merge pull request #4 from https-richardy/refactor/03-avoid-user-db-lookup-in-principal-middleware

https-richardy · web-flow · commit cbaf06ee0149 · 2026-03-09T22:00:54.000-03:00
fix(#3): the middleware now directly uses the claims from the authenticated user's context eliminating the need to search for the user in the database
diff --git a/Source/HttpsRichardy.Federation.WebApi/Middlewares/PrincipalMiddleware.cs b/Source/HttpsRichardy.Federation.WebApi/Middlewares/PrincipalMiddleware.cs
@@ -17,27 +17,29 @@ public async Task InvokeAsync(HttpContext context)
             return;
         }
 
-        var userCollection = context.RequestServices.GetRequiredService<IUserCollection>();
         var userIdClaim = context.User.FindFirst(ClaimTypes.NameIdentifier);
+        var preferredUsernameClaim = context.User.Claims.FirstOrDefault(claim => claim.Type == "preferred_username");
 
         if (userIdClaim == null || string.IsNullOrWhiteSpace(userIdClaim.Value))
         {
             await next(context);
             return;
         }
 
-        var filters = UserFilters.WithSpecifications()
-            .WithIdentifier(userIdClaim.Value)
-            .Build();
-
-        var users = await userCollection.GetUsersAsync(filters, context.RequestAborted);
-        var user = users.FirstOrDefault();
-
-        if (user is not null)
+        if (preferredUsernameClaim == null || string.IsNullOrWhiteSpace(preferredUsernameClaim.Value))
         {
-            principalProvider.SetPrincipal(user);
+            await next(context);
+            return;
         }
 
+        var principal = new User()
+        {
+            Id = userIdClaim.Value,
+            Username = preferredUsernameClaim.Value
+        };
+
+        principalProvider.SetPrincipal(principal);
+
         await next(context);
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -17,27 +17,29 @@ public async Task InvokeAsync(HttpContext context)`
`17`	`17`	`return;`
`18`	`18`	`}`
`19`	`19`
`20`		`- var userCollection = context.RequestServices.GetRequiredService<IUserCollection>();`
`21`	`20`	`var userIdClaim = context.User.FindFirst(ClaimTypes.NameIdentifier);`
	`21`	`+ var preferredUsernameClaim = context.User.Claims.FirstOrDefault(claim => claim.Type == "preferred_username");`
`22`	`22`
`23`	`23`	`if (userIdClaim == null \|\| string.IsNullOrWhiteSpace(userIdClaim.Value))`
`24`	`24`	`{`
`25`	`25`	`await next(context);`
`26`	`26`	`return;`
`27`	`27`	`}`
`28`	`28`
`29`		`- var filters = UserFilters.WithSpecifications()`
`30`		`- .WithIdentifier(userIdClaim.Value)`
`31`		`- .Build();`
`32`		`-`
`33`		`- var users = await userCollection.GetUsersAsync(filters, context.RequestAborted);`
`34`		`- var user = users.FirstOrDefault();`
`35`		`-`
`36`		`- if (user is not null)`
	`29`	`+ if (preferredUsernameClaim == null \|\| string.IsNullOrWhiteSpace(preferredUsernameClaim.Value))`
`37`	`30`	`{`
`38`		`- principalProvider.SetPrincipal(user);`
	`31`	`+ await next(context);`
	`32`	`+ return;`
`39`	`33`	`}`
`40`	`34`
	`35`	`+ var principal = new User()`
	`36`	`+ {`
	`37`	`+ Id = userIdClaim.Value,`
	`38`	`+ Username = preferredUsernameClaim.Value`
	`39`	`+ };`
	`40`	`+`
	`41`	`+ principalProvider.SetPrincipal(principal);`
	`42`	`+`
`41`	`43`	`await next(context);`
`42`	`44`	`}`
`43`	`45`	`}`