;
 }
 table {
  caption-side: bottom;
  border-collapse: collapse;
 }
 caption {
  padding-top: 0.5rem;
  padding-bottom: 0.5rem;
  color: #6c757d;
  text-align: left;
 }
 th {
  text-align: inherit;
  text-align: -webkit-match-parent;
 }
 thead,
 tbody,
 tfoot,
 tr,
 td,
 th {
  border-color: inherit;
  border-style: solid;
  border-width: 0;
 }
 label {
  display: inline-block;
 }
 button {
  border-radius: 0;
 }
 button:focus:not(:focus-visible) {
  outline: 0;
 }
 input,
 button,
 select,
 optgroup,
 textarea {
  margin: 0;
  font-family: inherit;
  font-size: inherit;
  line-height: inherit;
 }
 button,
 select {
  text-transform: none;
 }
 [role=button] {
  cursor: pointer;
 }
 select {
  word-wrap: normal;
 }
 select:disabled {
  opacity: 1;
 }
 [list]::-webkit-calendar-picker-indicator {
  display: none;
 }
 button,
 [type=button],
 [type=reset],
 [type=submit] {
  -webkit-appearance: button;
 }
 button:not(:disabled),
 [type=button]:not(:disabled),
 [type=reset]:not(:disabled),
 [type=submit]:not(:disabled) {
  cursor: pointer;
 }
 ::-moz-focus-inner {
  padding: 0;
  border-style: none;
 }
 textarea {
  resize: vertical;
 }
 fieldset {
  min-width: 0;
  padding: 0;
  margin: 0;
  border: 0;
 }
 legend {
  float: left;
  width: 100%;
  padding: 0;
  margin-bottom: 0.5rem;
  font-size: calc(1.275rem + 0.3vw);
  line-height: inherit;
 }
@media (min-width: 1200px) {
  legend {
    font-size: 1.5rem;
  }
 }
 legend + * {
  clear: left;
 }
 ::-webkit-datetime-edit-fields-wrapper,
 ::-webkit-datetime-edit-text,
 ::-webkit-datetime-edit-minute,
 ::-webkit-datetime-edit-hour-field,
 ::-webkit-datetime-edit-day-field,
 ::-webkit-datetime-edit-month-field,
 ::-webkit-datetime-edit-year-field {
  padding: 0;
 }
 ::-webkit-inner-spin-button {
  height: auto;
 }
 [type=search] {
  outline-offset: -2px;
  -webkit-appearance: textfield;
 }
 /* rtl:raw:
 [type="tel"],
 [type="url"],
 [type="email"],
 [type="number"] {
  direction: ltr;
 }
 */
 ::-webkit-search-decoration {
  -webkit-appearance: none;
 }
 ::-webkit-color-swatch-wrapper {
  padding: 0;
 }
 ::file-selector-button {
  font: inherit;
 }
 ::-webkit-file-upload-button {
  font: inherit;
  -webkit-appearance: button;
 }
 output {
  display: inline-block;
 }
 iframe {
  border: 0;
 }
 summary {
  display: list-item;
  cursor: pointer;
 }
 progress {
  vertical-align: baseline;
 }
 [hidden] {
  display: none !important;
 }
 /*# sourceMappingURL=bootstrap-reboot.css.map */
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.min.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.min.css
@ -0,0 +1,8 @@
 /*!
 * Bootstrap Reboot v5.1.0 (https://getbootstrap.com/)
 * Copyright 2011-2021 The Bootstrap Authors
 * Copyright 2011-2021 Twitter, Inc.
 * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
 * Forked from Normalize.css, licensed MIT (https://github.com/necolas/normalize.css/blob/master/LICENSE.md)
 */*,::after,::before{box-sizing:border-box}@media (prefers-reduced-motion:no-preference){:root{scroll-behavior:smooth}}body{margin:0;font-family:var(--bs-body-font-family);font-size:var(--bs-body-font-size);font-weight:var(--bs-body-font-weight);line-height:var(--bs-body-line-height);color:var(--bs-body-color);text-align:var(--bs-body-text-align);background-color:var(--bs-body-bg);-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}hr{margin:1rem 0;color:inherit;background-color:currentColor;border:0;opacity:.25}hr:not([size]){height:1px}h1,h2,h3,h4,h5,h6{margin-top:0;margin-bottom:.5rem;font-weight:500;line-height:1.2}h1{font-size:calc(1.375rem + 1.5vw)}@media (min-width:1200px){h1{font-size:2.5rem}}h2{font-size:calc(1.325rem + .9vw)}@media (min-width:1200px){h2{font-size:2rem}}h3{font-size:calc(1.3rem + .6vw)}@media (min-width:1200px){h3{font-size:1.75rem}}h4{font-size:calc(1.275rem + .3vw)}@media (min-width:1200px){h4{font-size:1.5rem}}h5{font-size:1.25rem}h6{font-size:1rem}p{margin-top:0;margin-bottom:1rem}abbr[data-bs-original-title],abbr[title]{-webkit-text-decoration:underline dotted;text-decoration:underline dotted;cursor:help;-webkit-text-decoration-skip-ink:none;text-decoration-skip-ink:none}address{margin-bottom:1rem;font-style:normal;line-height:inherit}ol,ul{padding-left:2rem}dl,ol,ul{margin-top:0;margin-bottom:1rem}ol ol,ol ul,ul ol,ul ul{margin-bottom:0}dt{font-weight:700}dd{margin-bottom:.5rem;margin-left:0}blockquote{margin:0 0 1rem}b,strong{font-weight:bolder}small{font-size:.875em}mark{padding:.2em;background-color:#fcf8e3}sub,sup{position:relative;font-size:.75em;line-height:0;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}a{color:#0d6efd;text-decoration:underline}a:hover{color:#0a58ca}a:not([href]):not([class]),a:not([href]):not([class]):hover{color:inherit;text-decoration:none}code,kbd,pre,samp{font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:1em;direction:ltr;unicode-bidi:bidi-override}pre{display:block;margin-top:0;margin-bottom:1rem;overflow:auto;font-size:.875em}pre code{font-size:inherit;color:inherit;word-break:normal}code{font-size:.875em;color:#d63384;word-wrap:break-word}a>code{color:inherit}kbd{padding:.2rem .4rem;font-size:.875em;color:#fff;background-color:#212529;border-radius:.2rem}kbd kbd{padding:0;font-size:1em;font-weight:700}figure{margin:0 0 1rem}img,svg{vertical-align:middle}table{caption-side:bottom;border-collapse:collapse}caption{padding-top:.5rem;padding-bottom:.5rem;color:#6c757d;text-align:left}th{text-align:inherit;text-align:-webkit-match-parent}tbody,td,tfoot,th,thead,tr{border-color:inherit;border-style:solid;border-width:0}label{display:inline-block}button{border-radius:0}button:focus:not(:focus-visible){outline:0}button,input,optgroup,select,textarea{margin:0;font-family:inherit;font-size:inherit;line-height:inherit}button,select{text-transform:none}[role=button]{cursor:pointer}select{word-wrap:normal}select:disabled{opacity:1}[list]::-webkit-calendar-picker-indicator{display:none}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button}[type=button]:not(:disabled),[type=reset]:not(:disabled),[type=submit]:not(:disabled),button:not(:disabled){cursor:pointer}::-moz-focus-inner{padding:0;border-style:none}textarea{resize:vertical}fieldset{min-width:0;padding:0;margin:0;border:0}legend{float:left;width:100%;padding:0;margin-bottom:.5rem;font-size:calc(1.275rem + .3vw);line-height:inherit}@media (min-width:1200px){legend{font-size:1.5rem}}legend+*{clear:left}::-webkit-datetime-edit-day-field,::-webkit-datetime-edit-fields-wrapper,::-webkit-datetime-edit-hour-field,::-webkit-datetime-edit-minute,::-webkit-datetime-edit-month-field,::-webkit-datetime-edit-text,::-webkit-datetime-edit-year-field{padding:0}::-webkit-inner-spin-button{height:auto}[type=search]{outline-offset:-2px;-webkit-appearance:textfield}::-webkit-search-decoration{-webkit-appearance:none}::-webkit-color-swatch-wrapper{padding:0}::file-selector-button{font:inherit}::-webkit-file-upload-button{font:inherit;-webkit-appearance:button}output{display:inline-block}iframe{border:0}summary{display:list-item;cursor:pointer}progress{vertical-align:baseline}[hidden]{display:none!important}
 /*# sourceMappingURL=bootstrap-reboot.min.css.map */
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.min.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.min.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.rtl.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.rtl.css
@ -0,0 +1,424 @@
 /*!
