dotnet-labs
diff --git a/‎MyWebApp.IntegrationTests/CustomRemoteIpAddressMiddleware.cs
+17-32 b/‎MyWebApp.IntegrationTests/CustomRemoteIpAddressMiddleware.cs
+17-32
diff --git a/‎MyWebApp.IntegrationTests/IpRestrictionTests.cs
+65-64 b/‎MyWebApp.IntegrationTests/IpRestrictionTests.cs
+65-64
diff --git a/‎MyWebApp.IntegrationTests/MyWebApp.IntegrationTests.csproj
+6-9 b/‎MyWebApp.IntegrationTests/MyWebApp.IntegrationTests.csproj
+6-9
diff --git a/‎MyWebApp/Controllers/ValuesController.cs
+11-19 b/‎MyWebApp/Controllers/ValuesController.cs
+11-19
diff --git a/‎MyWebApp/Infrastructure/AdminSafeListMiddleware.cs
+11-24 b/‎MyWebApp/Infrastructure/AdminSafeListMiddleware.cs
+11-24
@@ -3,42 +3,27 @@
 using Microsoft.AspNetCore.Hosting;
 using Microsoft.AspNetCore.Http;
 
-namespace MyWebApp.IntegrationTests
-{
-    public class CustomRemoteIpAddressMiddleware
-    {
-        private readonly RequestDelegate _next;
-        private readonly IPAddress _fakeIpAddress;
+namespace MyWebApp.IntegrationTests;
 
-        public CustomRemoteIpAddressMiddleware(RequestDelegate next, IPAddress? fakeIpAddress = null)
-        {
-            _next = next;
-            _fakeIpAddress = fakeIpAddress ?? IPAddress.Parse("127.0.0.1");
-        }
+public class CustomRemoteIpAddressMiddleware(RequestDelegate next, IPAddress? fakeIpAddress = null)
+{
+    private readonly IPAddress _fakeIpAddress = fakeIpAddress ?? IPAddress.Parse("127.0.0.1");
 
-        public async Task Invoke(HttpContext httpContext)
-        {
-            httpContext.Connection.RemoteIpAddress = _fakeIpAddress;
-            await _next(httpContext);
-        }
+    public async Task Invoke(HttpContext httpContext)
+    {
+        httpContext.Connection.RemoteIpAddress = _fakeIpAddress;
+        await next(httpContext);
     }
+}
 
-    public class CustomRemoteIpStartupFilter : IStartupFilter
+public class CustomRemoteIpStartupFilter(IPAddress? remoteIp = null) : IStartupFilter
+{
+    public Action<IApplicationBuilder> Configure(Action<IApplicationBuilder> next)
     {
-        private readonly IPAddress? _remoteIp;
-
-        public CustomRemoteIpStartupFilter(IPAddress? remoteIp = null)
+        return app =>
         {
-            _remoteIp = remoteIp;
-        }
-
-        public Action<IApplicationBuilder> Configure(Action<IApplicationBuilder> next)
-        {
-            return app =>
-            {
-                app.UseMiddleware<CustomRemoteIpAddressMiddleware>(_remoteIp);
-                next(app);
-            };
-        }
+            app.UseMiddleware<CustomRemoteIpAddressMiddleware>(remoteIp);
+            next(app);
+        };
     }
-}
+}
@@ -7,86 +7,87 @@
 using Microsoft.Extensions.Logging;
 using Microsoft.VisualStudio.TestTools.UnitTesting;
 
-namespace MyWebApp.IntegrationTests
+namespace MyWebApp.IntegrationTests;
+
+[TestClass]
+public class IpRestrictionTests
 {
-    [TestClass]
-    public class IpRestrictionTests
+    [TestMethod]
+    public void ParseConfigurations()
     {
-        [TestMethod]
-        public async Task HttpRequestWithAllowedIpAddressShouldReturn200()
-        {
-            var factory = new WebApplicationFactory<Startup>().WithWebHostBuilder(builder =>
-            {
-                builder.UseSetting("https_port", "5001").ConfigureLogging(c => c.AddConsole());
-                builder.ConfigureTestServices(services =>
-                {
-                    services.AddSingleton<IStartupFilter>(new CustomRemoteIpStartupFilter(IPAddress.Parse("127.0.0.1")));
-                });
-            });
-            var client = factory.CreateClient();
-            var response = await client.GetAsync("values");
-
-            Assert.AreEqual(HttpStatusCode.OK, response.StatusCode);
-            Assert.AreEqual("application/json; charset=utf-8", response.Content.Headers.ContentType?.ToString());
-
-            var json = await response.Content.ReadAsStringAsync();
-            Assert.AreEqual("[\"value1\",\"value2\"]", json);
-        }
+        var b = IPNetwork.TryParse("2001:0db8::/64", out var ip);
+        Assert.IsTrue(b);
+        Assert.AreEqual(new IPNetwork(IPAddress.Parse("2001:0db8::"), 64), ip);
+    }
 
