oliverbooth.dev/OliverBooth/Extensions/WebHostBuilderExtensions.cs

using System.Security.Cryptography.X509Certificates;

namespace OliverBooth.Extensions;

/// <summary>
///     Extension methods for <see cref="IWebHostBuilder" />.
/// </summary>
public static class WebHostBuilderExtensions
{
    /// <summary>
    ///     Adds a certificate to the <see cref="IWebHostBuilder" /> by reading the paths from environment variables.
    /// </summary>
    /// <param name="builder">The <see cref="IWebHostBuilder" />.</param>
    /// <param name="httpsPort">The HTTPS port.</param>
    /// <param name="httpPort">The HTTP port.</param>
    /// <returns>The <see cref="IWebHostBuilder" />.</returns>
    public static IWebHostBuilder AddCertificateFromEnvironment(this IWebHostBuilder builder,
        int httpsPort = 443,
        int httpPort = 80)
    {
        return builder.UseKestrel(options =>
        {
            string certPath = Environment.GetEnvironmentVariable("SSL_CERT_PATH")!;
            if (string.IsNullOrWhiteSpace(certPath))
            {
                Console.WriteLine("Certificate path not specified. Using HTTP");
                options.ListenAnyIP(httpPort);
                return;
            }

            if (!File.Exists(certPath))
            {
                Console.Error.WriteLine("Certificate not found. Using HTTP");
                options.ListenAnyIP(httpPort);
                return;
            }

            string? keyPath = Environment.GetEnvironmentVariable("SSL_KEY_PATH");
            if (string.IsNullOrWhiteSpace(keyPath))
            {
                Console.WriteLine("Certificate found, but no key provided. Using certificate only");
                keyPath = null;
            }
            else if (!File.Exists(keyPath))
            {
                Console.Error.WriteLine("Certificate found, but the provided key was not. Using certificate only");
                keyPath = null;
            }

            Console.WriteLine($"Using HTTPS with certificate found at {certPath}:{keyPath}");
            var certificate = X509Certificate2.CreateFromPemFile(certPath, keyPath);
            options.ListenAnyIP(httpsPort, configure => configure.UseHttps(certificate));
        });
    }
}
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`using System.Security.Cryptography.X509Certificates;`

refactor: combine sites into one CORS was "cors"ing some issues (heh). But also it is easier to maintain this way. Development was made much more difficult when I separated it. Combining it all also improves SEO 2023-08-13 17:33:54 +01:00			`namespace OliverBooth.Extensions;`
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00
refactor: move blog to separate app I'd ideally like to keep the blog. subdomain the same, and while there are a few ways to achieve this it is much simpler to just dedicate a separate application for the subdomain. This change also adjusts the webhost builder extensions to default to ports 443/80, and each app now explicitly sets the port it needs. 2023-08-12 20:13:47 +01:00			`/// <summary>`
			`/// Extension methods for <see cref="IWebHostBuilder" />.`
			`/// </summary>`
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`public static class WebHostBuilderExtensions`
			`{`
refactor: move blog to separate app I'd ideally like to keep the blog. subdomain the same, and while there are a few ways to achieve this it is much simpler to just dedicate a separate application for the subdomain. This change also adjusts the webhost builder extensions to default to ports 443/80, and each app now explicitly sets the port it needs. 2023-08-12 20:13:47 +01:00			`/// <summary>`
			`/// Adds a certificate to the <see cref="IWebHostBuilder" /> by reading the paths from environment variables.`
			`/// </summary>`
			`/// <param name="builder">The <see cref="IWebHostBuilder" />.</param>`
			`/// <param name="httpsPort">The HTTPS port.</param>`
			`/// <param name="httpPort">The HTTP port.</param>`
			`/// <returns>The <see cref="IWebHostBuilder" />.</returns>`
			`public static IWebHostBuilder AddCertificateFromEnvironment(this IWebHostBuilder builder,`
			`int httpsPort = 443,`
			`int httpPort = 80)`
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`{`
			`return builder.UseKestrel(options =>`
			`{`
			`string certPath = Environment.GetEnvironmentVariable("SSL_CERT_PATH")!;`
refactor: combine sites into one CORS was "cors"ing some issues (heh). But also it is easier to maintain this way. Development was made much more difficult when I separated it. Combining it all also improves SEO 2023-08-13 17:33:54 +01:00			`if (string.IsNullOrWhiteSpace(certPath))`
			`{`
			`Console.WriteLine("Certificate path not specified. Using HTTP");`
			`options.ListenAnyIP(httpPort);`
			`return;`
			`}`

refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`if (!File.Exists(certPath))`
			`{`
refactor: combine sites into one CORS was "cors"ing some issues (heh). But also it is easier to maintain this way. Development was made much more difficult when I separated it. Combining it all also improves SEO 2023-08-13 17:33:54 +01:00			`Console.Error.WriteLine("Certificate not found. Using HTTP");`
refactor: move blog to separate app I'd ideally like to keep the blog. subdomain the same, and while there are a few ways to achieve this it is much simpler to just dedicate a separate application for the subdomain. This change also adjusts the webhost builder extensions to default to ports 443/80, and each app now explicitly sets the port it needs. 2023-08-12 20:13:47 +01:00			`options.ListenAnyIP(httpPort);`
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`return;`
			`}`

			`string? keyPath = Environment.GetEnvironmentVariable("SSL_KEY_PATH");`
refactor: combine sites into one CORS was "cors"ing some issues (heh). But also it is easier to maintain this way. Development was made much more difficult when I separated it. Combining it all also improves SEO 2023-08-13 17:33:54 +01:00			`if (string.IsNullOrWhiteSpace(keyPath))`
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`{`
refactor: combine sites into one CORS was "cors"ing some issues (heh). But also it is easier to maintain this way. Development was made much more difficult when I separated it. Combining it all also improves SEO 2023-08-13 17:33:54 +01:00			`Console.WriteLine("Certificate found, but no key provided. Using certificate only");`
			`keyPath = null;`
			`}`
			`else if (!File.Exists(keyPath))`
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`{`
refactor: combine sites into one CORS was "cors"ing some issues (heh). But also it is easier to maintain this way. Development was made much more difficult when I separated it. Combining it all also improves SEO 2023-08-13 17:33:54 +01:00			`Console.Error.WriteLine("Certificate found, but the provided key was not. Using certificate only");`
			`keyPath = null;`
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`}`
refactor: combine sites into one CORS was "cors"ing some issues (heh). But also it is easier to maintain this way. Development was made much more difficult when I separated it. Combining it all also improves SEO 2023-08-13 17:33:54 +01:00
			`Console.WriteLine($"Using HTTPS with certificate found at {certPath}:{keyPath}");`
			`var certificate = X509Certificate2.CreateFromPemFile(certPath, keyPath);`
			`options.ListenAnyIP(httpsPort, configure => configure.UseHttps(certificate));`
refactor: delegate ssl cert read to common lib 2023-08-12 18:35:57 +01:00			`});`
			`}`
			`}`