 * Bootstrap Reboot v5.1.0 (https://getbootstrap.com/)
 * Copyright 2011-2021 The Bootstrap Authors
 * Copyright 2011-2021 Twitter, Inc.
 * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
 * Forked from Normalize.css, licensed MIT (https://github.com/necolas/normalize.css/blob/master/LICENSE.md)
 */
 *,
 *::before,
 *::after {
  box-sizing: border-box;
 }
@media (prefers-reduced-motion: no-preference) {
  :root {
    scroll-behavior: smooth;
  }
 }
 body {
  margin: 0;
  font-family: var(--bs-body-font-family);
  font-size: var(--bs-body-font-size);
  font-weight: var(--bs-body-font-weight);
  line-height: var(--bs-body-line-height);
  color: var(--bs-body-color);
  text-align: var(--bs-body-text-align);
  background-color: var(--bs-body-bg);
  -webkit-text-size-adjust: 100%;
  -webkit-tap-highlight-color: rgba(0, 0, 0, 0);
 }
 hr {
  margin: 1rem 0;
  color: inherit;
  background-color: currentColor;
  border: 0;
  opacity: 0.25;
 }
 hr:not([size]) {
  height: 1px;
 }
 h6, h5, h4, h3, h2, h1 {
  margin-top: 0;
  margin-bottom: 0.5rem;
  font-weight: 500;
  line-height: 1.2;
 }
 h1 {
  font-size: calc(1.375rem + 1.5vw);
 }
@media (min-width: 1200px) {
  h1 {
    font-size: 2.5rem;
  }
 }
 h2 {
  font-size: calc(1.325rem + 0.9vw);
 }
@media (min-width: 1200px) {
  h2 {
    font-size: 2rem;
  }
 }
 h3 {
  font-size: calc(1.3rem + 0.6vw);
 }
@media (min-width: 1200px) {
  h3 {
    font-size: 1.75rem;
  }
 }
 h4 {
  font-size: calc(1.275rem + 0.3vw);
 }
@media (min-width: 1200px) {
  h4 {
    font-size: 1.5rem;
  }
 }
 h5 {
  font-size: 1.25rem;
 }
 h6 {
  font-size: 1rem;
 }
 p {
  margin-top: 0;
  margin-bottom: 1rem;
 }
 abbr[title],
 abbr[data-bs-original-title] {
  -webkit-text-decoration: underline dotted;
  text-decoration: underline dotted;
  cursor: help;
  -webkit-text-decoration-skip-ink: none;
  text-decoration-skip-ink: none;
 }
 address {
  margin-bottom: 1rem;
  font-style: normal;
  line-height: inherit;
 }
 ol,
 ul {
  padding-right: 2rem;
 }
 ol,
 ul,
 dl {
  margin-top: 0;
  margin-bottom: 1rem;
 }
 ol ol,
 ul ul,
 ol ul,
 ul ol {
  margin-bottom: 0;
 }
 dt {
  font-weight: 700;
 }
 dd {
  margin-bottom: 0.5rem;
  margin-right: 0;
 }
 blockquote {
  margin: 0 0 1rem;
 }
 b,
 strong {
  font-weight: bolder;
 }
 small {
  font-size: 0.875em;
 }
 mark {
  padding: 0.2em;
  background-color: #fcf8e3;
 }
 sub,
 sup {
  position: relative;
  font-size: 0.75em;
  line-height: 0;
  vertical-align: baseline;
 }
 sub {
  bottom: -0.25em;
 }
 sup {
  top: -0.5em;
 }
 a {
  color: #0d6efd;
  text-decoration: underline;
 }
 a:hover {
  color: #0a58ca;
 }
 a:not([href]):not([class]), a:not([href]):not([class]):hover {
  color: inherit;
  text-decoration: none;
 }
 pre,
 code,
 kbd,
 samp {
  font-family: SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace;
  font-size: 1em;
  direction: ltr ;
  unicode-bidi: bidi-override;
 }
 pre {
  display: block;
  margin-top: 0;
  margin-bottom: 1rem;
  overflow: auto;
  font-size: 0.875em;
 }
 pre code {
  font-size: inherit;
  color: inherit;
  word-break: normal;
 }
 code {
  font-size: 0.875em;
  color: #d63384;
  word-wrap: break-word;
 }
 a > code {
  color: inherit;
 }
 kbd {
  padding: 0.2rem 0.4rem;
  font-size: 0.875em;
  color: #fff;
  background-color: #212529;
  border-radius: 0.2rem;
 }
 kbd kbd {
  padding: 0;
  font-size: 1em;
  font-weight: 700;
 }
 figure {
  margin: 0 0 1rem;
 }
 img,
 svg {
  vertical-align: middle;
 }
 table {
  caption-side: bottom;
  border-collapse: collapse;
 }
 caption {
  padding-top: 0.5rem;
  padding-bottom: 0.5rem;
  color: #6c757d;
  text-align: right;
 }
 th {
  text-align: inherit;
  text-align: -webkit-match-parent;
 }
 thead,
 tbody,
 tfoot,
 tr,
 td,
 th {
  border-color: inherit;
  border-style: solid;
  border-width: 0;
 }
 label {
  display: inline-block;
 }
 button {
  border-radius: 0;
 }
 button:focus:not(:focus-visible) {
  outline: 0;
 }
 input,
 button,
 select,
 optgroup,
 textarea {
  margin: 0;
  font-family: inherit;
  font-size: inherit;
  line-height: inherit;
 }
 button,
 select {
  text-transform: none;
 }
 [role=button] {
  cursor: pointer;
 }
 select {
  word-wrap: normal;
 }
 select:disabled {
  opacity: 1;
 }
 [list]::-webkit-calendar-picker-indicator {
  display: none;
 }
 button,
 [type=button],
 [type=reset],
 [type=submit] {
  -webkit-appearance: button;
 }
 button:not(:disabled),
 [type=button]:not(:disabled),
 [type=reset]:not(:disabled),
 [type=submit]:not(:disabled) {
  cursor: pointer;
 }
 ::-moz-focus-inner {
  padding: 0;
  border-style: none;
 }
 textarea {
  resize: vertical;
 }
 fieldset {
  min-width: 0;
  padding: 0;
  margin: 0;
  border: 0;
 }
 legend {
  float: right;
  width: 100%;
  padding: 0;
  margin-bottom: 0.5rem;
  font-size: calc(1.275rem + 0.3vw);
  line-height: inherit;
 }
@media (min-width: 1200px) {
  legend {
    font-size: 1.5rem;
  }
 }
 legend + * {
  clear: right;
 }
 ::-webkit-datetime-edit-fields-wrapper,
 ::-webkit-datetime-edit-text,
 ::-webkit-datetime-edit-minute,
 ::-webkit-datetime-edit-hour-field,
 ::-webkit-datetime-edit-day-field,
 ::-webkit-datetime-edit-month-field,
 ::-webkit-datetime-edit-year-field {
  padding: 0;
 }
 ::-webkit-inner-spin-button {
  height: auto;
 }
 [type=search] {
  outline-offset: -2px;
  -webkit-appearance: textfield;
 }
 [type="tel"],
 [type="url"],
 [type="email"],
 [type="number"] {
  direction: ltr;
 }
 ::-webkit-search-decoration {
  -webkit-appearance: none;
 }
 ::-webkit-color-swatch-wrapper {
  padding: 0;
 }
 ::file-selector-button {
  font: inherit;
 }
 ::-webkit-file-upload-button {
  font: inherit;
  -webkit-appearance: button;
 }
 output {
  display: inline-block;
 }
 iframe {
  border: 0;
 }
 summary {
  display: list-item;
  cursor: pointer;
 }
 progress {
  vertical-align: baseline;
 }
 [hidden] {
  display: none !important;
 }
 /*# sourceMappingURL=bootstrap-reboot.rtl.css.map */
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.rtl.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.rtl.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.rtl.min.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.rtl.min.css
@ -0,0 +1,8 @@
 /*!