-        [TestMethod]
-        public async Task HttpRequestWithForbiddenIpAddressShouldReturn403()
+    [TestMethod]
+    public async Task HttpRequestWithAllowedIpAddressShouldReturn200()
+    {
+        var factory = new WebApplicationFactory<Startup>().WithWebHostBuilder(builder =>
         {
-            var factory = new WebApplicationFactory<Startup>().WithWebHostBuilder(builder =>
+            builder.UseSetting("https_port", "5001").ConfigureLogging(c => c.AddConsole());
+            builder.ConfigureTestServices(services =>
             {
-                builder.UseSetting("https_port", "5001").ConfigureLogging(c => c.AddConsole());
-                builder.ConfigureTestServices(services =>
-                {
-                    services.AddSingleton<IStartupFilter>(new CustomRemoteIpStartupFilter(IPAddress.Parse("127.168.1.32")));
-                });
+                services.AddSingleton<IStartupFilter>(new CustomRemoteIpStartupFilter(IPAddress.Parse("127.0.0.1")));
             });
-            var client = factory.CreateClient();
-            var response = await client.GetAsync("values");
+        });
+        var client = factory.CreateClient();
+        var response = await client.GetAsync("values");
 
-            Assert.AreEqual(HttpStatusCode.Forbidden, response.StatusCode);
-        }
+        Assert.AreEqual(HttpStatusCode.OK, response.StatusCode);
+        Assert.AreEqual("application/json; charset=utf-8", response.Content.Headers.ContentType?.ToString());
 
-        [Ignore("I haven't figured out how to test in this way.")]
-        [TestMethod]
-        public async Task HttpRequestWithLocalHostIpAddressShouldReturn200()
+        var json = await response.Content.ReadAsStringAsync();
+        Assert.AreEqual("[\"value1\",\"value2\"]", json);
+    }
+
+    [TestMethod]
+    public async Task HttpRequestWithForbiddenIpAddressShouldReturn403()
+    {
+        var factory = new WebApplicationFactory<Startup>().WithWebHostBuilder(builder =>
         {
-            var factory = new WebApplicationFactory<Startup>()
-                .WithWebHostBuilder(builder => builder.UseSetting("https_port", "5001").ConfigureLogging(c => c.AddConsole()));
-            var client = factory.CreateClient(new WebApplicationFactoryClientOptions
+            builder.UseSetting("https_port", "5001").ConfigureLogging(c => c.AddConsole());
+            builder.ConfigureTestServices(services =>
             {
-                AllowAutoRedirect = true
+                services.AddSingleton<IStartupFilter>(new CustomRemoteIpStartupFilter(IPAddress.Parse("127.168.1.32")));
             });
+        });
+        var client = factory.CreateClient();
+        var response = await client.GetAsync("values");
 
-            // tried to use TestServer.SendAsync to set RemoteIP, but failed
-            // https://github.com/aspnet/Hosting/issues/1135
-            // https://github.com/aspnet/Hosting/pull/1248
-            // If without setting the RemoteIP, the test server will simply use an empty IP, which breaks the test.
-
-            //var context = await factory.Server.SendAsync((c) =>
-            //{
-            //    c.Connection.RemoteIpAddress = IPAddress.Parse("127.168.1.32");
-            //    c.Request.Method = HttpMethods.Get;
-            //    c.Request.Path = new PathString("/values");
+        Assert.AreEqual(HttpStatusCode.Forbidden, response.StatusCode);
+    }
 
-            //});
-            //var response = context.Response;
+    [TestMethod]
+    public async Task HttpRequestWithLocalHostIpAddressShouldReturn200()
+    {
+        var factory = new WebApplicationFactory<Startup>()
+            .WithWebHostBuilder(builder => builder.UseSetting("https_port", "5001").ConfigureLogging(c => c.AddConsole()));
 
-            //Assert.AreEqual(HttpStatusCode.OK, response.StatusCode);
-            //Assert.AreEqual("application/json; charset=utf-8", response.ContentType);
+        var context = await factory.Server.SendAsync((c) =>
+        {
+            c.Connection.RemoteIpAddress = IPAddress.Parse("127.168.1.32");
+            c.Request.Method = HttpMethods.Get;
+            c.Request.Path = new PathString("/values");
+            c.Request.IsHttps = true;
 
-            //var json =  response.Body.ToString();
+        });
+        Assert.AreEqual((int)HttpStatusCode.Forbidden, context.Response.StatusCode);
 