 * Bootstrap Reboot v5.1.0 (https://getbootstrap.com/)
 * Copyright 2011-2021 The Bootstrap Authors
 * Copyright 2011-2021 Twitter, Inc.
 * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
 * Forked from Normalize.css, licensed MIT (https://github.com/necolas/normalize.css/blob/master/LICENSE.md)
 */*,::after,::before{box-sizing:border-box}@media (prefers-reduced-motion:no-preference){:root{scroll-behavior:smooth}}body{margin:0;font-family:var(--bs-body-font-family);font-size:var(--bs-body-font-size);font-weight:var(--bs-body-font-weight);line-height:var(--bs-body-line-height);color:var(--bs-body-color);text-align:var(--bs-body-text-align);background-color:var(--bs-body-bg);-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}hr{margin:1rem 0;color:inherit;background-color:currentColor;border:0;opacity:.25}hr:not([size]){height:1px}h1,h2,h3,h4,h5,h6{margin-top:0;margin-bottom:.5rem;font-weight:500;line-height:1.2}h1{font-size:calc(1.375rem + 1.5vw)}@media (min-width:1200px){h1{font-size:2.5rem}}h2{font-size:calc(1.325rem + .9vw)}@media (min-width:1200px){h2{font-size:2rem}}h3{font-size:calc(1.3rem + .6vw)}@media (min-width:1200px){h3{font-size:1.75rem}}h4{font-size:calc(1.275rem + .3vw)}@media (min-width:1200px){h4{font-size:1.5rem}}h5{font-size:1.25rem}h6{font-size:1rem}p{margin-top:0;margin-bottom:1rem}abbr[data-bs-original-title],abbr[title]{-webkit-text-decoration:underline dotted;text-decoration:underline dotted;cursor:help;-webkit-text-decoration-skip-ink:none;text-decoration-skip-ink:none}address{margin-bottom:1rem;font-style:normal;line-height:inherit}ol,ul{padding-right:2rem}dl,ol,ul{margin-top:0;margin-bottom:1rem}ol ol,ol ul,ul ol,ul ul{margin-bottom:0}dt{font-weight:700}dd{margin-bottom:.5rem;margin-right:0}blockquote{margin:0 0 1rem}b,strong{font-weight:bolder}small{font-size:.875em}mark{padding:.2em;background-color:#fcf8e3}sub,sup{position:relative;font-size:.75em;line-height:0;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}a{color:#0d6efd;text-decoration:underline}a:hover{color:#0a58ca}a:not([href]):not([class]),a:not([href]):not([class]):hover{color:inherit;text-decoration:none}code,kbd,pre,samp{font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:1em;direction:ltr;unicode-bidi:bidi-override}pre{display:block;margin-top:0;margin-bottom:1rem;overflow:auto;font-size:.875em}pre code{font-size:inherit;color:inherit;word-break:normal}code{font-size:.875em;color:#d63384;word-wrap:break-word}a>code{color:inherit}kbd{padding:.2rem .4rem;font-size:.875em;color:#fff;background-color:#212529;border-radius:.2rem}kbd kbd{padding:0;font-size:1em;font-weight:700}figure{margin:0 0 1rem}img,svg{vertical-align:middle}table{caption-side:bottom;border-collapse:collapse}caption{padding-top:.5rem;padding-bottom:.5rem;color:#6c757d;text-align:right}th{text-align:inherit;text-align:-webkit-match-parent}tbody,td,tfoot,th,thead,tr{border-color:inherit;border-style:solid;border-width:0}label{display:inline-block}button{border-radius:0}button:focus:not(:focus-visible){outline:0}button,input,optgroup,select,textarea{margin:0;font-family:inherit;font-size:inherit;line-height:inherit}button,select{text-transform:none}[role=button]{cursor:pointer}select{word-wrap:normal}select:disabled{opacity:1}[list]::-webkit-calendar-picker-indicator{display:none}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button}[type=button]:not(:disabled),[type=reset]:not(:disabled),[type=submit]:not(:disabled),button:not(:disabled){cursor:pointer}::-moz-focus-inner{padding:0;border-style:none}textarea{resize:vertical}fieldset{min-width:0;padding:0;margin:0;border:0}legend{float:right;width:100%;padding:0;margin-bottom:.5rem;font-size:calc(1.275rem + .3vw);line-height:inherit}@media (min-width:1200px){legend{font-size:1.5rem}}legend+*{clear:right}::-webkit-datetime-edit-day-field,::-webkit-datetime-edit-fields-wrapper,::-webkit-datetime-edit-hour-field,::-webkit-datetime-edit-minute,::-webkit-datetime-edit-month-field,::-webkit-datetime-edit-text,::-webkit-datetime-edit-year-field{padding:0}::-webkit-inner-spin-button{height:auto}[type=search]{outline-offset:-2px;-webkit-appearance:textfield}[type=email],[type=number],[type=tel],[type=url]{direction:ltr}::-webkit-search-decoration{-webkit-appearance:none}::-webkit-color-swatch-wrapper{padding:0}::file-selector-button{font:inherit}::-webkit-file-upload-button{font:inherit;-webkit-appearance:button}output{display:inline-block}iframe{border:0}summary{display:list-item;cursor:pointer}progress{vertical-align:baseline}[hidden]{display:none!important}
 /*# sourceMappingURL=bootstrap-reboot.rtl.min.css.map */
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.rtl.min.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-reboot.rtl.min.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.min.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.min.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.min.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.min.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.rtl.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.rtl.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.rtl.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.rtl.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.rtl.min.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.rtl.min.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.rtl.min.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap-utilities.rtl.min.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.min.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.min.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.min.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.min.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.rtl.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.rtl.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.rtl.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.rtl.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.rtl.min.css
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.rtl.min.css
--- a/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.rtl.min.css.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/css/bootstrap.rtl.min.css.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.bundle.js
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.bundle.js
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.bundle.js.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.bundle.js.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.bundle.min.js
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.bundle.min.js
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.bundle.min.js.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.bundle.min.js.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.esm.js
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.esm.js
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.esm.js.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.esm.js.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.esm.min.js
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.esm.min.js
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.esm.min.js.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.esm.min.js.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.js
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.js
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.js.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.js.map
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.min.js
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.min.js
--- a/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.min.js.map
+++ b/CH.Api/wwwroot/lib/bootstrap/dist/js/bootstrap.min.js.map
--- a/CH.Api/wwwroot/lib/jquery-validation-unobtrusive/LICENSE.txt
+++ b/CH.Api/wwwroot/lib/jquery-validation-unobtrusive/LICENSE.txt
@ -0,0 +1,23 @@
 The MIT License (MIT)
 Copyright (c) .NET Foundation and Contributors
 All rights reserved.
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 in the Software without restriction, including without limitation the rights
 to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 copies of the Software, and to permit persons to whom the Software is
 furnished to do so, subject to the following conditions:
 The above copyright notice and this permission notice shall be included in all
 copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 SOFTWARE.
--- a/CH.Api/wwwroot/lib/jquery-validation-unobtrusive/jquery.validate.unobtrusive.js
+++ b/CH.Api/wwwroot/lib/jquery-validation-unobtrusive/jquery.validate.unobtrusive.js
@ -0,0 +1,435 @@
 /**
 * @license
 * Unobtrusive validation support library for jQuery and jQuery Validate
 * Copyright (c) .NET Foundation. All rights reserved.
 * Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
 * @version v4.0.0
 */
 /*jslint white: true, browser: true, onevar: true, undef: true, nomen: true, eqeqeq: true, plusplus: true, bitwise: true, regexp: true, newcap: true, immed: true, strict: false */
 /*global document: false, jQuery: false */
 (function (factory) {
    if (typeof define === 'function' && define.amd) {
        // AMD. Register as an anonymous module.
        define("jquery.validate.unobtrusive", ['jquery-validation'], factory);
    } else if (typeof module === 'object' && module.exports) {
        // CommonJS-like environments that support module.exports     
        module.exports = factory(require('jquery-validation'));
    } else {
        // Browser global
        jQuery.validator.unobtrusive = factory(jQuery);
    }
 }(function ($) {
    var $jQval = $.validator,
        adapters,
        data_validation = "unobtrusiveValidation";
    function setValidationValues(options, ruleName, value) {
        options.rules[ruleName] = value;
        if (options.message) {
            options.messages[ruleName] = options.message;
        }
    }
    function splitAndTrim(value) {
        return value.replace(/^\s+|\s+$/g, "").split(/\s*,\s*/g);
    }
    function escapeAttributeValue(value) {
        // As mentioned on http://api.jquery.com/category/selectors/
        return value.replace(/([!"#$%&'()*+,./:;<=>?@\[\\\]^`{|}~])/g, "\\$1");
    }
    function getModelPrefix(fieldName) {
        return fieldName.substr(0, fieldName.lastIndexOf(".") + 1);
    }
    function appendModelPrefix(value, prefix) {
        if (value.indexOf("*.") === 0) {
            value = value.replace("*.", prefix);
        }
        return value;
    }
    function onError(error, inputElement) {  // 'this' is the form element
        var container = $(this).find("[data-valmsg-for='" + escapeAttributeValue(inputElement[0].name) + "']"),
            replaceAttrValue = container.attr("data-valmsg-replace"),
            replace = replaceAttrValue ? $.parseJSON(replaceAttrValue) !== false : null;
        container.removeClass("field-validation-valid").addClass("field-validation-error");
        error.data("unobtrusiveContainer", container);
        if (replace) {
            container.empty();
            error.removeClass("input-validation-error").appendTo(container);
        }
        else {
            error.hide();
        }
    }
    function onErrors(event, validator) {  // 'this' is the form element
        var container = $(this).find("[data-valmsg-summary=true]"),
            list = container.find("ul");
        if (list && list.length && validator.errorList.length) {
            list.empty();
            container.addClass("validation-summary-errors").removeClass("validation-summary-valid");
            $.each(validator.errorList, function () {
                $("<li />").html(this.message).appendTo(list);
            });
        }
    }
    function onSuccess(error) {  // 'this' is the form element
        var container = error.data("unobtrusiveContainer");
        if (container) {
            var replaceAttrValue = container.attr("data-valmsg-replace"),
                replace = replaceAttrValue ? $.parseJSON(replaceAttrValue) : null;
            container.addClass("field-validation-valid").removeClass("field-validation-error");
            error.removeData("unobtrusiveContainer");
            if (replace) {
                container.empty();
            }
        }
    }
    function onReset(event) {  // 'this' is the form element
        var $form = $(this),
            key = '__jquery_unobtrusive_validation_form_reset';
        if ($form.data(key)) {
            return;
        }
        // Set a flag that indicates we're currently resetting the form.
        $form.data(key, true);
        try {
            $form.data("validator").resetForm();
        } finally {
            $form.removeData(key);
        }
        $form.find(".validation-summary-errors")
            .addClass("validation-summary-valid")
            .removeClass("validation-summary-errors");
        $form.find(".field-validation-error")
            .addClass("field-validation-valid")
            .removeClass("field-validation-error")
            .removeData("unobtrusiveContainer")
            .find(">*")  // If we were using valmsg-replace, get the underlying error
            .removeData("unobtrusiveContainer");
    }
    function validationInfo(form) {
        var $form = $(form),
            result = $form.data(data_validation),
            onResetProxy = $.proxy(onReset, form),
            defaultOptions = $jQval.unobtrusive.options || {},
            execInContext = function (name, args) {
                var func = defaultOptions[name];
                func && $.isFunction(func) && func.apply(form, args);
            };
        if (!result) {
            result = {
                options: {  // options structure passed to jQuery Validate's validate() method
                    errorClass: defaultOptions.errorClass || "input-validation-error",
                    errorElement: defaultOptions.errorElement || "span",
                    errorPlacement: function () {
                        onError.apply(form, arguments);
                        execInContext("errorPlacement", arguments);
                    },
                    invalidHandler: function () {
                        onErrors.apply(form, arguments);
                        execInContext("invalidHandler", arguments);
                    },
                    messages: {},
                    rules: {},
                    success: function () {
                        onSuccess.apply(form, arguments);
                        execInContext("success", arguments);
                    }
                },
                attachValidation: function () {
                    $form
                        .off("reset." + data_validation, onResetProxy)
                        .on("reset." + data_validation, onResetProxy)
                        .validate(this.options);
                },
                validate: function () {  // a validation function that is called by unobtrusive Ajax
                    $form.validate();
                    return $form.valid();
                }
            };
            $form.data(data_validation, result);
        }
        return result;
    }
    $jQval.unobtrusive = {
        adapters: [],
        parseElement: function (element, skipAttach) {
            /// <summary>
            /// Parses a single HTML element for unobtrusive validation attributes.
            /// </summary>
            /// <param name="element" domElement="true">The HTML element to be parsed.</param>
            /// <param name="skipAttach" type="Boolean">[Optional] true to skip attaching the
            /// validation to the form. If parsing just this single element, you should specify true.
            /// If parsing several elements, you should specify false, and manually attach the validation
            /// to the form when you are finished. The default is false.</param>
            var $element = $(element),
                form = $element.parents("form")[0],
                valInfo, rules, messages;
            if (!form) {  // Cannot do client-side validation without a form
                return;
            }
            valInfo = validationInfo(form);
            valInfo.options.rules[element.name] = rules = {};
            valInfo.options.messages[element.name] = messages = {};
            $.each(this.adapters, function () {
                var prefix = "data-val-" + this.name,
                    message = $element.attr(prefix),
                    paramValues = {};
                if (message !== undefined) {  // Compare against undefined, because an empty message is legal (and falsy)
                    prefix += "-";
                    $.each(this.params, function () {
                        paramValues[this] = $element.attr(prefix + this);
                    });
                    this.adapt({
                        element: element,
                        form: form,
                        message: message,
                        params: paramValues,
                        rules: rules,
                        messages: messages
                    });
                }
            });
            $.extend(rules, { "__dummy__": true });
            if (!skipAttach) {
                valInfo.attachValidation();
            }
        },
        parse: function (selector) {
            /// <summary>
            /// Parses all the HTML elements in the specified selector. It looks for input elements decorated
            /// with the [data-val=true] attribute value and enables validation according to the data-val-*
            /// attribute values.
            /// </summary>
            /// <param name="selector" type="String">Any valid jQuery selector.</param>
            // $forms includes all forms in selector's DOM hierarchy (parent, children and self) that have at least one
            // element with data-val=true
            var $selector = $(selector),
                $forms = $selector.parents()
                    .addBack()
                    .filter("form")
                    .add($selector.find("form"))
                    .has("[data-val=true]");
            $selector.find("[data-val=true]").each(function () {
                $jQval.unobtrusive.parseElement(this, true);
            });
            $forms.each(function () {
                var info = validationInfo(this);
                if (info) {
                    info.attachValidation();
                }
            });
        }
    };
    adapters = $jQval.unobtrusive.adapters;
    adapters.add = function (adapterName, params, fn) {
        /// <summary>Adds a new adapter to convert unobtrusive HTML into a jQuery Validate validation.</summary>
        /// <param name="adapterName" type="String">The name of the adapter to be added. This matches the name used
        /// in the data-val-nnnn HTML attribute (where nnnn is the adapter name).</param>
        /// <param name="params" type="Array" optional="true">[Optional] An array of parameter names (strings) that will
        /// be extracted from the data-val-nnnn-mmmm HTML attributes (where nnnn is the adapter name, and
        /// mmmm is the parameter name).</param>
        /// <param name="fn" type="Function">The function to call, which adapts the values from the HTML
        /// attributes into jQuery Validate rules and/or messages.</param>
        /// <returns type="jQuery.validator.unobtrusive.adapters" />
        if (!fn) {  // Called with no params, just a function
            fn = params;
            params = [];
        }
        this.push({ name: adapterName, params: params, adapt: fn });
        return this;
    };
    adapters.addBool = function (adapterName, ruleName) {
        /// <summary>Adds a new adapter to convert unobtrusive HTML into a jQuery Validate validation, where
        /// the jQuery Validate validation rule has no parameter values.</summary>
        /// <param name="adapterName" type="String">The name of the adapter to be added. This matches the name used
        /// in the data-val-nnnn HTML attribute (where nnnn is the adapter name).</param>
        /// <param name="ruleName" type="String" optional="true">[Optional] The name of the jQuery Validate rule. If not provided, the value
        /// of adapterName will be used instead.</param>
        /// <returns type="jQuery.validator.unobtrusive.adapters" />
        return this.add(adapterName, function (options) {
            setValidationValues(options, ruleName || adapterName, true);
        });
    };
    adapters.addMinMax = function (adapterName, minRuleName, maxRuleName, minMaxRuleName, minAttribute, maxAttribute) {
        /// <summary>Adds a new adapter to convert unobtrusive HTML into a jQuery Validate validation, where
        /// the jQuery Validate validation has three potential rules (one for min-only, one for max-only, and
        /// one for min-and-max). The HTML parameters are expected to be named -min and -max.</summary>
        /// <param name="adapterName" type="String">The name of the adapter to be added. This matches the name used
        /// in the data-val-nnnn HTML attribute (where nnnn is the adapter name).</param>
        /// <param name="minRuleName" type="String">The name of the jQuery Validate rule to be used when you only
        /// have a minimum value.</param>
        /// <param name="maxRuleName" type="String">The name of the jQuery Validate rule to be used when you only
        /// have a maximum value.</param>
        /// <param name="minMaxRuleName" type="String">The name of the jQuery Validate rule to be used when you
        /// have both a minimum and maximum value.</param>
        /// <param name="minAttribute" type="String" optional="true">[Optional] The name of the HTML attribute that
        /// contains the minimum value. The default is "min".</param>
        /// <param name="maxAttribute" type="String" optional="true">[Optional] The name of the HTML attribute that
        /// contains the maximum value. The default is "max".</param>
        /// <returns type="jQuery.validator.unobtrusive.adapters" />
        return this.add(adapterName, [minAttribute || "min", maxAttribute || "max"], function (options) {
            var min = options.params.min,
                max = options.params.max;
            if (min && max) {
                setValidationValues(options, minMaxRuleName, [min, max]);
            }
            else if (min) {
                setValidationValues(options, minRuleName, min);
            }
            else if (max) {
                setValidationValues(options, maxRuleName, max);
            }
        });
    };
    adapters.addSingleVal = function (adapterName, attribute, ruleName) {
        /// <summary>Adds a new adapter to convert unobtrusive HTML into a jQuery Validate validation, where
        /// the jQuery Validate validation rule has a single value.</summary>
        /// <param name="adapterName" type="String">The name of the adapter to be added. This matches the name used
        /// in the data-val-nnnn HTML attribute(where nnnn is the adapter name).</param>
        /// <param name="attribute" type="String">[Optional] The name of the HTML attribute that contains the value.
        /// The default is "val".</param>
        /// <param name="ruleName" type="String" optional="true">[Optional] The name of the jQuery Validate rule. If not provided, the value
        /// of adapterName will be used instead.</param>
        /// <returns type="jQuery.validator.unobtrusive.adapters" />
        return this.add(adapterName, [attribute || "val"], function (options) {
            setValidationValues(options, ruleName || adapterName, options.params[attribute]);
        });
    };
    $jQval.addMethod("__dummy__", function (value, element, params) {
        return true;
    });
    $jQval.addMethod("regex", function (value, element, params) {
        var match;
        if (this.optional(element)) {
            return true;
        }
        match = new RegExp(params).exec(value);
        return (match && (match.index === 0) && (match[0].length === value.length));
    });
    $jQval.addMethod("nonalphamin", function (value, element, nonalphamin) {
        var match;
        if (nonalphamin) {
            match = value.match(/\W/g);
            match = match && match.length >= nonalphamin;
        }
        return match;
    });
    if ($jQval.methods.extension) {
        adapters.addSingleVal("accept", "mimtype");
        adapters.addSingleVal("extension", "extension");
    } else {
        // for backward compatibility, when the 'extension' validation method does not exist, such as with versions
        // of JQuery Validation plugin prior to 1.10, we should use the 'accept' method for
        // validating the extension, and ignore mime-type validations as they are not supported.
        adapters.addSingleVal("extension", "extension", "accept");
    }
    adapters.addSingleVal("regex", "pattern");
    adapters.addBool("creditcard").addBool("date").addBool("digits").addBool("email").addBool("number").addBool("url");
    adapters.addMinMax("length", "minlength", "maxlength", "rangelength").addMinMax("range", "min", "max", "range");
    adapters.addMinMax("minlength", "minlength").addMinMax("maxlength", "minlength", "maxlength");
    adapters.add("equalto", ["other"], function (options) {
        var prefix = getModelPrefix(options.element.name),
            other = options.params.other,
            fullOtherName = appendModelPrefix(other, prefix),
            element = $(options.form).find(":input").filter("[name='" + escapeAttributeValue(fullOtherName) + "']")[0];
        setValidationValues(options, "equalTo", element);
    });
    adapters.add("required", function (options) {
        // jQuery Validate equates "required" with "mandatory" for checkbox elements
        if (options.element.tagName.toUpperCase() !== "INPUT" || options.element.type.toUpperCase() !== "CHECKBOX") {
            setValidationValues(options, "required", true);
        }
    });
    adapters.add("remote", ["url", "type", "additionalfields"], function (options) {
        var value = {
            url: options.params.url,
            type: options.params.type || "GET",
            data: {}
        },
            prefix = getModelPrefix(options.element.name);
        $.each(splitAndTrim(options.params.additionalfields || options.element.name), function (i, fieldName) {
            var paramName = appendModelPrefix(fieldName, prefix);
            value.data[paramName] = function () {
                var field = $(options.form).find(":input").filter("[name='" + escapeAttributeValue(paramName) + "']");
                // For checkboxes and radio buttons, only pick up values from checked fields.
                if (field.is(":checkbox")) {
                    return field.filter(":checked").val() || field.filter(":hidden").val() || '';
                }
                else if (field.is(":radio")) {
                    return field.filter(":checked").val() || '';
                }
                return field.val();
            };
        });
        setValidationValues(options, "remote", value);
    });
    adapters.add("password", ["min", "nonalphamin", "regex"], function (options) {
        if (options.params.min) {
            setValidationValues(options, "minlength", options.params.min);
        }
        if (options.params.nonalphamin) {
            setValidationValues(options, "nonalphamin", options.params.nonalphamin);
        }
        if (options.params.regex) {
            setValidationValues(options, "regex", options.params.regex);
        }
    });
    adapters.add("fileextensions", ["extensions"], function (options) {
        setValidationValues(options, "extension", options.params.extensions);
    });
    $(function () {
        $jQval.unobtrusive.parse(document);
    });
    return $jQval.unobtrusive;
 }));
--- a/CH.Api/wwwroot/lib/jquery-validation-unobtrusive/jquery.validate.unobtrusive.min.js
+++ b/CH.Api/wwwroot/lib/jquery-validation-unobtrusive/jquery.validate.unobtrusive.min.js
--- a/CH.Api/wwwroot/lib/jquery-validation/LICENSE.md
+++ b/CH.Api/wwwroot/lib/jquery-validation/LICENSE.md
@ -0,0 +1,22 @@
 The MIT License (MIT)
 =====================
 Copyright Jörn Zaefferer
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 in the Software without restriction, including without limitation the rights
 to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 copies of the Software, and to permit persons to whom the Software is
 furnished to do so, subject to the following conditions:
 The above copyright notice and this permission notice shall be included in
 all copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
 THE SOFTWARE.