-            var response = await client.GetAsync("values");
+        context = await factory.Server.SendAsync((c) =>
+       {
+           c.Connection.RemoteIpAddress = IPAddress.Parse("192.168.1.9");
+           c.Request.Method = HttpMethods.Get;
+           c.Request.Path = new PathString("/values");
+           c.Request.IsHttps = true;
 
-            Assert.AreEqual(HttpStatusCode.OK, response.StatusCode);
-            Assert.AreEqual("application/json; charset=utf-8", response.Content.Headers.ContentType?.ToString());
+       });
+        var response = context.Response;
+        Assert.AreEqual((int)HttpStatusCode.OK, response.StatusCode);
+        Assert.AreEqual("application/json; charset=utf-8", response.ContentType);
 
-            var json = await response.Content.ReadAsStringAsync();
-            Assert.AreEqual("[\"value1\",\"value2\"]", json);
-        }
+        using var sr = new StreamReader(response.Body);
+        var json = await sr.ReadToEndAsync();
+        Assert.AreEqual("[\"value1\",\"value2\"]", json);
     }
-}
+}
@@ -1,21 +1,18 @@
 <Project Sdk="Microsoft.NET.Sdk">
 
   <PropertyGroup>
-    <TargetFramework>net6.0</TargetFramework>
-
+    <TargetFramework>net8.0</TargetFramework>
     <IsPackable>false</IsPackable>
-
     <Nullable>enable</Nullable>
-
     <ImplicitUsings>enable</ImplicitUsings>
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.AspNetCore.Mvc.Testing" Version="6.0.8" />
-    <PackageReference Include="Microsoft.Extensions.Logging.Console" Version="6.0.0" />
-    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.3.1" />
-    <PackageReference Include="MSTest.TestAdapter" Version="2.2.10" />
-    <PackageReference Include="MSTest.TestFramework" Version="2.2.10" />
+    <PackageReference Include="Microsoft.AspNetCore.Mvc.Testing" Version="8.0.0" />
+    <PackageReference Include="Microsoft.Extensions.Logging.Console" Version="8.0.0" />
+    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.8.0" />
+    <PackageReference Include="MSTest.TestAdapter" Version="3.1.1" />
+    <PackageReference Include="MSTest.TestFramework" Version="3.1.1" />
   </ItemGroup>
 
   <ItemGroup>
 
@@ -1,25 +1,17 @@
 using Microsoft.AspNetCore.Mvc;
 using MyWebApp.Infrastructure;
 
-namespace MyWebApp.Controllers
+namespace MyWebApp.Controllers;
+
+[ApiController]
+[Route("[controller]")]
+public class ValuesController(ILogger<ValuesController> logger) : ControllerBase
 {
-    [ApiController]
-    [Route("[controller]")]
-    public class ValuesController : ControllerBase
+    [ServiceFilter(typeof(ClientIpCheckActionFilter))]
+    [HttpGet]
+    public IEnumerable<string> Get()
     {
-        private readonly ILogger<ValuesController> _logger;
-
-        public ValuesController(ILogger<ValuesController> logger)
-        {
-            _logger = logger;
-        }
-
-        [ServiceFilter(typeof(ClientIpCheckActionFilter))]
-        [HttpGet]
-        public IEnumerable<string> Get()
-        {
-            _logger.LogInformation("Client IP: {remoteIpAddress}", HttpContext.Connection.RemoteIpAddress?.ToString());
-            return new[] { "value1", "value2" };
-        }
+        logger.LogInformation("Client IP: {remoteIpAddress}", HttpContext.Connection.RemoteIpAddress?.ToString());
+        return new[] { "value1", "value2" };
     }
-}
+}
@@ -1,45 +1,32 @@
-using System.Net;
-
-namespace MyWebApp.Infrastructure
+namespace MyWebApp.Infrastructure
 {
-    public class AdminSafeListMiddleware
+    public class AdminSafeListMiddleware(
+        RequestDelegate next,
+        ILogger<AdminSafeListMiddleware> logger,
+        IpSafeList safeList)
     {
-        private readonly RequestDelegate _next;
-        private readonly ILogger<AdminSafeListMiddleware> _logger;
-        private readonly List<IPAddress> _ipAddresses;
-        private readonly List<IPNetwork> _ipNetworks;
-
-        public AdminSafeListMiddleware(RequestDelegate next, ILogger<AdminSafeListMiddleware> logger, IpSafeList safeList)
-        {
-            _ipAddresses = safeList.IpAddresses.Split(';').Select(IPAddress.Parse).ToList();
-            _ipNetworks = safeList.IpNetworks.Split(';').Select(IPNetwork.Parse).ToList();
-
-            _next = next;
-            _logger = logger;
-        }
-
-        public async Task Invoke(HttpContext context)
+        public Task Invoke(HttpContext context)
         {
             var remoteIp = context.Connection.RemoteIpAddress;
             if (remoteIp == null)
             {
                 throw new ArgumentException("Remote IP is NULL, may due to missing ForwardedHeaders.");
             }
-            _logger.LogDebug("Remote IpAddress: {RemoteIp}", remoteIp);
+            logger.LogDebug("Remote IpAddress: {RemoteIp}", remoteIp);
 