--- a/CH.Api/wwwroot/lib/jquery-validation/dist/additional-methods.js
+++ b/CH.Api/wwwroot/lib/jquery-validation/dist/additional-methods.js
--- a/CH.Api/wwwroot/lib/jquery-validation/dist/additional-methods.min.js
+++ b/CH.Api/wwwroot/lib/jquery-validation/dist/additional-methods.min.js
--- a/CH.Api/wwwroot/lib/jquery-validation/dist/jquery.validate.js
+++ b/CH.Api/wwwroot/lib/jquery-validation/dist/jquery.validate.js
--- a/CH.Api/wwwroot/lib/jquery-validation/dist/jquery.validate.min.js
+++ b/CH.Api/wwwroot/lib/jquery-validation/dist/jquery.validate.min.js
--- a/CH.Api/wwwroot/lib/jquery/LICENSE.txt
+++ b/CH.Api/wwwroot/lib/jquery/LICENSE.txt
@ -0,0 +1,21 @@
 Copyright OpenJS Foundation and other contributors, https://openjsf.org/
 Permission is hereby granted, free of charge, to any person obtaining
 a copy of this software and associated documentation files (the
 "Software"), to deal in the Software without restriction, including
 without limitation the rights to use, copy, modify, merge, publish,
 distribute, sublicense, and/or sell copies of the Software, and to
 permit persons to whom the Software is furnished to do so, subject to
 the following conditions:
 The above copyright notice and this permission notice shall be
 included in all copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
 EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
 MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
 NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
 LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
 OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
 WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
--- a/CH.Api/wwwroot/lib/jquery/dist/jquery.js
+++ b/CH.Api/wwwroot/lib/jquery/dist/jquery.js
--- a/CH.Api/wwwroot/lib/jquery/dist/jquery.min.js
+++ b/CH.Api/wwwroot/lib/jquery/dist/jquery.min.js
--- a/CH.Api/wwwroot/lib/jquery/dist/jquery.min.map
+++ b/CH.Api/wwwroot/lib/jquery/dist/jquery.min.map
--- a/CH.Authority/Attributes/GuestAttribute.cs
+++ b/CH.Authority/Attributes/GuestAttribute.cs
@ -0,0 +1,16 @@
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Text;
 using System.Threading.Tasks;
 namespace CH.Authority.Attributes;
 [AttributeUsage(AttributeTargets.Class, AllowMultiple = false, Inherited = false)]
 public class AllowGuestAttribute : System.Attribute
 {
  public AllowGuestAttribute()
  {
  }
 }
--- a/CH.Authority/AuthorityModule.cs
+++ b/CH.Authority/AuthorityModule.cs
@ -0,0 +1,21 @@
 using CH.Authority.Services;
 using Microsoft.Extensions.DependencyInjection;
 using OpenHarbor.CQRS.Abstractions.Security;
 using PoweredSoft.Module.Abstractions;
 namespace CH.Authority;
 public class AuthorityModule : IModule
 {
  public IServiceCollection ConfigureServices(IServiceCollection services)
  {
    services
      .AddScoped<IQueryAuthorizationService, CQAuthorizationService>();
    services
      .AddScoped<ICommandAuthorizationService, CQAuthorizationService>();
    services.AddScoped<UserIdentityService>();
    return services;
  }
 }
--- a/CH.Authority/CH.Authority.csproj
+++ b/CH.Authority/CH.Authority.csproj
@ -0,0 +1,22 @@
 <Project Sdk="Microsoft.NET.Sdk">
  <PropertyGroup>
    <TargetFramework>net8.0</TargetFramework>
    <ImplicitUsings>enable</ImplicitUsings>
    <Nullable>enable</Nullable>
  </PropertyGroup>
  <ItemGroup>
    <PackageReference Include="Microsoft.AspNetCore.Http.Abstractions" Version="2.2.0" />
    <PackageReference Include="OpenHarbor.CQRS.Abstractions" Version="8.0.0-preview.6" />
    <PackageReference Include="OpenHarbor.CQRS.DynamicQuery" Version="8.0.0-preview.6" />
    <PackageReference Include="PoweredSoft.Module.Abstractions" Version="2.0.0" />
  </ItemGroup>
  <ItemGroup>
    <ProjectReference Include="..\CH.Dal\CH.Dal.csproj" />
  </ItemGroup>
  <ItemGroup>
    <Reference Include="Microsoft.AspNetCore.Http.Abstractions">
      <HintPath>..\..\..\..\..\..\..\usr\local\share\dotnet\shared\Microsoft.AspNetCore.App\8.0.11\Microsoft.AspNetCore.Http.Abstractions.dll</HintPath>
    </Reference>
  </ItemGroup>
 </Project>
--- a/CH.Authority/Services/CQAuthorizationService.cs
+++ b/CH.Authority/Services/CQAuthorizationService.cs
@ -0,0 +1,47 @@
 using CH.Authority.Attributes;
 using OpenHarbor.CQRS.Abstractions.Discovery;
 using OpenHarbor.CQRS.Abstractions.Security;
 using OpenHarbor.CQRS.DynamicQuery.Discover;
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Reflection;
 using System.Text;
 using System.Threading.Tasks;
 namespace CH.Authority.Services;
 public class CQAuthorizationService(IQueryDiscovery queryDiscovery, UserIdentityService userIdentityService) : IQueryAuthorizationService, ICommandAuthorizationService
 {
  public async Task<AuthorizationResult> IsAllowedAsync(bool isQuery, Type queryOrCommandType, CancellationToken cancellationToken)
  {
    // determine subject type.
    Type subjectType = queryOrCommandType;
    if (isQuery)
    {
      var queryMeta = queryDiscovery.FindQuery(queryOrCommandType);
      if (queryMeta != null && queryMeta is DynamicQueryMeta dqMeta)
      {
        subjectType = dqMeta.DestinationType;
      }
    }
    // allow guest calls.