             if (remoteIp.IsIPv4MappedToIPv6)
             {
                 remoteIp = remoteIp.MapToIPv4();
             }
 
-            if (!_ipAddresses.Contains(remoteIp) && !_ipNetworks.Any(x => x.Contains(remoteIp)))
+            if (!safeList.IsSafeIp(remoteIp))
             {
-                _logger.LogWarning("Forbidden Request from IP: {remoteIp}", remoteIp);
+                logger.LogWarning("Forbidden Request from IP: {remoteIp}", remoteIp);
                 context.Response.StatusCode = StatusCodes.Status403Forbidden;
-                return;
+                return Task.CompletedTask;
             }
 
-            await _next.Invoke(context);
+            return next.Invoke(context);
         }
     }
 }
Original file line number	Diff line number	Diff line change
`@@ -1,45 +1,32 @@`
`1`		`-using System.Net;`
`2`		`-`
`3`		`-namespace MyWebApp.Infrastructure`
	`1`	`+namespace MyWebApp.Infrastructure`
`4`	`2`	`{`
`5`		`- public class AdminSafeListMiddleware`
	`3`	`+ public class AdminSafeListMiddleware(`
	`4`	`+ RequestDelegate next,`
	`5`	`+ ILogger<AdminSafeListMiddleware> logger,`
	`6`	`+ IpSafeList safeList)`
`6`	`7`	`{`
`7`		`- private readonly RequestDelegate _next;`
`8`		`- private readonly ILogger<AdminSafeListMiddleware> _logger;`
`9`		`- private readonly List<IPAddress> _ipAddresses;`
`10`		`- private readonly List<IPNetwork> _ipNetworks;`
`11`		`-`
`12`		`- public AdminSafeListMiddleware(RequestDelegate next, ILogger<AdminSafeListMiddleware> logger, IpSafeList safeList)`
`13`		`- {`
`14`		`- _ipAddresses = safeList.IpAddresses.Split(';').Select(IPAddress.Parse).ToList();`
`15`		`- _ipNetworks = safeList.IpNetworks.Split(';').Select(IPNetwork.Parse).ToList();`
`16`		`-`
`17`		`- _next = next;`
`18`		`- _logger = logger;`
`19`		`- }`
`20`		`-`
`21`		`- public async Task Invoke(HttpContext context)`
	`8`	`+ public Task Invoke(HttpContext context)`
`22`	`9`	`{`
`23`	`10`	`var remoteIp = context.Connection.RemoteIpAddress;`
`24`	`11`	`if (remoteIp == null)`
`25`	`12`	`{`
`26`	`13`	`throw new ArgumentException("Remote IP is NULL, may due to missing ForwardedHeaders.");`
`27`	`14`	`}`
`28`		`- _logger.LogDebug("Remote IpAddress: {RemoteIp}", remoteIp);`
	`15`	`+ logger.LogDebug("Remote IpAddress: {RemoteIp}", remoteIp);`
`29`	`16`
`30`	`17`	`if (remoteIp.IsIPv4MappedToIPv6)`
`31`	`18`	`{`
`32`	`19`	`remoteIp = remoteIp.MapToIPv4();`
`33`	`20`	`}`
`34`	`21`
`35`		`- if (!_ipAddresses.Contains(remoteIp) && !_ipNetworks.Any(x => x.Contains(remoteIp)))`
	`22`	`+ if (!safeList.IsSafeIp(remoteIp))`
`36`	`23`	`{`
`37`		`- _logger.LogWarning("Forbidden Request from IP: {remoteIp}", remoteIp);`
	`24`	`+ logger.LogWarning("Forbidden Request from IP: {remoteIp}", remoteIp);`
`38`	`25`	`context.Response.StatusCode = StatusCodes.Status403Forbidden;`
`39`		`- return;`
	`26`	`+ return Task.CompletedTask;`
`40`	`27`	`}`
`41`	`28`
`42`		`- await _next.Invoke(context);`
	`29`	`+ return next.Invoke(context);`
`43`	`30`	`}`
`44`	`31`	`}`
`45`	`32`	`}`