    var allowGuestAttributes = subjectType.GetCustomAttribute<AllowGuestAttribute>(true);
    if (null != allowGuestAttributes)
      return AuthorizationResult.Allowed;
    if (false == userIdentityService.IsAuthenticated())
      return AuthorizationResult.Unauthorized;
    var isAllowed = await userIdentityService.IsAuthorizedAsync(cancellationToken);
    return isAllowed ? AuthorizationResult.Allowed : AuthorizationResult.Forbidden;
  }
  Task<AuthorizationResult> IQueryAuthorizationService.IsAllowedAsync(Type queryType,
    CancellationToken cancellationToken)
    => IsAllowedAsync(true, queryType, cancellationToken);
  Task<AuthorizationResult> ICommandAuthorizationService.IsAllowedAsync(Type commandType, CancellationToken cancellationToken)
    => IsAllowedAsync(false, commandType, cancellationToken);
 }
--- a/CH.Authority/Services/UserIdentityService.cs
+++ b/CH.Authority/Services/UserIdentityService.cs
@ -0,0 +1,112 @@
 using CH.Dal;
 using CH.Dal.DbEntity;
 using Microsoft.AspNetCore.Http;
 using Microsoft.Extensions.Configuration;
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Security.Claims;
 using System.Text;
 using System.Threading.Tasks;
 namespace CH.Authority.Services;
 public class UserIdentityService
 {
  private User? _user;
  private readonly IHttpContextAccessor _httpContextAccessor;
  private readonly IConfiguration _configuration;
  private readonly CHDbContext _dbContext;
  public string? SubjectId { get; }
  public string? Email { get; }
  public string? FirstName { get; }
  public string? LastName { get; }
  public bool? EmailVerified { get; }
  public string? AuthIssuer { get; }
  public UserIdentityService(CHDbContext dbContext, IHttpContextAccessor httpContextAccessor,
    IConfiguration configuration)
  {
    _dbContext = dbContext;
    _httpContextAccessor = httpContextAccessor;
    _configuration = configuration;
    // microsoft you twats! NameIdentifier = Sub
    SubjectId = ResolveClaim(ClaimTypes.NameIdentifier);
    Email = ResolveClaim(ClaimTypes.Email);
    FirstName = ResolveClaim(ClaimTypes.GivenName);
    LastName = ResolveClaim(ClaimTypes.Surname);
    var emailVerifiedString = ResolveClaim("email_verified");
    if (null != emailVerifiedString && bool.TryParse(emailVerifiedString, out var emailVerified))
    {
      EmailVerified = emailVerified;
    }
    AuthIssuer = ResolveClaim("iss");
  }
  public bool IsAuthenticated()
  {
    var isAuthenticated = _httpContextAccessor.HttpContext?.User?.Identity?.IsAuthenticated ?? false;
    if (!isAuthenticated || null == EmailVerified)
      return false;
    return EmailVerified ?? false;
  }
  private string? ResolveClaim(params string[] name)
  {
    var isAuthenticated = _httpContextAccessor.HttpContext?.User?.Identity?.IsAuthenticated ?? false;
    if (false == isAuthenticated)
      return null;
    var claim = _httpContextAccessor.HttpContext.User.Claims.FirstOrDefault(claim => name.Contains(claim.Type));
    return claim?.Value;
  }
  public async Task<User?> GetUserOrDefaultAsync(CancellationToken cancellationToken = default)
  {
    if (false == IsAuthenticated())
      return null;
    if (null != _user)
      return _user;
    if (string.IsNullOrWhiteSpace(Email))
      return null;
    // otherwise search for the user by email
    var email = Email?.ToLower() ?? "";
    //_user = await _dbContext.Users
    //  .Include(user => user.SubjectId)
    //  .FirstOrDefaultAsync(user => user.Email.ToLower() == email, cancellationToken);
    // create user if it doesn't exist
    if (null == _user)
    {
      _user = await CreateUserAsync(cancellationToken);
      return _user;
    }
    return _user;
  }
  public async Task<bool> IsAuthorizedAsync(CancellationToken cancellationToken)
  {
    var user = await GetUserOrDefaultAsync(cancellationToken);
    return null != user;
  }
  private async Task<User> CreateUserAsync(CancellationToken cancellationToken = default)
  {
    var user = new User
    {
      Email = Email,
      FirstName = FirstName,
      LastName = LastName,
    };
    //await _dbContext.SaveChangesAsync(cancellationToken);
    return user;
  }
 }
--- a/CH.CQRS/CH.CQRS.csproj
+++ b/CH.CQRS/CH.CQRS.csproj
@ -0,0 +1,20 @@
 <Project Sdk="Microsoft.NET.Sdk">
  <PropertyGroup>
    <TargetFramework>net8.0</TargetFramework>
    <ImplicitUsings>enable</ImplicitUsings>
    <Nullable>enable</Nullable>
  </PropertyGroup>
  <ItemGroup>
    <PackageReference Include="FluentValidation" Version="10.4.0" />
    <PackageReference Include="OpenHarbor.CQRS.Abstractions" Version="8.0.0-preview.6" />
    <PackageReference Include="OpenHarbor.CQRS.DynamicQuery" Version="8.0.0-preview.6" />
    <PackageReference Include="OpenHarbor.CQRS.FluentValidation" Version="8.0.0-preview.6" />
    <PackageReference Include="PoweredSoft.Module.Abstractions" Version="2.0.0" />
    <PackageReference Include="OpenHarbor.Storage.Abstractions" Version="1.1.0" />
    <PackageReference Include="OpenHarbor.Storage.S3" Version="1.1.0" />
  </ItemGroup>
  <ItemGroup>
    <Folder Include="Command\User\UpdateUserName\" />
  </ItemGroup>
 </Project>
--- a/CH.CQRS/CommandModule.cs
+++ b/CH.CQRS/CommandModule.cs
@ -0,0 +1,18 @@
 using Microsoft.Extensions.DependencyInjection;
 using PoweredSoft.Module.Abstractions;
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Text;
 using System.Threading.Tasks;
 namespace CH.CQRS;
 public class CommandModule : IModule
 {
  public IServiceCollection ConfigureServices(IServiceCollection services)
  {
    return services;
  }
 }
--- a/CH.CQRS/QueryModule.cs
+++ b/CH.CQRS/QueryModule.cs
@ -0,0 +1,17 @@
 using Microsoft.Extensions.DependencyInjection;
 using PoweredSoft.Module.Abstractions;
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Text;
 using System.Threading.Tasks;
 namespace CH.CQRS;
 public class QueryModule : IModule
 {
  public IServiceCollection ConfigureServices(IServiceCollection services)
  {
    return services;
  }
 }
--- a/CH.CQRS/SharedModule.cs
+++ b/CH.CQRS/SharedModule.cs
@ -0,0 +1,11 @@
 using Microsoft.Extensions.DependencyInjection;
 using PoweredSoft.Module.Abstractions;
 namespace CH.CQRS;
 public class SharedModule : IModule
 {
  public IServiceCollection ConfigureServices(IServiceCollection services)
  {
    return services;
  }
 }
--- a/CH.Dal.Abstractions/CH.Dal.Abstractions.csproj
+++ b/CH.Dal.Abstractions/CH.Dal.Abstractions.csproj
@ -0,0 +1,9 @@
 <Project Sdk="Microsoft.NET.Sdk">
  <PropertyGroup>
    <TargetFramework>net8.0</TargetFramework>
    <ImplicitUsings>enable</ImplicitUsings>
    <Nullable>enable</Nullable>
  </PropertyGroup>
 </Project>
--- a/CH.Dal.Abstractions/Class1.cs
+++ b/CH.Dal.Abstractions/Class1.cs
@ -0,0 +1,7 @@
 namespace CH.Dal.Abstractions
 {
  public class Class1
  {
  }
 }
--- a/CH.Dal/CH.Dal.csproj
+++ b/CH.Dal/CH.Dal.csproj
@ -0,0 +1,21 @@
 <Project Sdk="Microsoft.NET.Sdk">
  <PropertyGroup>
    <TargetFramework>net8.0</TargetFramework>
    <ImplicitUsings>enable</ImplicitUsings>
    <Nullable>enable</Nullable>
  </PropertyGroup>
  <ItemGroup>
    <PackageReference Include="FluentValidation" Version="10.4.0" />
    <PackageReference Include="Microsoft.EntityFrameworkCore" Version="8.0.11" />
    <PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="8.0.11">
      <PrivateAssets>all</PrivateAssets>
      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
    </PackageReference>
    <PackageReference Include="Npgsql.EntityFrameworkCore.PostgreSQL" Version="8.0.11" />
    <PackageReference Include="OpenHarbor.CQRS.DynamicQuery.Abstractions" Version="8.0.0-preview.6" />
    <PackageReference Include="PoweredSoft.Data.Core" Version="3.0.0" />
    <PackageReference Include="PoweredSoft.Module.Abstractions" Version="2.0.0" />
  </ItemGroup>
 </Project>
--- a/CH.Dal/CHDbContext.cs
+++ b/CH.Dal/CHDbContext.cs
@ -0,0 +1,21 @@
 using Microsoft.EntityFrameworkCore;
 using Npgsql;
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Text;
 using System.Threading.Tasks;
 namespace CH.Dal;
 public class CHDbContext(DbContextOptions options) : CHDbScaffoldedContext(options)
 {
  protected override void OnModelCreating(ModelBuilder modelBuilder)
  {
  }
  protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder)
  {
    return;
  }
 }
--- a/CH.Dal/CHDbScaffoldedContext.cs
+++ b/CH.Dal/CHDbScaffoldedContext.cs
@ -0,0 +1,89 @@
 using System;
 using System.Collections.Generic;
 using CH.Dal.DbEntity;
 using Microsoft.EntityFrameworkCore;
 namespace CH.Dal;
 public partial class CHDbScaffoldedContext : DbContext
 {
    public CHDbScaffoldedContext()
    {
    }
    public CHDbScaffoldedContext(DbContextOptions options)
        : base(options)
    {
    }
    public virtual DbSet<Location> Locations { get; set; }
    public virtual DbSet<Machine> Machines { get; set; }
    public virtual DbSet<User> Users { get; set; }
    protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder)
        => optionsBuilder.UseNpgsql("Name=Database:ConnectionString");
    protected override void OnModelCreating(ModelBuilder modelBuilder)
    {
        modelBuilder.Entity<Location>(entity =>
        {
            entity.HasKey(e => e.Id).HasName("location_pkey");
            entity.ToTable("location");
            entity.Property(e => e.Id).HasColumnName("id");
            entity.Property(e => e.Name)
                .HasMaxLength(255)
                .HasColumnName("name");
        });
        modelBuilder.Entity<Machine>(entity =>
        {
            entity.HasKey(e => e.Id).HasName("machine_pkey");
            entity.ToTable("machine");
            entity.Property(e => e.Id).HasColumnName("id");
            entity.Property(e => e.Address)
                .HasMaxLength(255)
                .HasColumnName("address");
            entity.Property(e => e.LocationId).HasColumnName("location_id");
            entity.Property(e => e.Name)
                .HasMaxLength(255)
                .HasColumnName("name");
            entity.Property(e => e.Status).HasColumnName("status");
            entity.Property(e => e.UserId).HasColumnName("user_id");
            entity.HasOne(d => d.Location).WithMany(p => p.Machines)
                .HasForeignKey(d => d.LocationId)
                .HasConstraintName("machine_location_id_fkey");
            entity.HasOne(d => d.User).WithMany(p => p.Machines)
                .HasForeignKey(d => d.UserId)
                .HasConstraintName("machine_user_id_fkey");
        });
        modelBuilder.Entity<User>(entity =>
        {
            entity.HasKey(e => e.Id).HasName("user_pkey");
            entity.ToTable("user");
            entity.Property(e => e.Id).HasColumnName("id");
            entity.Property(e => e.Email)
                .HasMaxLength(255)
                .HasColumnName("email");
            entity.Property(e => e.FirstName).HasMaxLength(255);
            entity.Property(e => e.LastName).HasMaxLength(255);
            entity.Property(e => e.SubjectId)
                .HasMaxLength(255)
                .HasColumnName("subject_id");
        });
        OnModelCreatingPartial(modelBuilder);
    }
    partial void OnModelCreatingPartial(ModelBuilder modelBuilder);
 }
--- a/CH.Dal/DalModule.cs
+++ b/CH.Dal/DalModule.cs
@ -0,0 +1,13 @@
 using Microsoft.Extensions.DependencyInjection;
 using OpenHarbor.CQRS.DynamicQuery.Abstractions;
 using PoweredSoft.Data.Core;
 using PoweredSoft.Module.Abstractions;
 namespace CH.Dal;
 public class DalModule : IModule
 {
  public IServiceCollection ConfigureServices(IServiceCollection services)
  {
    return services;
  }
 }
--- a/CH.Dal/DbEntity/Location.cs
+++ b/CH.Dal/DbEntity/Location.cs
@ -0,0 +1,13 @@
 using System;
 using System.Collections.Generic;
 namespace CH.Dal.DbEntity;
 public partial class Location
 {
    public long Id { get; set; }
    public string Name { get; set; } = null!;
    public virtual ICollection<Machine> Machines { get; set; } = new List<Machine>();
 }
--- a/CH.Dal/DbEntity/Machine.cs
+++ b/CH.Dal/DbEntity/Machine.cs
@ -0,0 +1,23 @@
 using System;
 using System.Collections.Generic;
 namespace CH.Dal.DbEntity;
 public partial class Machine
 {
    public long Id { get; set; }
    public string Name { get; set; } = null!;
    public string Address { get; set; } = null!;
    public bool Status { get; set; }
    public long? LocationId { get; set; }
    public long? UserId { get; set; }
    public virtual Location? Location { get; set; }
    public virtual User? User { get; set; }
 }
--- a/CH.Dal/DbEntity/User.cs
+++ b/CH.Dal/DbEntity/User.cs
@ -0,0 +1,19 @@
 using System;
 using System.Collections.Generic;
 namespace CH.Dal.DbEntity;
 public partial class User
 {
    public long Id { get; set; }
    public string FirstName { get; set; } = null!;
    public string LastName { get; set; } = null!;
    public string Email { get; set; } = null!;
    public string SubjectId { get; set; } = null!;
    public virtual ICollection<Machine> Machines { get; set; } = new List<Machine>();
 }
--- a/ConstellationHeating.sln
+++ b/ConstellationHeating.sln
@ -0,0 +1,43 @@
 Microsoft Visual Studio Solution File, Format Version 12.00
 # Visual Studio Version 17
 VisualStudioVersion = 17.11.35327.3
 MinimumVisualStudioVersion = 10.0.40219.1
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CH.Api", "CH.Api\CH.Api.csproj", "{974B39E7-3706-4E74-B03B-5A6DAF9600C0}"
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CH.Dal", "CH.Dal\CH.Dal.csproj", "{9BCD9AF4-8766-4BAD-BE7F-3EB9F8C7DEED}"
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CH.CQRS", "CH.CQRS\CH.CQRS.csproj", "{F3474E23-142B-47B7-85BC-836017132353}"
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "CH.Authority", "CH.Authority\CH.Authority.csproj", "{2B26A5F6-B78D-418F-A28D-80E7E9CD5428}"
 EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
 		Release|Any CPU = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(ProjectConfigurationPlatforms) = postSolution
 		{974B39E7-3706-4E74-B03B-5A6DAF9600C0}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
 		{974B39E7-3706-4E74-B03B-5A6DAF9600C0}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{974B39E7-3706-4E74-B03B-5A6DAF9600C0}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{974B39E7-3706-4E74-B03B-5A6DAF9600C0}.Release|Any CPU.Build.0 = Release|Any CPU
 		{9BCD9AF4-8766-4BAD-BE7F-3EB9F8C7DEED}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
 		{9BCD9AF4-8766-4BAD-BE7F-3EB9F8C7DEED}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{9BCD9AF4-8766-4BAD-BE7F-3EB9F8C7DEED}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{9BCD9AF4-8766-4BAD-BE7F-3EB9F8C7DEED}.Release|Any CPU.Build.0 = Release|Any CPU
 		{F3474E23-142B-47B7-85BC-836017132353}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
 		{F3474E23-142B-47B7-85BC-836017132353}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{F3474E23-142B-47B7-85BC-836017132353}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{F3474E23-142B-47B7-85BC-836017132353}.Release|Any CPU.Build.0 = Release|Any CPU
 		{2B26A5F6-B78D-418F-A28D-80E7E9CD5428}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
 		{2B26A5F6-B78D-418F-A28D-80E7E9CD5428}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{2B26A5F6-B78D-418F-A28D-80E7E9CD5428}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{2B26A5F6-B78D-418F-A28D-80E7E9CD5428}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {62E65423-5A0E-4D12-B174-A06C870F2662}
 	EndGlobalSection
 EndGlobal